June 2020 - Linux-stable-mirror

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 5.6.16 release. There are 174 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Thu, 04 Jun 2020 10:16:52 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.6.16-rc2… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.6.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 5.6.16-rc2 Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build Nathan Chancellor <natechancellor(a)gmail.com> netfilter: conntrack: Pass value of ctinfo to __nf_conntrack_update Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: conntrack: comparison of unsigned in cthelper confirmation Petr Mladek <pmladek(a)suse.com> powerpc/bpf: Enable bpf_probe_read{, str}() on powerpc again Qiushi Wu <wu000273(a)umn.edu> bonding: Fix reference count leak in bond_sysfs_slave_add. Vladimir Oltean <vladimir.oltean(a)nxp.com> net: dsa: declare lockless TX feature for slave ports David Ahern <dsahern(a)gmail.com> ipv4: nexthop version of fib_info_nh_uses_dev David Ahern <dsahern(a)gmail.com> nexthop: Expand nexthop_is_multipath in a few places Nikolay Aleksandrov <nikolay(a)cumulusnetworks.com> nexthops: don't modify published nexthop groups David Ahern <dsahern(a)gmail.com> nexthops: Move code from remove_nexthop_from_groups to remove_nh_grp_entry Eric Dumazet <edumazet(a)google.com> crypto: chelsio/chtls: properly set tp->lsndtime Qiushi Wu <wu000273(a)umn.edu> qlcnic: fix missing release in qlcnic_83xx_interrupt_test. Björn Töpel <bjorn.topel(a)intel.com> xsk: Add overflow check for u64 division, stored into u32 Jay Lang <jaytlang(a)mit.edu> x86/ioperm: Prevent a memory leak when fork fails Pradeep Kumar Chitrapu <pradeepc(a)codeaurora.org> ieee80211: Fix incorrect mask for default PE duration Edwin Peer <edwin.peer(a)broadcom.com> bnxt_en: fix firmware message length endianness Michael Chan <michael.chan(a)broadcom.com> bnxt_en: Fix accumulation of bp->net_stats_prev. Xin Long <lucien.xin(a)gmail.com> esp6: get the right proto for transport mode in esp6_gso_encap Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nfnetlink_cthelper: unbreak userspace helper support Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: conntrack: make conntrack userspace helpers work again Phil Sutter <phil(a)nwl.cc> netfilter: ipset: Fix subcounter update skip Michael Braun <michael-dev(a)fami-braun.de> netfilter: nft_reject_bridge: enable reject with bridge vlan Xin Long <lucien.xin(a)gmail.com> ip_vti: receive ipip packet by calling ip_tunnel_rcv Antony Antony <antony(a)phenome.org> xfrm: fix error in comment Xin Long <lucien.xin(a)gmail.com> xfrm: fix a NULL-ptr deref in xfrm_local_error Xin Long <lucien.xin(a)gmail.com> xfrm: fix a warning in xfrm_policy_insert_list Nicolas Dichtel <nicolas.dichtel(a)6wind.com> xfrm interface: fix oops when deleting a x-netns interface Xin Long <lucien.xin(a)gmail.com> xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output Sabrina Dubroca <sd(a)queasysnail.net> xfrm: espintcp: save and call old ->sk_destruct Xin Long <lucien.xin(a)gmail.com> xfrm: remove the xfrm_state_put call becofe going to out_reset Xin Long <lucien.xin(a)gmail.com> xfrm: do pskb_pull properly in __xfrm_transport_prep Xin Long <lucien.xin(a)gmail.com> xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input Al Viro <viro(a)zeniv.linux.org.uk> copy_xstate_to_kernel(): don't leave parts of destination uninitialized Alexander Dahl <post(a)lespocky.de> x86/dma: Fix max PFN arithmetic overflow on 32 bit systems Linus Lüssing <ll(a)simonwunderlich.de> mac80211: mesh: fix discovery timer re-arming issue / crash Johannes Berg <johannes.berg(a)intel.com> cfg80211: fix debugfs rename crash Helge Deller <deller(a)gmx.de> parisc: Fix kernel panic in mem_init() Qiushi Wu <wu000273(a)umn.edu> iommu: Fix reference count leak in iommu_group_alloc. Linus Walleij <linus.walleij(a)linaro.org> gpio: fix locking open drain IRQ lines Jens Axboe <axboe(a)kernel.dk> Revert "block: end bio with BLK_STS_AGAIN in case of non-mq devs and REQ_NOWAIT" Arnd Bergmann <arnd(a)arndb.de> include/asm-generic/topology.h: guard cpumask_of_node() macro argument Alexander Potapenko <glider(a)google.com> fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() Konstantin Khlebnikov <khlebnikov(a)yandex-team.ru> mm: remove VM_BUG_ON(PageSlab()) from page_mapcount() Hugh Dickins <hughd(a)google.com> mm,thp: stop leaking unreleased file pages Valentine Fatiev <valentinef(a)mellanox.com> IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode Aric Cyr <aric.cyr(a)amd.com> drm/amd/display: Fix potential integer wraparound resulting in a hang Nicholas Kazlauskas <nicholas.kazlauskas(a)amd.com> drm/amd/display: Defer cursor lock until after VUPDATE Aric Cyr <aric.cyr(a)amd.com> drm/amd/display: Use cursor locking to prevent flip delays Anthony Koo <Anthony.Koo(a)amd.com> drm/amd/display: Added locking for atomic update stream and update planes Anthony Koo <Anthony.Koo(a)amd.com> drm/amd/display: Indicate dsc updates explicitly Anthony Koo <Anthony.Koo(a)amd.com> drm/amd/display: Split program front end part that occur outside lock Simon Ser <contact(a)emersion.fr> drm/amd/display: drop cursor position check in atomic test Jason Gunthorpe <jgg(a)ziepe.ca> RDMA/core: Fix double destruction of uobject Jeff Layton <jlayton(a)kernel.org> ceph: flush release queue when handling caps for unknown inode Jerry Lee <leisurelysw24(a)gmail.com> libceph: ignore pool overlay and cache logic on redirects Kailang Yang <kailang(a)realtek.com> ALSA: hda/realtek - Add new codec supported for ALC287 Takashi Iwai <tiwai(a)suse.de> ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio Vinod Koul <vkoul(a)kernel.org> clk: qcom: gcc: Fix parent for gpll0_out_even Eric W. Biederman <ebiederm(a)xmission.com> exec: Always set cap_ambient in cap_bprm_set_creds Chris Chiu <chiu(a)endlessm.com> ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC Takashi Iwai <tiwai(a)suse.de> ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround Changming Liu <liu.changm(a)northeastern.edu> ALSA: hwdep: fix a left shifting 1 by 31 UB bug Qiushi Wu <wu000273(a)umn.edu> RDMA/pvrdma: Fix missing pci disable in pvrdma_pci_probe() Tiezhu Yang <yangtiezhu(a)loongson.cn> gpio: bcm-kona: Fix return value of bcm_kona_gpio_probe() Tiezhu Yang <yangtiezhu(a)loongson.cn> gpio: pxa: Fix return value of pxa_gpio_probe() Peng Hao <richard.peng(a)oppo.com> mmc: block: Fix use-after-free issue for rpmb Maor Gottlieb <maorg(a)mellanox.com> RDMA/mlx5: Fix NULL pointer dereference in destroy_prefetch_work Lubomir Rintel <lkundrak(a)v3.sk> ARM: dts: mmp3: Drop usb-nop-xceiv from HSIC phy Lubomir Rintel <lkundrak(a)v3.sk> ARM: dts: mmp3-dell-ariel: Fix the SPI devices Lubomir Rintel <lkundrak(a)v3.sk> ARM: dts: mmp3: Use the MMP3 compatible string for /clocks Hamish Martin <hamish.martin(a)alliedtelesis.co.nz> ARM: dts: bcm: HR2: Fix PPI interrupt types Vincent Stehlé <vincent.stehle(a)laposte.net> ARM: dts: bcm2835-rpi-zero-w: Fix led polarity Robert Beckett <bob.beckett(a)collabora.com> ARM: dts/imx6q-bx50v3: Set display interface clock parents Kaike Wan <kaike.wan(a)intel.com> IB/qib: Call kobject_put() when kobject_init_and_add() fails Paul Cercueil <paul(a)crapouillou.net> gpu/drm: Ingenic: Fix opaque pointer casted to wrong type Paul Cercueil <paul(a)crapouillou.net> gpu/drm: ingenic: Fix bogus crtc_atomic_check callback Dennis YC Hsieh <dennis-yc.hsieh(a)mediatek.com> soc: mediatek: cmdq: return send msg error code Hsin-Yi Wang <hsinyi(a)chromium.org> arm64: dts: mt8173: fix vcodec-enc clock Takashi Iwai <tiwai(a)suse.de> gpio: exar: Fix bad handling for ida_simple_get error path Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: fix DACR mismatch with nested exceptions Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: integrate uaccess_save and uaccess_restore Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: consolidate uaccess asm to asm/uaccess-asm.h Łukasz Stelmach <l.stelmach(a)samsung.com> ARM: 8970/1: decompressor: increase tag size Wei Yongjun <weiyongjun1(a)huawei.com> Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() Evan Green <evgreen(a)chromium.org> Input: synaptics-rmi4 - really fix attn_data use-after-free Kevin Locke <kevin(a)kevinlocke.name> Input: i8042 - add ThinkPad S230u to i8042 reset list Sascha Hauer <s.hauer(a)pengutronix.de> gpio: mvebu: Fix probing for chips without PWM Christophe JAILLET <christophe.jaillet(a)wanadoo.fr> Input: dlink-dir685-touchkeys - fix a typo in driver name Łukasz Patron <priv.luk(a)gmail.com> Input: xpad - add custom init packet for Xbox One S controllers Brendan Shanks <bshanks(a)codeweavers.com> Input: evdev - call input_flush_device() on release(), not flush() James Hilliard <james.hilliard1(a)gmail.com> Input: usbtouchscreen - add support for BonXeon TP Madhuparna Bhowmik <madhuparnabhowmik10(a)gmail.com> drivers: net: hamradio: Fix suspicious RCU usage warning in bpqether.c Matteo Croce <mcroce(a)redhat.com> samples: bpf: Fix build error Al Viro <viro(a)zeniv.linux.org.uk> csky: Fixup raw_copy_from_user() Steve French <stfrench(a)microsoft.com> cifs: Fix null pointer check in cifs_read Kefeng Wang <wangkefeng.wang(a)huawei.com> riscv: pgtable: Fix __kernel_map_pages build error if NOMMU Amy Shih <amy.shih(a)advantech.com.tw> hwmon: (nct7904) Fix incorrect range of temperature limit registers Bernard Zhao <bernard(a)vivo.com> drm/meson: pm resume add return errno branch Liu Yibin <jiulong(a)linux.alibaba.com> csky: Fixup remove duplicate irq_disable Mao Han <han_mao(a)linux.alibaba.com> csky: Fixup perf callchain unwind Liu Yibin <jiulong(a)linux.alibaba.com> csky: Fixup msa highest 3 bits mask Tero Kristo <t-kristo(a)ti.com> clk: ti: am33xx: fix RTC clock parent Kefeng Wang <wangkefeng.wang(a)huawei.com> riscv: Add pgprot_writecombine/device and PAGE_SHARED defination if NOMMU Kefeng Wang <wangkefeng.wang(a)huawei.com> riscv: stacktrace: Fix undefined reference to `walk_stackframe' Kefeng Wang <wangkefeng.wang(a)huawei.com> riscv: Fix unmet direct dependencies built based on SOC_VIRT Denis V. Lunev <den(a)openvz.org> IB/i40iw: Remove bogus call to netdev_master_upper_dev_get() Leo (Hanghong) Ma <hanghong.ma(a)amd.com> drm/amd/amdgpu: Update update_config() logic Arnd Bergmann <arnd(a)arndb.de> net: freescale: select CONFIG_FIXED_PHY where needed Masahiro Yamada <masahiroy(a)kernel.org> usb: gadget: legacy: fix redundant initialization warnings Christophe JAILLET <christophe.jaillet(a)wanadoo.fr> usb: phy: twl6030-usb: Fix a resource leak in an error handling path in 'twl6030_usb_probe()' Andy Shevchenko <andriy.shevchenko(a)linux.intel.com> usb: dwc3: pci: Enable extcon driver for Intel Merrifield Lei Xue <carmark.dlut(a)gmail.com> cachefiles: Fix race between read_waiter and read_copier involving op->to_do Felix Kuehling <Felix.Kuehling(a)amd.com> drm/amdgpu: Use GEM obj reference for KFD BOs Evan Quan <evan.quan(a)amd.com> drm/amd/powerplay: perform PG ungate prior to CG ungate Evan Quan <evan.quan(a)amd.com> drm/amdgpu: drop unnecessary cancel_delayed_work_sync on PG ungate Andreas Gruenbacher <agruenba(a)redhat.com> gfs2: Grab glock reference sooner in gfs2_add_revoke Bob Peterson <rpeterso(a)redhat.com> gfs2: move privileged user check to gfs2_quota_lock_check John Stultz <john.stultz(a)linaro.org> kselftests: dmabuf-heaps: Fix confused return value on expected error testing Chuhong Yuan <hslester96(a)gmail.com> net: microchip: encx24j600: add missed kthread_stop Tony Lindgren <tony(a)atomide.com> ARM: dts: omap4-droid4: Fix occasional lost wakeirq for uart1 Tony Lindgren <tony(a)atomide.com> ARM: dts: omap4-droid4: Fix flakey wlan by disabling internal pull for gpio Andrew Oakley <andrew(a)adoakley.name> ALSA: usb-audio: add mapping for ASRock TRX40 Creator Stephen Warren <swarren(a)nvidia.com> gpio: tegra: mask GPIO IRQs during IRQ shutdown Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix pinctrl sub nodename for spi in rk322x.dtsi Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: swap clock-names of gpu nodes Johan Jonker <jbx6244(a)gmail.com> arm64: dts: rockchip: swap interrupts interrupt-names rk3399 gpu node Johan Jonker <jbx6244(a)gmail.com> arm64: dts: rockchip: fix status for &gmac2phy in rk3328-evb.dts Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix phy nodename for rk3229-xms6 Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix phy nodename for rk3228-evb Srinivas Kandagatla <srinivas.kandagatla(a)linaro.org> arm64: dts: qcom: db820c: fix audio configuration Vladimir Oltean <vladimir.oltean(a)nxp.com> net: mscc: ocelot: fix address ageing time (again) Jiri Pirko <jiri(a)mellanox.com> mlxsw: spectrum: Fix use-after-free of split/unsplit/type_set in case reload fails Tang Bin <tangbin(a)cmss.chinamobile.com> net: sgi: ioc3-eth: Fix return value check in ioc3eth_probe() Qiushi Wu <wu000273(a)umn.edu> net/mlx4_core: fix a memory leak bug. Qiushi Wu <wu000273(a)umn.edu> net: sun: fix missing release regions in cas_init_one(). Vadim Fedorenko <vfedorenko(a)novek.ru> net/tls: free record only on encryption error Vadim Fedorenko <vfedorenko(a)novek.ru> net/tls: fix encryption error checking Roi Dayan <roid(a)mellanox.com> net/mlx5: Annotate mutex destroy for root ns Eran Ben Elisha <eranbe(a)mellanox.com> net/mlx5: Avoid processing commands before cmdif is ready Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Revert "virtio-balloon: Revert "virtio-balloon: Switch back to OOM handler for VIRTIO_BALLOON_F_DEFLATE_ON_OOM"" Roi Dayan <roid(a)mellanox.com> net/mlx5: Fix cleaning unmanaged flow tables Eran Ben Elisha <eranbe(a)mellanox.com> net/mlx5: Fix a race when moving command interface to events mode Heiner Kallweit <hkallweit1(a)gmail.com> r8169: fix OCP access on RTL8117 Jason A. Donenfeld <Jason(a)zx2c4.com> wireguard: noise: separate receive counter from send counter Jason A. Donenfeld <Jason(a)zx2c4.com> wireguard: queueing: preserve flow hash across packet scrubbing Jason A. Donenfeld <Jason(a)zx2c4.com> wireguard: noise: read preshared key while taking lock Shay Drory <shayd(a)mellanox.com> net/mlx5: Fix error flow in case of function_setup failure Moshe Shemesh <moshe(a)mellanox.com> net/mlx5e: Update netdev txq on completions during closure Moshe Shemesh <moshe(a)mellanox.com> net/mlx5: Fix memory leak in mlx5_events_init Roi Dayan <roid(a)mellanox.com> net/mlx5e: Fix inner tirs handling Tariq Toukan <tariqt(a)mellanox.com> net/mlx5e: kTLS, Destroy key object after destroying the TIS Eric Dumazet <edumazet(a)google.com> tipc: block BH before using dst_cache Jere Leppänen <jere.leppanen(a)nokia.com> sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed Neil Horman <nhorman(a)tuxdriver.com> sctp: Don't add the shutdown timer if its already been added Marc Payne <marc.payne(a)mdpsys.co.uk> r8152: support additional Microsoft Surface Ethernet Adapter variant David Ahern <dsahern(a)gmail.com> nexthop: Fix attribute checking for groups Vinay Kumar Yadav <vinay.yadav(a)chelsio.com> net/tls: fix race condition causing kernel panic Roman Mashak <mrv(a)mojatatu.com> net sched: fix reporting the first-time use timestamp Yuqi Jin <jinyuqi(a)huawei.com> net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" Manivannan Sadhasivam <manivannan.sadhasivam(a)linaro.org> net: qrtr: Fix passing invalid reference to qrtr_local_enqueue() Stephen Worley <sworley(a)cumulusnetworks.com> net: nlmsg_cancel() if put fails for nhmsg Russell King <rmk+kernel(a)armlinux.org.uk> net: mvpp2: fix RX hashing for non-10G ports Moshe Shemesh <moshe(a)mellanox.com> net/mlx5: Add command entry handling completion Vadim Fedorenko <vfedorenko(a)novek.ru> net: ipip: fix wrong address family in init error path Martin KaFai Lau <kafai(a)fb.com> net: inet_csk: Fix so_reuseport bind-address cache in tb->fast* Boris Sukholitko <boris.sukholitko(a)broadcom.com> __netif_receive_skb_core: pass skb by reference Grygorii Strashko <grygorii.strashko(a)ti.com> net: ethernet: ti: cpsw: fix ASSERT_RTNL() warning during suspend DENG Qingfang <dqfext(a)gmail.com> net: dsa: mt7530: fix roaming from DSA user ports Sabrina Dubroca <sd(a)queasysnail.net> net: don't return invalid table id error when we fall back to PF_UNSPEC Claudiu Manoil <claudiu.manoil(a)nxp.com> felix: Fix initialization of ioremap resources Michal Kubecek <mkubecek(a)suse.cz> ethtool: count header size in reply size estimate Vladimir Oltean <vladimir.oltean(a)nxp.com> dpaa_eth: fix usage as DSA master, try 3 Eric Dumazet <edumazet(a)google.com> ax25: fix setsockopt(SO_BINDTODEVICE) ------------- Diffstat: Makefile | 4 +- arch/arm/boot/compressed/vmlinux.lds.S | 2 +- arch/arm/boot/dts/bcm-hr2.dtsi | 6 +- arch/arm/boot/dts/bcm2835-rpi-zero-w.dts | 2 +- arch/arm/boot/dts/imx6q-b450v3.dts | 7 - arch/arm/boot/dts/imx6q-b650v3.dts | 7 - arch/arm/boot/dts/imx6q-b850v3.dts | 11 -- arch/arm/boot/dts/imx6q-bx50v3.dtsi | 15 +++ arch/arm/boot/dts/mmp3-dell-ariel.dts | 12 +- arch/arm/boot/dts/mmp3.dtsi | 8 +- arch/arm/boot/dts/motorola-mapphone-common.dtsi | 43 +++++- arch/arm/boot/dts/rk3036.dtsi | 2 +- arch/arm/boot/dts/rk3228-evb.dts | 2 +- arch/arm/boot/dts/rk3229-xms6.dts | 2 +- arch/arm/boot/dts/rk322x.dtsi | 6 +- arch/arm/boot/dts/rk3xxx.dtsi | 2 +- arch/arm/include/asm/assembler.h | 75 +---------- arch/arm/include/asm/uaccess-asm.h | 117 ++++++++++++++++ arch/arm/kernel/entry-armv.S | 11 +- arch/arm/kernel/entry-header.S | 9 +- arch/arm64/boot/dts/mediatek/mt8173.dtsi | 4 +- arch/arm64/boot/dts/qcom/apq8096-db820c.dtsi | 19 ++- arch/arm64/boot/dts/qcom/msm8996.dtsi | 2 + arch/arm64/boot/dts/rockchip/rk3328-evb.dts | 2 +- arch/arm64/boot/dts/rockchip/rk3399.dtsi | 8 +- arch/csky/abiv1/inc/abi/entry.h | 4 +- arch/csky/abiv2/inc/abi/entry.h | 4 +- arch/csky/include/asm/uaccess.h | 49 +++---- arch/csky/kernel/entry.S | 2 - arch/csky/kernel/perf_callchain.c | 9 +- arch/csky/lib/usercopy.c | 8 +- arch/parisc/mm/init.c | 2 +- arch/powerpc/Kconfig | 1 + arch/riscv/Kconfig.socs | 17 +-- arch/riscv/include/asm/mmio.h | 2 + arch/riscv/include/asm/pgtable.h | 3 + arch/riscv/kernel/stacktrace.c | 2 +- arch/x86/include/asm/dma.h | 2 +- arch/x86/include/asm/io_bitmap.h | 4 +- arch/x86/kernel/fpu/xstate.c | 86 ++++++------ arch/x86/kernel/ioport.c | 22 +-- arch/x86/kernel/process.c | 4 +- block/blk-core.c | 11 +- drivers/clk/qcom/gcc-sm8150.c | 3 +- drivers/clk/ti/clk-33xx.c | 2 +- drivers/crypto/chelsio/chtls/chtls_io.c | 2 +- drivers/gpio/gpio-bcm-kona.c | 2 +- drivers/gpio/gpio-exar.c | 7 +- drivers/gpio/gpio-mvebu.c | 15 ++- drivers/gpio/gpio-pxa.c | 4 +- drivers/gpio/gpio-tegra.c | 1 + drivers/gpio/gpiolib.c | 11 +- drivers/gpu/drm/amd/amdgpu/amdgpu_amdkfd_gpuvm.c | 5 +- drivers/gpu/drm/amd/amdgpu/gfx_v10_0.c | 6 +- drivers/gpu/drm/amd/amdgpu/gfx_v9_0.c | 12 +- drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 7 - .../gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_hdcp.c | 10 +- drivers/gpu/drm/amd/display/dc/core/dc.c | 124 +++++++++++++---- drivers/gpu/drm/amd/display/dc/core/dc_stream.c | 40 +----- drivers/gpu/drm/amd/display/dc/dc_stream.h | 1 + .../amd/display/dc/dce110/dce110_hw_sequencer.c | 30 ++--- .../drm/amd/display/dc/dcn10/dcn10_hw_sequencer.c | 148 ++++++++++++++++----- .../drm/amd/display/dc/dcn10/dcn10_hw_sequencer.h | 13 ++ drivers/gpu/drm/amd/display/dc/dcn10/dcn10_init.c | 4 + drivers/gpu/drm/amd/display/dc/dcn10/dcn10_mpc.c | 15 +++ drivers/gpu/drm/amd/display/dc/dcn10/dcn10_mpc.h | 20 ++- .../gpu/drm/amd/display/dc/dcn10/dcn10_resource.c | 14 +- drivers/gpu/drm/amd/display/dc/dcn20/dcn20_hwseq.c | 108 +++++++-------- drivers/gpu/drm/amd/display/dc/dcn20/dcn20_hwseq.h | 7 +- drivers/gpu/drm/amd/display/dc/dcn20/dcn20_init.c | 5 +- drivers/gpu/drm/amd/display/dc/dcn20/dcn20_mpc.c | 1 + drivers/gpu/drm/amd/display/dc/dcn20/dcn20_mpc.h | 3 +- .../gpu/drm/amd/display/dc/dcn20/dcn20_resource.c | 4 + drivers/gpu/drm/amd/display/dc/dcn21/dcn21_init.c | 5 +- .../gpu/drm/amd/display/dc/dcn21/dcn21_resource.c | 4 + drivers/gpu/drm/amd/display/dc/inc/hw/mpc.h | 16 +++ drivers/gpu/drm/amd/display/dc/inc/hw_sequencer.h | 12 +- drivers/gpu/drm/amd/powerplay/amd_powerplay.c | 6 +- drivers/gpu/drm/amd/powerplay/amdgpu_smu.c | 6 +- drivers/gpu/drm/ingenic/ingenic-drm.c | 6 +- drivers/gpu/drm/meson/meson_drv.c | 4 +- drivers/hwmon/nct7904.c | 4 +- drivers/infiniband/core/rdma_core.c | 20 ++- drivers/infiniband/hw/i40iw/i40iw_cm.c | 8 -- drivers/infiniband/hw/mlx5/mr.c | 1 + drivers/infiniband/hw/qib/qib_sysfs.c | 9 +- drivers/infiniband/hw/vmw_pvrdma/pvrdma_main.c | 2 +- drivers/infiniband/ulp/ipoib/ipoib.h | 4 + drivers/infiniband/ulp/ipoib/ipoib_cm.c | 15 ++- drivers/infiniband/ulp/ipoib/ipoib_ib.c | 9 +- drivers/infiniband/ulp/ipoib/ipoib_main.c | 10 +- drivers/input/evdev.c | 19 +-- drivers/input/joystick/xpad.c | 12 ++ drivers/input/keyboard/dlink-dir685-touchkeys.c | 2 +- drivers/input/rmi4/rmi_driver.c | 5 +- drivers/input/serio/i8042-x86ia64io.h | 7 + drivers/input/touchscreen/usbtouchscreen.c | 1 + drivers/iommu/iommu.c | 2 +- drivers/mmc/core/block.c | 2 +- drivers/net/bonding/bond_sysfs_slave.c | 4 +- drivers/net/dsa/mt7530.c | 9 +- drivers/net/dsa/mt7530.h | 1 + drivers/net/dsa/ocelot/felix.c | 23 ++-- drivers/net/dsa/ocelot/felix.h | 6 +- drivers/net/dsa/ocelot/felix_vsc9959.c | 22 ++- drivers/net/ethernet/broadcom/bnxt/bnxt.c | 16 +-- drivers/net/ethernet/broadcom/bnxt/bnxt.h | 5 - drivers/net/ethernet/freescale/Kconfig | 2 + drivers/net/ethernet/freescale/dpaa/Kconfig | 1 + drivers/net/ethernet/freescale/dpaa/dpaa_eth.c | 2 +- drivers/net/ethernet/marvell/mvpp2/mvpp2_cls.c | 2 +- drivers/net/ethernet/mellanox/mlx4/fw.c | 2 +- drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 59 +++++++- drivers/net/ethernet/mellanox/mlx5/core/en.h | 2 +- .../ethernet/mellanox/mlx5/core/en_accel/ktls.c | 2 +- drivers/net/ethernet/mellanox/mlx5/core/en_main.c | 12 +- drivers/net/ethernet/mellanox/mlx5/core/en_rep.c | 4 +- drivers/net/ethernet/mellanox/mlx5/core/en_tx.c | 9 +- drivers/net/ethernet/mellanox/mlx5/core/eq.c | 3 + drivers/net/ethernet/mellanox/mlx5/core/events.c | 4 +- drivers/net/ethernet/mellanox/mlx5/core/fs_core.c | 17 ++- .../net/ethernet/mellanox/mlx5/core/ipoib/ipoib.c | 4 +- drivers/net/ethernet/mellanox/mlx5/core/main.c | 7 +- drivers/net/ethernet/mellanox/mlxsw/spectrum.c | 14 +- drivers/net/ethernet/mellanox/mlxsw/switchx2.c | 8 ++ drivers/net/ethernet/microchip/encx24j600.c | 5 +- drivers/net/ethernet/mscc/ocelot.c | 2 +- .../net/ethernet/qlogic/qlcnic/qlcnic_83xx_hw.c | 4 +- drivers/net/ethernet/realtek/r8169_main.c | 17 ++- drivers/net/ethernet/sgi/ioc3-eth.c | 8 +- drivers/net/ethernet/sun/cassini.c | 3 +- drivers/net/ethernet/ti/cpsw.c | 4 + drivers/net/hamradio/bpqether.c | 3 +- drivers/net/usb/cdc_ether.c | 11 +- drivers/net/usb/r8152.c | 1 + drivers/net/wireguard/messages.h | 2 +- drivers/net/wireguard/noise.c | 22 ++- drivers/net/wireguard/noise.h | 14 +- drivers/net/wireguard/queueing.h | 10 +- drivers/net/wireguard/receive.c | 44 +++--- drivers/net/wireguard/selftest/counter.c | 17 ++- drivers/net/wireguard/send.c | 19 +-- drivers/soc/mediatek/mtk-cmdq-helper.c | 4 +- drivers/usb/dwc3/dwc3-pci.c | 1 + drivers/usb/gadget/legacy/inode.c | 3 +- drivers/usb/phy/phy-twl6030-usb.c | 12 +- drivers/virtio/virtio_balloon.c | 107 ++++++--------- fs/binfmt_elf.c | 2 +- fs/cachefiles/rdwr.c | 2 +- fs/ceph/caps.c | 2 +- fs/cifs/file.c | 2 +- fs/gfs2/log.c | 6 +- fs/gfs2/quota.c | 3 +- fs/gfs2/quota.h | 3 +- include/asm-generic/topology.h | 2 +- include/linux/ieee80211.h | 2 +- include/linux/mlx5/driver.h | 16 +++ include/linux/mm.h | 15 ++- include/linux/netfilter/nf_conntrack_pptp.h | 2 +- include/net/act_api.h | 3 +- include/net/espintcp.h | 1 + include/net/ip_fib.h | 11 +- include/net/nexthop.h | 67 +++++++--- include/net/tls.h | 4 + include/rdma/uverbs_std_types.h | 2 +- include/uapi/linux/xfrm.h | 2 +- mm/khugepaged.c | 1 + net/ax25/af_ax25.c | 6 +- net/bridge/netfilter/nft_reject_bridge.c | 6 + net/ceph/osd_client.c | 4 +- net/core/dev.c | 20 ++- net/dsa/slave.c | 1 + net/dsa/tag_mtk.c | 15 +++ net/ethtool/netlink.c | 4 +- net/ethtool/strset.c | 1 - net/ipv4/esp4_offload.c | 4 +- net/ipv4/fib_frontend.c | 22 +-- net/ipv4/inet_connection_sock.c | 43 +++--- net/ipv4/ip_vti.c | 23 +++- net/ipv4/ipip.c | 2 +- net/ipv4/ipmr.c | 2 +- net/ipv4/netfilter/nf_nat_pptp.c | 7 +- net/ipv4/nexthop.c | 105 +++++++++------ net/ipv4/route.c | 14 +- net/ipv6/esp6_offload.c | 13 +- net/ipv6/ip6_fib.c | 2 +- net/ipv6/ip6mr.c | 2 +- net/mac80211/mesh_hwmp.c | 7 + net/netfilter/ipset/ip_set_list_set.c | 2 +- net/netfilter/nf_conntrack_core.c | 80 ++++++++++- net/netfilter/nf_conntrack_pptp.c | 62 +++++---- net/netfilter/nfnetlink_cthelper.c | 3 +- net/qrtr/qrtr.c | 2 +- net/sctp/sm_sideeffect.c | 14 +- net/sctp/sm_statefuns.c | 9 +- net/tipc/udp_media.c | 6 +- net/tls/tls_sw.c | 50 +++++-- net/wireless/core.c | 2 +- net/xdp/xdp_umem.c | 8 +- net/xfrm/espintcp.c | 2 + net/xfrm/xfrm_device.c | 8 +- net/xfrm/xfrm_input.c | 2 +- net/xfrm/xfrm_interface.c | 21 +++ net/xfrm/xfrm_output.c | 15 ++- net/xfrm/xfrm_policy.c | 7 +- samples/bpf/lwt_len_hist_user.c | 2 - security/commoncap.c | 1 + sound/core/hwdep.c | 4 +- sound/pci/hda/patch_realtek.c | 39 ++++-- sound/usb/mixer.c | 8 ++ sound/usb/mixer_maps.c | 24 ++++ sound/usb/quirks-table.h | 26 ++++ tools/testing/selftests/dmabuf-heaps/dmabuf-heap.c | 1 + 213 files changed, 1810 insertions(+), 1017 deletions(-)

4 years, 7 months

4
4
0 0

[PATCH 4.14 00/76] 4.14.183-rc2 review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 4.14.183 release. There are 76 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Thu, 04 Jun 2020 10:16:52 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.14.183-r… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.14.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 4.14.183-rc2 Benjamin Block <bblock(a)linux.ibm.com> scsi: zfcp: fix request object use-after-free in send path causing wrong traces Thomas Gleixner <tglx(a)linutronix.de> genirq/generic_pending: Do not lose pending affinity update Salil Mehta <salil.mehta(a)huawei.com> net: hns: Fixes the missing put_device in positive leg for roce reset Colin Ian King <colin.king(a)canonical.com> net: hns: fix unsigned comparison to less than zero Sean Christopherson <sean.j.christopherson(a)intel.com> KVM: VMX: check for existence of secondary exec controls before accessing David Howells <dhowells(a)redhat.com> rxrpc: Fix transport sockopts to get IPv4 errors on an IPv6 socket Guoqing Jiang <gqjiang(a)suse.com> sc16is7xx: move label 'err_spi' to correct section Liviu Dudau <liviu(a)dudau.co.uk> mm/vmalloc.c: don't dereference possible NULL pointer in __vunmap() Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build Qiushi Wu <wu000273(a)umn.edu> bonding: Fix reference count leak in bond_sysfs_slave_add. Qiushi Wu <wu000273(a)umn.edu> qlcnic: fix missing release in qlcnic_83xx_interrupt_test. Xin Long <lucien.xin(a)gmail.com> esp6: get the right proto for transport mode in esp6_gso_encap Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nfnetlink_cthelper: unbreak userspace helper support Phil Sutter <phil(a)nwl.cc> netfilter: ipset: Fix subcounter update skip Michael Braun <michael-dev(a)fami-braun.de> netfilter: nft_reject_bridge: enable reject with bridge vlan Xin Long <lucien.xin(a)gmail.com> ip_vti: receive ipip packet by calling ip_tunnel_rcv Jeremy Sowden <jeremy(a)azazel.net> vti4: eliminated some duplicate code. Antony Antony <antony(a)phenome.org> xfrm: fix error in comment Xin Long <lucien.xin(a)gmail.com> xfrm: fix a NULL-ptr deref in xfrm_local_error Xin Long <lucien.xin(a)gmail.com> xfrm: fix a warning in xfrm_policy_insert_list Xin Long <lucien.xin(a)gmail.com> xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output Xin Long <lucien.xin(a)gmail.com> xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input Al Viro <viro(a)zeniv.linux.org.uk> copy_xstate_to_kernel(): don't leave parts of destination uninitialized Alexander Dahl <post(a)lespocky.de> x86/dma: Fix max PFN arithmetic overflow on 32 bit systems Linus Lüssing <ll(a)simonwunderlich.de> mac80211: mesh: fix discovery timer re-arming issue / crash Helge Deller <deller(a)gmx.de> parisc: Fix kernel panic in mem_init() Qiushi Wu <wu000273(a)umn.edu> iommu: Fix reference count leak in iommu_group_alloc. Arnd Bergmann <arnd(a)arndb.de> include/asm-generic/topology.h: guard cpumask_of_node() macro argument Alexander Potapenko <glider(a)google.com> fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() Konstantin Khlebnikov <khlebnikov(a)yandex-team.ru> mm: remove VM_BUG_ON(PageSlab()) from page_mapcount() Jerry Lee <leisurelysw24(a)gmail.com> libceph: ignore pool overlay and cache logic on redirects Kailang Yang <kailang(a)realtek.com> ALSA: hda/realtek - Add new codec supported for ALC287 Eric W. Biederman <ebiederm(a)xmission.com> exec: Always set cap_ambient in cap_bprm_set_creds Chris Chiu <chiu(a)endlessm.com> ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC Changming Liu <liu.changm(a)northeastern.edu> ALSA: hwdep: fix a left shifting 1 by 31 UB bug Qiushi Wu <wu000273(a)umn.edu> RDMA/pvrdma: Fix missing pci disable in pvrdma_pci_probe() Peng Hao <richard.peng(a)oppo.com> mmc: block: Fix use-after-free issue for rpmb Vincent Stehlé <vincent.stehle(a)laposte.net> ARM: dts: bcm2835-rpi-zero-w: Fix led polarity Robert Beckett <bob.beckett(a)collabora.com> ARM: dts/imx6q-bx50v3: Set display interface clock parents Sebastian Reichel <sre(a)kernel.org> ARM: dts: imx6q-bx50v3: Add internal switch Kaike Wan <kaike.wan(a)intel.com> IB/qib: Call kobject_put() when kobject_init_and_add() fails Takashi Iwai <tiwai(a)suse.de> gpio: exar: Fix bad handling for ida_simple_get error path Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: fix DACR mismatch with nested exceptions Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: integrate uaccess_save and uaccess_restore Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: consolidate uaccess asm to asm/uaccess-asm.h Stefan Agner <stefan(a)agner.ch> ARM: 8843/1: use unified assembler in headers Wei Yongjun <weiyongjun1(a)huawei.com> Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() Evan Green <evgreen(a)chromium.org> Input: synaptics-rmi4 - really fix attn_data use-after-free Kevin Locke <kevin(a)kevinlocke.name> Input: i8042 - add ThinkPad S230u to i8042 reset list Christophe JAILLET <christophe.jaillet(a)wanadoo.fr> Input: dlink-dir685-touchkeys - fix a typo in driver name Łukasz Patron <priv.luk(a)gmail.com> Input: xpad - add custom init packet for Xbox One S controllers Brendan Shanks <bshanks(a)codeweavers.com> Input: evdev - call input_flush_device() on release(), not flush() James Hilliard <james.hilliard1(a)gmail.com> Input: usbtouchscreen - add support for BonXeon TP Matteo Croce <mcroce(a)redhat.com> samples: bpf: Fix build error Steve French <stfrench(a)microsoft.com> cifs: Fix null pointer check in cifs_read Arnd Bergmann <arnd(a)arndb.de> net: freescale: select CONFIG_FIXED_PHY where needed Masahiro Yamada <masahiroy(a)kernel.org> usb: gadget: legacy: fix redundant initialization warnings Lei Xue <carmark.dlut(a)gmail.com> cachefiles: Fix race between read_waiter and read_copier involving op->to_do Bob Peterson <rpeterso(a)redhat.com> gfs2: move privileged user check to gfs2_quota_lock_check Chuhong Yuan <hslester96(a)gmail.com> net: microchip: encx24j600: add missed kthread_stop Stephen Warren <swarren(a)nvidia.com> gpio: tegra: mask GPIO IRQs during IRQ shutdown Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix pinctrl sub nodename for spi in rk322x.dtsi Johan Jonker <jbx6244(a)gmail.com> arm64: dts: rockchip: swap interrupts interrupt-names rk3399 gpu node Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix phy nodename for rk3228-evb Qiushi Wu <wu000273(a)umn.edu> net/mlx4_core: fix a memory leak bug. Qiushi Wu <wu000273(a)umn.edu> net: sun: fix missing release regions in cas_init_one(). Manivannan Sadhasivam <manivannan.sadhasivam(a)linaro.org> net: qrtr: Fix passing invalid reference to qrtr_local_enqueue() Moshe Shemesh <moshe(a)mellanox.com> net/mlx5e: Update netdev txq on completions during closure Jere Leppänen <jere.leppanen(a)nokia.com> sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed Marc Payne <marc.payne(a)mdpsys.co.uk> r8152: support additional Microsoft Surface Ethernet Adapter variant Roman Mashak <mrv(a)mojatatu.com> net sched: fix reporting the first-time use timestamp Yuqi Jin <jinyuqi(a)huawei.com> net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" Moshe Shemesh <moshe(a)mellanox.com> net/mlx5: Add command entry handling completion Vadim Fedorenko <vfedorenko(a)novek.ru> net: ipip: fix wrong address family in init error path Eric Dumazet <edumazet(a)google.com> ax25: fix setsockopt(SO_BINDTODEVICE) ------------- Diffstat: Makefile | 4 +- arch/arm/boot/dts/bcm2835-rpi-zero-w.dts | 2 +- arch/arm/boot/dts/imx6q-b450v3.dts | 7 -- arch/arm/boot/dts/imx6q-b650v3.dts | 7 -- arch/arm/boot/dts/imx6q-b850v3.dts | 11 -- arch/arm/boot/dts/imx6q-bx50v3.dtsi | 77 ++++++++++++++ arch/arm/boot/dts/rk3228-evb.dts | 2 +- arch/arm/boot/dts/rk322x.dtsi | 4 +- arch/arm/include/asm/assembler.h | 83 +-------------- arch/arm/include/asm/uaccess-asm.h | 117 +++++++++++++++++++++ arch/arm/include/asm/vfpmacros.h | 8 +- arch/arm/kernel/entry-armv.S | 11 +- arch/arm/kernel/entry-header.S | 9 +- arch/arm/lib/bitops.h | 8 +- arch/arm64/boot/dts/rockchip/rk3399.dtsi | 8 +- arch/parisc/mm/init.c | 2 +- arch/x86/include/asm/dma.h | 2 +- arch/x86/kernel/fpu/xstate.c | 86 ++++++++------- arch/x86/kvm/vmx.c | 7 +- drivers/gpio/gpio-exar.c | 7 +- drivers/gpio/gpio-tegra.c | 1 + drivers/infiniband/hw/qib/qib_sysfs.c | 9 +- drivers/infiniband/hw/vmw_pvrdma/pvrdma_main.c | 2 +- drivers/input/evdev.c | 19 +--- drivers/input/joystick/xpad.c | 12 +++ drivers/input/keyboard/dlink-dir685-touchkeys.c | 2 +- drivers/input/rmi4/rmi_driver.c | 5 +- drivers/input/serio/i8042-x86ia64io.h | 7 ++ drivers/input/touchscreen/usbtouchscreen.c | 1 + drivers/iommu/iommu.c | 2 +- drivers/mmc/core/block.c | 2 +- drivers/net/bonding/bond_sysfs_slave.c | 4 +- drivers/net/ethernet/freescale/Kconfig | 2 + drivers/net/ethernet/freescale/dpaa/Kconfig | 1 + drivers/net/ethernet/hisilicon/hns/hns_dsaf_main.c | 5 +- drivers/net/ethernet/mellanox/mlx4/fw.c | 2 +- drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 14 +++ drivers/net/ethernet/mellanox/mlx5/core/en_tx.c | 6 +- drivers/net/ethernet/microchip/encx24j600.c | 5 +- .../net/ethernet/qlogic/qlcnic/qlcnic_83xx_hw.c | 4 +- drivers/net/ethernet/sun/cassini.c | 3 +- drivers/net/usb/cdc_ether.c | 11 +- drivers/net/usb/r8152.c | 1 + drivers/s390/scsi/zfcp_fsf.c | 10 +- drivers/tty/serial/sc16is7xx.c | 2 + drivers/usb/gadget/legacy/inode.c | 3 +- fs/binfmt_elf.c | 2 +- fs/cachefiles/rdwr.c | 2 +- fs/cifs/file.c | 2 +- fs/gfs2/quota.c | 3 +- fs/gfs2/quota.h | 3 +- include/asm-generic/topology.h | 2 +- include/linux/mlx5/driver.h | 1 + include/linux/mm.h | 15 ++- include/linux/netfilter/nf_conntrack_pptp.h | 2 +- include/net/act_api.h | 3 +- include/uapi/linux/xfrm.h | 2 +- kernel/irq/migration.c | 26 +++-- mm/vmalloc.c | 2 +- net/ax25/af_ax25.c | 6 +- net/bridge/netfilter/nft_reject_bridge.c | 6 ++ net/ceph/osd_client.c | 4 +- net/ipv4/ip_vti.c | 75 +++++++------ net/ipv4/ipip.c | 2 +- net/ipv4/netfilter/nf_nat_pptp.c | 7 +- net/ipv4/route.c | 14 ++- net/ipv6/esp6_offload.c | 9 +- net/mac80211/mesh_hwmp.c | 7 ++ net/netfilter/ipset/ip_set_list_set.c | 2 +- net/netfilter/nf_conntrack_pptp.c | 62 ++++++----- net/netfilter/nfnetlink_cthelper.c | 3 +- net/qrtr/qrtr.c | 2 +- net/rxrpc/local_object.c | 23 ++-- net/sctp/sm_statefuns.c | 9 +- net/xfrm/xfrm_input.c | 2 +- net/xfrm/xfrm_output.c | 15 +-- net/xfrm/xfrm_policy.c | 7 +- samples/bpf/lwt_len_hist_user.c | 2 - security/commoncap.c | 1 + sound/core/hwdep.c | 4 +- sound/pci/hda/patch_realtek.c | 3 + sound/usb/mixer.c | 8 ++ 82 files changed, 581 insertions(+), 354 deletions(-)

4 years, 7 months

4
4
0 0

Re: [PATCH] iommu/dma: limit iova free size to unmmaped iova

by guptap＠codeaurora.org

On 2020-05-22 01:46, Robin Murphy wrote: > On 2020-05-21 12:30, Prakash Gupta wrote: >> Limit the iova size while freeing based on unmapped size. In absence >> of >> this even with unmap failure, invalid iova is pushed to iova rcache >> and >> subsequently can cause panic while rcache magazine is freed. > > Can you elaborate on that panic? > We have seen couple of stability issues around this. Below is one such example: kernel BUG at kernel/msm-4.19/drivers/iommu/iova.c:904! iova_magazine_free_pfns iova_rcache_insert free_iova_fast __iommu_unmap_page iommu_dma_unmap_page It turned out an iova pfn 0 got into iova_rcache. One possibility I see is where client unmap with invalid dma_addr. The unmap call will fail and warn on and still try to free iova. This will cause invalid pfn to be inserted into rcache. As and when the magazine with invalid pfn will be freed private_find_iova() will return NULL for invalid iova and meet bug condition. >> Signed-off-by: Prakash Gupta <guptap(a)codeaurora.org> >> >> :100644 100644 4959f5df21bd 098f7d377e04 M drivers/iommu/dma-iommu.c >> >> diff --git a/drivers/iommu/dma-iommu.c b/drivers/iommu/dma-iommu.c >> index 4959f5df21bd..098f7d377e04 100644 >> --- a/drivers/iommu/dma-iommu.c >> +++ b/drivers/iommu/dma-iommu.c >> @@ -472,7 +472,8 @@ static void __iommu_dma_unmap(struct device *dev, >> dma_addr_t dma_addr, >> if (!cookie->fq_domain) >> iommu_tlb_sync(domain, &iotlb_gather); >> - iommu_dma_free_iova(cookie, dma_addr, size); >> + if (unmapped) >> + iommu_dma_free_iova(cookie, dma_addr, unmapped); > > Frankly, if any part of the unmap fails then things have gone > catastrophically wrong already, but either way this isn't right. The > IOVA API doesn't support partial freeing - an IOVA *must* be freed > with its original size, or not freed at all, otherwise it will corrupt > the state of the rcaches and risk a cascade of further misbehaviour > for future callers. > I agree, we shouldn't be freeing the partial iova. Instead just making sure if unmap was successful should be sufficient before freeing iova. So change can instead be something like this: - iommu_dma_free_iova(cookie, dma_addr, size); + if (unmapped) + iommu_dma_free_iova(cookie, dma_addr, size); > TBH my gut feeling here is that you're really just trying to treat a > symptom of another bug elsewhere, namely some driver calling > dma_unmap_* or dma_free_* with the wrong address or size in the first > place. > This condition would arise only if driver calling dma_unmap/free_* with 0 iova_pfn. This will be flagged with a warning during unmap but will trigger panic later on while doing unrelated dma_map/unmap_*. If unmapped has already failed for invalid iova, there is no reason we should consider this as valid iova and free. This part should be fixed. On 2020-05-22 00:19, Andrew Morton wrote: > I think we need a cc:stable here? > Added now. Thanks, Prakash

4 years, 7 months

2
5
0 0

[PATCH 5.4 000/139] 5.4.44-rc2 review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 5.4.44 release. There are 139 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Thu, 04 Jun 2020 10:16:52 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.4.44-rc2… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.4.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 5.4.44-rc2 Changbin Du <changbin.du(a)intel.com> perf: Make perf able to build with latest libbfd Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build Nathan Chancellor <natechancellor(a)gmail.com> netfilter: conntrack: Pass value of ctinfo to __nf_conntrack_update Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: conntrack: comparison of unsigned in cthelper confirmation Qiushi Wu <wu000273(a)umn.edu> bonding: Fix reference count leak in bond_sysfs_slave_add. Vladimir Oltean <vladimir.oltean(a)nxp.com> net: dsa: declare lockless TX feature for slave ports David Ahern <dsahern(a)gmail.com> ipv4: nexthop version of fib_info_nh_uses_dev David Ahern <dsahern(a)gmail.com> nexthop: Expand nexthop_is_multipath in a few places Nikolay Aleksandrov <nikolay(a)cumulusnetworks.com> nexthops: don't modify published nexthop groups David Ahern <dsahern(a)gmail.com> nexthops: Move code from remove_nexthop_from_groups to remove_nh_grp_entry Eric Dumazet <edumazet(a)google.com> crypto: chelsio/chtls: properly set tp->lsndtime Qiushi Wu <wu000273(a)umn.edu> qlcnic: fix missing release in qlcnic_83xx_interrupt_test. Björn Töpel <bjorn.topel(a)intel.com> xsk: Add overflow check for u64 division, stored into u32 Pradeep Kumar Chitrapu <pradeepc(a)codeaurora.org> ieee80211: Fix incorrect mask for default PE duration Michael Chan <michael.chan(a)broadcom.com> bnxt_en: Fix accumulation of bp->net_stats_prev. Xin Long <lucien.xin(a)gmail.com> esp6: get the right proto for transport mode in esp6_gso_encap Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nfnetlink_cthelper: unbreak userspace helper support Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: conntrack: make conntrack userspace helpers work again Phil Sutter <phil(a)nwl.cc> netfilter: ipset: Fix subcounter update skip Michael Braun <michael-dev(a)fami-braun.de> netfilter: nft_reject_bridge: enable reject with bridge vlan Xin Long <lucien.xin(a)gmail.com> ip_vti: receive ipip packet by calling ip_tunnel_rcv Antony Antony <antony(a)phenome.org> xfrm: fix error in comment Xin Long <lucien.xin(a)gmail.com> xfrm: fix a NULL-ptr deref in xfrm_local_error Xin Long <lucien.xin(a)gmail.com> xfrm: fix a warning in xfrm_policy_insert_list Nicolas Dichtel <nicolas.dichtel(a)6wind.com> xfrm interface: fix oops when deleting a x-netns interface Xin Long <lucien.xin(a)gmail.com> xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output Xin Long <lucien.xin(a)gmail.com> xfrm: remove the xfrm_state_put call becofe going to out_reset Xin Long <lucien.xin(a)gmail.com> xfrm: do pskb_pull properly in __xfrm_transport_prep Xin Long <lucien.xin(a)gmail.com> xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input Al Viro <viro(a)zeniv.linux.org.uk> copy_xstate_to_kernel(): don't leave parts of destination uninitialized Alexander Dahl <post(a)lespocky.de> x86/dma: Fix max PFN arithmetic overflow on 32 bit systems Linus Lüssing <ll(a)simonwunderlich.de> mac80211: mesh: fix discovery timer re-arming issue / crash Andy Lutomirski <luto(a)kernel.org> x86/syscalls: Revert "x86/syscalls: Make __X32_SYSCALL_BIT be unsigned long" Johannes Berg <johannes.berg(a)intel.com> cfg80211: fix debugfs rename crash Helge Deller <deller(a)gmx.de> parisc: Fix kernel panic in mem_init() Qiushi Wu <wu000273(a)umn.edu> iommu: Fix reference count leak in iommu_group_alloc. Linus Walleij <linus.walleij(a)linaro.org> gpio: fix locking open drain IRQ lines Jens Axboe <axboe(a)kernel.dk> Revert "block: end bio with BLK_STS_AGAIN in case of non-mq devs and REQ_NOWAIT" Arnd Bergmann <arnd(a)arndb.de> include/asm-generic/topology.h: guard cpumask_of_node() macro argument Alexander Potapenko <glider(a)google.com> fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() Konstantin Khlebnikov <khlebnikov(a)yandex-team.ru> mm: remove VM_BUG_ON(PageSlab()) from page_mapcount() Hugh Dickins <hughd(a)google.com> mm,thp: stop leaking unreleased file pages Valentine Fatiev <valentinef(a)mellanox.com> IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode Simon Ser <contact(a)emersion.fr> drm/amd/display: drop cursor position check in atomic test Jason Gunthorpe <jgg(a)ziepe.ca> RDMA/core: Fix double destruction of uobject Jeff Layton <jlayton(a)kernel.org> ceph: flush release queue when handling caps for unknown inode Jerry Lee <leisurelysw24(a)gmail.com> libceph: ignore pool overlay and cache logic on redirects Kailang Yang <kailang(a)realtek.com> ALSA: hda/realtek - Add new codec supported for ALC287 Takashi Iwai <tiwai(a)suse.de> ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio Vinod Koul <vkoul(a)kernel.org> clk: qcom: gcc: Fix parent for gpll0_out_even Eric W. Biederman <ebiederm(a)xmission.com> exec: Always set cap_ambient in cap_bprm_set_creds Chris Chiu <chiu(a)endlessm.com> ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC Takashi Iwai <tiwai(a)suse.de> ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround Changming Liu <liu.changm(a)northeastern.edu> ALSA: hwdep: fix a left shifting 1 by 31 UB bug Qiushi Wu <wu000273(a)umn.edu> RDMA/pvrdma: Fix missing pci disable in pvrdma_pci_probe() Tiezhu Yang <yangtiezhu(a)loongson.cn> gpio: bcm-kona: Fix return value of bcm_kona_gpio_probe() Tiezhu Yang <yangtiezhu(a)loongson.cn> gpio: pxa: Fix return value of pxa_gpio_probe() Peng Hao <richard.peng(a)oppo.com> mmc: block: Fix use-after-free issue for rpmb Hamish Martin <hamish.martin(a)alliedtelesis.co.nz> ARM: dts: bcm: HR2: Fix PPI interrupt types Vincent Stehlé <vincent.stehle(a)laposte.net> ARM: dts: bcm2835-rpi-zero-w: Fix led polarity Robert Beckett <bob.beckett(a)collabora.com> ARM: dts/imx6q-bx50v3: Set display interface clock parents Kaike Wan <kaike.wan(a)intel.com> IB/qib: Call kobject_put() when kobject_init_and_add() fails Paul Cercueil <paul(a)crapouillou.net> gpu/drm: Ingenic: Fix opaque pointer casted to wrong type Dennis YC Hsieh <dennis-yc.hsieh(a)mediatek.com> soc: mediatek: cmdq: return send msg error code Hsin-Yi Wang <hsinyi(a)chromium.org> arm64: dts: mt8173: fix vcodec-enc clock Takashi Iwai <tiwai(a)suse.de> gpio: exar: Fix bad handling for ida_simple_get error path Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: fix DACR mismatch with nested exceptions Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: integrate uaccess_save and uaccess_restore Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: consolidate uaccess asm to asm/uaccess-asm.h Łukasz Stelmach <l.stelmach(a)samsung.com> ARM: 8970/1: decompressor: increase tag size Wei Yongjun <weiyongjun1(a)huawei.com> Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() Evan Green <evgreen(a)chromium.org> Input: synaptics-rmi4 - really fix attn_data use-after-free Kevin Locke <kevin(a)kevinlocke.name> Input: i8042 - add ThinkPad S230u to i8042 reset list Christophe JAILLET <christophe.jaillet(a)wanadoo.fr> Input: dlink-dir685-touchkeys - fix a typo in driver name Łukasz Patron <priv.luk(a)gmail.com> Input: xpad - add custom init packet for Xbox One S controllers Brendan Shanks <bshanks(a)codeweavers.com> Input: evdev - call input_flush_device() on release(), not flush() James Hilliard <james.hilliard1(a)gmail.com> Input: usbtouchscreen - add support for BonXeon TP Madhuparna Bhowmik <madhuparnabhowmik10(a)gmail.com> drivers: net: hamradio: Fix suspicious RCU usage warning in bpqether.c Matteo Croce <mcroce(a)redhat.com> samples: bpf: Fix build error Al Viro <viro(a)zeniv.linux.org.uk> csky: Fixup raw_copy_from_user() Steve French <stfrench(a)microsoft.com> cifs: Fix null pointer check in cifs_read Amy Shih <amy.shih(a)advantech.com.tw> hwmon: (nct7904) Fix incorrect range of temperature limit registers Liu Yibin <jiulong(a)linux.alibaba.com> csky: Fixup remove duplicate irq_disable Mao Han <han_mao(a)linux.alibaba.com> csky: Fixup perf callchain unwind Liu Yibin <jiulong(a)linux.alibaba.com> csky: Fixup msa highest 3 bits mask Tero Kristo <t-kristo(a)ti.com> clk: ti: am33xx: fix RTC clock parent Kefeng Wang <wangkefeng.wang(a)huawei.com> riscv: stacktrace: Fix undefined reference to `walk_stackframe' Denis V. Lunev <den(a)openvz.org> IB/i40iw: Remove bogus call to netdev_master_upper_dev_get() Arnd Bergmann <arnd(a)arndb.de> net: freescale: select CONFIG_FIXED_PHY where needed Masahiro Yamada <masahiroy(a)kernel.org> usb: gadget: legacy: fix redundant initialization warnings Christophe JAILLET <christophe.jaillet(a)wanadoo.fr> usb: phy: twl6030-usb: Fix a resource leak in an error handling path in 'twl6030_usb_probe()' Andy Shevchenko <andriy.shevchenko(a)linux.intel.com> usb: dwc3: pci: Enable extcon driver for Intel Merrifield Lei Xue <carmark.dlut(a)gmail.com> cachefiles: Fix race between read_waiter and read_copier involving op->to_do Felix Kuehling <Felix.Kuehling(a)amd.com> drm/amdgpu: Use GEM obj reference for KFD BOs Evan Quan <evan.quan(a)amd.com> drm/amd/powerplay: perform PG ungate prior to CG ungate Evan Quan <evan.quan(a)amd.com> drm/amdgpu: drop unnecessary cancel_delayed_work_sync on PG ungate Andreas Gruenbacher <agruenba(a)redhat.com> gfs2: Grab glock reference sooner in gfs2_add_revoke Bob Peterson <rpeterso(a)redhat.com> gfs2: move privileged user check to gfs2_quota_lock_check Chuhong Yuan <hslester96(a)gmail.com> net: microchip: encx24j600: add missed kthread_stop Andrew Oakley <andrew(a)adoakley.name> ALSA: usb-audio: add mapping for ASRock TRX40 Creator Stephen Warren <swarren(a)nvidia.com> gpio: tegra: mask GPIO IRQs during IRQ shutdown Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix pinctrl sub nodename for spi in rk322x.dtsi Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: swap clock-names of gpu nodes Johan Jonker <jbx6244(a)gmail.com> arm64: dts: rockchip: swap interrupts interrupt-names rk3399 gpu node Johan Jonker <jbx6244(a)gmail.com> arm64: dts: rockchip: fix status for &gmac2phy in rk3328-evb.dts Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix phy nodename for rk3229-xms6 Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix phy nodename for rk3228-evb Jiri Pirko <jiri(a)mellanox.com> mlxsw: spectrum: Fix use-after-free of split/unsplit/type_set in case reload fails Qiushi Wu <wu000273(a)umn.edu> net/mlx4_core: fix a memory leak bug. Qiushi Wu <wu000273(a)umn.edu> net: sun: fix missing release regions in cas_init_one(). Vadim Fedorenko <vfedorenko(a)novek.ru> net/tls: free record only on encryption error Vadim Fedorenko <vfedorenko(a)novek.ru> net/tls: fix encryption error checking Roi Dayan <roid(a)mellanox.com> net/mlx5: Annotate mutex destroy for root ns Shay Drory <shayd(a)mellanox.com> net/mlx5: Fix error flow in case of function_setup failure Moshe Shemesh <moshe(a)mellanox.com> net/mlx5e: Update netdev txq on completions during closure Moshe Shemesh <moshe(a)mellanox.com> net/mlx5: Fix memory leak in mlx5_events_init Roi Dayan <roid(a)mellanox.com> net/mlx5e: Fix inner tirs handling Tariq Toukan <tariqt(a)mellanox.com> net/mlx5e: kTLS, Destroy key object after destroying the TIS Eric Dumazet <edumazet(a)google.com> tipc: block BH before using dst_cache Jere Leppänen <jere.leppanen(a)nokia.com> sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed Neil Horman <nhorman(a)tuxdriver.com> sctp: Don't add the shutdown timer if its already been added Marc Payne <marc.payne(a)mdpsys.co.uk> r8152: support additional Microsoft Surface Ethernet Adapter variant David Ahern <dsahern(a)gmail.com> nexthop: Fix attribute checking for groups Vinay Kumar Yadav <vinay.yadav(a)chelsio.com> net/tls: fix race condition causing kernel panic Roman Mashak <mrv(a)mojatatu.com> net sched: fix reporting the first-time use timestamp Yuqi Jin <jinyuqi(a)huawei.com> net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" Manivannan Sadhasivam <manivannan.sadhasivam(a)linaro.org> net: qrtr: Fix passing invalid reference to qrtr_local_enqueue() Stephen Worley <sworley(a)cumulusnetworks.com> net: nlmsg_cancel() if put fails for nhmsg Russell King <rmk+kernel(a)armlinux.org.uk> net: mvpp2: fix RX hashing for non-10G ports Moshe Shemesh <moshe(a)mellanox.com> net/mlx5: Add command entry handling completion Vadim Fedorenko <vfedorenko(a)novek.ru> net: ipip: fix wrong address family in init error path Martin KaFai Lau <kafai(a)fb.com> net: inet_csk: Fix so_reuseport bind-address cache in tb->fast* Boris Sukholitko <boris.sukholitko(a)broadcom.com> __netif_receive_skb_core: pass skb by reference Grygorii Strashko <grygorii.strashko(a)ti.com> net: ethernet: ti: cpsw: fix ASSERT_RTNL() warning during suspend DENG Qingfang <dqfext(a)gmail.com> net: dsa: mt7530: fix roaming from DSA user ports Sabrina Dubroca <sd(a)queasysnail.net> net: don't return invalid table id error when we fall back to PF_UNSPEC Vladimir Oltean <vladimir.oltean(a)nxp.com> dpaa_eth: fix usage as DSA master, try 3 Eric Dumazet <edumazet(a)google.com> ax25: fix setsockopt(SO_BINDTODEVICE) ------------- Diffstat: Makefile | 4 +- arch/arm/boot/compressed/vmlinux.lds.S | 2 +- arch/arm/boot/dts/bcm-hr2.dtsi | 6 +- arch/arm/boot/dts/bcm2835-rpi-zero-w.dts | 2 +- arch/arm/boot/dts/imx6q-b450v3.dts | 7 -- arch/arm/boot/dts/imx6q-b650v3.dts | 7 -- arch/arm/boot/dts/imx6q-b850v3.dts | 11 -- arch/arm/boot/dts/imx6q-bx50v3.dtsi | 15 +++ arch/arm/boot/dts/rk3036.dtsi | 2 +- arch/arm/boot/dts/rk3228-evb.dts | 2 +- arch/arm/boot/dts/rk3229-xms6.dts | 2 +- arch/arm/boot/dts/rk322x.dtsi | 6 +- arch/arm/boot/dts/rk3xxx.dtsi | 2 +- arch/arm/include/asm/assembler.h | 75 +------------ arch/arm/include/asm/uaccess-asm.h | 117 +++++++++++++++++++++ arch/arm/kernel/entry-armv.S | 11 +- arch/arm/kernel/entry-header.S | 9 +- arch/arm64/boot/dts/mediatek/mt8173.dtsi | 4 +- arch/arm64/boot/dts/rockchip/rk3328-evb.dts | 2 +- arch/arm64/boot/dts/rockchip/rk3399.dtsi | 8 +- arch/csky/abiv1/inc/abi/entry.h | 4 +- arch/csky/abiv2/inc/abi/entry.h | 4 +- arch/csky/include/asm/uaccess.h | 49 +++++---- arch/csky/kernel/entry.S | 2 - arch/csky/kernel/perf_callchain.c | 9 +- arch/csky/lib/usercopy.c | 8 +- arch/parisc/mm/init.c | 2 +- arch/riscv/kernel/stacktrace.c | 2 +- arch/x86/include/asm/dma.h | 2 +- arch/x86/include/uapi/asm/unistd.h | 11 +- arch/x86/kernel/fpu/xstate.c | 86 ++++++++------- block/blk-core.c | 11 +- drivers/clk/qcom/gcc-sm8150.c | 3 +- drivers/clk/ti/clk-33xx.c | 2 +- drivers/crypto/chelsio/chtls/chtls_io.c | 2 +- drivers/gpio/gpio-bcm-kona.c | 2 +- drivers/gpio/gpio-exar.c | 7 +- drivers/gpio/gpio-pxa.c | 4 +- drivers/gpio/gpio-tegra.c | 1 + drivers/gpio/gpiolib.c | 11 +- drivers/gpu/drm/amd/amdgpu/amdgpu_amdkfd_gpuvm.c | 5 +- drivers/gpu/drm/amd/amdgpu/gfx_v10_0.c | 6 +- drivers/gpu/drm/amd/amdgpu/gfx_v9_0.c | 12 +-- drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 7 -- drivers/gpu/drm/amd/powerplay/amd_powerplay.c | 6 +- drivers/gpu/drm/amd/powerplay/amdgpu_smu.c | 6 +- drivers/gpu/drm/ingenic/ingenic-drm.c | 2 +- drivers/hwmon/nct7904.c | 4 +- drivers/infiniband/core/rdma_core.c | 20 ++-- drivers/infiniband/hw/i40iw/i40iw_cm.c | 8 -- drivers/infiniband/hw/qib/qib_sysfs.c | 9 +- drivers/infiniband/hw/vmw_pvrdma/pvrdma_main.c | 2 +- drivers/infiniband/ulp/ipoib/ipoib.h | 4 + drivers/infiniband/ulp/ipoib/ipoib_cm.c | 15 +-- drivers/infiniband/ulp/ipoib/ipoib_ib.c | 9 +- drivers/infiniband/ulp/ipoib/ipoib_main.c | 10 +- drivers/input/evdev.c | 19 +--- drivers/input/joystick/xpad.c | 12 +++ drivers/input/keyboard/dlink-dir685-touchkeys.c | 2 +- drivers/input/rmi4/rmi_driver.c | 5 +- drivers/input/serio/i8042-x86ia64io.h | 7 ++ drivers/input/touchscreen/usbtouchscreen.c | 1 + drivers/iommu/iommu.c | 2 +- drivers/mmc/core/block.c | 2 +- drivers/net/bonding/bond_sysfs_slave.c | 4 +- drivers/net/dsa/mt7530.c | 9 +- drivers/net/dsa/mt7530.h | 1 + drivers/net/ethernet/broadcom/bnxt/bnxt.c | 2 +- drivers/net/ethernet/freescale/Kconfig | 2 + drivers/net/ethernet/freescale/dpaa/Kconfig | 1 + drivers/net/ethernet/freescale/dpaa/dpaa_eth.c | 2 +- drivers/net/ethernet/marvell/mvpp2/mvpp2_cls.c | 2 +- drivers/net/ethernet/mellanox/mlx4/fw.c | 2 +- drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 14 +++ drivers/net/ethernet/mellanox/mlx5/core/en.h | 2 +- .../ethernet/mellanox/mlx5/core/en_accel/ktls.c | 2 +- drivers/net/ethernet/mellanox/mlx5/core/en_main.c | 12 ++- drivers/net/ethernet/mellanox/mlx5/core/en_rep.c | 4 +- drivers/net/ethernet/mellanox/mlx5/core/en_tx.c | 9 +- drivers/net/ethernet/mellanox/mlx5/core/events.c | 4 +- drivers/net/ethernet/mellanox/mlx5/core/fs_core.c | 6 ++ .../net/ethernet/mellanox/mlx5/core/ipoib/ipoib.c | 4 +- drivers/net/ethernet/mellanox/mlx5/core/main.c | 3 +- drivers/net/ethernet/mellanox/mlxsw/spectrum.c | 14 ++- drivers/net/ethernet/mellanox/mlxsw/switchx2.c | 8 ++ drivers/net/ethernet/microchip/encx24j600.c | 5 +- .../net/ethernet/qlogic/qlcnic/qlcnic_83xx_hw.c | 4 +- drivers/net/ethernet/sun/cassini.c | 3 +- drivers/net/ethernet/ti/cpsw.c | 4 + drivers/net/hamradio/bpqether.c | 3 +- drivers/net/usb/cdc_ether.c | 11 +- drivers/net/usb/r8152.c | 1 + drivers/soc/mediatek/mtk-cmdq-helper.c | 4 +- drivers/usb/dwc3/dwc3-pci.c | 1 + drivers/usb/gadget/legacy/inode.c | 3 +- drivers/usb/phy/phy-twl6030-usb.c | 12 ++- fs/binfmt_elf.c | 2 +- fs/cachefiles/rdwr.c | 2 +- fs/ceph/caps.c | 2 +- fs/cifs/file.c | 2 +- fs/gfs2/log.c | 6 +- fs/gfs2/quota.c | 3 +- fs/gfs2/quota.h | 3 +- include/asm-generic/topology.h | 2 +- include/linux/ieee80211.h | 2 +- include/linux/mlx5/driver.h | 1 + include/linux/mm.h | 15 ++- include/linux/netfilter/nf_conntrack_pptp.h | 2 +- include/net/act_api.h | 3 +- include/net/ip_fib.h | 11 +- include/net/nexthop.h | 67 +++++++++--- include/net/tls.h | 4 + include/rdma/uverbs_std_types.h | 2 +- include/uapi/linux/xfrm.h | 2 +- mm/khugepaged.c | 1 + net/ax25/af_ax25.c | 6 +- net/bridge/netfilter/nft_reject_bridge.c | 6 ++ net/ceph/osd_client.c | 4 +- net/core/dev.c | 20 +++- net/dsa/slave.c | 1 + net/dsa/tag_mtk.c | 15 +++ net/ipv4/esp4_offload.c | 4 +- net/ipv4/fib_frontend.c | 22 ++-- net/ipv4/inet_connection_sock.c | 43 ++++---- net/ipv4/ip_vti.c | 23 +++- net/ipv4/ipip.c | 2 +- net/ipv4/ipmr.c | 2 +- net/ipv4/netfilter/nf_nat_pptp.c | 7 +- net/ipv4/nexthop.c | 105 +++++++++++------- net/ipv4/route.c | 14 ++- net/ipv6/esp6_offload.c | 13 ++- net/ipv6/ip6_fib.c | 2 +- net/ipv6/ip6mr.c | 2 +- net/mac80211/mesh_hwmp.c | 7 ++ net/netfilter/ipset/ip_set_list_set.c | 2 +- net/netfilter/nf_conntrack_core.c | 80 ++++++++++++-- net/netfilter/nf_conntrack_pptp.c | 62 ++++++----- net/netfilter/nfnetlink_cthelper.c | 3 +- net/qrtr/qrtr.c | 2 +- net/sctp/sm_sideeffect.c | 14 ++- net/sctp/sm_statefuns.c | 9 +- net/tipc/udp_media.c | 6 +- net/tls/tls_sw.c | 50 ++++++--- net/wireless/core.c | 2 +- net/xdp/xdp_umem.c | 8 +- net/xfrm/xfrm_device.c | 8 +- net/xfrm/xfrm_input.c | 2 +- net/xfrm/xfrm_interface.c | 21 ++++ net/xfrm/xfrm_output.c | 15 +-- net/xfrm/xfrm_policy.c | 7 +- samples/bpf/lwt_len_hist_user.c | 2 - security/commoncap.c | 1 + sound/core/hwdep.c | 4 +- sound/pci/hda/patch_realtek.c | 39 +++++-- sound/usb/mixer.c | 8 ++ sound/usb/mixer_maps.c | 24 +++++ sound/usb/quirks-table.h | 26 +++++ tools/arch/x86/include/uapi/asm/unistd.h | 2 +- tools/perf/util/srcline.c | 16 ++- 159 files changed, 1100 insertions(+), 592 deletions(-)

4 years, 7 months

4
3
0 0

[PATCH 4.19 00/92] 4.19.126-rc2 review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 4.19.126 release. There are 92 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Thu, 04 Jun 2020 10:16:52 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.19.126-r… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.19.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 4.19.126-rc2 Liviu Dudau <liviu(a)dudau.co.uk> mm/vmalloc.c: don't dereference possible NULL pointer in __vunmap() Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build Qiushi Wu <wu000273(a)umn.edu> bonding: Fix reference count leak in bond_sysfs_slave_add. Eric Dumazet <edumazet(a)google.com> crypto: chelsio/chtls: properly set tp->lsndtime Qiushi Wu <wu000273(a)umn.edu> qlcnic: fix missing release in qlcnic_83xx_interrupt_test. Björn Töpel <bjorn.topel(a)intel.com> xsk: Add overflow check for u64 division, stored into u32 Michael Chan <michael.chan(a)broadcom.com> bnxt_en: Fix accumulation of bp->net_stats_prev. Xin Long <lucien.xin(a)gmail.com> esp6: get the right proto for transport mode in esp6_gso_encap Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nfnetlink_cthelper: unbreak userspace helper support Phil Sutter <phil(a)nwl.cc> netfilter: ipset: Fix subcounter update skip Michael Braun <michael-dev(a)fami-braun.de> netfilter: nft_reject_bridge: enable reject with bridge vlan Xin Long <lucien.xin(a)gmail.com> ip_vti: receive ipip packet by calling ip_tunnel_rcv Jeremy Sowden <jeremy(a)azazel.net> vti4: eliminated some duplicate code. Antony Antony <antony(a)phenome.org> xfrm: fix error in comment Xin Long <lucien.xin(a)gmail.com> xfrm: fix a NULL-ptr deref in xfrm_local_error Xin Long <lucien.xin(a)gmail.com> xfrm: fix a warning in xfrm_policy_insert_list Nicolas Dichtel <nicolas.dichtel(a)6wind.com> xfrm interface: fix oops when deleting a x-netns interface Xin Long <lucien.xin(a)gmail.com> xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output Xin Long <lucien.xin(a)gmail.com> xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input Al Viro <viro(a)zeniv.linux.org.uk> copy_xstate_to_kernel(): don't leave parts of destination uninitialized Alexander Dahl <post(a)lespocky.de> x86/dma: Fix max PFN arithmetic overflow on 32 bit systems Linus Lüssing <ll(a)simonwunderlich.de> mac80211: mesh: fix discovery timer re-arming issue / crash Jason Gunthorpe <jgg(a)ziepe.ca> RDMA/core: Fix double destruction of uobject Sarthak Garg <sartgarg(a)codeaurora.org> mmc: core: Fix recursive locking issue in CQE recovery path Helge Deller <deller(a)gmx.de> parisc: Fix kernel panic in mem_init() Qiushi Wu <wu000273(a)umn.edu> iommu: Fix reference count leak in iommu_group_alloc. Arnd Bergmann <arnd(a)arndb.de> include/asm-generic/topology.h: guard cpumask_of_node() macro argument Alexander Potapenko <glider(a)google.com> fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() Konstantin Khlebnikov <khlebnikov(a)yandex-team.ru> mm: remove VM_BUG_ON(PageSlab()) from page_mapcount() Valentine Fatiev <valentinef(a)mellanox.com> IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode Jerry Lee <leisurelysw24(a)gmail.com> libceph: ignore pool overlay and cache logic on redirects Kailang Yang <kailang(a)realtek.com> ALSA: hda/realtek - Add new codec supported for ALC287 Takashi Iwai <tiwai(a)suse.de> ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio Eric W. Biederman <ebiederm(a)xmission.com> exec: Always set cap_ambient in cap_bprm_set_creds Chris Chiu <chiu(a)endlessm.com> ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC Takashi Iwai <tiwai(a)suse.de> ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround Changming Liu <liu.changm(a)northeastern.edu> ALSA: hwdep: fix a left shifting 1 by 31 UB bug Qiushi Wu <wu000273(a)umn.edu> RDMA/pvrdma: Fix missing pci disable in pvrdma_pci_probe() Peng Hao <richard.peng(a)oppo.com> mmc: block: Fix use-after-free issue for rpmb Hamish Martin <hamish.martin(a)alliedtelesis.co.nz> ARM: dts: bcm: HR2: Fix PPI interrupt types Vincent Stehlé <vincent.stehle(a)laposte.net> ARM: dts: bcm2835-rpi-zero-w: Fix led polarity Robert Beckett <bob.beckett(a)collabora.com> ARM: dts/imx6q-bx50v3: Set display interface clock parents Kaike Wan <kaike.wan(a)intel.com> IB/qib: Call kobject_put() when kobject_init_and_add() fails Takashi Iwai <tiwai(a)suse.de> gpio: exar: Fix bad handling for ida_simple_get error path Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: fix DACR mismatch with nested exceptions Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: integrate uaccess_save and uaccess_restore Russell King <rmk+kernel(a)armlinux.org.uk> ARM: uaccess: consolidate uaccess asm to asm/uaccess-asm.h Stefan Agner <stefan(a)agner.ch> ARM: 8843/1: use unified assembler in headers Łukasz Stelmach <l.stelmach(a)samsung.com> ARM: 8970/1: decompressor: increase tag size Wei Yongjun <weiyongjun1(a)huawei.com> Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() Evan Green <evgreen(a)chromium.org> Input: synaptics-rmi4 - really fix attn_data use-after-free Kevin Locke <kevin(a)kevinlocke.name> Input: i8042 - add ThinkPad S230u to i8042 reset list Christophe JAILLET <christophe.jaillet(a)wanadoo.fr> Input: dlink-dir685-touchkeys - fix a typo in driver name Łukasz Patron <priv.luk(a)gmail.com> Input: xpad - add custom init packet for Xbox One S controllers Brendan Shanks <bshanks(a)codeweavers.com> Input: evdev - call input_flush_device() on release(), not flush() James Hilliard <james.hilliard1(a)gmail.com> Input: usbtouchscreen - add support for BonXeon TP Matteo Croce <mcroce(a)redhat.com> samples: bpf: Fix build error Steve French <stfrench(a)microsoft.com> cifs: Fix null pointer check in cifs_read Kefeng Wang <wangkefeng.wang(a)huawei.com> riscv: stacktrace: Fix undefined reference to `walk_stackframe' Denis V. Lunev <den(a)openvz.org> IB/i40iw: Remove bogus call to netdev_master_upper_dev_get() Arnd Bergmann <arnd(a)arndb.de> net: freescale: select CONFIG_FIXED_PHY where needed Masahiro Yamada <masahiroy(a)kernel.org> usb: gadget: legacy: fix redundant initialization warnings Andy Shevchenko <andriy.shevchenko(a)linux.intel.com> usb: dwc3: pci: Enable extcon driver for Intel Merrifield Lei Xue <carmark.dlut(a)gmail.com> cachefiles: Fix race between read_waiter and read_copier involving op->to_do Bob Peterson <rpeterso(a)redhat.com> gfs2: move privileged user check to gfs2_quota_lock_check Chuhong Yuan <hslester96(a)gmail.com> net: microchip: encx24j600: add missed kthread_stop Andrew Oakley <andrew(a)adoakley.name> ALSA: usb-audio: add mapping for ASRock TRX40 Creator Stephen Warren <swarren(a)nvidia.com> gpio: tegra: mask GPIO IRQs during IRQ shutdown Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix pinctrl sub nodename for spi in rk322x.dtsi Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: swap clock-names of gpu nodes Johan Jonker <jbx6244(a)gmail.com> arm64: dts: rockchip: swap interrupts interrupt-names rk3399 gpu node Johan Jonker <jbx6244(a)gmail.com> arm64: dts: rockchip: fix status for &gmac2phy in rk3328-evb.dts Johan Jonker <jbx6244(a)gmail.com> ARM: dts: rockchip: fix phy nodename for rk3228-evb Jiri Pirko <jiri(a)mellanox.com> mlxsw: spectrum: Fix use-after-free of split/unsplit/type_set in case reload fails Qiushi Wu <wu000273(a)umn.edu> net/mlx4_core: fix a memory leak bug. Qiushi Wu <wu000273(a)umn.edu> net: sun: fix missing release regions in cas_init_one(). Roi Dayan <roid(a)mellanox.com> net/mlx5: Annotate mutex destroy for root ns Moshe Shemesh <moshe(a)mellanox.com> net/mlx5e: Update netdev txq on completions during closure Jere Leppänen <jere.leppanen(a)nokia.com> sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed Neil Horman <nhorman(a)tuxdriver.com> sctp: Don't add the shutdown timer if its already been added Marc Payne <marc.payne(a)mdpsys.co.uk> r8152: support additional Microsoft Surface Ethernet Adapter variant Roman Mashak <mrv(a)mojatatu.com> net sched: fix reporting the first-time use timestamp Yuqi Jin <jinyuqi(a)huawei.com> net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" Manivannan Sadhasivam <manivannan.sadhasivam(a)linaro.org> net: qrtr: Fix passing invalid reference to qrtr_local_enqueue() Moshe Shemesh <moshe(a)mellanox.com> net/mlx5: Add command entry handling completion Vadim Fedorenko <vfedorenko(a)novek.ru> net: ipip: fix wrong address family in init error path Martin KaFai Lau <kafai(a)fb.com> net: inet_csk: Fix so_reuseport bind-address cache in tb->fast* Boris Sukholitko <boris.sukholitko(a)broadcom.com> __netif_receive_skb_core: pass skb by reference DENG Qingfang <dqfext(a)gmail.com> net: dsa: mt7530: fix roaming from DSA user ports Vladimir Oltean <vladimir.oltean(a)nxp.com> dpaa_eth: fix usage as DSA master, try 3 Eric Dumazet <edumazet(a)google.com> ax25: fix setsockopt(SO_BINDTODEVICE) ------------- Diffstat: Makefile | 4 +- arch/arm/boot/compressed/vmlinux.lds.S | 2 +- arch/arm/boot/dts/bcm-hr2.dtsi | 6 +- arch/arm/boot/dts/bcm2835-rpi-zero-w.dts | 2 +- arch/arm/boot/dts/imx6q-b450v3.dts | 7 -- arch/arm/boot/dts/imx6q-b650v3.dts | 7 -- arch/arm/boot/dts/imx6q-b850v3.dts | 11 -- arch/arm/boot/dts/imx6q-bx50v3.dtsi | 15 +++ arch/arm/boot/dts/rk3036.dtsi | 2 +- arch/arm/boot/dts/rk3228-evb.dts | 2 +- arch/arm/boot/dts/rk322x.dtsi | 6 +- arch/arm/boot/dts/rk3xxx.dtsi | 2 +- arch/arm/include/asm/assembler.h | 83 +-------------- arch/arm/include/asm/uaccess-asm.h | 117 +++++++++++++++++++++ arch/arm/include/asm/vfpmacros.h | 8 +- arch/arm/kernel/entry-armv.S | 11 +- arch/arm/kernel/entry-header.S | 9 +- arch/arm/lib/bitops.h | 8 +- arch/arm64/boot/dts/rockchip/rk3328-evb.dts | 2 +- arch/arm64/boot/dts/rockchip/rk3399.dtsi | 8 +- arch/parisc/mm/init.c | 2 +- arch/riscv/kernel/stacktrace.c | 2 +- arch/x86/include/asm/dma.h | 2 +- arch/x86/kernel/fpu/xstate.c | 86 ++++++++------- drivers/crypto/chelsio/chtls/chtls_io.c | 2 +- drivers/gpio/gpio-exar.c | 7 +- drivers/gpio/gpio-tegra.c | 1 + drivers/infiniband/core/rdma_core.c | 19 ++-- drivers/infiniband/hw/i40iw/i40iw_cm.c | 8 -- drivers/infiniband/hw/qib/qib_sysfs.c | 9 +- drivers/infiniband/hw/vmw_pvrdma/pvrdma_main.c | 2 +- drivers/infiniband/ulp/ipoib/ipoib.h | 4 + drivers/infiniband/ulp/ipoib/ipoib_cm.c | 15 +-- drivers/infiniband/ulp/ipoib/ipoib_ib.c | 9 +- drivers/infiniband/ulp/ipoib/ipoib_main.c | 10 +- drivers/input/evdev.c | 19 +--- drivers/input/joystick/xpad.c | 12 +++ drivers/input/keyboard/dlink-dir685-touchkeys.c | 2 +- drivers/input/rmi4/rmi_driver.c | 5 +- drivers/input/serio/i8042-x86ia64io.h | 7 ++ drivers/input/touchscreen/usbtouchscreen.c | 1 + drivers/iommu/iommu.c | 2 +- drivers/mmc/core/block.c | 2 +- drivers/mmc/core/queue.c | 13 +-- drivers/net/bonding/bond_sysfs_slave.c | 4 +- drivers/net/dsa/mt7530.c | 9 +- drivers/net/dsa/mt7530.h | 1 + drivers/net/ethernet/broadcom/bnxt/bnxt.c | 2 +- drivers/net/ethernet/freescale/Kconfig | 2 + drivers/net/ethernet/freescale/dpaa/Kconfig | 1 + drivers/net/ethernet/freescale/dpaa/dpaa_eth.c | 2 +- drivers/net/ethernet/mellanox/mlx4/fw.c | 2 +- drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 14 +++ drivers/net/ethernet/mellanox/mlx5/core/en_tx.c | 6 +- drivers/net/ethernet/mellanox/mlx5/core/fs_core.c | 6 ++ drivers/net/ethernet/mellanox/mlxsw/spectrum.c | 14 ++- drivers/net/ethernet/mellanox/mlxsw/switchx2.c | 8 ++ drivers/net/ethernet/microchip/encx24j600.c | 5 +- .../net/ethernet/qlogic/qlcnic/qlcnic_83xx_hw.c | 4 +- drivers/net/ethernet/sun/cassini.c | 3 +- drivers/net/usb/cdc_ether.c | 11 +- drivers/net/usb/r8152.c | 1 + drivers/usb/dwc3/dwc3-pci.c | 1 + drivers/usb/gadget/legacy/inode.c | 3 +- fs/binfmt_elf.c | 2 +- fs/cachefiles/rdwr.c | 2 +- fs/cifs/file.c | 2 +- fs/gfs2/quota.c | 3 +- fs/gfs2/quota.h | 3 +- include/asm-generic/topology.h | 2 +- include/linux/mlx5/driver.h | 1 + include/linux/mm.h | 15 ++- include/linux/netfilter/nf_conntrack_pptp.h | 2 +- include/net/act_api.h | 3 +- include/rdma/uverbs_std_types.h | 2 +- include/uapi/linux/xfrm.h | 2 +- mm/vmalloc.c | 2 +- net/ax25/af_ax25.c | 6 +- net/bridge/netfilter/nft_reject_bridge.c | 6 ++ net/ceph/osd_client.c | 4 +- net/core/dev.c | 20 +++- net/dsa/tag_mtk.c | 15 +++ net/ipv4/inet_connection_sock.c | 43 ++++---- net/ipv4/ip_vti.c | 75 +++++++------ net/ipv4/ipip.c | 2 +- net/ipv4/netfilter/nf_nat_pptp.c | 7 +- net/ipv4/route.c | 14 ++- net/ipv6/esp6_offload.c | 9 +- net/mac80211/mesh_hwmp.c | 7 ++ net/netfilter/ipset/ip_set_list_set.c | 2 +- net/netfilter/nf_conntrack_pptp.c | 62 ++++++----- net/netfilter/nfnetlink_cthelper.c | 3 +- net/qrtr/qrtr.c | 2 +- net/sctp/sm_sideeffect.c | 14 ++- net/sctp/sm_statefuns.c | 9 +- net/xdp/xdp_umem.c | 8 +- net/xfrm/xfrm_input.c | 2 +- net/xfrm/xfrm_interface.c | 21 ++++ net/xfrm/xfrm_output.c | 15 +-- net/xfrm/xfrm_policy.c | 7 +- samples/bpf/lwt_len_hist_user.c | 2 - security/commoncap.c | 1 + sound/core/hwdep.c | 4 +- sound/pci/hda/patch_realtek.c | 39 +++++-- sound/usb/mixer.c | 8 ++ sound/usb/mixer_maps.c | 24 +++++ sound/usb/quirks-table.h | 26 +++++ 107 files changed, 723 insertions(+), 427 deletions(-)

4 years, 7 months

4
3
0 0

Re: [PATCH v2] exfat: fix memory leak in exfat_parse_param()

by Markus Elfring

> Additionally, there's no point copying param->string in > exfat_parse_param() - just steal it, leaving NULL in param->string. > That's independent from the leak or fix thereof - it's simply > avoiding an extra copy. I find it clearer to provide such a source code adjustment by a separate update step. https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/tree/Doc… Please move it into another patch. … > +++ b/fs/exfat/super.c … > @@ -686,7 +685,12 @@ static int exfat_get_tree(struct fs_context *fc) > > static void exfat_free(struct fs_context *fc) > { > - kfree(fc->s_fs_info); > + struct exfat_sb_info *sbi = fc->s_fs_info; > + > + if (sbi) { > + exfat_free_iocharset(sbi); > + kfree(sbi); > + } > } … Can it be helpful to annotate the added check according to branch prediction? Are valid pointers likely at this place? Regards, Markus

4 years, 7 months

1
0
0 0

[PATCH 4.4 00/47] 4.4.226-rc2 review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 4.4.226 release. There are 47 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Thu, 04 Jun 2020 09:57:12 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.4.226-rc… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.4.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 4.4.226-rc2 Benjamin Block <bblock(a)linux.ibm.com> scsi: zfcp: fix request object use-after-free in send path causing wrong traces Aaron Conole <aconole(a)redhat.com> printk: help pr_debug and pr_devel to optimize out arguments Ben Hutchings <ben.hutchings(a)codethink.co.uk> drm/msm: Fix possible null dereference on failure of get_pages() Guoqing Jiang <gqjiang(a)suse.com> sc16is7xx: move label 'err_spi' to correct section Michal Marek <mmarek(a)suse.com> asm-prototypes: Clear any CPP defines before declaring the functions Liviu Dudau <liviu(a)dudau.co.uk> mm/vmalloc.c: don't dereference possible NULL pointer in __vunmap() Roopa Prabhu <roopa(a)cumulusnetworks.com> net: rtnl_configure_link: fix dev flags changes arg to __dev_notify_flags Sudip Mukherjee <sudip(a)vectorindia.org> mac80211: fix memory leak Yoshihiro Shimoda <yoshihiro.shimoda.uh(a)renesas.com> usb: renesas_usbhs: gadget: fix spin_lock_init() for &uep->lock Thomas Gleixner <tglx(a)linutronix.de> genirq/generic_pending: Do not lose pending affinity update Matt Roper <matthew.d.roper(a)intel.com> drm/fb-helper: Use proper plane mask for fb cleanup Konstantin Khlebnikov <khlebnikov(a)yandex-team.ru> mm: remove VM_BUG_ON(PageSlab()) from page_mapcount() Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build Qiushi Wu <wu000273(a)umn.edu> bonding: Fix reference count leak in bond_sysfs_slave_add. Qiushi Wu <wu000273(a)umn.edu> qlcnic: fix missing release in qlcnic_83xx_interrupt_test. Pablo Neira Ayuso <pablo(a)netfilter.org> netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code Phil Sutter <phil(a)nwl.cc> netfilter: ipset: Fix subcounter update skip Michael Braun <michael-dev(a)fami-braun.de> netfilter: nft_reject_bridge: enable reject with bridge vlan Xin Long <lucien.xin(a)gmail.com> ip_vti: receive ipip packet by calling ip_tunnel_rcv Jeremy Sowden <jeremy(a)azazel.net> vti4: eliminated some duplicate code. Xin Long <lucien.xin(a)gmail.com> xfrm: fix a NULL-ptr deref in xfrm_local_error Xin Long <lucien.xin(a)gmail.com> xfrm: fix a warning in xfrm_policy_insert_list Xin Long <lucien.xin(a)gmail.com> xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input Alexander Dahl <post(a)lespocky.de> x86/dma: Fix max PFN arithmetic overflow on 32 bit systems Helge Deller <deller(a)gmx.de> parisc: Fix kernel panic in mem_init() Qiushi Wu <wu000273(a)umn.edu> iommu: Fix reference count leak in iommu_group_alloc. Arnd Bergmann <arnd(a)arndb.de> include/asm-generic/topology.h: guard cpumask_of_node() macro argument Alexander Potapenko <glider(a)google.com> fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() Eric W. Biederman <ebiederm(a)xmission.com> exec: Always set cap_ambient in cap_bprm_set_creds Chris Chiu <chiu(a)endlessm.com> ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC Changming Liu <liu.changm(a)northeastern.edu> ALSA: hwdep: fix a left shifting 1 by 31 UB bug Kaike Wan <kaike.wan(a)intel.com> IB/qib: Call kobject_put() when kobject_init_and_add() fails Kevin Locke <kevin(a)kevinlocke.name> Input: i8042 - add ThinkPad S230u to i8042 reset list Łukasz Patron <priv.luk(a)gmail.com> Input: xpad - add custom init packet for Xbox One S controllers Brendan Shanks <bshanks(a)codeweavers.com> Input: evdev - call input_flush_device() on release(), not flush() James Hilliard <james.hilliard1(a)gmail.com> Input: usbtouchscreen - add support for BonXeon TP Steve French <stfrench(a)microsoft.com> cifs: Fix null pointer check in cifs_read Masahiro Yamada <masahiroy(a)kernel.org> usb: gadget: legacy: fix redundant initialization warnings Lei Xue <carmark.dlut(a)gmail.com> cachefiles: Fix race between read_waiter and read_copier involving op->to_do Kalderon, Michal <Michal.Kalderon(a)cavium.com> IB/cma: Fix reference count leak when no ipv4 addresses are set Dmitry V. Levin <ldv(a)altlinux.org> uapi: fix linux/if_pppol2tp.h userspace compilation errors Qiushi Wu <wu000273(a)umn.edu> net/mlx4_core: fix a memory leak bug. Qiushi Wu <wu000273(a)umn.edu> net: sun: fix missing release regions in cas_init_one(). Moshe Shemesh <moshe(a)mellanox.com> net/mlx5: Add command entry handling completion Jere Leppänen <jere.leppanen(a)nokia.com> sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed Yuqi Jin <jinyuqi(a)huawei.com> net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" Eric Dumazet <edumazet(a)google.com> ax25: fix setsockopt(SO_BINDTODEVICE) ------------- Diffstat: Makefile | 4 +- arch/parisc/mm/init.c | 2 +- arch/x86/include/asm/dma.h | 2 +- drivers/gpu/drm/drm_fb_helper.c | 2 +- drivers/gpu/drm/msm/msm_gem.c | 20 +++--- drivers/infiniband/hw/qib/qib_sysfs.c | 9 +-- drivers/input/evdev.c | 19 ++---- drivers/input/joystick/xpad.c | 12 ++++ drivers/input/serio/i8042-x86ia64io.h | 7 ++ drivers/input/touchscreen/usbtouchscreen.c | 1 + drivers/iommu/iommu.c | 2 +- drivers/net/bonding/bond_sysfs_slave.c | 4 +- drivers/net/ethernet/mellanox/mlx4/fw.c | 2 +- drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 15 +++++ .../net/ethernet/qlogic/qlcnic/qlcnic_83xx_hw.c | 4 +- drivers/net/ethernet/sun/cassini.c | 3 +- drivers/s390/scsi/zfcp_fsf.c | 10 ++- drivers/tty/serial/sc16is7xx.c | 2 + drivers/usb/gadget/legacy/inode.c | 3 +- drivers/usb/renesas_usbhs/mod_gadget.c | 2 +- fs/binfmt_elf.c | 2 +- fs/cachefiles/rdwr.c | 2 +- fs/cifs/file.c | 2 +- include/asm-generic/asm-prototypes.h | 6 ++ include/asm-generic/topology.h | 2 +- include/linux/mlx5/driver.h | 1 + include/linux/mm.h | 1 - include/linux/netfilter/nf_conntrack_pptp.h | 2 +- include/linux/printk.h | 12 ++-- include/rdma/ib_addr.h | 6 +- include/uapi/linux/l2tp.h | 7 +- kernel/irq/migration.c | 26 ++++++-- mm/vmalloc.c | 2 +- net/ax25/af_ax25.c | 6 +- net/bridge/netfilter/nft_reject_bridge.c | 6 ++ net/core/rtnetlink.c | 2 +- net/ipv4/ip_vti.c | 75 ++++++++++++---------- net/ipv4/netfilter/nf_nat_pptp.c | 7 +- net/ipv4/route.c | 14 ++-- net/mac80211/sta_info.c | 1 + net/netfilter/ipset/ip_set_list_set.c | 2 +- net/netfilter/nf_conntrack_pptp.c | 62 ++++++++++-------- net/sctp/sm_statefuns.c | 9 +-- net/xfrm/xfrm_input.c | 2 +- net/xfrm/xfrm_output.c | 3 +- net/xfrm/xfrm_policy.c | 7 +- security/commoncap.c | 1 + sound/core/hwdep.c | 4 +- sound/usb/mixer.c | 8 +++ 49 files changed, 242 insertions(+), 163 deletions(-)

4 years, 7 months

4
3
0 0

stable-rc/linux-4.9.y boot: 86 boots: 2 failed, 78 passed with 4 offline, 2 untried/unknown (v4.9.225-56-ga836fd8c024d)

by kernelci.org bot

****************************************** * WARNING: Boot tests are now deprecated * ****************************************** As kernelci.org is expanding its functional testing capabilities, the concept of boot testing is now deprecated. Boot results are scheduled to be dropped on *5th June 2020*. The full schedule for boot tests deprecation is available on this GitHub issue: https://github.com/kernelci/kernelci-backend/issues/238 The new equivalent is the *baseline* test suite which also runs sanity checks using dmesg and bootrr: https://github.com/kernelci/bootrr See the *baseline results for this kernel revision* on this page: https://kernelci.org/test/job/stable-rc/branch/linux-4.9.y/kernel/v4.9.225-… ------------------------------------------------------------------------------- stable-rc/linux-4.9.y boot: 86 boots: 2 failed, 78 passed with 4 offline, 2 untried/unknown (v4.9.225-56-ga836fd8c024d) Full Boot Summary: https://kernelci.org/boot/all/job/stable-rc/branch/linux-4.9.y/kernel/v4.9.… Full Build Summary: https://kernelci.org/build/stable-rc/branch/linux-4.9.y/kernel/v4.9.225-56-… Tree: stable-rc Branch: linux-4.9.y Git Describe: v4.9.225-56-ga836fd8c024d Git Commit: a836fd8c024d14989c7cbfb91040e805b093f1d7 Git URL: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git Tested: 54 unique boards, 18 SoC families, 15 builds out of 157 Boot Regressions Detected: x86_64: x86_64_defconfig: gcc-8: qemu_x86_64: lab-baylibre: new failure (last pass: v4.9.225-60-g6915714f12d0) Boot Failures Detected: arm: sama5_defconfig: gcc-8: at91-sama5d4_xplained: 1 failed lab x86_64: x86_64_defconfig: gcc-8: qemu_x86_64: 1 failed lab Offline Platforms: arm: exynos_defconfig: gcc-8 exynos5800-peach-pi: 1 offline lab multi_v7_defconfig: gcc-8 exynos5800-peach-pi: 1 offline lab qcom-apq8064-cm-qs600: 1 offline lab stih410-b2120: 1 offline lab --- For more info write to <info(a)kernelci.org>

4 years, 7 months

1
0
0 0

[PATCH for 4.14] xfs: set format back to extents if xfs_bmap_extents_to_btree

by Nobuhiro Iwamatsu

From: Eric Sandeen <sandeen(a)redhat.com> commit 2c4306f719b083d17df2963bc761777576b8ad1b upstream. If xfs_bmap_extents_to_btree fails in a mode where we call xfs_iroot_realloc(-1) to de-allocate the root, set the format back to extents. Otherwise we can assume we can dereference ifp->if_broot based on the XFS_DINODE_FMT_BTREE format, and crash. Bugzilla: https://bugzilla.kernel.org/show_bug.cgi?id=199423 Signed-off-by: Eric Sandeen <sandeen(a)redhat.com> Reviewed-by: Christoph Hellwig <hch(a)lst.de> Reviewed-by: Darrick J. Wong <darrick.wong(a)oracle.com> Signed-off-by: Darrick J. Wong <darrick.wong(a)oracle.com> Signed-off-by: Nobuhiro Iwamatsu (CIP) <nobuhiro1.iwamatsu(a)toshiba.co.jp> --- fs/xfs/libxfs/xfs_bmap.c | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/fs/xfs/libxfs/xfs_bmap.c b/fs/xfs/libxfs/xfs_bmap.c index 84245d2101828..2b07dadc59167 100644 --- a/fs/xfs/libxfs/xfs_bmap.c +++ b/fs/xfs/libxfs/xfs_bmap.c @@ -761,12 +761,16 @@ xfs_bmap_extents_to_btree( *logflagsp = 0; if ((error = xfs_alloc_vextent(&args))) { xfs_iroot_realloc(ip, -1, whichfork); + ASSERT(ifp->if_broot == NULL); + XFS_IFORK_FMT_SET(ip, whichfork, XFS_DINODE_FMT_EXTENTS); xfs_btree_del_cursor(cur, XFS_BTREE_ERROR); return error; } if (WARN_ON_ONCE(args.fsbno == NULLFSBLOCK)) { xfs_iroot_realloc(ip, -1, whichfork); + ASSERT(ifp->if_broot == NULL); + XFS_IFORK_FMT_SET(ip, whichfork, XFS_DINODE_FMT_EXTENTS); xfs_btree_del_cursor(cur, XFS_BTREE_ERROR); return -ENOSPC; } -- 2.27.0.rc0

4 years, 7 months

1
0
0 0

[PATCH for 4.9] xfs: set format back to extents if xfs_bmap_extents_to_btree

by Nobuhiro Iwamatsu

From: Eric Sandeen <sandeen(a)redhat.com> commit 2c4306f719b083d17df2963bc761777576b8ad1b upstream. If xfs_bmap_extents_to_btree fails in a mode where we call xfs_iroot_realloc(-1) to de-allocate the root, set the format back to extents. Otherwise we can assume we can dereference ifp->if_broot based on the XFS_DINODE_FMT_BTREE format, and crash. Bugzilla: https://bugzilla.kernel.org/show_bug.cgi?id=199423 Signed-off-by: Eric Sandeen <sandeen(a)redhat.com> Reviewed-by: Christoph Hellwig <hch(a)lst.de> Reviewed-by: Darrick J. Wong <darrick.wong(a)oracle.com> Signed-off-by: Darrick J. Wong <darrick.wong(a)oracle.com> Signed-off-by: Nobuhiro Iwamatsu (CIP) <nobuhiro1.iwamatsu(a)toshiba.co.jp> --- fs/xfs/libxfs/xfs_bmap.c | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/fs/xfs/libxfs/xfs_bmap.c b/fs/xfs/libxfs/xfs_bmap.c index 9ca8809ee3d0c..e390a7882933c 100644 --- a/fs/xfs/libxfs/xfs_bmap.c +++ b/fs/xfs/libxfs/xfs_bmap.c @@ -781,6 +781,8 @@ xfs_bmap_extents_to_btree( *logflagsp = 0; if ((error = xfs_alloc_vextent(&args))) { xfs_iroot_realloc(ip, -1, whichfork); + ASSERT(ifp->if_broot == NULL); + XFS_IFORK_FMT_SET(ip, whichfork, XFS_DINODE_FMT_EXTENTS); xfs_btree_del_cursor(cur, XFS_BTREE_ERROR); return error; } @@ -801,6 +803,8 @@ xfs_bmap_extents_to_btree( } if (WARN_ON_ONCE(args.fsbno == NULLFSBLOCK)) { xfs_iroot_realloc(ip, -1, whichfork); + ASSERT(ifp->if_broot == NULL); + XFS_IFORK_FMT_SET(ip, whichfork, XFS_DINODE_FMT_EXTENTS); xfs_btree_del_cursor(cur, XFS_BTREE_ERROR); return -ENOSPC; } -- 2.26.0

4 years, 7 months

1
0
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror June 2020