- Linux-stable-mirror - lists.linaro.org

by Sasha Levin

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hi Greg, Pleae pull commits for Linux 3.18 . I've sent a review request for all commits over a week ago and all comments were addressed. Thanks, Sasha ===== The following changes since commit 915b8f498b1a2dacc4f81dc949e310915c7374f2: Linux 3.18.106 (2018-04-24 09:29:29 +0200) are available in the Git repository at: git://git.kernel.org/pub/scm/linux/kernel/git/sashal/linux-stable.git tags/for-greg-3.18-26042018 for you to fetch changes up to 681b9d8dc055d044336e643b611f58e6e6caa9b4: kdb: make "mdr" command repeat (2018-04-26 17:22:04 -0400) - ---------------------------------------------------------------- for-greg-3.18-26042018 - ---------------------------------------------------------------- Alex Estrin (1): IB/ipoib: Fix for potential no-carrier state Alex Williamson (1): PCI: Add function 1 DMA alias quirk for Marvell 9128 Alexey Dobriyan (1): proc: fix /proc/*/map_files lookup Anders Roxell (1): selftests: memfd: add config fragment for fuse Andrea Parri (2): locking/xchg/alpha: Add unconditional memory barrier to cmpxchg() locking/xchg/alpha: Fix xchg() and cmpxchg() memory ordering bugs Andrzej Hajda (4): clk: samsung: s3c2410: Fix PLL rates clk: samsung: exynos5260: Fix PLL rates clk: samsung: exynos5250: Fix PLL rates clk: samsung: exynos3250: Fix PLL rates Anna-Maria Gleixner (1): tracing/hrtimer: Fix tracing bugs by taking all clock bases and modes into account Arnd Bergmann (5): scsi: fas216: fix sense buffer initialization x86/power: Fix swsusp_arch_resume prototype cifs: silence compiler warnings showing up with gcc-8.0.0 md: raid5: avoid string overflow warning media: s3c-camif: fix out-of-bounds array access Arvind Yadav (1): xen: xenbus: use put_device() instead of kfree() Baoquan He (1): x86/apic: Set up through-local-APIC mode on the boot CPU if 'noapic' specified Bart Van Assche (1): scsi: qla2xxx: Avoid triggering undefined behavior in qla2x00_mbx_completion() Benjamin Poirier (1): e1000e: Fix check_for_link return value with autoneg off Bjorn Andersson (1): pinctrl: msm: Use dynamic GPIO numbering Brad Love (3): media: cx23885: Override 888 ImpactVCBe crystal frequency media: cx23885: Set subdev host data to clk_freq pointer media: em28xx: USB bulk packet size fix Carlos Maiolino (1): Force log to disk before reading the AGF during a fstrim Chad Dupuis (1): scsi: bnx2fc: Fix check in SCSI completion handler for timed out request Chen Yu (1): ACPI: processor_perflib: Do not send _PPC change notification if not ready Chris Dickens (1): usb: gadget: composite: fix incorrect handling of OS desc requests Christophe JAILLET (1): regulator: of: Add a missing 'of_node_put()' in an error handling path of 'of_regulator_match()' Claudio Imbrenda (1): mm/ksm: fix interaction with THP Colin Ian King (4): clocksource/drivers/fsl_ftm_timer: Fix error return checking staging: rtl8192u: return -ENOMEM on failed allocation of priv->oldaddr rtc: tx4939: avoid unintended sign extension on a 24 bit shift media: cx25821: prevent out-of-bounds read on array card Coly Li (2): bcache: properly set task state in bch_writeback_thread() bcache: quit dc->writeback_thread when BCACHE_DEV_DETACHING is set Cong Wang (1): llc: properly handle dev_queue_xmit() return value Dan Carpenter (5): ASoC: au1x: Fix timeout tests in au1xac97c_ac97_read() HID: roccat: prevent an out of bounds read in kovaplus_profile_activated() scsi: sym53c8xx_2: iterator underflow in sym_getsync() scsi: mptfusion: Add bounds check in mptctl_hp_targetinfo() xen/acpi: off by one in read_acpi_id() Danilo Krummrich (1): fs/proc/proc_sysctl.c: fix potential page fault while unregistering sysctl table Dave Carroll (1): scsi: aacraid: Insure command thread is not recursively stopped Dave Hansen (1): x86/mm: Do not forbid _PAGE_RW before init for __ro_after_init David Ahern (1): selftests: Add FIB onlink tests David Lechner (1): ARM: davinci_all_defconfig: set CONFIG_DAVINCI_WATCHDOG=y David Rientjes (1): kernel/relay.c: limit kmalloc size to KMALLOC_MAX_SIZE David S. Miller (1): sparc64: Make atomic_xchg() an inline function rather than a macro. Davidlohr Bueso (1): sched/rt: Fix rq->clock_update_flags < RQCF_ACT_SKIP warning Eric Dumazet (4): smsc75xx: fix smsc75xx_set_features() percpu: add a schedule point in pcpu_balance_workfn() r8152: fix tx packets accounting soreuseport: initialise timewait reuseport field Erik Schmauss (1): ACPICA: Events: add a return on failure from acpi_hw_register_read Esben Haabendal (1): dp83640: Ensure against premature access to PHY registers after reset Felix Fietkau (1): mac80211: round IEEE80211_TX_STATUS_HEADROOM up to multiple of 4 Filipe Manana (2): Btrfs: send, fix issuing write op when processing hole in no data mode Btrfs: fix copy_items() return value when logging an inode Florian Westphal (2): netfilter: ebtables: convert BUG_ONs to WARN_ONs netfilter: ebtables: fix erroneous reject of last rule Frank Asseg (1): tools/thermal: tmon: fix for segfault Fredrik Noring (1): USB: OHCI: Fix NULL dereference in HCDs using HCD_LOCAL_MEM Geert Uytterhoeven (6): ARM: OMAP1: clock: Fix debugfs_create_*() usage serial: xuartps: Fix out-of-bounds access through DT alias serial: samsung: Fix out-of-bounds access through serial port index serial: imx: Fix out-of-bounds access through serial port index serial: fsl_lpuart: Fix out-of-bounds access through DT alias serial: arc_uart: Fix out-of-bounds access through DT alias Giuseppe Lippolis (1): net-usb: add qmi_wwan if on lte modem wistron neweb d18q1 Greg Ungerer (1): m68k: set dma and coherent masks for platform FEC ethernets Gregory CLEMENT (2): mailmap: Update email address for Gregory CLEMENT i2c: mv64xxx: Apply errata delay only in standard mode Grigor Tovmasyan (1): usb: dwc2: Fix interval type issue Guenter Roeck (4): watchdog: sp5100_tco: Fix watchdog disable bit hwmon: (nct6775) Fix writing pwmX_mode hwmon: (pmbus/max8688) Accept negative page register values hwmon: (pmbus/adm1275) Accept negative page register values Hector Martin (1): firewire-ohci: work around oversized DMA reads on JMicron controllers Helge Deller (1): parisc/pci: Switch LBA PCI bus from Hard Fail to Soft Fail mode Huang Ying (1): mm: fix races between address_space dereference and free in page_evicatable Igor Pylypiv (1): watchdog: f71808e_wdt: Fix magic close handling Jake Daryll Obina (1): jffs2: Fix use-after-free bug in jffs2_iget()'s error handling path James Smart (3): scsi: lpfc: Fix issue_lip if link is disabled scsi: lpfc: Fix soft lockup in lpfc worker thread during LIP testing scsi: lpfc: Fix frequency of Release WQE CQEs Jan Chochol (1): nfs: Do not convert nfs_idmap_cache_timeout to jiffies Jan Kara (1): udf: Provide saner default for invalid uid / gid Jason Yan (1): scsi: libsas: defer ata device eh commands to libata Jay Vosburgh (1): virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS Jean Delvare (1): firmware: dmi_scan: Fix handling of empty DMI strings Jeff Mahoney (1): btrfs: fix lockdep splat in btrfs_alloc_subvolume_writers Jens Axboe (1): sr: get/drop reference to device in revalidate and check_events Jeremy Cline (1): scsi: sd: Keep disk read-only when re-reading partition Joey Pabalinas (1): net/tcp/illinois: replace broken algorithm reference link Johannes Berg (1): regulatory: add NUL to request alpha2 John Keeping (1): usb: gadget: f_uac2: fix bFirstInterface in composite gadget Joonsoo Kim (1): ARM: CMA: avoid double mapping to the CMA area if CONFIG_HIGHMEM=y Karthikeyan Periyasamy (1): ath10k: Fix kernel panic while using worker (ath10k_sta_rc_update_wk) Kees Cook (1): NFC: llcp: Limit size of SDP URI Kirill A. Shutemov (1): asm-generic: provide generic_pmdp_establish() Lars-Peter Clausen (1): usb: gadget: ffs: Let setup() return USB_GADGET_DELAYED_STATUS Lenny Szubowicz (1): ACPI: acpi_pad: Fix memory leak in power saving threads Leon Romanovsky (2): RDMA/mlx5: Avoid memory leak in case of XRCD dealloc failure net/mlx5: Protect from command bit overflow Linus LÃ¼ssing (2): batman-adv: fix multicast-via-unicast transmission with AP isolation batman-adv: fix packet loss for broadcasted DHCP packets to a server Liu Bo (2): Btrfs: bail out on error during replay_dir_deletes Btrfs: fix NULL pointer dereference in log_dir_items Madhavan Srinivasan (1): powerpc/perf: Prevent kernel address leak to userspace via BHRB buffer Manish Rangankar (1): scsi: qla4xxx: skip error recovery in case of register disconnect. Mark Salter (1): irqchip/gic-v3: Change pr_debug message to pr_devel Markus Elfring (1): drm/exynos: g2d: Delete an error message for a failed memory allocation in two functions Masami Hiramatsu (4): selftests: ftrace: Add probe event argument syntax testcase selftests: ftrace: Add a testcase for string type with kprobe_event selftests: ftrace: Add a testcase for probepoint tracing/uprobe_event: Fix strncpy corner case Mathias Kresin (1): MIPS: ath79: Fix AR724X_PLL_REG_PCIE_CONFIG offset Mathias Nyman (1): xhci: zero usb device slot_id member when disabling and freeing a xhci slot Mathieu Malaterre (1): powerpc: Add missing prototype for arch_irq_work_raise() Matt Redfearn (1): MIPS: TXx9: use IS_BUILTIN() for CONFIG_LEDS_CLASS Matthias Schiffer (3): batman-adv: fix packet checksum in receive path batman-adv: invalidate checksum on fragment reassembly batman-adv: fix header size check in batadv_dbg_arp() Maurizio Lombardi (1): cdrom: do not call check_disk_change() inside cdrom_open() Mauro Carvalho Chehab (1): media: dmxdev: fix error code for invalid ioctls Meelis Roos (1): scsi: aacraid: fix shutdown crash when init fails Mel Gorman (1): mm: pin address_space before dereferencing it while isolating an LRU page Merlijn Wajer (1): usb: musb: call pm_runtime_{get,put}_sync before reading vbus registers Michael Ellerman (2): powerpc/mpic: Check if cpu_possible() in mpic_physmask() powerpc/perf: Fix kernel address leak via sampling registers Michael Schmitz (1): zorro: Set up z->dev.dma_mask for the DMA API Nikolay Borisov (2): btrfs: Fix out of bounds access in btrfs_search_slot btrfs: Fix possible softlock on single core machines Paolo Bonzini (1): kvm: x86: fix KVM_XEN_HVM_CONFIG ioctl Pawel Dembicki (1): net: qmi_wwan: add BroadMobi BM806U 2020:2033 Peter Malone (1): fbdev: Fixing arbitrary kernel leak in case FBIOGETCMAP_SPARC in sbusfb_ioctl_helper(). Peter Zijlstra (1): perf/core: Fix perf_output_read_group() Petr Vorel (1): ima: Fallback to the builtin hash algorithm Philipp Puschmann (1): arm: dts: socfpga: fix GIC PPI warning Pierre-Yves Kerbrat (1): e1000e: allocate ring descriptors with dma_zalloc_coherent Qi Hou (1): dmaengine: pl330: fix a race condition in case of threaded irqs Qu Wenruo (1): btrfs: tests/qgroup: Fix wrong tree backref level Rafael J. Wysocki (1): PCI: Restore config space on runtime resume despite being unbound Randy Dunlap (2): fs/signalfd: fix build error for BUS_MCEERR_AR kdb: make "mdr" command repeat Rich Felker (1): sh: fix debug trap failure to process signals before return to user Richard Guy Briggs (1): audit: return on memory error to avoid null pointer dereference Richard Haines (1): netlabel: If PF_INET6, check sk_buff ip header version Rob Herring (1): microblaze: switch to NO_BOOTMEM Roger Pau Monne (1): xen/pirq: fix error path cleanup when binding MSIs Ross Lagerwall (1): xen/grant-table: Use put_page instead of free_page Samuel Neves (1): x86/topology: Update the 'cpu cores' field in /proc/cpuinfo correctly across CPU hotplug operations Sean Christopherson (1): KVM: VMX: raise internal error for exception during invalid protected mode state Sebastian Ott (2): s390/cio: fix return code after missing interrupt s390/cio: clear timer when terminating driver I/O Seunghun Han (1): ACPICA: acpi: acpica: fix acpi operand cache leak in nseval.c Stefan Agner (1): usb: gadget: fsl_udc_core: fix ep valid checks Stefano Brivio (2): vti4: Don't count header length twice on tunnel setup vti4: Don't override MTU passed on link creation via IFLA_MTU Steven Rostedt (VMware) (1): tools lib traceevent: Fix get_field_str() for dynamic strings Sujit Reddy Thumma (1): scsi: ufs: Enable quirk to ignore sending WRITE_SAME command Sylwester Nawrocki (1): ASoC: samsung: i2s: Ensure the RCLK rate is properly determined Takashi Iwai (1): ALSA: vmaster: Propagate slave error Tang Junhui (4): bcache: fix for allocator and register thread race bcache: fix for data collapse after re-attaching an attached device bcache: return attach error when no cache set exist bcache: fix kcrashes with fio in RAID5 backend dev Thinh Nguyen (1): usb: dwc3: Update DWC_usb31 GTXFIFOSIZ reg fields Thomas Vincent-Cross (1): PCI: Add function 1 DMA alias quirk for Marvell 88SE9220 Tom Abraham (1): swap: divide-by-zero when zero length swap file on ssd Tony Lindgren (2): ARM: OMAP3: Fix prm wake interrupt for resume ARM: OMAP: Fix dmtimer init for omap1 Toshiaki Makita (2): net: Fix vlan untag for bridge and vlan_dev with reorder_hdr off net: Fix untag for vlan packets without ethernet header Ulf Magnusson (3): kconfig: Don't leak main menus during parsing kconfig: Fix automatic menu creation mem leak kconfig: Fix expr_free() E_NOT leak Vaibhav Jain (1): powerpc/xmon: Setup debugger hooks when first break-point is set Vinayak Menon (1): mm/kmemleak.c: wait for scan completion before disabling free Wolfram Sang (2): drm/exynos: fix comparison to bitshift when dealing with a mask usb: gadget: udc: change comparison to bitshift when dealing with a mask Xin Long (1): sit: fix IFLA_MTU ignored on NEWLINK Xose Vazquez Perez (1): scsi: devinfo: fix format of the device list Yelena Krivosheev (1): net: mvneta: fix enable of all initialized RXQs Yisheng Xie (3): mm/mempolicy: fix the check of nodemask from user mm/mempolicy: add nodes_empty check in SYSC_migrate_pages mm/mempolicy.c: avoid use uninitialized preferred_node Yufen Yu (2): md raid10: fix NULL deference in handle_write_completed() md/raid1: fix NULL pointer dereference mulhern (1): dm thin: fix documentation relative to low water mark threshold piaojun (2): ocfs2: return -EROFS to mount.ocfs2 if inode block is invalid ocfs2/acl: use 'ip_xattr_sem' to protect getting extended attribute .mailmap | 1 + Documentation/device-mapper/thin-provisioning.txt | 8 +- arch/alpha/include/asm/xchg.h | 30 +- arch/arm/boot/dts/socfpga.dtsi | 2 +- arch/arm/configs/davinci_all_defconfig | 2 +- arch/arm/mach-omap1/clock.c | 6 +- arch/arm/mach-omap2/pm.c | 4 +- arch/arm/mm/dma-mapping.c | 16 +- arch/arm/plat-omap/dmtimer.c | 7 +- arch/m68k/coldfire/device.c | 12 +- arch/microblaze/Kconfig | 1 + arch/microblaze/mm/init.c | 56 +-- arch/mips/include/asm/mach-ath79/ar71xx_regs.h | 2 +- arch/mips/txx9/rbtx4939/setup.c | 4 +- arch/powerpc/include/asm/irq_work.h | 1 + arch/powerpc/perf/core-book3s.c | 25 ++ arch/powerpc/sysdev/mpic.c | 2 +- arch/powerpc/xmon/xmon.c | 17 +- arch/sh/kernel/entry-common.S | 2 +- arch/sparc/include/asm/atomic_64.h | 6 +- arch/x86/kernel/apic/apic.c | 2 +- arch/x86/kernel/smpboot.c | 1 + arch/x86/kvm/vmx.c | 20 +- arch/x86/kvm/x86.c | 7 +- arch/x86/mm/pageattr.c | 6 +- arch/x86/power/hibernate_32.c | 2 +- arch/x86/power/hibernate_64.c | 2 +- drivers/acpi/acpi_pad.c | 3 + drivers/acpi/acpica/evevent.c | 9 +- drivers/acpi/acpica/nseval.c | 8 + drivers/acpi/processor_perflib.c | 2 +- drivers/block/paride/pcd.c | 2 + drivers/cdrom/cdrom.c | 3 - drivers/cdrom/gdrom.c | 3 + drivers/clk/samsung/clk-exynos3250.c | 4 +- drivers/clk/samsung/clk-exynos5250.c | 8 +- drivers/clk/samsung/clk-exynos5260.c | 2 +- drivers/clk/samsung/clk-s3c2410.c | 16 +- drivers/clocksource/fsl_ftm_timer.c | 2 +- drivers/dma/pl330.c | 6 +- drivers/firewire/ohci.c | 8 +- drivers/firmware/dmi_scan.c | 22 +- drivers/gpu/drm/exynos/exynos_drm_g2d.c | 6 +- drivers/gpu/drm/exynos/regs-fimc.h | 2 +- drivers/hid/hid-roccat-kovaplus.c | 2 + drivers/hwmon/nct6775.c | 10 +- drivers/hwmon/pmbus/adm1275.c | 4 +- drivers/hwmon/pmbus/max8688.c | 2 +- drivers/i2c/busses/i2c-mv64xxx.c | 8 +- drivers/ide/ide-cd.c | 2 + drivers/infiniband/hw/mlx5/qp.c | 5 +- drivers/infiniband/ulp/ipoib/ipoib_main.c | 3 + drivers/irqchip/irq-gic-v3.c | 2 +- drivers/md/bcache/alloc.c | 4 +- drivers/md/bcache/bcache.h | 2 +- drivers/md/bcache/btree.c | 9 +- drivers/md/bcache/request.c | 2 +- drivers/md/bcache/super.c | 23 +- drivers/md/bcache/sysfs.c | 11 +- drivers/md/bcache/writeback.c | 27 +- drivers/md/raid1.c | 11 + drivers/md/raid10.c | 6 +- drivers/md/raid5.c | 7 +- drivers/media/dvb-core/dmxdev.c | 2 +- drivers/media/pci/cx23885/cx23885-cards.c | 4 + drivers/media/pci/cx23885/cx23885-core.c | 10 + drivers/media/pci/cx25821/cx25821-core.c | 7 +- drivers/media/platform/s3c-camif/camif-capture.c | 7 +- drivers/media/usb/em28xx/em28xx.h | 2 +- drivers/message/fusion/mptctl.c | 2 + drivers/net/ethernet/intel/e1000e/ich8lan.c | 2 +- drivers/net/ethernet/intel/e1000e/mac.c | 2 +- drivers/net/ethernet/intel/e1000e/netdev.c | 4 +- drivers/net/ethernet/marvell/mvneta.c | 1 + drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 2 +- drivers/net/phy/dp83640.c | 18 + drivers/net/usb/qmi_wwan.c | 4 + drivers/net/usb/r8152.c | 2 +- drivers/net/usb/smsc75xx.c | 7 +- drivers/net/virtio_net.c | 2 +- drivers/net/wireless/ath/ath10k/mac.c | 10 + drivers/parisc/lba_pci.c | 20 +- drivers/pci/pci-driver.c | 17 +- drivers/pci/quirks.c | 5 + drivers/pinctrl/qcom/pinctrl-msm.c | 2 +- drivers/regulator/of_regulator.c | 1 + drivers/rtc/rtc-tx4939.c | 6 +- drivers/s390/cio/device_fsm.c | 7 +- drivers/s390/cio/io_sch.h | 1 + drivers/scsi/aacraid/commsup.c | 4 +- drivers/scsi/aacraid/linit.c | 5 +- drivers/scsi/arm/fas216.c | 2 +- drivers/scsi/bnx2fc/bnx2fc_io.c | 1 + drivers/scsi/libsas/sas_scsi_host.c | 33 +- drivers/scsi/lpfc/lpfc_attr.c | 5 + drivers/scsi/lpfc/lpfc_hbadisc.c | 5 +- drivers/scsi/lpfc/lpfc_sli.c | 2 + drivers/scsi/qla2xxx/qla_isr.c | 6 +- drivers/scsi/qla4xxx/ql4_def.h | 2 + drivers/scsi/qla4xxx/ql4_os.c | 46 +++ drivers/scsi/scsi_devinfo.c | 7 +- drivers/scsi/sd.c | 3 +- drivers/scsi/sr.c | 21 +- drivers/scsi/sym53c8xx_2/sym_hipd.c | 2 +- drivers/scsi/ufs/ufshcd.c | 2 + drivers/staging/rtl8192u/r8192U_core.c | 2 + drivers/tty/serial/arc_uart.c | 5 + drivers/tty/serial/fsl_lpuart.c | 4 + drivers/tty/serial/imx.c | 6 + drivers/tty/serial/samsung.c | 4 + drivers/tty/serial/xilinx_uartps.c | 2 +- drivers/usb/dwc2/core.h | 2 +- drivers/usb/dwc3/core.h | 2 + drivers/usb/gadget/composite.c | 40 ++- drivers/usb/gadget/function/f_fs.c | 2 +- drivers/usb/gadget/function/f_uac2.c | 2 + drivers/usb/gadget/udc/fsl_udc_core.c | 4 +- drivers/usb/gadget/udc/goku_udc.h | 2 +- drivers/usb/host/ohci-hcd.c | 3 +- drivers/usb/host/xhci-mem.c | 2 + drivers/usb/musb/musb_core.c | 2 + drivers/video/fbdev/sbuslib.c | 4 +- drivers/watchdog/f71808e_wdt.c | 3 +- drivers/watchdog/sp5100_tco.h | 2 +- drivers/xen/events/events_base.c | 4 +- drivers/xen/grant-table.c | 4 +- drivers/xen/xen-acpi-processor.c | 6 +- drivers/xen/xenbus/xenbus_probe.c | 5 +- drivers/zorro/zorro.c | 12 + fs/btrfs/ctree.c | 12 +- fs/btrfs/disk-io.c | 2 +- fs/btrfs/extent-tree.c | 1 + fs/btrfs/send.c | 3 + fs/btrfs/tests/qgroup-tests.c | 2 +- fs/btrfs/tree-log.c | 12 +- fs/cifs/cifssmb.c | 4 +- fs/jffs2/fs.c | 1 - fs/nfs/nfs4sysctl.c | 2 +- fs/ocfs2/acl.c | 6 + fs/ocfs2/super.c | 5 +- fs/ocfs2/xattr.c | 2 + fs/proc/base.c | 29 +- fs/proc/proc_sysctl.c | 3 + fs/signalfd.c | 15 +- fs/udf/super.c | 5 +- fs/xfs/xfs_discard.c | 14 +- include/asm-generic/pgtable.h | 15 + include/linux/suspend.h | 2 + include/linux/usb/composite.h | 3 + include/net/inet_timewait_sock.h | 1 + include/net/llc_conn.h | 2 +- include/net/mac80211.h | 2 +- include/net/regulatory.h | 2 +- include/trace/events/timer.h | 20 +- include/uapi/linux/if_ether.h | 1 + kernel/audit.c | 2 + kernel/debug/kdb/kdb_main.c | 27 +- kernel/events/core.c | 3 +- kernel/power/power.h | 3 - kernel/relay.c | 2 +- kernel/sched/rt.c | 2 + kernel/trace/trace_uprobe.c | 2 + mm/kmemleak.c | 12 +- mm/ksm.c | 28 ++ mm/mempolicy.c | 36 +- mm/percpu.c | 1 + mm/swapfile.c | 4 + mm/vmscan.c | 22 +- net/batman-adv/distributed-arp-table.c | 2 +- net/batman-adv/fragmentation.c | 3 +- net/batman-adv/gateway_client.c | 3 + net/batman-adv/multicast.c | 4 +- net/batman-adv/soft-interface.c | 8 +- net/bridge/netfilter/ebtables.c | 33 +- net/core/skbuff.c | 9 +- net/ipv4/inet_timewait_sock.c | 1 + net/ipv4/ip_vti.c | 2 - net/ipv4/tcp_illinois.c | 2 +- net/ipv6/sit.c | 7 + net/llc/llc_c_ac.c | 15 +- net/llc/llc_conn.c | 32 +- net/netlabel/netlabel_unlabeled.c | 10 + net/nfc/llcp_commands.c | 4 + net/nfc/netlink.c | 3 +- scripts/kconfig/expr.c | 2 +- scripts/kconfig/menu.c | 1 + scripts/kconfig/zconf.y | 33 +- security/integrity/ima/ima_crypto.c | 2 + security/integrity/ima/ima_main.c | 13 + sound/core/vmaster.c | 5 +- sound/soc/au1x/ac97c.c | 6 +- sound/soc/samsung/i2s.c | 13 +- tools/lib/traceevent/parse-filter.c | 10 +- .../ftrace/test.d/kprobe/kprobe_args_string.tc | 46 +++ .../ftrace/test.d/kprobe/kprobe_args_syntax.tc | 97 ++++++ .../selftests/ftrace/test.d/kprobe/probepoint.tc | 43 +++ tools/testing/selftests/memfd/config | 1 + tools/testing/selftests/net/fib-onlink-tests.sh | 375 +++++++++++++++++++++ tools/thermal/tmon/sysfs.c | 12 +- tools/thermal/tmon/tmon.c | 1 - 200 files changed, 1602 insertions(+), 413 deletions(-) create mode 100644 tools/testing/selftests/ftrace/test.d/kprobe/kprobe_args_string.tc create mode 100644 tools/testing/selftests/ftrace/test.d/kprobe/kprobe_args_syntax.tc create mode 100644 tools/testing/selftests/ftrace/test.d/kprobe/probepoint.tc create mode 100644 tools/testing/selftests/memfd/config create mode 100755 tools/testing/selftests/net/fib-onlink-tests.sh -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE4n5dijQDou9mhzu83qZv95d3LNwFAlrihHcACgkQ3qZv95d3 LNynWw//ZB82jJUQHRHsJTTS/ele1QYmORYiC1XNJnlExdATWkHMl5x4EgxOaEyn iNhPa0Uxnh+ESh/qFAyjS6SBAVKQ5JvhLE34ipFNetplc1VikteW1ziD6ZnJdKmq x6+hj5HsSZnYJH7FNJzThAfufEpG8s1UBiZY3GWTO8vVCI+EwDHqDm5uCwiskE1B /Z0Tz97WNOAv9sT5xb4iljbw8nssUIbBfD9CEjf7Sk6MT6Hdd4ap3x3BTK+a7JDN YGMuGp3N8Bc8aTNj9mX3r2IRzm1KxM1WgLf9p62NWD4braAJPXAKLD27fUqLUt5b t5L44mBf9bTgcXn9Y2SRBCY1DqeBmALXLWT/69Hrh4v4FnqvfDCNXb1alTOSKoeT AE0ld6fyIOZ24xSHrqIC7kfozxsLzQ04ByNsuipeU9AdHEsPg0f9PX0p/DSnbYTr MXlNfTxaXtVzqSNzsNeC2rxvCCze3V+Usf2sDMADdIW9mDEYlj2bHCr3+M6E1z2F qZxoTu2/qFWboBBPzlIiIRmSfpCaLx/AefG3JG/r8KBIM9Lxrpq/YL5B59SZUg3E PCHQIrgOgifzGd/UNEZfisDZTKBwbr+/5FSi2a6qkF8jcHpmqNi+62ijSNdLhoHE dgZLEEryNkaYXoxjBr7KhOkt2dA49oBbpxdQ3bF6BE1o0BgMHPU= =gb8l -----END PGP SIGNATURE-----

7 years, 6 months

2
1
0 0

[PATCH 7/7] tracepoint: Do not warn on ENOMEM

by Steven Rostedt

From: Mathieu Desnoyers <mathieu.desnoyers(a)efficios.com> Tracepoint should only warn when a kernel API user does not respect the required preconditions (e.g. same tracepoint enabled twice, or called to remove a tracepoint that does not exist). Silence warning in out-of-memory conditions, given that the error is returned to the caller. This ensures that out-of-memory error-injection testing does not trigger warnings in tracepoint.c, which were seen by syzbot. Link: https://lkml.kernel.org/r/001a114465e241a8720567419a72@google.com Link: https://lkml.kernel.org/r/001a1140e0de15fc910567464190@google.com Link: http://lkml.kernel.org/r/20180315124424.32319-1-mathieu.desnoyers@efficios.… CC: Peter Zijlstra <peterz(a)infradead.org> CC: Jiri Olsa <jolsa(a)redhat.com> CC: Arnaldo Carvalho de Melo <acme(a)kernel.org> CC: Alexander Shishkin <alexander.shishkin(a)linux.intel.com> CC: Namhyung Kim <namhyung(a)kernel.org> CC: stable(a)vger.kernel.org Fixes: de7b2973903c6 ("tracepoint: Use struct pointer instead of name hash for reg/unreg tracepoints") Reported-by: syzbot+9c0d616860575a73166a(a)syzkaller.appspotmail.com Reported-by: syzbot+4e9ae7fa46233396f64d(a)syzkaller.appspotmail.com Signed-off-by: Mathieu Desnoyers <mathieu.desnoyers(a)efficios.com> Signed-off-by: Steven Rostedt (VMware) <rostedt(a)goodmis.org> --- kernel/tracepoint.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel/tracepoint.c b/kernel/tracepoint.c index 671b13457387..1e37da2e0c25 100644 --- a/kernel/tracepoint.c +++ b/kernel/tracepoint.c @@ -207,7 +207,7 @@ static int tracepoint_add_func(struct tracepoint *tp, lockdep_is_held(&tracepoints_mutex)); old = func_add(&tp_funcs, func, prio); if (IS_ERR(old)) { - WARN_ON_ONCE(1); + WARN_ON_ONCE(PTR_ERR(old) != -ENOMEM); return PTR_ERR(old); } @@ -239,7 +239,7 @@ static int tracepoint_remove_func(struct tracepoint *tp, lockdep_is_held(&tracepoints_mutex)); old = func_remove(&tp_funcs, func); if (IS_ERR(old)) { - WARN_ON_ONCE(1); + WARN_ON_ONCE(PTR_ERR(old) != -ENOMEM); return PTR_ERR(old); } -- 2.17.0

7 years, 6 months

1
0
0 0

[PATCH 1/7] tracing: Fix bad use of igrab in trace_uprobe.c

by Steven Rostedt

From: Song Liu <songliubraving(a)fb.com> As Miklos reported and suggested: This pattern repeats two times in trace_uprobe.c and in kernel/events/core.c as well: ret = kern_path(filename, LOOKUP_FOLLOW, &path); if (ret) goto fail_address_parse; inode = igrab(d_inode(path.dentry)); path_put(&path); And it's wrong. You can only hold a reference to the inode if you have an active ref to the superblock as well (which is normally through path.mnt) or holding s_umount. This way unmounting the containing filesystem while the tracepoint is active will give you the "VFS: Busy inodes after unmount..." message and a crash when the inode is finally put. Solution: store path instead of inode. This patch fixes two instances in trace_uprobe.c. struct path is added to struct trace_uprobe to keep the inode and containing mount point referenced. Link: http://lkml.kernel.org/r/20180423172135.4050588-1-songliubraving@fb.com Fixes: f3f096cfedf8 ("tracing: Provide trace events interface for uprobes") Fixes: 33ea4b24277b ("perf/core: Implement the 'perf_uprobe' PMU") Cc: stable(a)vger.kernel.org Cc: Ingo Molnar <mingo(a)redhat.com> Cc: Howard McLauchlan <hmclauchlan(a)fb.com> Cc: Josef Bacik <jbacik(a)fb.com> Cc: Srikar Dronamraju <srikar(a)linux.vnet.ibm.com> Acked-by: Miklos Szeredi <mszeredi(a)redhat.com> Reported-by: Miklos Szeredi <miklos(a)szeredi.hu> Signed-off-by: Song Liu <songliubraving(a)fb.com> Signed-off-by: Steven Rostedt (VMware) <rostedt(a)goodmis.org> --- kernel/trace/trace_uprobe.c | 35 ++++++++++++++--------------------- 1 file changed, 14 insertions(+), 21 deletions(-) diff --git a/kernel/trace/trace_uprobe.c b/kernel/trace/trace_uprobe.c index 34fd0e0ec51d..ac892878dbe6 100644 --- a/kernel/trace/trace_uprobe.c +++ b/kernel/trace/trace_uprobe.c @@ -55,6 +55,7 @@ struct trace_uprobe { struct list_head list; struct trace_uprobe_filter filter; struct uprobe_consumer consumer; + struct path path; struct inode *inode; char *filename; unsigned long offset; @@ -289,7 +290,7 @@ static void free_trace_uprobe(struct trace_uprobe *tu) for (i = 0; i < tu->tp.nr_args; i++) traceprobe_free_probe_arg(&tu->tp.args[i]); - iput(tu->inode); + path_put(&tu->path); kfree(tu->tp.call.class->system); kfree(tu->tp.call.name); kfree(tu->filename); @@ -363,7 +364,6 @@ static int register_trace_uprobe(struct trace_uprobe *tu) static int create_trace_uprobe(int argc, char **argv) { struct trace_uprobe *tu; - struct inode *inode; char *arg, *event, *group, *filename; char buf[MAX_EVENT_NAME_LEN]; struct path path; @@ -371,7 +371,6 @@ static int create_trace_uprobe(int argc, char **argv) bool is_delete, is_return; int i, ret; - inode = NULL; ret = 0; is_delete = false; is_return = false; @@ -437,21 +436,16 @@ static int create_trace_uprobe(int argc, char **argv) } /* Find the last occurrence, in case the path contains ':' too. */ arg = strrchr(argv[1], ':'); - if (!arg) { - ret = -EINVAL; - goto fail_address_parse; - } + if (!arg) + return -EINVAL; *arg++ = '\0'; filename = argv[1]; ret = kern_path(filename, LOOKUP_FOLLOW, &path); if (ret) - goto fail_address_parse; - - inode = igrab(d_real_inode(path.dentry)); - path_put(&path); + return ret; - if (!inode || !S_ISREG(inode->i_mode)) { + if (!d_is_reg(path.dentry)) { ret = -EINVAL; goto fail_address_parse; } @@ -490,7 +484,7 @@ static int create_trace_uprobe(int argc, char **argv) goto fail_address_parse; } tu->offset = offset; - tu->inode = inode; + tu->path = path; tu->filename = kstrdup(filename, GFP_KERNEL); if (!tu->filename) { @@ -558,7 +552,7 @@ static int create_trace_uprobe(int argc, char **argv) return ret; fail_address_parse: - iput(inode); + path_put(&path); pr_info("Failed to parse address or file.\n"); @@ -922,6 +916,7 @@ probe_event_enable(struct trace_uprobe *tu, struct trace_event_file *file, goto err_flags; tu->consumer.filter = filter; + tu->inode = d_real_inode(tu->path.dentry); ret = uprobe_register(tu->inode, tu->offset, &tu->consumer); if (ret) goto err_buffer; @@ -967,6 +962,7 @@ probe_event_disable(struct trace_uprobe *tu, struct trace_event_file *file) WARN_ON(!uprobe_filter_is_empty(&tu->filter)); uprobe_unregister(tu->inode, tu->offset, &tu->consumer); + tu->inode = NULL; tu->tp.flags &= file ? ~TP_FLAG_TRACE : ~TP_FLAG_PROFILE; uprobe_buffer_disable(); @@ -1337,7 +1333,6 @@ struct trace_event_call * create_local_trace_uprobe(char *name, unsigned long offs, bool is_return) { struct trace_uprobe *tu; - struct inode *inode; struct path path; int ret; @@ -1345,11 +1340,8 @@ create_local_trace_uprobe(char *name, unsigned long offs, bool is_return) if (ret) return ERR_PTR(ret); - inode = igrab(d_inode(path.dentry)); - path_put(&path); - - if (!inode || !S_ISREG(inode->i_mode)) { - iput(inode); + if (!d_is_reg(path.dentry)) { + path_put(&path); return ERR_PTR(-EINVAL); } @@ -1364,11 +1356,12 @@ create_local_trace_uprobe(char *name, unsigned long offs, bool is_return) if (IS_ERR(tu)) { pr_info("Failed to allocate trace_uprobe.(%d)\n", (int)PTR_ERR(tu)); + path_put(&path); return ERR_CAST(tu); } tu->offset = offs; - tu->inode = inode; + tu->path = path; tu->filename = kstrdup(name, GFP_KERNEL); init_trace_event_call(tu, &tu->tp.call); -- 2.17.0

7 years, 6 months

1
0
0 0

[PATCH] drm/bridge: vga-dac: Fix edid memory leak

by Sean Paul

edid should be freed once it's finished being used. Fixes: 56fe8b6f4991 ("drm/bridge: Add RGB to VGA bridge support") Cc: Rob Herring <robh(a)kernel.org> Cc: Sean Paul <seanpaul(a)chromium.org> Cc: Maxime Ripard <maxime.ripard(a)free-electrons.com> Cc: Archit Taneja <architt(a)codeaurora.org> Cc: Andrzej Hajda <a.hajda(a)samsung.com> Cc: Laurent Pinchart <Laurent.pinchart(a)ideasonboard.com> Cc: <stable(a)vger.kernel.org> # v4.9+ Signed-off-by: Sean Paul <seanpaul(a)chromium.org> --- drivers/gpu/drm/bridge/dumb-vga-dac.c | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/drivers/gpu/drm/bridge/dumb-vga-dac.c b/drivers/gpu/drm/bridge/dumb-vga-dac.c index 498d5948d1a8..9837c8d69e69 100644 --- a/drivers/gpu/drm/bridge/dumb-vga-dac.c +++ b/drivers/gpu/drm/bridge/dumb-vga-dac.c @@ -56,7 +56,9 @@ static int dumb_vga_get_modes(struct drm_connector *connector) } drm_mode_connector_update_edid_property(connector, edid); - return drm_add_edid_modes(connector, edid); + ret = drm_add_edid_modes(connector, edid); + kfree(edid); + return ret; fallback: /* -- Sean Paul, Software Engineer, Google / Chromium OS

7 years, 6 months

3
3
0 0

[PATCH 3.18 v3] perf session: Fix undeclared 'oe'

by Murilo Opsfelder Araujo

Using linux-3.18.y branch, perf build fails with the following: $ make -s -j16 -C tools/perf V=1 WERROR=0 NO_LIBUNWIND=1 HAVE_CPLUS_DEMANGLE=1 NO_GTK2=1 NO_LIBNUMA=1 NO_STRLCPY=1 NO_BIONIC=1 prefix=/usr DESTDIR=/tmp/builddir/build all [...] util/session.c: In function ‘__perf_session__process_pipe_events’: util/session.c:1093:36: error: ‘oe’ undeclared (first use in this function) ordered_events__set_copy_on_queue(oe, true); ^ util/session.c:1093:36: note: each undeclared identifier is reported only once for each function it appears in This patch fixes it for linux-3.18.y branch. Fixes: 95b33b99cdd6 ("perf inject: Copy events when reordering events in pipe mode") Cc: <stable(a)vger.kernel.org> # 3.18.x Cc: Alexander Shishkin <alexander.shishkin(a)linux.intel.com> Cc: Andi Kleen <ak(a)linux.intel.com> Cc: Arnaldo Carvalho de Melo <acme(a)redhat.com> Cc: David Carrillo-Cisneros <davidcc(a)google.com> Cc: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Cc: He Kuang <hekuang(a)huawei.com> Cc: Ingo Molnar <mingo(a)redhat.com> Cc: Jiri Olsa <jolsa(a)kernel.org> Cc: Masami Hiramatsu <mhiramat(a)kernel.org> Cc: Paul Mackerras <paulus(a)samba.org> Cc: Paul Turner <pjt(a)google.com> Cc: Peter Zijlstra <peterz(a)infradead.org> Cc: Sasha Levin <alexander.levin(a)microsoft.com> Cc: Simon Que <sque(a)chromium.org> Cc: Stephane Eranian <eranian(a)google.com> Cc: Wang Nan <wangnan0(a)huawei.com> Signed-off-by: Murilo Opsfelder Araujo <muriloo(a)linux.ibm.com> --- Hi, Greg. Perf build on linux-3.18.y is broken since v3.18.101 (v3.18.100 worked just fine). This fixes it. Changes since v2: - rebased on v3.18.108 tools/perf/util/session.c | 1 + 1 file changed, 1 insertion(+) diff --git a/tools/perf/util/session.c b/tools/perf/util/session.c index dc3d3b1b813e..c2d4a7ec40df 100644 --- a/tools/perf/util/session.c +++ b/tools/perf/util/session.c @@ -1073,6 +1073,7 @@ volatile int session_done; static int __perf_session__process_pipe_events(struct perf_session *session, struct perf_tool *tool) { + struct ordered_events *oe = &session->ordered_events; int fd = perf_data_file__fd(session->file); union perf_event *event; uint32_t size, cur_size = 0; -- 2.14.3

7 years, 6 months

1
0
0 0

v4.4.131 build: 0 failures 0 warnings (v4.4.131)

by Build bot for Mark Brown

Tree/Branch: v4.4.131 Git describe: v4.4.131 Commit: 8719027e78 Linux 4.4.131 Build Time: 59 min 59 sec Passed: 10 / 10 (100.00 %) Failed: 0 / 10 ( 0.00 %) Errors: 0 Warnings: 0 Section Mismatches: 0 ------------------------------------------------------------------------------- defconfigs with issues (other than build errors): ------------------------------------------------------------------------------- =============================================================================== Detailed per-defconfig build reports below: ------------------------------------------------------------------------------- Passed with no errors, warnings or mismatches: arm64-allnoconfig arm64-allmodconfig arm-multi_v5_defconfig arm-multi_v7_defconfig x86_64-defconfig arm-allmodconfig arm-allnoconfig x86_64-allnoconfig x86_64-allmodconfig arm64-defconfig close failed in file object destructor: sys.excepthook is missing lost sys.stderr

7 years, 6 months

1
0
0 0

Re: Patch "ASoC: fsl_ssi: Maintain a mask of active streams" has been added to the 4.16-stable tree

by Maciej S. Szmigiero

On 02.05.2018 00:32, gregkh(a)linuxfoundation.org wrote: > > This is a note to let you know that I've just added the patch titled > > ASoC: fsl_ssi: Maintain a mask of active streams > > to the 4.16-stable tree which can be found at: > http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… > > The filename of the patch is: > asoc-fsl_ssi-maintain-a-mask-of-active-streams.patch > and it can be found in the queue-4.16 subdirectory. > > If you, or anyone else, feels it should not be added to the stable tree, > please let <stable(a)vger.kernel.org> know about it. This patch was a part of a wider fsl_ssi driver clean up series so I don't think it should go into stable. Maciej

7 years, 6 months

2
1
0 0

Linux 3.18.108

by Greg KH

I'm announcing the release of the 3.18.108 kernel. All users of the 3.18 kernel series must upgrade. The updated 3.18.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-3.18.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 - drivers/char/virtio_console.c | 49 +++++++++++++++++------------------- drivers/mtd/chips/cfi_cmdset_0001.c | 33 ++++++++++++++++++++---- drivers/mtd/chips/cfi_cmdset_0002.c | 9 ++++-- drivers/scsi/sd.c | 2 + drivers/tty/n_gsm.c | 23 ++++++++++++++++ drivers/tty/tty_ldisc.c | 11 +++----- drivers/usb/core/hcd.c | 1 drivers/usb/core/hub.c | 10 ++++++- drivers/usb/core/quirks.c | 3 ++ drivers/usb/serial/cp210x.c | 1 drivers/usb/serial/ftdi_sio.c | 3 +- drivers/usb/usbip/stub_main.c | 5 +++ drivers/usb/usbip/usbip_common.h | 2 - fs/ext4/balloc.c | 17 +++++++++++- fs/ext4/ialloc.c | 8 +++++ fs/jbd2/transaction.c | 1 include/linux/mtd/flashchip.h | 1 include/linux/virtio.h | 3 ++ lib/kobject.c | 12 +++----- net/ceph/messenger.c | 7 +++++ sound/core/pcm_native.c | 1 sound/core/seq/oss/seq_oss_synth.c | 12 +++++--- sound/soc/fsl/fsl_esai.c | 7 +++++ sound/usb/mixer_maps.c | 3 ++ tools/perf/tests/code-reading.c | 20 -------------- 26 files changed, 169 insertions(+), 77 deletions(-) David Henningsson (1): ALSA: core: Report audio_tstamp in snd_pcm_sync_ptr Dmitry Vyukov (1): kobject: don't use WARN for registration failures Greg Kroah-Hartman (2): Revert "perf tests: Decompress kernel module before objdump" Linux 3.18.108 Ilya Dryomov (1): libceph: validate con->state at the top of try_write() Joakim Tjernlund (3): mtd: cfi: cmdset_0001: Do not allow read/write to suspend erase block. mtd: cfi: cmdset_0001: Workaround Micron Erase suspend bug. mtd: cfi: cmdset_0002: Do not allow read/write to suspend erase block. Kamil Lulko (1): usb: core: Add quirk for HP v222w 16GB Mini Kyle Roeschley (1): USB: serial: cp210x: add ID for NI USB serial console Lukas Czerner (1): ext4: fix bitmap position validation Mahesh Rajashekhara (1): scsi: sd: Defer spinning up drive while SANITIZE is in progress Michael S. Tsirkin (2): virtio: add ability to iterate over vqs virtio_console: free buffers after reset Nicolin Chen (1): ASoC: fsl_esai: Fix divisor calculation failure at lower ratio Ravi Chandra Sadineni (1): USB: Increment wakeup count on remote wakeup. Shuah Khan (2): usbip: usbip_host: fix to hold parent lock for device_attach() calls usbip: vhci_hcd: Fix usb device and sockfd leaks Takashi Iwai (2): ALSA: usb-audio: Skip broken EU on Dell dock USB-audio ALSA: seq: oss: Fix unbalanced use lock for synth MIDI device Tetsuo Handa (1): tty: Use __GFP_NOFAIL for tty_ldisc_get() Theodore Ts'o (2): ext4: set h_journal if there is a failure starting a reserved handle ext4: add validity checks for bitmap block numbers Tony Lindgren (2): tty: n_gsm: Fix long delays with control frame timeouts in ADM mode tty: n_gsm: Fix DLCI handling for ADM mode if debug & 2 is not set Vasyl Vavrychuk (1): USB: serial: ftdi_sio: use jtag quirk for Arrow USB Blaster

7 years, 6 months

1
1
0 0

Linux 4.4.131

by Greg KH

I'm announcing the release of the 4.4.131 kernel. All users of the 4.4 kernel series must upgrade. The updated 4.4.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.4.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/x86/include/uapi/asm/msgbuf.h | 31 ++++++++++++ arch/x86/include/uapi/asm/shmbuf.h | 42 ++++++++++++++++ arch/x86/kernel/smpboot.c | 2 drivers/amba/bus.c | 17 ++++-- drivers/char/virtio_console.c | 49 +++++++++---------- drivers/gpu/drm/virtio/virtgpu_vq.c | 4 - drivers/mtd/chips/cfi_cmdset_0001.c | 33 ++++++++++-- drivers/mtd/chips/cfi_cmdset_0002.c | 9 ++- drivers/scsi/sd.c | 2 drivers/tty/n_gsm.c | 23 ++++++++ drivers/tty/serial/serial_mctrl_gpio.c | 5 + drivers/tty/tty_io.c | 5 + drivers/tty/tty_ldisc.c | 16 +++--- drivers/usb/core/hcd.c | 1 drivers/usb/core/hub.c | 10 +++ drivers/usb/core/quirks.c | 3 + drivers/usb/serial/Kconfig | 1 drivers/usb/serial/cp210x.c | 1 drivers/usb/serial/ftdi_sio.c | 3 - drivers/usb/serial/usb-serial-simple.c | 7 ++ drivers/usb/usbip/stub_main.c | 5 + drivers/usb/usbip/usbip_common.h | 2 fs/ext4/balloc.c | 17 +++++- fs/ext4/extents.c | 16 ++++-- fs/ext4/ialloc.c | 7 ++ fs/jbd2/transaction.c | 1 include/linux/mtd/flashchip.h | 1 include/linux/tty.h | 2 include/linux/virtio.h | 3 + include/sound/control.h | 7 +- lib/kobject.c | 12 +--- net/ceph/messenger.c | 7 ++ sound/core/pcm_native.c | 1 sound/core/seq/oss/seq_oss_event.c | 15 +++-- sound/core/seq/oss/seq_oss_midi.c | 2 sound/core/seq/oss/seq_oss_synth.c | 85 +++++++++++++++++++-------------- sound/core/seq/oss/seq_oss_synth.h | 3 - sound/drivers/opl3/opl3_synth.c | 7 +- sound/pci/asihpi/hpimsginit.c | 13 +++-- sound/pci/asihpi/hpioctl.c | 4 + sound/pci/hda/hda_hwdep.c | 12 ++++ sound/pci/hda/patch_realtek.c | 2 sound/pci/rme9652/hdspm.c | 24 +++++---- sound/pci/rme9652/rme9652.c | 6 +- sound/soc/fsl/fsl_esai.c | 7 ++ sound/usb/mixer_maps.c | 3 + 47 files changed, 395 insertions(+), 135 deletions(-) Arnd Bergmann (1): x86/ipc: Fix x32 version of shmid64_ds and msqid64_ds Collin May (1): USB: serial: simple: add libtransistor console David Henningsson (1): ALSA: core: Report audio_tstamp in snd_pcm_sync_ptr Dmitry Vyukov (1): kobject: don't use WARN for registration failures Eric Biggers (1): ext4: prevent right-shifting extents beyond EXT_MAX_BLOCKS Geert Uytterhoeven (3): ARM: amba: Make driver_override output consistent with other buses ARM: amba: Fix race condition with driver_override ARM: amba: Don't read past the end of sysfs "driver_override" buffer Gerd Hoffmann (1): drm/virtio: fix vq wait_event condition Greg Kroah-Hartman (1): Linux 4.4.131 Ilya Dryomov (1): libceph: validate con->state at the top of try_write() Joakim Tjernlund (3): mtd: cfi: cmdset_0001: Do not allow read/write to suspend erase block. mtd: cfi: cmdset_0001: Workaround Micron Erase suspend bug. mtd: cfi: cmdset_0002: Do not allow read/write to suspend erase block. Kailang Yang (1): ALSA: hda/realtek - Add some fixes for ALC233 Kamil Lulko (1): usb: core: Add quirk for HP v222w 16GB Mini Kyle Roeschley (1): USB: serial: cp210x: add ID for NI USB serial console Lukas Czerner (1): ext4: fix bitmap position validation Mahesh Rajashekhara (1): scsi: sd: Defer spinning up drive while SANITIZE is in progress Michael S. Tsirkin (2): virtio: add ability to iterate over vqs virtio_console: free buffers after reset Nicolin Chen (1): ASoC: fsl_esai: Fix divisor calculation failure at lower ratio Ravi Chandra Sadineni (1): USB: Increment wakeup count on remote wakeup. Romain Izard (1): serial: mctrl_gpio: Add missing module license Shuah Khan (2): usbip: usbip_host: fix to hold parent lock for device_attach() calls usbip: vhci_hcd: Fix usb device and sockfd leaks Takashi Iwai (9): ALSA: usb-audio: Skip broken EU on Dell dock USB-audio ALSA: opl3: Hardening for potential Spectre v1 ALSA: asihpi: Hardening for potential Spectre v1 ALSA: hdspm: Hardening for potential Spectre v1 ALSA: rme9652: Hardening for potential Spectre v1 ALSA: control: Hardening for potential Spectre v1 ALSA: seq: oss: Fix unbalanced use lock for synth MIDI device ALSA: seq: oss: Hardening for potential Spectre v1 ALSA: hda: Hardening for potential Spectre v1 Tetsuo Handa (2): tty: Don't call panic() at tty_ldisc_init() tty: Use __GFP_NOFAIL for tty_ldisc_get() Theodore Ts'o (2): ext4: set h_journal if there is a failure starting a reserved handle ext4: add validity checks for bitmap block numbers Tony Lindgren (2): tty: n_gsm: Fix long delays with control frame timeouts in ADM mode tty: n_gsm: Fix DLCI handling for ADM mode if debug & 2 is not set Uwe Kleine-König (1): serial: mctrl_gpio: export mctrl_gpio_disable_ms and mctrl_gpio_init Vasyl Vavrychuk (1): USB: serial: ftdi_sio: use jtag quirk for Arrow USB Blaster Yazen Ghannam (1): x86/smpboot: Don't use mwait_play_dead() on AMD systems

7 years, 6 months

1
1
0 0

Linux 4.9.98

by Greg KH

I'm announcing the release of the 4.9.98 kernel. All users of the 4.9 kernel series must upgrade. The updated 4.9.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.9.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/powerpc/kernel/eeh_driver.c | 61 +++++++++++++-------- arch/powerpc/platforms/powernv/opal-rtc.c | 8 +- arch/x86/include/uapi/asm/msgbuf.h | 31 ++++++++++ arch/x86/include/uapi/asm/shmbuf.h | 42 ++++++++++++++ arch/x86/kernel/cpu/microcode/intel.c | 2 arch/x86/kernel/smpboot.c | 2 crypto/drbg.c | 2 drivers/amba/bus.c | 17 +++--- drivers/char/random.c | 85 ++++++++++++++++++++++-------- drivers/char/virtio_console.c | 49 ++++++++--------- drivers/cpufreq/powernv-cpufreq.c | 14 +++- drivers/gpu/drm/amd/amdgpu/gfx_v8_0.c | 7 +- drivers/gpu/drm/virtio/virtgpu_vq.c | 4 - drivers/mtd/chips/cfi_cmdset_0001.c | 33 +++++++++-- drivers/mtd/chips/cfi_cmdset_0002.c | 9 ++- drivers/of/fdt.c | 7 +- drivers/pci/host/pci-aardvark.c | 12 ++-- drivers/rtc/rtc-opal.c | 37 ++++++++----- drivers/scsi/sd.c | 2 drivers/tty/n_gsm.c | 23 +++++++- drivers/tty/serial/earlycon.c | 6 +- drivers/tty/tty_io.c | 5 + drivers/tty/tty_ldisc.c | 16 ++--- drivers/usb/core/hcd.c | 1 drivers/usb/core/hub.c | 10 +++ drivers/usb/core/quirks.c | 3 + drivers/usb/serial/Kconfig | 1 drivers/usb/serial/cp210x.c | 1 drivers/usb/serial/ftdi_sio.c | 3 - drivers/usb/serial/usb-serial-simple.c | 7 ++ drivers/usb/usbip/stub_main.c | 5 + drivers/usb/usbip/usbip_common.h | 2 drivers/usb/usbip/usbip_event.c | 4 - fs/ext4/balloc.c | 17 +++++- fs/ext4/extents.c | 16 +++-- fs/ext4/ialloc.c | 7 ++ fs/jbd2/transaction.c | 1 include/asm-generic/vmlinux.lds.h | 2 include/linux/mtd/flashchip.h | 1 include/linux/serial_core.h | 21 ++++--- include/linux/tty.h | 2 include/linux/virtio.h | 3 + include/sound/control.h | 7 +- lib/kobject.c | 12 +--- net/ceph/messenger.c | 7 ++ net/ceph/mon_client.c | 14 +++- sound/core/pcm_native.c | 1 sound/core/seq/oss/seq_oss_event.c | 15 +++-- sound/core/seq/oss/seq_oss_midi.c | 2 sound/core/seq/oss/seq_oss_synth.c | 85 +++++++++++++++++------------- sound/core/seq/oss/seq_oss_synth.h | 3 - sound/drivers/opl3/opl3_synth.c | 7 +- sound/firewire/dice/dice-stream.c | 2 sound/firewire/dice/dice.c | 2 sound/pci/asihpi/hpimsginit.c | 13 +++- sound/pci/asihpi/hpioctl.c | 4 + sound/pci/hda/hda_hwdep.c | 12 +++- sound/pci/hda/patch_realtek.c | 2 sound/pci/rme9652/hdspm.c | 24 ++++---- sound/pci/rme9652/rme9652.c | 6 +- sound/soc/fsl/fsl_esai.c | 7 ++ sound/usb/mixer_maps.c | 3 + tools/lib/str_error_r.c | 2 tools/lib/subcmd/pager.c | 5 + 65 files changed, 586 insertions(+), 232 deletions(-) Arnd Bergmann (1): x86/ipc: Fix x32 version of shmid64_ds and msqid64_ds Borislav Petkov (1): x86/microcode/intel: Save microcode patch unconditionally Collin May (1): USB: serial: simple: add libtransistor console Daniel Kurtz (1): earlycon: Use a pointer table to fix __earlycon_table stride David Henningsson (1): ALSA: core: Report audio_tstamp in snd_pcm_sync_ptr Dmitry Vyukov (1): kobject: don't use WARN for registration failures Eric Biggers (1): ext4: prevent right-shifting extents beyond EXT_MAX_BLOCKS Evan Wang (1): PCI: aardvark: Fix PCIe Max Read Request Size setting Geert Uytterhoeven (3): ARM: amba: Make driver_override output consistent with other buses ARM: amba: Fix race condition with driver_override ARM: amba: Don't read past the end of sysfs "driver_override" buffer Gerd Hoffmann (1): drm/virtio: fix vq wait_event condition Greg Kroah-Hartman (1): Linux 4.9.98 Ilya Dryomov (3): libceph: un-backoff on tick when we have a authenticated session libceph: reschedule a tick in finish_hunting() libceph: validate con->state at the top of try_write() Joakim Tjernlund (3): mtd: cfi: cmdset_0001: Do not allow read/write to suspend erase block. mtd: cfi: cmdset_0001: Workaround Micron Erase suspend bug. mtd: cfi: cmdset_0002: Do not allow read/write to suspend erase block. Josh Poimboeuf (1): objtool, perf: Fix GCC 8 -Wrestrict error Kailang Yang (1): ALSA: hda/realtek - Add some fixes for ALC233 Kamil Lulko (1): usb: core: Add quirk for HP v222w 16GB Mini Kyle Roeschley (1): USB: serial: cp210x: add ID for NI USB serial console Lukas Czerner (1): ext4: fix bitmap position validation Mahesh Rajashekhara (1): scsi: sd: Defer spinning up drive while SANITIZE is in progress Michael Neuling (1): powerpc/eeh: Fix race with driver un/bind Michael S. Tsirkin (2): virtio: add ability to iterate over vqs virtio_console: free buffers after reset Nicholas Piggin (1): rtc: opal: Fix OPAL RTC driver OPAL_BUSY loops Nicolai Hähnle (1): drm/amdgpu: set COMPUTE_PGM_RSRC1 for SGPR/VGPR clearing shaders Nicolin Chen (1): ASoC: fsl_esai: Fix divisor calculation failure at lower ratio Ravi Chandra Sadineni (1): USB: Increment wakeup count on remote wakeup. Sergey Senozhatsky (1): tools/lib/subcmd/pager.c: do not alias select() params Shilpasri G Bhat (1): cpufreq: powernv: Fix hardlockup due to synchronous smp_call in timer interrupt Shuah Khan (3): usbip: usbip_event: fix to not print kernel pointer address usbip: usbip_host: fix to hold parent lock for device_attach() calls usbip: vhci_hcd: Fix usb device and sockfd leaks Stephan Mueller (1): crypto: drbg - set freed buffers to NULL Takashi Iwai (9): ALSA: usb-audio: Skip broken EU on Dell dock USB-audio ALSA: opl3: Hardening for potential Spectre v1 ALSA: asihpi: Hardening for potential Spectre v1 ALSA: hdspm: Hardening for potential Spectre v1 ALSA: rme9652: Hardening for potential Spectre v1 ALSA: control: Hardening for potential Spectre v1 ALSA: seq: oss: Fix unbalanced use lock for synth MIDI device ALSA: seq: oss: Hardening for potential Spectre v1 ALSA: hda: Hardening for potential Spectre v1 Takashi Sakamoto (2): ALSA: dice: fix OUI for TC group ALSA: dice: fix error path to destroy initialized stream data Tetsuo Handa (2): tty: Don't call panic() at tty_ldisc_init() tty: Use __GFP_NOFAIL for tty_ldisc_get() Theodore Ts'o (5): ext4: set h_journal if there is a failure starting a reserved handle ext4: add validity checks for bitmap block numbers random: set up the NUMA crng instances after the CRNG is fully initialized random: fix possible sleeping allocation from irq context random: rate limit unseeded randomness warnings Tony Lindgren (2): tty: n_gsm: Fix long delays with control frame timeouts in ADM mode tty: n_gsm: Fix DLCI handling for ADM mode if debug & 2 is not set Vasyl Vavrychuk (1): USB: serial: ftdi_sio: use jtag quirk for Arrow USB Blaster Victor Gu (2): PCI: aardvark: Fix logic in advk_pcie_{rd,wr}_conf() PCI: aardvark: Set PIO_ADDR_LS correctly in advk_pcie_rd_conf() Yazen Ghannam (1): x86/smpboot: Don't use mwait_play_dead() on AMD systems

7 years, 6 months

1
1
0 0

Linux 4.14.39

by Greg KH

I'm announcing the release of the 4.14.39 kernel. All users of the 4.14 kernel series must upgrade. The updated 4.14.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.14.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/virtual/kvm/api.txt | 9 + Documentation/virtual/kvm/arm/psci.txt | 30 +++++ Makefile | 2 arch/arm/configs/socfpga_defconfig | 1 arch/arm/include/asm/kvm_host.h | 3 arch/arm/include/uapi/asm/kvm.h | 6 + arch/arm/kvm/guest.c | 13 ++ arch/arm64/include/asm/kvm_host.h | 3 arch/arm64/include/uapi/asm/kvm.h | 6 + arch/arm64/kvm/guest.c | 14 ++ arch/powerpc/kernel/eeh_driver.c | 61 +++++++---- arch/powerpc/mm/mem.c | 2 arch/powerpc/platforms/powernv/npu-dma.c | 23 +++- arch/powerpc/platforms/powernv/opal-rtc.c | 8 - arch/x86/include/uapi/asm/msgbuf.h | 31 +++++ arch/x86/include/uapi/asm/shmbuf.h | 42 ++++++++ arch/x86/kernel/cpu/microcode/core.c | 6 - arch/x86/kernel/cpu/microcode/intel.c | 2 arch/x86/kernel/smpboot.c | 2 block/bfq-iosched.c | 10 + crypto/drbg.c | 2 drivers/amba/bus.c | 17 ++- drivers/android/binder.c | 8 + drivers/char/random.c | 90 ++++++++++++----- drivers/char/virtio_console.c | 157 +++++++++++++----------------- drivers/cpufreq/powernv-cpufreq.c | 14 ++ drivers/fpga/altera-ps-spi.c | 2 drivers/gpu/drm/amd/amdgpu/gfx_v8_0.c | 7 - drivers/gpu/drm/i915/intel_runtime_pm.c | 11 -- drivers/gpu/drm/virtio/virtgpu_vq.c | 4 drivers/mtd/chips/cfi_cmdset_0001.c | 33 +++++- drivers/mtd/chips/cfi_cmdset_0002.c | 9 + drivers/mtd/nand/tango_nand.c | 2 drivers/mtd/spi-nor/cadence-quadspi.c | 19 +++ drivers/of/fdt.c | 7 - drivers/pci/host/pci-aardvark.c | 53 +++++----- drivers/rtc/rtc-opal.c | 37 ++++--- drivers/s390/cio/vfio_ccw_fsm.c | 19 ++- drivers/scsi/sd.c | 2 drivers/tty/n_gsm.c | 23 ++++ drivers/tty/serial/earlycon.c | 6 - drivers/tty/tty_io.c | 5 drivers/tty/tty_ldisc.c | 29 ++--- drivers/usb/core/hcd.c | 1 drivers/usb/core/hub.c | 10 + drivers/usb/core/quirks.c | 3 drivers/usb/host/xhci-pci.c | 5 drivers/usb/host/xhci-plat.c | 1 drivers/usb/serial/Kconfig | 1 drivers/usb/serial/cp210x.c | 1 drivers/usb/serial/ftdi_sio.c | 3 drivers/usb/serial/usb-serial-simple.c | 7 + drivers/usb/typec/ucsi/ucsi.c | 2 drivers/usb/usbip/stub_main.c | 5 drivers/usb/usbip/usbip_common.h | 2 drivers/usb/usbip/usbip_event.c | 4 drivers/usb/usbip/vhci_hcd.c | 13 ++ fs/ext4/balloc.c | 17 ++- fs/ext4/extents.c | 16 ++- fs/ext4/ialloc.c | 7 + fs/ext4/super.c | 1 fs/jbd2/transaction.c | 1 include/asm-generic/vmlinux.lds.h | 2 include/kvm/arm_psci.h | 16 ++- include/linux/mtd/flashchip.h | 1 include/linux/serial_core.h | 21 ++-- include/linux/tty.h | 2 include/linux/virtio.h | 3 include/sound/control.h | 7 - kernel/time/tick-sched.c | 11 +- lib/kobject.c | 12 -- net/ceph/messenger.c | 7 + net/ceph/mon_client.c | 14 ++ sound/core/pcm_compat.c | 7 - sound/core/pcm_native.c | 24 ++-- sound/core/seq/oss/seq_oss_event.c | 15 +- sound/core/seq/oss/seq_oss_midi.c | 2 sound/core/seq/oss/seq_oss_synth.c | 85 +++++++++------- sound/core/seq/oss/seq_oss_synth.h | 3 sound/drivers/opl3/opl3_synth.c | 7 - sound/firewire/dice/dice-stream.c | 2 sound/firewire/dice/dice.c | 2 sound/pci/asihpi/hpimsginit.c | 13 +- sound/pci/asihpi/hpioctl.c | 4 sound/pci/hda/hda_hwdep.c | 12 ++ sound/pci/hda/patch_hdmi.c | 9 + sound/pci/hda/patch_realtek.c | 5 sound/pci/rme9652/hdspm.c | 24 ++-- sound/pci/rme9652/rme9652.c | 6 - sound/soc/fsl/fsl_esai.c | 7 + sound/usb/mixer_maps.c | 3 tools/lib/str_error_r.c | 2 tools/lib/subcmd/pager.c | 5 virt/kvm/arm/arm.c | 15 +- virt/kvm/arm/psci.c | 60 +++++++++++ 95 files changed, 959 insertions(+), 379 deletions(-) Alistair Popple (1): powerpc/powernv/npu: Do a PID GPU TLB flush when invalidating a large address range Anatolij Gustschin (1): fpga-manager: altera-ps-spi: preserve nCONFIG state Arnd Bergmann (1): x86/ipc: Fix x32 version of shmid64_ds and msqid64_ds Balbir Singh (1): powerpc/mm: Flush cache on memory hot(un)plug Borislav Petkov (2): x86/microcode/intel: Save microcode patch unconditionally x86/microcode: Do not exit early from __reload_late() Collin May (1): USB: serial: simple: add libtransistor console Cornelia Huck (1): vfio: ccw: process ssch with interrupts disabled Daniel Kurtz (1): earlycon: Use a pointer table to fix __earlycon_table stride David Henningsson (1): ALSA: core: Report audio_tstamp in snd_pcm_sync_ptr Dmitry Vyukov (1): kobject: don't use WARN for registration failures Eric Biggers (1): ext4: prevent right-shifting extents beyond EXT_MAX_BLOCKS Evan Wang (1): PCI: aardvark: Fix PCIe Max Read Request Size setting Geert Uytterhoeven (3): ARM: amba: Make driver_override output consistent with other buses ARM: amba: Fix race condition with driver_override ARM: amba: Don't read past the end of sysfs "driver_override" buffer Gerd Hoffmann (1): drm/virtio: fix vq wait_event condition Greg Kroah-Hartman (2): Revert "xhci: plat: Register shutdown for xhci_plat" Linux 4.14.39 Heikki Krogerus (1): usb: typec: ucsi: Increase command completion timeout value Ilya Dryomov (3): libceph: un-backoff on tick when we have a authenticated session libceph: reschedule a tick in finish_hunting() libceph: validate con->state at the top of try_write() Imre Deak (1): drm/i915: Enable display WA#1183 from its correct spot Jeffery Miller (1): ALSA: pcm: Return negative delays from SNDRV_PCM_IOCTL_DELAY. Jens Axboe (1): bfq-iosched: ensure to clear bic/bfqq pointers when preparing request Joakim Tjernlund (3): mtd: cfi: cmdset_0001: Do not allow read/write to suspend erase block. mtd: cfi: cmdset_0001: Workaround Micron Erase suspend bug. mtd: cfi: cmdset_0002: Do not allow read/write to suspend erase block. Josh Poimboeuf (1): objtool, perf: Fix GCC 8 -Wrestrict error Kai-Heng Feng (1): xhci: Fix USB ports for Dell Inspiron 5775 Kailang Yang (3): ALSA: hda/realtek - Add some fixes for ALC233 ALSA: hda/realtek - Update ALC255 depop optimize ALSA: hda/realtek - change the location for one of two front mics Kamil Lulko (1): usb: core: Add quirk for HP v222w 16GB Mini Kyle Roeschley (1): USB: serial: cp210x: add ID for NI USB serial console Lukas Czerner (1): ext4: fix bitmap position validation Mahesh Rajashekhara (1): scsi: sd: Defer spinning up drive while SANITIZE is in progress Marc Gonzalez (1): mtd: rawnand: tango: Fix struct clk memory leak Marc Zyngier (2): KVM: arm/arm64: Close VMID generation race arm/arm64: KVM: Add PSCI version selection API Martijn Coenen (1): ANDROID: binder: prevent transactions into own process. Michael Neuling (1): powerpc/eeh: Fix race with driver un/bind Michael S. Tsirkin (6): virtio: add ability to iterate over vqs virtio_console: don't tie bufs to a vq virtio_console: free buffers after reset virtio_console: drop custom control queue cleanup virtio_console: move removal code virtio_console: reset on out of memory Nicholas Piggin (1): rtc: opal: Fix OPAL RTC driver OPAL_BUSY loops Nicolai Hähnle (1): drm/amdgpu: set COMPUTE_PGM_RSRC1 for SGPR/VGPR clearing shaders Nicolin Chen (1): ASoC: fsl_esai: Fix divisor calculation failure at lower ratio Ravi Chandra Sadineni (1): USB: Increment wakeup count on remote wakeup. Sergey Senozhatsky (1): tools/lib/subcmd/pager.c: do not alias select() params Shilpasri G Bhat (1): cpufreq: powernv: Fix hardlockup due to synchronous smp_call in timer interrupt Shuah Khan (4): usbip: usbip_event: fix to not print kernel pointer address usbip: usbip_host: fix to hold parent lock for device_attach() calls usbip: vhci_hcd: Fix usb device and sockfd leaks usbip: vhci_hcd: check rhport before using in vhci_hub_control() Stephan Mueller (1): crypto: drbg - set freed buffers to NULL Takashi Iwai (10): ALSA: usb-audio: Skip broken EU on Dell dock USB-audio ALSA: hda - Skip jack and others for non-existing PCM streams ALSA: opl3: Hardening for potential Spectre v1 ALSA: asihpi: Hardening for potential Spectre v1 ALSA: hdspm: Hardening for potential Spectre v1 ALSA: rme9652: Hardening for potential Spectre v1 ALSA: control: Hardening for potential Spectre v1 ALSA: seq: oss: Fix unbalanced use lock for synth MIDI device ALSA: seq: oss: Hardening for potential Spectre v1 ALSA: hda: Hardening for potential Spectre v1 Takashi Sakamoto (2): ALSA: dice: fix OUI for TC group ALSA: dice: fix error path to destroy initialized stream data Tetsuo Handa (3): tty: Don't call panic() at tty_ldisc_init() tty: Avoid possible error pointer dereference at tty_ldisc_restore(). tty: Use __GFP_NOFAIL for tty_ldisc_get() Theodore Ts'o (6): ext4: set h_journal if there is a failure starting a reserved handle ext4: add MODULE_SOFTDEP to ensure crc32c is included in the initramfs ext4: add validity checks for bitmap block numbers random: set up the NUMA crng instances after the CRNG is fully initialized random: fix possible sleeping allocation from irq context random: rate limit unseeded randomness warnings Thomas Gleixner (1): tick/sched: Do not mess with an enqueued hrtimer Thor Thayer (2): mtd: spi-nor: cadence-quadspi: Fix page fault kernel panic ARM: socfpga_defconfig: Remove QSPI Sector 4K size force Tony Lindgren (2): tty: n_gsm: Fix long delays with control frame timeouts in ADM mode tty: n_gsm: Fix DLCI handling for ADM mode if debug & 2 is not set Vasyl Vavrychuk (1): USB: serial: ftdi_sio: use jtag quirk for Arrow USB Blaster Victor Gu (3): PCI: aardvark: Fix logic in advk_pcie_{rd,wr}_conf() PCI: aardvark: Set PIO_ADDR_LS correctly in advk_pcie_rd_conf() PCI: aardvark: Use ISR1 instead of ISR0 interrupt in legacy irq mode Yazen Ghannam (1): x86/smpboot: Don't use mwait_play_dead() on AMD systems

7 years, 6 months

1
1
0 0

Re: Patch "PCI: endpoint: Fix kernel panic after put_device()" has been added to the 4.16-stable tree

by Rolf Evers-Fischer

On Wed, May 2, 2018 at 00:35 AM <gregkh(a)linuxfoundation.org> wrote: > This is a note to let you know that I've just added the patch titled > PCI: endpoint: Fix kernel panic after put_device() > to the 4.16-stable tree which can be found at: > http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… > The filename of the patch is: > pci-endpoint-fix-kernel-panic-after-put_device.patch > and it can be found in the queue-4.16 subdirectory. > If you, or anyone else, feels it should not be added to the stable tree, > please let <stable(a)vger.kernel.org> know about it. This patch is the 2nd one of a series of patches. If you want to add it to the stable tree without the first patch, you must add a + kfree(func_name); before returning from the function. The upstream commit of the first patch is 36cc14ac14c0d49d33820a82dab52a7edc802fef PCI: endpoint: Simplify name allocation for EPF device Kind regards, Rolf > From foo@baz Tue May 1 14:59:17 PDT 2018 > From: Rolf Evers-Fischer <rolf.evers.fischer(a)aptiv.com> > Date: Wed, 28 Feb 2018 18:32:19 +0100 > Subject: PCI: endpoint: Fix kernel panic after put_device() > From: Rolf Evers-Fischer <rolf.evers.fischer(a)aptiv.com> > [ Upstream commit 9eef6a5c3b0bf90eb292d462ea267bcb6ad1c334 ] > 'put_device()' calls the relase function 'pci_epf_dev_release()', > which already frees 'epf->name' and 'epf'. > Therefore we must not free them again after 'put_device()'. > Fixes: 5e8cb4033807 ("PCI: endpoint: Add EP core layer to enable EP > controller and EP functions") > Signed-off-by: Rolf Evers-Fischer <rolf.evers.fischer(a)aptiv.com> > Signed-off-by: Lorenzo Pieralisi <lorenzo.pieralisi(a)arm.com> > Acked-by: Kishon Vijay Abraham I <kishon(a)ti.com> > Reviewed-by: Andy Shevchenko <andy.shevchenko(a)gmail.com> > Signed-off-by: Sasha Levin <alexander.levin(a)microsoft.com> > Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> > --- > drivers/pci/endpoint/pci-epf-core.c | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > --- a/drivers/pci/endpoint/pci-epf-core.c > +++ b/drivers/pci/endpoint/pci-epf-core.c > @@ -243,7 +243,7 @@ struct pci_epf *pci_epf_create(const cha > put_dev: > put_device(dev); > - kfree(epf->name); > + return ERR_PTR(ret); > free_func_name: > kfree(func_name); > Patches currently in stable-queue which might be from > rolf.evers.fischer(a)aptiv.com are > queue-4.16/pci-endpoint-fix-kernel-panic-after-put_device.patch

7 years, 6 months

2
3
0 0

Linux 4.16.7

by Greg KH

I'm announcing the release of the 4.16.7 kernel. All users of the 4.16 kernel series must upgrade. The updated 4.16.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.16.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/virtual/kvm/api.txt | 9 Documentation/virtual/kvm/arm/psci.txt | 30 ++ Makefile | 2 arch/arm/boot/dts/gemini-nas4220b.dts | 28 +- arch/arm/configs/socfpga_defconfig | 1 arch/arm/include/asm/kvm_host.h | 3 arch/arm/include/uapi/asm/kvm.h | 6 arch/arm/kvm/guest.c | 13 arch/arm64/include/asm/kvm_host.h | 3 arch/arm64/include/uapi/asm/kvm.h | 6 arch/arm64/kvm/guest.c | 14 - arch/powerpc/kernel/mce_power.c | 7 arch/powerpc/mm/mem.c | 2 arch/powerpc/platforms/powernv/npu-dma.c | 23 + arch/powerpc/platforms/powernv/opal-rtc.c | 8 arch/sparc/include/uapi/asm/oradax.h | 2 arch/x86/include/uapi/asm/msgbuf.h | 31 ++ arch/x86/include/uapi/asm/shmbuf.h | 42 +++ arch/x86/kernel/cpu/microcode/core.c | 6 arch/x86/kernel/cpu/microcode/intel.c | 2 arch/x86/kernel/smpboot.c | 2 block/bfq-iosched.c | 10 block/blk-core.c | 15 - block/blk-mq.c | 7 crypto/drbg.c | 2 drivers/amba/bus.c | 17 - drivers/android/binder.c | 8 drivers/char/random.c | 90 +++++- drivers/char/virtio_console.c | 157 +++++------- drivers/cpufreq/powernv-cpufreq.c | 14 - drivers/crypto/ccp/sp-dev.c | 6 drivers/fpga/altera-ps-spi.c | 2 drivers/gpu/drm/amd/amdgpu/gfx_v8_0.c | 7 drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c | 10 drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_irq.c | 5 drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c | 32 -- drivers/gpu/drm/drm_edid.c | 11 drivers/gpu/drm/i915/intel_cdclk.c | 16 + drivers/gpu/drm/i915/intel_fbdev.c | 2 drivers/gpu/drm/i915/intel_runtime_pm.c | 11 drivers/gpu/drm/virtio/virtgpu_vq.c | 4 drivers/mtd/chips/cfi_cmdset_0001.c | 33 ++ drivers/mtd/chips/cfi_cmdset_0002.c | 9 drivers/mtd/nand/marvell_nand.c | 25 - drivers/mtd/nand/tango_nand.c | 2 drivers/mtd/spi-nor/cadence-quadspi.c | 19 + drivers/of/fdt.c | 7 drivers/pci/host/pci-aardvark.c | 53 ++-- drivers/pci/pci-driver.c | 5 drivers/rtc/rtc-opal.c | 37 +- drivers/s390/cio/vfio_ccw_fsm.c | 19 - drivers/sbus/char/oradax.c | 2 drivers/scsi/sd.c | 2 drivers/scsi/sd_zbc.c | 140 ++++++---- drivers/slimbus/messaging.c | 2 drivers/tty/n_gsm.c | 23 + drivers/tty/serial/earlycon.c | 6 drivers/tty/serial/mvebu-uart.c | 1 drivers/tty/tty_io.c | 5 drivers/tty/tty_ldisc.c | 29 -- drivers/usb/core/hcd.c | 1 drivers/usb/core/hub.c | 10 drivers/usb/core/quirks.c | 3 drivers/usb/host/xhci-dbgtty.c | 8 drivers/usb/host/xhci-pci.c | 5 drivers/usb/host/xhci-plat.c | 1 drivers/usb/serial/Kconfig | 1 drivers/usb/serial/cp210x.c | 1 drivers/usb/serial/ftdi_sio.c | 3 drivers/usb/serial/usb-serial-simple.c | 7 drivers/usb/typec/ucsi/ucsi.c | 2 drivers/usb/usbip/stub_main.c | 5 drivers/usb/usbip/usbip_common.h | 2 drivers/usb/usbip/usbip_event.c | 4 drivers/usb/usbip/vhci_hcd.c | 13 drivers/virt/vboxguest/vboxguest_core.c | 66 ++--- drivers/virt/vboxguest/vboxguest_core.h | 9 drivers/virt/vboxguest/vboxguest_linux.c | 19 + drivers/virt/vboxguest/vboxguest_utils.c | 17 - fs/cifs/cifssmb.c | 3 fs/cifs/smb2ops.c | 18 + fs/cifs/smb2pdu.c | 4 fs/cifs/smbdirect.c | 36 -- fs/cifs/transport.c | 4 fs/ext4/balloc.c | 17 + fs/ext4/extents.c | 16 - fs/ext4/ialloc.c | 7 fs/ext4/super.c | 1 fs/jbd2/transaction.c | 1 include/asm-generic/vmlinux.lds.h | 2 include/kvm/arm_psci.h | 16 + include/linux/blkdev.h | 5 include/linux/mtd/flashchip.h | 1 include/linux/serial_core.h | 21 + include/linux/tty.h | 2 include/linux/vbox_utils.h | 23 - include/linux/virtio.h | 3 include/sound/control.h | 7 kernel/module.c | 3 kernel/time/tick-sched.c | 11 lib/kobject.c | 12 net/ceph/messenger.c | 7 net/ceph/mon_client.c | 14 - sound/core/pcm_compat.c | 7 sound/core/pcm_native.c | 24 - sound/core/seq/oss/seq_oss_event.c | 15 - sound/core/seq/oss/seq_oss_midi.c | 2 sound/core/seq/oss/seq_oss_synth.c | 85 +++--- sound/core/seq/oss/seq_oss_synth.h | 3 sound/drivers/opl3/opl3_synth.c | 7 sound/firewire/dice/dice-stream.c | 2 sound/firewire/dice/dice.c | 2 sound/pci/asihpi/hpimsginit.c | 13 sound/pci/asihpi/hpioctl.c | 4 sound/pci/hda/hda_hwdep.c | 12 sound/pci/hda/patch_hdmi.c | 9 sound/pci/hda/patch_realtek.c | 5 sound/pci/rme9652/hdspm.c | 24 + sound/pci/rme9652/rme9652.c | 6 sound/soc/fsl/fsl_esai.c | 7 sound/soc/omap/omap-dmic.c | 14 - sound/usb/mixer_maps.c | 3 tools/lib/str_error_r.c | 2 virt/kvm/arm/arm.c | 15 - virt/kvm/arm/psci.c | 60 ++++ 125 files changed, 1216 insertions(+), 601 deletions(-) Abhay Kumar (1): drm/i915/audio: set minimum CD clock to twice the BCLK Alan Jenkins (1): block: do not use interruptible wait anywhere Alistair Popple (1): powerpc/powernv/npu: Do a PID GPU TLB flush when invalidating a large address range Anatolij Gustschin (1): fpga-manager: altera-ps-spi: preserve nCONFIG state Arnd Bergmann (1): x86/ipc: Fix x32 version of shmid64_ds and msqid64_ds Balbir Singh (1): powerpc/mm: Flush cache on memory hot(un)plug Bart Van Assche (1): scsi: sd_zbc: Avoid that resetting a zone fails sporadically Borislav Petkov (2): x86/microcode/intel: Save microcode patch unconditionally x86/microcode: Do not exit early from __reload_late() Brijesh Singh (1): crypto: ccp - add check to get PSP master only when PSP is detected Collin May (1): USB: serial: simple: add libtransistor console Cornelia Huck (1): vfio: ccw: process ssch with interrupts disabled Daniel Kurtz (1): earlycon: Use a pointer table to fix __earlycon_table stride David Henningsson (1): ALSA: core: Report audio_tstamp in snd_pcm_sync_ptr Dmitry Vyukov (1): kobject: don't use WARN for registration failures Eric Biggers (1): ext4: prevent right-shifting extents beyond EXT_MAX_BLOCKS Evan Wang (1): PCI: aardvark: Fix PCIe Max Read Request Size setting Geert Uytterhoeven (4): ARM: amba: Make driver_override output consistent with other buses ARM: amba: Fix race condition with driver_override ARM: amba: Don't read past the end of sysfs "driver_override" buffer slimbus: Fix out-of-bounds access in slim_slicesize() Gerd Hoffmann (1): drm/virtio: fix vq wait_event condition Greg Kroah-Hartman (2): Revert "xhci: plat: Register shutdown for xhci_plat" Linux 4.16.7 Hans de Goede (3): virt: vbox: Move declarations of vboxguest private functions to private header virt: vbox: Add vbg_req_free() helper function virt: vbox: Use __get_free_pages instead of kmalloc for DMA32 memory Harry Wentland (2): drm/amd/display: Don't read EDID in atomic_check drm/amd/display: Disallow enabling CRTC without primary plane with FB Heikki Krogerus (1): usb: typec: ucsi: Increase command completion timeout value Ilya Dryomov (3): libceph: un-backoff on tick when we have a authenticated session libceph: reschedule a tick in finish_hunting() libceph: validate con->state at the top of try_write() Imre Deak (1): drm/i915: Enable display WA#1183 from its correct spot Jeffery Miller (1): ALSA: pcm: Return negative delays from SNDRV_PCM_IOCTL_DELAY. Jens Axboe (1): bfq-iosched: ensure to clear bic/bfqq pointers when preparing request Jianchao Wang (1): blk-mq: start request gstate with gen 1 Joakim Tjernlund (3): mtd: cfi: cmdset_0001: Do not allow read/write to suspend erase block. mtd: cfi: cmdset_0001: Workaround Micron Erase suspend bug. mtd: cfi: cmdset_0002: Do not allow read/write to suspend erase block. Josh Poimboeuf (1): objtool, perf: Fix GCC 8 -Wrestrict error José Roberto de Souza (1): drm/i915/fbdev: Enable late fbdev initial configuration Kai-Heng Feng (1): xhci: Fix USB ports for Dell Inspiron 5775 Kailang Yang (3): ALSA: hda/realtek - Add some fixes for ALC233 ALSA: hda/realtek - Update ALC255 depop optimize ALSA: hda/realtek - change the location for one of two front mics Kamil Lulko (1): usb: core: Add quirk for HP v222w 16GB Mini Kyle Roeschley (1): USB: serial: cp210x: add ID for NI USB serial console Linus Walleij (1): ARM: dts: Fix NAS4220B pin config Long Li (2): cifs: smbd: Avoid allocating iov on the stack cifs: smbd: Don't use RDMA read/write when signing is used Lukas Czerner (1): ext4: fix bitmap position validation Mahesh Rajashekhara (1): scsi: sd: Defer spinning up drive while SANITIZE is in progress Mahesh Salgaonkar (1): powerpc/mce: Fix a bug where mce loops on memory UE. Marc Gonzalez (1): mtd: rawnand: tango: Fix struct clk memory leak Marc Zyngier (3): serial: mvebu-uart: Fix local flags handling on termios update KVM: arm/arm64: Close VMID generation race arm/arm64: KVM: Add PSCI version selection API Martijn Coenen (1): ANDROID: binder: prevent transactions into own process. Michael S. Tsirkin (6): virtio: add ability to iterate over vqs virtio_console: don't tie bufs to a vq virtio_console: free buffers after reset virtio_console: drop custom control queue cleanup virtio_console: move removal code virtio_console: reset on out of memory Mika Westerberg (1): PCI / PM: Do not clear state_saved in pci_pm_freeze() when smart suspend is set Mikita Lipski (1): drm/amd/display: Fix deadlock when flushing irq Miquel Raynal (1): mtd: rawnand: marvell: fix the chip-select DT parsing logic Nicholas Piggin (1): rtc: opal: Fix OPAL RTC driver OPAL_BUSY loops Nicolai Hähnle (1): drm/amdgpu: set COMPUTE_PGM_RSRC1 for SGPR/VGPR clearing shaders Nicolin Chen (1): ASoC: fsl_esai: Fix divisor calculation failure at lower ratio Ravi Chandra Sadineni (1): USB: Increment wakeup count on remote wakeup. Rob Gardner (1): sparc64: Fix mistake in oradax license text Shilpasri G Bhat (1): cpufreq: powernv: Fix hardlockup due to synchronous smp_call in timer interrupt Shuah Khan (4): usbip: usbip_event: fix to not print kernel pointer address usbip: usbip_host: fix to hold parent lock for device_attach() calls usbip: vhci_hcd: Fix usb device and sockfd leaks usbip: vhci_hcd: check rhport before using in vhci_hub_control() Stephan Mueller (1): crypto: drbg - set freed buffers to NULL Steve French (1): SMB311: Fix reconnect Takashi Iwai (10): ALSA: usb-audio: Skip broken EU on Dell dock USB-audio ALSA: hda - Skip jack and others for non-existing PCM streams ALSA: opl3: Hardening for potential Spectre v1 ALSA: asihpi: Hardening for potential Spectre v1 ALSA: hdspm: Hardening for potential Spectre v1 ALSA: rme9652: Hardening for potential Spectre v1 ALSA: control: Hardening for potential Spectre v1 ALSA: seq: oss: Fix unbalanced use lock for synth MIDI device ALSA: seq: oss: Hardening for potential Spectre v1 ALSA: hda: Hardening for potential Spectre v1 Takashi Sakamoto (2): ALSA: dice: fix OUI for TC group ALSA: dice: fix error path to destroy initialized stream data Tero Kristo (1): ASoC: dmic: Fix clock parenting Tetsuo Handa (3): tty: Don't call panic() at tty_ldisc_init() tty: Avoid possible error pointer dereference at tty_ldisc_restore(). tty: Use __GFP_NOFAIL for tty_ldisc_get() Theodore Ts'o (6): ext4: set h_journal if there is a failure starting a reserved handle ext4: add MODULE_SOFTDEP to ensure crc32c is included in the initramfs ext4: add validity checks for bitmap block numbers random: set up the NUMA crng instances after the CRNG is fully initialized random: fix possible sleeping allocation from irq context random: rate limit unseeded randomness warnings Thomas Gleixner (1): tick/sched: Do not mess with an enqueued hrtimer Thomas Richter (1): module: Fix display of wrong module .text address Thor Thayer (2): mtd: spi-nor: cadence-quadspi: Fix page fault kernel panic ARM: socfpga_defconfig: Remove QSPI Sector 4K size force Tony Lindgren (2): tty: n_gsm: Fix long delays with control frame timeouts in ADM mode tty: n_gsm: Fix DLCI handling for ADM mode if debug & 2 is not set Vasyl Vavrychuk (1): USB: serial: ftdi_sio: use jtag quirk for Arrow USB Blaster Victor Gu (3): PCI: aardvark: Fix logic in advk_pcie_{rd,wr}_conf() PCI: aardvark: Set PIO_ADDR_LS correctly in advk_pcie_rd_conf() PCI: aardvark: Use ISR1 instead of ISR0 interrupt in legacy irq mode Ville Syrjälä (1): drm/edid: Reset more of the display info Yazen Ghannam (1): x86/smpboot: Don't use mwait_play_dead() on AMD systems Zhengjun Xing (1): xhci: Fix Kernel oops in xhci dbgtty

7 years, 6 months

1
1
0 0

Please apply 1572e45a924f ("perf/core: Fix the perf_cpu_time ...") to v4.9.y and older

by Guenter Roeck

Hi Greg, upstream commit 1572e45a924f ("perf/core: Fix the perf_cpu_time_max_percent check") fixes CVE-2017-18255. Please apply to v4.9.y and older. The patch applies cleanly to v4.9.y and v4.4.y; I didn't check older kernels. More recent kernels are not affected. Thanks, Guenter

7 years, 6 months

2
1
0 0

Re: Patch "PCI: endpoint: Fix kernel panic after put_device()" has been added to the 4.14-stable tree

by Rolf Evers-Fischer

On Wed, May 2, 2018 at 1:49 AM <gregkh(a)linuxfoundation.org> wrote: > This is a note to let you know that I've just added the patch titled > PCI: endpoint: Fix kernel panic after put_device() > to the 4.14-stable tree which can be found at: > http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… > The filename of the patch is: > pci-endpoint-fix-kernel-panic-after-put_device.patch > and it can be found in the queue-4.14 subdirectory. > If you, or anyone else, feels it should not be added to the stable tree, > please let <stable(a)vger.kernel.org> know about it. This patch is the 2nd one of a series of patches. If you want to add it to the stable tree without the first patch, you must add a + kfree(func_name); before returning from the function. The upstream commit of the first patch is 36cc14ac14c0d49d33820a82dab52a7edc802fef PCI: endpoint: Simplify name allocation for EPF device Kind regards, Rolf > From foo@baz Tue May 1 16:18:20 PDT 2018 > From: Rolf Evers-Fischer <rolf.evers.fischer(a)aptiv.com> > Date: Wed, 28 Feb 2018 18:32:19 +0100 > Subject: PCI: endpoint: Fix kernel panic after put_device() > From: Rolf Evers-Fischer <rolf.evers.fischer(a)aptiv.com> > [ Upstream commit 9eef6a5c3b0bf90eb292d462ea267bcb6ad1c334 ] > 'put_device()' calls the relase function 'pci_epf_dev_release()', > which already frees 'epf->name' and 'epf'. > Therefore we must not free them again after 'put_device()'. > Fixes: 5e8cb4033807 ("PCI: endpoint: Add EP core layer to enable EP > controller and EP functions") > Signed-off-by: Rolf Evers-Fischer <rolf.evers.fischer(a)aptiv.com> > Signed-off-by: Lorenzo Pieralisi <lorenzo.pieralisi(a)arm.com> > Acked-by: Kishon Vijay Abraham I <kishon(a)ti.com> > Reviewed-by: Andy Shevchenko <andy.shevchenko(a)gmail.com> > Signed-off-by: Sasha Levin <alexander.levin(a)microsoft.com> > Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> > --- > drivers/pci/endpoint/pci-epf-core.c | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > --- a/drivers/pci/endpoint/pci-epf-core.c > +++ b/drivers/pci/endpoint/pci-epf-core.c > @@ -254,7 +254,7 @@ struct pci_epf *pci_epf_create(const cha > put_dev: > put_device(dev); > - kfree(epf->name); > + return ERR_PTR(ret); > free_func_name: > kfree(func_name); > Patches currently in stable-queue which might be from > rolf.evers.fischer(a)aptiv.com are > queue-4.14/pci-endpoint-fix-kernel-panic-after-put_device.patch

7 years, 6 months

2
1
0 0

[PATCH 2/4] xen/PVH: Use proper CS selector in long mode

by Boris Ostrovsky

Signed-off-by: Boris Ostrovsky <boris.ostrovsky(a)oracle.com> Cc: stable(a)vger.kernel.org --- arch/x86/xen/xen-pvh.S | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/arch/x86/xen/xen-pvh.S b/arch/x86/xen/xen-pvh.S index 934f7d4..373fef0 100644 --- a/arch/x86/xen/xen-pvh.S +++ b/arch/x86/xen/xen-pvh.S @@ -93,7 +93,7 @@ ENTRY(pvh_start_xen) mov %eax, %cr0 /* Jump to 64-bit mode. */ - ljmp $__KERNEL_CS, $_pa(1f) + ljmp $__BOOT_CS, $_pa(1f) /* 64-bit entry point. */ .code64 -- 2.9.3

7 years, 6 months

3
6
0 0

Re: Patch "mm, mlock, vmscan: no more skipping pagevecs" has been added to the 4.14-stable tree

by Shakeel Butt

On Tue, May 1, 2018 at 4:52 PM <gregkh(a)linuxfoundation.org> wrote: > This is a note to let you know that I've just added the patch titled > mm, mlock, vmscan: no more skipping pagevecs > to the 4.14-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… > The filename of the patch is: > mm-mlock-vmscan-no-more-skipping-pagevecs.patch > and it can be found in the queue-4.14 subdirectory. > If you, or anyone else, feels it should not be added to the stable tree, > please let <stable(a)vger.kernel.org> know about it. I would advise not to include this patch in the previous stable trees. This patch does not fix any critical bug and for some very specific microbenchmarks on very large machines, it has shown performance regression. So, I don't think it is worth the risk. > From foo@baz Tue May 1 16:18:19 PDT 2018 > From: Shakeel Butt <shakeelb(a)google.com> > Date: Wed, 21 Feb 2018 14:45:28 -0800 > Subject: mm, mlock, vmscan: no more skipping pagevecs > From: Shakeel Butt <shakeelb(a)google.com> > [ Upstream commit 9c4e6b1a7027f102990c0395296015a812525f4d ] > When a thread mlocks an address space backed either by file pages which > are currently not present in memory or swapped out anon pages (not in > swapcache), a new page is allocated and added to the local pagevec > (lru_add_pvec), I/O is triggered and the thread then sleeps on the page. > On I/O completion, the thread can wake on a different CPU, the mlock > syscall will then sets the PageMlocked() bit of the page but will not be > able to put that page in unevictable LRU as the page is on the pagevec > of a different CPU. Even on drain, that page will go to evictable LRU > because the PageMlocked() bit is not checked on pagevec drain. > The page will eventually go to right LRU on reclaim but the LRU stats > will remain skewed for a long time. > This patch puts all the pages, even unevictable, to the pagevecs and on > the drain, the pages will be added on their LRUs correctly by checking > their evictability. This resolves the mlocked pages on pagevec of other > CPUs issue because when those pagevecs will be drained, the mlocked file > pages will go to unevictable LRU. Also this makes the race with munlock > easier to resolve because the pagevec drains happen in LRU lock. > However there is still one place which makes a page evictable and does > PageLRU check on that page without LRU lock and needs special attention. > TestClearPageMlocked() and isolate_lru_page() in clear_page_mlock(). > #0: __pagevec_lru_add_fn #1: clear_page_mlock > SetPageLRU() if (!TestClearPageMlocked()) > return > smp_mb() // <--required > // inside does PageLRU > if (!PageMlocked()) if (isolate_lru_page()) > move to evictable LRU putback_lru_page() > else > move to unevictable LRU > In '#1', TestClearPageMlocked() provides full memory barrier semantics > and thus the PageLRU check (inside isolate_lru_page) can not be > reordered before it. > In '#0', without explicit memory barrier, the PageMlocked() check can be > reordered before SetPageLRU(). If that happens, '#0' can put a page in > unevictable LRU and '#1' might have just cleared the Mlocked bit of that > page but fails to isolate as PageLRU fails as '#0' still hasn't set > PageLRU bit of that page. That page will be stranded on the unevictable > LRU. > There is one (good) side effect though. Without this patch, the pages > allocated for System V shared memory segment are added to evictable LRUs > even after shmctl(SHM_LOCK) on that segment. This patch will correctly > put such pages to unevictable LRU. > Link: http://lkml.kernel.org/r/20171121211241.18877-1-shakeelb@google.com > Signed-off-by: Shakeel Butt <shakeelb(a)google.com> > Acked-by: Vlastimil Babka <vbabka(a)suse.cz> > Cc: Jérôme Glisse <jglisse(a)redhat.com> > Cc: Huang Ying <ying.huang(a)intel.com> > Cc: Tim Chen <tim.c.chen(a)linux.intel.com> > Cc: Michal Hocko <mhocko(a)kernel.org> > Cc: Greg Thelen <gthelen(a)google.com> > Cc: Johannes Weiner <hannes(a)cmpxchg.org> > Cc: Balbir Singh <bsingharora(a)gmail.com> > Cc: Minchan Kim <minchan(a)kernel.org> > Cc: Shaohua Li <shli(a)fb.com> > Cc: Jan Kara <jack(a)suse.cz> > Cc: Nicholas Piggin <npiggin(a)gmail.com> > Cc: Dan Williams <dan.j.williams(a)intel.com> > Cc: Mel Gorman <mgorman(a)suse.de> > Cc: Hugh Dickins <hughd(a)google.com> > Cc: Vlastimil Babka <vbabka(a)suse.cz> > Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> > Signed-off-by: Linus Torvalds <torvalds(a)linux-foundation.org> > Signed-off-by: Sasha Levin <alexander.levin(a)microsoft.com> > Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> > --- > include/linux/swap.h | 2 - > mm/mlock.c | 6 +++ > mm/swap.c | 82 +++++++++++++++++++++++++++++---------------------- > mm/vmscan.c | 59 ------------------------------------ > 4 files changed, 54 insertions(+), 95 deletions(-) > --- a/include/linux/swap.h > +++ b/include/linux/swap.h > @@ -326,8 +326,6 @@ extern void deactivate_file_page(struct > extern void mark_page_lazyfree(struct page *page); > extern void swap_setup(void); > -extern void add_page_to_unevictable_list(struct page *page); > - > extern void lru_cache_add_active_or_unevictable(struct page *page, > struct vm_area_struct *vma); > --- a/mm/mlock.c > +++ b/mm/mlock.c > @@ -64,6 +64,12 @@ void clear_page_mlock(struct page *page) > mod_zone_page_state(page_zone(page), NR_MLOCK, > -hpage_nr_pages(page)); > count_vm_event(UNEVICTABLE_PGCLEARED); > + /* > + * The previous TestClearPageMlocked() corresponds to the smp_mb() > + * in __pagevec_lru_add_fn(). > + * > + * See __pagevec_lru_add_fn for more explanation. > + */ > if (!isolate_lru_page(page)) { > putback_lru_page(page); > } else { > --- a/mm/swap.c > +++ b/mm/swap.c > @@ -446,30 +446,6 @@ void lru_cache_add(struct page *page) > } > /** > - * add_page_to_unevictable_list - add a page to the unevictable list > - * @page: the page to be added to the unevictable list > - * > - * Add page directly to its zone's unevictable list. To avoid races with > - * tasks that might be making the page evictable, through eg. munlock, > - * munmap or exit, while it's not on the lru, we want to add the page > - * while it's locked or otherwise "invisible" to other tasks. This is > - * difficult to do when using the pagevec cache, so bypass that. > - */ > -void add_page_to_unevictable_list(struct page *page) > -{ > - struct pglist_data *pgdat = page_pgdat(page); > - struct lruvec *lruvec; > - > - spin_lock_irq(&pgdat->lru_lock); > - lruvec = mem_cgroup_page_lruvec(page, pgdat); > - ClearPageActive(page); > - SetPageUnevictable(page); > - SetPageLRU(page); > - add_page_to_lru_list(page, lruvec, LRU_UNEVICTABLE); > - spin_unlock_irq(&pgdat->lru_lock); > -} > - > -/** > * lru_cache_add_active_or_unevictable > * @page: the page to be added to LRU > * @vma: vma in which page is mapped for determining reclaimability > @@ -484,13 +460,9 @@ void lru_cache_add_active_or_unevictable > { > VM_BUG_ON_PAGE(PageLRU(page), page); > - if (likely((vma->vm_flags & (VM_LOCKED | VM_SPECIAL)) != VM_LOCKED)) { > + if (likely((vma->vm_flags & (VM_LOCKED | VM_SPECIAL)) != VM_LOCKED)) > SetPageActive(page); > - lru_cache_add(page); > - return; > - } > - > - if (!TestSetPageMlocked(page)) { > + else if (!TestSetPageMlocked(page)) { > /* > * We use the irq-unsafe __mod_zone_page_stat because this > * counter is not modified from interrupt context, and the pte > @@ -500,7 +472,7 @@ void lru_cache_add_active_or_unevictable > hpage_nr_pages(page)); > count_vm_event(UNEVICTABLE_PGMLOCKED); > } > - add_page_to_unevictable_list(page); > + lru_cache_add(page); > } > /* > @@ -883,15 +855,55 @@ void lru_add_page_tail(struct page *page > static void __pagevec_lru_add_fn(struct page *page, struct lruvec *lruvec, > void *arg) > { > - int file = page_is_file_cache(page); > - int active = PageActive(page); > - enum lru_list lru = page_lru(page); > + enum lru_list lru; > + int was_unevictable = TestClearPageUnevictable(page); > VM_BUG_ON_PAGE(PageLRU(page), page); > SetPageLRU(page); > + /* > + * Page becomes evictable in two ways: > + * 1) Within LRU lock [munlock_vma_pages() and __munlock_pagevec()]. > + * 2) Before acquiring LRU lock to put the page to correct LRU and then > + * a) do PageLRU check with lock [check_move_unevictable_pages] > + * b) do PageLRU check before lock [clear_page_mlock] > + * > + * (1) & (2a) are ok as LRU lock will serialize them. For (2b), we need > + * following strict ordering: > + * > + * #0: __pagevec_lru_add_fn #1: clear_page_mlock > + * > + * SetPageLRU() TestClearPageMlocked() > + * smp_mb() // explicit ordering // above provides strict > + * // ordering > + * PageMlocked() PageLRU() > + * > + * > + * if '#1' does not observe setting of PG_lru by '#0' and fails > + * isolation, the explicit barrier will make sure that page_evictable > + * check will put the page in correct LRU. Without smp_mb(), SetPageLRU > + * can be reordered after PageMlocked check and can make '#1' to fail > + * the isolation of the page whose Mlocked bit is cleared (#0 is also > + * looking at the same page) and the evictable page will be stranded > + * in an unevictable LRU. > + */ > + smp_mb(); > + > + if (page_evictable(page)) { > + lru = page_lru(page); > + update_page_reclaim_stat(lruvec, page_is_file_cache(page), > + PageActive(page)); > + if (was_unevictable) > + count_vm_event(UNEVICTABLE_PGRESCUED); > + } else { > + lru = LRU_UNEVICTABLE; > + ClearPageActive(page); > + SetPageUnevictable(page); > + if (!was_unevictable) > + count_vm_event(UNEVICTABLE_PGCULLED); > + } > + > add_page_to_lru_list(page, lruvec, lru); > - update_page_reclaim_stat(lruvec, file, active); > trace_mm_lru_insertion(page, lru); > } > --- a/mm/vmscan.c > +++ b/mm/vmscan.c > @@ -790,64 +790,7 @@ int remove_mapping(struct address_space > */ > void putback_lru_page(struct page *page) > { > - bool is_unevictable; > - int was_unevictable = PageUnevictable(page); > - > - VM_BUG_ON_PAGE(PageLRU(page), page); > - > -redo: > - ClearPageUnevictable(page); > - > - if (page_evictable(page)) { > - /* > - * For evictable pages, we can use the cache. > - * In event of a race, worst case is we end up with an > - * unevictable page on [in]active list. > - * We know how to handle that. > - */ > - is_unevictable = false; > - lru_cache_add(page); > - } else { > - /* > - * Put unevictable pages directly on zone's unevictable > - * list. > - */ > - is_unevictable = true; > - add_page_to_unevictable_list(page); > - /* > - * When racing with an mlock or AS_UNEVICTABLE clearing > - * (page is unlocked) make sure that if the other thread > - * does not observe our setting of PG_lru and fails > - * isolation/check_move_unevictable_pages, > - * we see PG_mlocked/AS_UNEVICTABLE cleared below and move > - * the page back to the evictable list. > - * > - * The other side is TestClearPageMlocked() or shmem_lock(). > - */ > - smp_mb(); > - } > - > - /* > - * page's status can change while we move it among lru. If an evictable > - * page is on unevictable list, it never be freed. To avoid that, > - * check after we added it to the list, again. > - */ > - if (is_unevictable && page_evictable(page)) { > - if (!isolate_lru_page(page)) { > - put_page(page); > - goto redo; > - } > - /* This means someone else dropped this page from LRU > - * So, it will be freed or putback to LRU again. There is > - * nothing to do here. > - */ > - } > - > - if (was_unevictable && !is_unevictable) > - count_vm_event(UNEVICTABLE_PGRESCUED); > - else if (!was_unevictable && is_unevictable) > - count_vm_event(UNEVICTABLE_PGCULLED); > - > + lru_cache_add(page); > put_page(page); /* drop ref from isolate */ > } > Patches currently in stable-queue which might be from shakeelb(a)google.com are > queue-4.14/mm-slab-memcg_link-the-slab-s-kmem_cache.patch > queue-4.14/mm-mlock-vmscan-no-more-skipping-pagevecs.patch

7 years, 6 months

2
1
0 0

[PATCH 1/4] xen/PVH: Replace GDT_ENTRY with explicit constant

by Boris Ostrovsky

Latest binutils release (2.29.1) will no longer allow proper computation of GDT entries on 32-bits, with warning: arch/x86/xen/xen-pvh.S: Assembler messages: arch/x86/xen/xen-pvh.S:150: Warning: shift count out of range (32 is not between 0 and 31) arch/x86/xen/xen-pvh.S:150: Warning: shift count out of range (40 is not between 0 and 31) arch/x86/xen/xen-pvh.S:150: Warning: shift count out of range (32 is not between 0 and 31) arch/x86/xen/xen-pvh.S:152: Warning: shift count out of range (32 is not between 0 and 31) arch/x86/xen/xen-pvh.S:152: Warning: shift count out of range (40 is not between 0 and 31) arch/x86/xen/xen-pvh.S:152: Warning: shift count out of range (32 is not between 0 and 31) Use explicit value of the entry instead of using GDT_ENTRY() macro. Signed-off-by: Boris Ostrovsky <boris.ostrovsky(a)oracle.com> Cc: stable(a)vger.kernel.org --- arch/x86/xen/xen-pvh.S | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/arch/x86/xen/xen-pvh.S b/arch/x86/xen/xen-pvh.S index e1a5fbe..934f7d4 100644 --- a/arch/x86/xen/xen-pvh.S +++ b/arch/x86/xen/xen-pvh.S @@ -145,11 +145,11 @@ gdt_start: .quad 0x0000000000000000 /* NULL descriptor */ .quad 0x0000000000000000 /* reserved */ #ifdef CONFIG_X86_64 - .quad GDT_ENTRY(0xa09a, 0, 0xfffff) /* __KERNEL_CS */ + .quad 0x00af9a000000ffff /* __BOOT_CS */ #else - .quad GDT_ENTRY(0xc09a, 0, 0xfffff) /* __KERNEL_CS */ + .quad 0x00cf9a000000ffff /* __BOOT_CS */ #endif - .quad GDT_ENTRY(0xc092, 0, 0xfffff) /* __KERNEL_DS */ + .quad 0x00cf92000000ffff /* __BOOT_DS */ gdt_end: .balign 4 -- 2.9.3

7 years, 6 months

4
8
0 0

[PATCH v3] module: Fix display of wrong module .text address

by Thomas Richter

Reading file /proc/modules shows the correct address: [root@s35lp76 ~]# cat /proc/modules | egrep '^qeth_l2' qeth_l2 94208 1 - Live 0x000003ff80401000 and reading file /sys/module/qeth_l2/sections/.text [root@s35lp76 ~]# cat /sys/module/qeth_l2/sections/.text 0x0000000018ea8363 displays a random address. This breaks the perf tool which uses this address on s390 to calculate start of .text section in memory. Fix this by printing the correct (unhashed) address. Thanks to Jessica Yu for helping on this. Fixes: ef0010a30935 ("vsprintf: don't use 'restricted_pointer()' when not restricting") Cc: <stable(a)vger.kernel.org> # v4.15+ Suggested-by: Linus Torvalds <torvalds(a)linux-foundation.org> Signed-off-by: Thomas Richter <tmricht(a)linux.ibm.com> Cc: Jessica Yu <jeyu(a)kernel.org> --- kernel/module.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/kernel/module.c b/kernel/module.c index a6e43a5806a1..40b42000bd80 100644 --- a/kernel/module.c +++ b/kernel/module.c @@ -1472,7 +1472,8 @@ static ssize_t module_sect_show(struct module_attribute *mattr, { struct module_sect_attr *sattr = container_of(mattr, struct module_sect_attr, mattr); - return sprintf(buf, "0x%pK\n", (void *)sattr->address); + return sprintf(buf, "0x%px\n", kptr_restrict < 2 ? + (void *)sattr->address : NULL); } static void free_sect_attrs(struct module_sect_attrs *sect_attrs) -- 2.14.3

7 years, 6 months

6
7
0 0

[PATCH] ext4: fix bitmap position validation

by Lukas Czerner

Currently in ext4_valid_block_bitmap() we expect the bitmap to be positioned anywhere between 0 and s_blocksize clusters, but that's wrong because the bitmap can be placed anywhere in the block group. This causes false positives when validating bitmaps on perfectly valid file system layouts. Fix it by checking whether the bitmap is within the group boundary. The problem can be reproduced using the following mkfs -t ext3 -E stride=256 /dev/vdb1 mount /dev/vdb1 /mnt/test cd /mnt/test wget https://cdn.kernel.org/pub/linux/kernel/v4.x/linux-4.16.3.tar.xz tar xf linux-4.16.3.tar.xz This will result in the warnings in the logs EXT4-fs error (device vdb1): ext4_validate_block_bitmap:399: comm tar: bg 84: block 2774529: invalid block bitmap Signed-off-by: Lukas Czerner <lczerner(a)redhat.com> Reported-by: Ilya Dryomov <idryomov(a)gmail.com> Fixes: 7dac4a1726a9 ("ext4: add validity checks for bitmap block numbers") Cc: stable(a)vger.kernel.org --- fs/ext4/balloc.c | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/fs/ext4/balloc.c b/fs/ext4/balloc.c index a33d8fb..0c0e383 100644 --- a/fs/ext4/balloc.c +++ b/fs/ext4/balloc.c @@ -338,7 +338,8 @@ static ext4_fsblk_t ext4_valid_block_bitmap(struct super_block *sb, /* check whether block bitmap block number is set */ blk = ext4_block_bitmap(sb, desc); offset = blk - group_first_block; - if (offset < 0 || EXT4_B2C(sbi, offset) >= sb->s_blocksize || + if (offset < 0 || + EXT4_B2C(sbi, offset) >= EXT4_CLUSTERS_PER_GROUP(sb) || !ext4_test_bit(EXT4_B2C(sbi, offset), bh->b_data)) /* bad block bitmap */ return blk; @@ -346,7 +347,8 @@ static ext4_fsblk_t ext4_valid_block_bitmap(struct super_block *sb, /* check whether the inode bitmap block number is set */ blk = ext4_inode_bitmap(sb, desc); offset = blk - group_first_block; - if (offset < 0 || EXT4_B2C(sbi, offset) >= sb->s_blocksize || + if (offset < 0 || + EXT4_B2C(sbi, offset) >= EXT4_CLUSTERS_PER_GROUP(sb) || !ext4_test_bit(EXT4_B2C(sbi, offset), bh->b_data)) /* bad block bitmap */ return blk; @@ -354,8 +356,8 @@ static ext4_fsblk_t ext4_valid_block_bitmap(struct super_block *sb, /* check whether the inode table block number is set */ blk = ext4_inode_table(sb, desc); offset = blk - group_first_block; - if (offset < 0 || EXT4_B2C(sbi, offset) >= sb->s_blocksize || - EXT4_B2C(sbi, offset + sbi->s_itb_per_group) >= sb->s_blocksize) + if (offset < 0 || EXT4_B2C(sbi, offset + sbi->s_itb_per_group) >= + EXT4_CLUSTERS_PER_GROUP(sb)) return blk; next_zero_bit = ext4_find_next_zero_bit(bh->b_data, EXT4_B2C(sbi, offset + sbi->s_itb_per_group), -- 2.7.5

7 years, 6 months

2
5
0 0

[PATCH] USB: serial: option: adding support for ublox R410M

by SZ Lin (林上智)

This patch adds support for ublox R410M PID 0x90b2 USB modem to option driver, this module supports LTE Cat M1 / NB1. Interface layout: 0: QCDM/DIAG 1: ADB 2: AT 3: RMNET Signed-off-by: SZ Lin (林上智) <sz.lin(a)moxa.com> Cc: stable <stable(a)vger.kernel.org> --- Please refer to following lsusb output: Bus 001 Device 003: ID 05c6:90b2 Qualcomm, Inc. Device Descriptor: bLength 18 bDescriptorType 1 bcdUSB 2.00 bDeviceClass 0 (Defined at Interface level) bDeviceSubClass 0 bDeviceProtocol 0 bMaxPacketSize0 64 idVendor 0x05c6 Qualcomm, Inc. idProduct 0x90b2 bcdDevice 0.00 iManufacturer 3 Qualcomm, Incorporated iProduct 2 Qualcomm CDMA Technologies MSM iSerial 4 fb854106 bNumConfigurations 1 Configuration Descriptor: bLength 9 bDescriptorType 2 wTotalLength 108 bNumInterfaces 4 bConfigurationValue 1 iConfiguration 1 Qualcomm Configuration bmAttributes 0xe0 Self Powered Remote Wakeup MaxPower 500mA Interface Descriptor: bLength 9 bDescriptorType 4 bInterfaceNumber 0 bAlternateSetting 0 bNumEndpoints 2 bInterfaceClass 255 Vendor Specific Class bInterfaceSubClass 255 Vendor Specific Subclass bInterfaceProtocol 255 Vendor Specific Protocol iInterface 0 Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x81 EP 1 IN bmAttributes 2 Transfer Type Bulk Synch Type None Usage Type Data wMaxPacketSize 0x0200 1x 512 bytes bInterval 0 Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x01 EP 1 OUT bmAttributes 2 Transfer Type Bulk Synch Type None Usage Type Data wMaxPacketSize 0x0200 1x 512 bytes bInterval 0 Interface Descriptor: bLength 9 bDescriptorType 4 bInterfaceNumber 1 bAlternateSetting 0 bNumEndpoints 1 bInterfaceClass 255 Vendor Specific Class bInterfaceSubClass 255 Vendor Specific Subclass bInterfaceProtocol 255 Vendor Specific Protocol iInterface 0 Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x82 EP 2 IN bmAttributes 2 Transfer Type Bulk Synch Type None Usage Type Data wMaxPacketSize 0x0200 1x 512 bytes bInterval 0 Interface Descriptor: bLength 9 bDescriptorType 4 bInterfaceNumber 2 bAlternateSetting 0 bNumEndpoints 3 bInterfaceClass 255 Vendor Specific Class bInterfaceSubClass 255 Vendor Specific Subclass bInterfaceProtocol 255 Vendor Specific Protocol iInterface 0 Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x83 EP 3 IN bmAttributes 3 Transfer Type Interrupt Synch Type None Usage Type Data wMaxPacketSize 0x0040 1x 64 bytes bInterval 5 Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x84 EP 4 IN bmAttributes 2 Transfer Type Bulk Synch Type None Usage Type Data wMaxPacketSize 0x0200 1x 512 bytes bInterval 0 Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x02 EP 2 OUT bmAttributes 2 Transfer Type Bulk Synch Type None Usage Type Data wMaxPacketSize 0x0200 1x 512 bytes bInterval 0 Interface Descriptor: bLength 9 bDescriptorType 4 bInterfaceNumber 3 bAlternateSetting 0 bNumEndpoints 3 bInterfaceClass 255 Vendor Specific Class bInterfaceSubClass 255 Vendor Specific Subclass bInterfaceProtocol 255 Vendor Specific Protocol iInterface 0 Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x85 EP 5 IN bmAttributes 3 Transfer Type Interrupt Synch Type None Usage Type Data wMaxPacketSize 0x0040 1x 64 bytes bInterval 5 Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x86 EP 6 IN bmAttributes 2 Transfer Type Bulk Synch Type None Usage Type Data wMaxPacketSize 0x0200 1x 512 bytes bInterval 0 Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x03 EP 3 OUT bmAttributes 2 Transfer Type Bulk Synch Type None Usage Type Data wMaxPacketSize 0x0200 1x 512 bytes bInterval 0 Device Qualifier (for other device speed): bLength 10 bDescriptorType 6 bcdUSB 2.00 bDeviceClass 0 (Defined at Interface level) bDeviceSubClass 0 bDeviceProtocol 0 bMaxPacketSize0 64 bNumConfigurations 1 Device Status: 0x0000 (Bus Powered) --- drivers/usb/serial/option.c | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/drivers/usb/serial/option.c b/drivers/usb/serial/option.c index f0c3612467a3..184691caee64 100644 --- a/drivers/usb/serial/option.c +++ b/drivers/usb/serial/option.c @@ -233,6 +233,8 @@ static void option_instat_callback(struct urb *urb); /* These Quectel products use Qualcomm's vendor ID */ #define QUECTEL_PRODUCT_UC20 0x9003 #define QUECTEL_PRODUCT_UC15 0x9090 +/* These ublox products use Qualcomm's vendor ID */ +#define UBLOX_PRODUCT_R410M 0x90b2 /* These Yuga products use Qualcomm's vendor ID */ #define YUGA_PRODUCT_CLM920_NC5 0x9625 @@ -1065,6 +1067,9 @@ static const struct usb_device_id option_ids[] = { /* Yuga products use Qualcomm vendor ID */ { USB_DEVICE(QUALCOMM_VENDOR_ID, YUGA_PRODUCT_CLM920_NC5), .driver_info = RSVD(1) | RSVD(4) }, + /* ublox products use Qualcomm vendor ID */ + { USB_DEVICE(QUALCOMM_VENDOR_ID, UBLOX_PRODUCT_R410M), + .driver_info = RSVD(1) | RSVD(3) }, /* Quectel products using Quectel vendor ID */ { USB_DEVICE(QUECTEL_VENDOR_ID, QUECTEL_PRODUCT_EC21), .driver_info = RSVD(4) }, -- 2.17.0

7 years, 6 months

6
12
0 0

[PATCH 0/6] Fix XSA-155-like bugs in frontend drivers

by Marek Marczykowski-Górecki

Patches in original Xen Security Advisory 155 cared only about backend drivers while leaving frontend patches to be "developed and released (publicly) after the embargo date". This is said series. Marek Marczykowski-Górecki (6): xen: Add RING_COPY_RESPONSE() xen-netfront: copy response out of shared buffer before accessing it xen-netfront: do not use data already exposed to backend xen-netfront: add range check for Tx response id xen-blkfront: make local copy of response before using it xen-blkfront: prepare request locally, only then put it on the shared ring drivers/block/xen-blkfront.c | 110 ++++++++++++++++++--------------- drivers/net/xen-netfront.c | 61 +++++++++--------- include/xen/interface/io/ring.h | 14 ++++- 3 files changed, 106 insertions(+), 79 deletions(-) base-commit: 6d08b06e67cd117f6992c46611dfb4ce267cd71e -- git-series 0.9.1

7 years, 6 months

5
13
0 0

[PATCH] aacraid: Correct hba_send to include iu_type

by Dave Carroll

commit b60710ec7d7ab ("aacraid: enable sending of TMFs from aac_hba_send()") allows aac_hba_send() to send scsi commands, and TMF requests, but the existing code only updates the iu_type for scsi commands. For TMF requests we are sending an unknown iu_type to firmware, which causes a fault. Include iu_type prior to determining the validity of the command Reported-by: Noah Misner <nmisner(a)us.ibm.com> Fixes: b60710ec7d7ab ("aacraid: enable sending of TMFs from aac_hba_send()") Fixes: 423400e64d377 ("aacraid: Include HBA direct interface") Tested-by: Noah Misner <nmisner(a)us.ibm.com> cc: stable(a)vger.kernel.org Signed-off-by: Dave Carroll <david.carroll(a)microsemi.com> Reviewed-by: Raghava Aditya Renukunta <RaghavaAditya.Renukunta(a)microsemi.com> --- drivers/scsi/aacraid/commsup.c | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/drivers/scsi/aacraid/commsup.c b/drivers/scsi/aacraid/commsup.c index 0156c96..d62ddd6 100644 --- a/drivers/scsi/aacraid/commsup.c +++ b/drivers/scsi/aacraid/commsup.c @@ -724,6 +724,8 @@ int aac_hba_send(u8 command, struct fib *fibptr, fib_callback callback, int wait; unsigned long flags = 0; unsigned long mflags = 0; + struct aac_hba_cmd_req *hbacmd = (struct aac_hba_cmd_req *) + fibptr->hw_fib_va; fibptr->flags = (FIB_CONTEXT_FLAG | FIB_CONTEXT_FLAG_NATIVE_HBA); if (callback) { @@ -734,11 +736,9 @@ int aac_hba_send(u8 command, struct fib *fibptr, fib_callback callback, wait = 1; - if (command == HBA_IU_TYPE_SCSI_CMD_REQ) { - struct aac_hba_cmd_req *hbacmd = - (struct aac_hba_cmd_req *)fibptr->hw_fib_va; + hbacmd->iu_type = command; - hbacmd->iu_type = command; + if (command == HBA_IU_TYPE_SCSI_CMD_REQ) { /* bit1 of request_id must be 0 */ hbacmd->request_id = cpu_to_le32((((u32)(fibptr - dev->fibs)) << 2) + 1); -- 2.8.4

7 years, 6 months

3
2
0 0

+ mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap.patch added to -mm tree

by akpm＠linux-foundation.org

The patch titled Subject: mm, oom: fix concurrent munlock and oom reaper unmap, v3 has been added to the -mm tree. Its filename is mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap.patch This patch should soon appear at http://ozlabs.org/~akpm/mmots/broken-out/mm-oom-fix-concurrent-munlock-and-… and later at http://ozlabs.org/~akpm/mmotm/broken-out/mm-oom-fix-concurrent-munlock-and-… Before you just go and hit "reply", please: a) Consider who else should be cc'ed b) Prefer to cc a suitable mailing list as well c) Ideally: find the original patch on the mailing list and do a reply-to-all to that, adding suitable additional cc's *** Remember to use Documentation/process/submit-checklist.rst when testing your code *** The -mm tree is included into linux-next and is updated there every 3-4 working days ------------------------------------------------------ From: David Rientjes <rientjes(a)google.com> Subject: mm, oom: fix concurrent munlock and oom reaper unmap, v3 Since exit_mmap() is done without the protection of mm->mmap_sem, it is possible for the oom reaper to concurrently operate on an mm until MMF_OOM_SKIP is set. This allows munlock_vma_pages_all() to concurrently run while the oom reaper is operating on a vma. Since munlock_vma_pages_range() depends on clearing VM_LOCKED from vm_flags before actually doing the munlock to determine if any other vmas are locking the same memory, the check for VM_LOCKED in the oom reaper is racy. This is especially noticeable on architectures such as powerpc where clearing a huge pmd requires serialize_against_pte_lookup(). If the pmd is zapped by the oom reaper during follow_page_mask() after the check for pmd_none() is bypassed, this ends up deferencing a NULL ptl or a kernel oops. Fix this by manually freeing all possible memory from the mm before doing the munlock and then setting MMF_OOM_SKIP. The oom reaper can not run on the mm anymore so the munlock is safe to do in exit_mmap(). It also matches the logic that the oom reaper currently uses for determining when to set MMF_OOM_SKIP itself, so there's no new risk of excessive oom killing. This issue fixes CVE-2018-1000200. Link: http://lkml.kernel.org/r/alpine.DEB.2.21.1804241526320.238665@chino.kir.cor… Fixes: 212925802454 ("mm: oom: let oom_reap_task and exit_mmap run concurrently") Signed-off-by: David Rientjes <rientjes(a)google.com> Suggested-by: Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp> Cc: Andrea Arcangeli <aarcange(a)redhat.com> Cc: <stable(a)vger.kernel.org> [4.14+] Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> --- include/linux/oom.h | 2 + mm/mmap.c | 44 +++++++++++++--------- mm/oom_kill.c | 81 ++++++++++++++++++++++-------------------- 3 files changed, 71 insertions(+), 56 deletions(-) diff -puN include/linux/oom.h~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap include/linux/oom.h --- a/include/linux/oom.h~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap +++ a/include/linux/oom.h @@ -95,6 +95,8 @@ static inline int check_stable_address_s return 0; } +void __oom_reap_task_mm(struct mm_struct *mm); + extern unsigned long oom_badness(struct task_struct *p, struct mem_cgroup *memcg, const nodemask_t *nodemask, unsigned long totalpages); diff -puN mm/mmap.c~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap mm/mmap.c --- a/mm/mmap.c~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap +++ a/mm/mmap.c @@ -3024,6 +3024,32 @@ void exit_mmap(struct mm_struct *mm) /* mm's last user has gone, and its about to be pulled down */ mmu_notifier_release(mm); + if (unlikely(mm_is_oom_victim(mm))) { + /* + * Manually reap the mm to free as much memory as possible. + * Then, as the oom reaper does, set MMF_OOM_SKIP to disregard + * this mm from further consideration. Taking mm->mmap_sem for + * write after setting MMF_OOM_SKIP will guarantee that the oom + * reaper will not run on this mm again after mmap_sem is + * dropped. + * + * Nothing can be holding mm->mmap_sem here and the above call + * to mmu_notifier_release(mm) ensures mmu notifier callbacks in + * __oom_reap_task_mm() will not block. + * + * This needs to be done before calling munlock_vma_pages_all(), + * which clears VM_LOCKED, otherwise the oom reaper cannot + * reliably test it. + */ + mutex_lock(&oom_lock); + __oom_reap_task_mm(mm); + mutex_unlock(&oom_lock); + + set_bit(MMF_OOM_SKIP, &mm->flags); + down_write(&mm->mmap_sem); + up_write(&mm->mmap_sem); + } + if (mm->locked_vm) { vma = mm->mmap; while (vma) { @@ -3045,24 +3071,6 @@ void exit_mmap(struct mm_struct *mm) /* update_hiwater_rss(mm) here? but nobody should be looking */ /* Use -1 here to ensure all VMAs in the mm are unmapped */ unmap_vmas(&tlb, vma, 0, -1); - - if (unlikely(mm_is_oom_victim(mm))) { - /* - * Wait for oom_reap_task() to stop working on this - * mm. Because MMF_OOM_SKIP is already set before - * calling down_read(), oom_reap_task() will not run - * on this "mm" post up_write(). - * - * mm_is_oom_victim() cannot be set from under us - * either because victim->mm is already set to NULL - * under task_lock before calling mmput and oom_mm is - * set not NULL by the OOM killer only if victim->mm - * is found not NULL while holding the task_lock. - */ - set_bit(MMF_OOM_SKIP, &mm->flags); - down_write(&mm->mmap_sem); - up_write(&mm->mmap_sem); - } free_pgtables(&tlb, vma, FIRST_USER_ADDRESS, USER_PGTABLES_CEILING); tlb_finish_mmu(&tlb, 0, -1); diff -puN mm/oom_kill.c~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap mm/oom_kill.c --- a/mm/oom_kill.c~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap +++ a/mm/oom_kill.c @@ -469,7 +469,6 @@ bool process_shares_mm(struct task_struc return false; } - #ifdef CONFIG_MMU /* * OOM Reaper kernel thread which tries to reap the memory used by the OOM @@ -480,16 +479,54 @@ static DECLARE_WAIT_QUEUE_HEAD(oom_reape static struct task_struct *oom_reaper_list; static DEFINE_SPINLOCK(oom_reaper_lock); -static bool __oom_reap_task_mm(struct task_struct *tsk, struct mm_struct *mm) +void __oom_reap_task_mm(struct mm_struct *mm) { - struct mmu_gather tlb; struct vm_area_struct *vma; + + /* + * Tell all users of get_user/copy_from_user etc... that the content + * is no longer stable. No barriers really needed because unmapping + * should imply barriers already and the reader would hit a page fault + * if it stumbled over a reaped memory. + */ + set_bit(MMF_UNSTABLE, &mm->flags); + + for (vma = mm->mmap ; vma; vma = vma->vm_next) { + if (!can_madv_dontneed_vma(vma)) + continue; + + /* + * Only anonymous pages have a good chance to be dropped + * without additional steps which we cannot afford as we + * are OOM already. + * + * We do not even care about fs backed pages because all + * which are reclaimable have already been reclaimed and + * we do not want to block exit_mmap by keeping mm ref + * count elevated without a good reason. + */ + if (vma_is_anonymous(vma) || !(vma->vm_flags & VM_SHARED)) { + const unsigned long start = vma->vm_start; + const unsigned long end = vma->vm_end; + struct mmu_gather tlb; + + tlb_gather_mmu(&tlb, mm, start, end); + mmu_notifier_invalidate_range_start(mm, start, end); + unmap_page_range(&tlb, vma, start, end, NULL); + mmu_notifier_invalidate_range_end(mm, start, end); + tlb_finish_mmu(&tlb, start, end); + } + } +} + +static bool oom_reap_task_mm(struct task_struct *tsk, struct mm_struct *mm) +{ bool ret = true; /* * We have to make sure to not race with the victim exit path * and cause premature new oom victim selection: - * __oom_reap_task_mm exit_mm + * oom_reap_task_mm exit_mm * mmget_not_zero * mmput * atomic_dec_and_test @@ -534,39 +571,8 @@ static bool __oom_reap_task_mm(struct ta trace_start_task_reaping(tsk->pid); - /* - * Tell all users of get_user/copy_from_user etc... that the content - * is no longer stable. No barriers really needed because unmapping - * should imply barriers already and the reader would hit a page fault - * if it stumbled over a reaped memory. - */ - set_bit(MMF_UNSTABLE, &mm->flags); - - for (vma = mm->mmap ; vma; vma = vma->vm_next) { - if (!can_madv_dontneed_vma(vma)) - continue; + __oom_reap_task_mm(mm); - /* - * Only anonymous pages have a good chance to be dropped - * without additional steps which we cannot afford as we - * are OOM already. - * - * We do not even care about fs backed pages because all - * which are reclaimable have already been reclaimed and - * we do not want to block exit_mmap by keeping mm ref - * count elevated without a good reason. - */ - if (vma_is_anonymous(vma) || !(vma->vm_flags & VM_SHARED)) { - const unsigned long start = vma->vm_start; - const unsigned long end = vma->vm_end; - - tlb_gather_mmu(&tlb, mm, start, end); - mmu_notifier_invalidate_range_start(mm, start, end); - unmap_page_range(&tlb, vma, start, end, NULL); - mmu_notifier_invalidate_range_end(mm, start, end); - tlb_finish_mmu(&tlb, start, end); - } - } pr_info("oom_reaper: reaped process %d (%s), now anon-rss:%lukB, file-rss:%lukB, shmem-rss:%lukB\n", task_pid_nr(tsk), tsk->comm, K(get_mm_counter(mm, MM_ANONPAGES)), @@ -587,14 +593,13 @@ static void oom_reap_task(struct task_st struct mm_struct *mm = tsk->signal->oom_mm; /* Retry the down_read_trylock(mmap_sem) a few times */ - while (attempts++ < MAX_OOM_REAP_RETRIES && !__oom_reap_task_mm(tsk, mm)) + while (attempts++ < MAX_OOM_REAP_RETRIES && !oom_reap_task_mm(tsk, mm)) schedule_timeout_idle(HZ/10); if (attempts <= MAX_OOM_REAP_RETRIES || test_bit(MMF_OOM_SKIP, &mm->flags)) goto done; - pr_info("oom_reaper: unable to reap pid:%d (%s)\n", task_pid_nr(tsk), tsk->comm); debug_show_all_locks(); _ Patches currently in -mm which might be from rientjes(a)google.com are mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap.patch

7 years, 6 months

1
0
0 0

[to-be-updated] mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap.patch removed from -mm tree

by akpm＠linux-foundation.org

The patch titled Subject: mm, oom: fix concurrent munlock and oom reaper unmap has been removed from the -mm tree. Its filename was mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap.patch This patch was dropped because an updated version will be merged ------------------------------------------------------ From: David Rientjes <rientjes(a)google.com> Subject: mm, oom: fix concurrent munlock and oom reaper unmap Since exit_mmap() is done without the protection of mm->mmap_sem, it is possible for the oom reaper to concurrently operate on an mm until MMF_OOM_SKIP is set. This allows munlock_vma_pages_all() to concurrently run while the oom reaper is operating on a vma. Since munlock_vma_pages_range() depends on clearing VM_LOCKED from vm_flags before actually doing the munlock to determine if any other vmas are locking the same memory, the check for VM_LOCKED in the oom reaper is racy. This is especially noticeable on architectures such as powerpc where clearing a huge pmd requires serialize_against_pte_lookup(). If the pmd is zapped by the oom reaper during follow_page_mask() after the check for pmd_none() is bypassed, this ends up deferencing a NULL ptl. Fix this by reusing MMF_UNSTABLE to specify that an mm should not be reaped. This prevents the concurrent munlock_vma_pages_range() and unmap_page_range(). The oom reaper will simply not operate on an mm that has the bit set and leave the unmapping to exit_mmap(). [rientjes(a)google.com: v2] Link: http://lkml.kernel.org/r/alpine.DEB.2.21.1804171951440.105401@chino.kir.cor… Link: http://lkml.kernel.org/r/alpine.DEB.2.21.1804171545460.53786@chino.kir.corp… Fixes: 212925802454 ("mm: oom: let oom_reap_task and exit_mmap run concurrently") Signed-off-by: David Rientjes <rientjes(a)google.com> Cc: Michal Hocko <mhocko(a)suse.com> Cc: Andrea Arcangeli <aarcange(a)redhat.com> Cc: Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp> Cc: Roman Gushchin <guro(a)fb.com> Cc: <stable(a)vger.kernel.org> [4.14+] Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> --- mm/mmap.c | 38 ++++++++++++++++++++------------------ mm/oom_kill.c | 28 +++++++++++++--------------- 2 files changed, 33 insertions(+), 33 deletions(-) diff -puN mm/mmap.c~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap mm/mmap.c --- a/mm/mmap.c~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap +++ a/mm/mmap.c @@ -3024,6 +3024,25 @@ void exit_mmap(struct mm_struct *mm) /* mm's last user has gone, and its about to be pulled down */ mmu_notifier_release(mm); + if (unlikely(mm_is_oom_victim(mm))) { + /* + * Wait for oom_reap_task() to stop working on this mm. Because + * MMF_UNSTABLE is already set before calling down_read(), + * oom_reap_task() will not run on this mm after up_write(). + * oom_reap_task() also depends on a stable VM_LOCKED flag to + * indicate it should not unmap during munlock_vma_pages_all(). + * + * mm_is_oom_victim() cannot be set from under us because + * victim->mm is already set to NULL under task_lock before + * calling mmput() and victim->signal->oom_mm is set by the oom + * killer only if victim->mm is non-NULL while holding + * task_lock(). + */ + set_bit(MMF_UNSTABLE, &mm->flags); + down_write(&mm->mmap_sem); + up_write(&mm->mmap_sem); + } + if (mm->locked_vm) { vma = mm->mmap; while (vma) { @@ -3045,26 +3064,9 @@ void exit_mmap(struct mm_struct *mm) /* update_hiwater_rss(mm) here? but nobody should be looking */ /* Use -1 here to ensure all VMAs in the mm are unmapped */ unmap_vmas(&tlb, vma, 0, -1); - - if (unlikely(mm_is_oom_victim(mm))) { - /* - * Wait for oom_reap_task() to stop working on this - * mm. Because MMF_OOM_SKIP is already set before - * calling down_read(), oom_reap_task() will not run - * on this "mm" post up_write(). - * - * mm_is_oom_victim() cannot be set from under us - * either because victim->mm is already set to NULL - * under task_lock before calling mmput and oom_mm is - * set not NULL by the OOM killer only if victim->mm - * is found not NULL while holding the task_lock. - */ - set_bit(MMF_OOM_SKIP, &mm->flags); - down_write(&mm->mmap_sem); - up_write(&mm->mmap_sem); - } free_pgtables(&tlb, vma, FIRST_USER_ADDRESS, USER_PGTABLES_CEILING); tlb_finish_mmu(&tlb, 0, -1); + set_bit(MMF_OOM_SKIP, &mm->flags); /* * Walk the list again, actually closing and freeing it, diff -puN mm/oom_kill.c~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap mm/oom_kill.c --- a/mm/oom_kill.c~mm-oom-fix-concurrent-munlock-and-oom-reaper-unmap +++ a/mm/oom_kill.c @@ -521,12 +521,17 @@ static bool __oom_reap_task_mm(struct ta } /* - * MMF_OOM_SKIP is set by exit_mmap when the OOM reaper can't - * work on the mm anymore. The check for MMF_OOM_SKIP must run + * Tell all users of get_user/copy_from_user etc... that the content + * is no longer stable. No barriers really needed because unmapping + * should imply barriers already and the reader would hit a page fault + * if it stumbled over reaped memory. + * + * MMF_UNSTABLE is also set by exit_mmap when the OOM reaper shouldn't + * work on the mm anymore. The check for MMF_OOM_UNSTABLE must run * under mmap_sem for reading because it serializes against the * down_write();up_write() cycle in exit_mmap(). */ - if (test_bit(MMF_OOM_SKIP, &mm->flags)) { + if (test_and_set_bit(MMF_UNSTABLE, &mm->flags)) { up_read(&mm->mmap_sem); trace_skip_task_reaping(tsk->pid); goto unlock_oom; @@ -534,14 +539,6 @@ static bool __oom_reap_task_mm(struct ta trace_start_task_reaping(tsk->pid); - /* - * Tell all users of get_user/copy_from_user etc... that the content - * is no longer stable. No barriers really needed because unmapping - * should imply barriers already and the reader would hit a page fault - * if it stumbled over a reaped memory. - */ - set_bit(MMF_UNSTABLE, &mm->flags); - for (vma = mm->mmap ; vma; vma = vma->vm_next) { if (!can_madv_dontneed_vma(vma)) continue; @@ -567,6 +564,7 @@ static bool __oom_reap_task_mm(struct ta tlb_finish_mmu(&tlb, start, end); } } + set_bit(MMF_OOM_SKIP, &mm->flags); pr_info("oom_reaper: reaped process %d (%s), now anon-rss:%lukB, file-rss:%lukB, shmem-rss:%lukB\n", task_pid_nr(tsk), tsk->comm, K(get_mm_counter(mm, MM_ANONPAGES)), @@ -594,7 +592,6 @@ static void oom_reap_task(struct task_st test_bit(MMF_OOM_SKIP, &mm->flags)) goto done; - pr_info("oom_reaper: unable to reap pid:%d (%s)\n", task_pid_nr(tsk), tsk->comm); debug_show_all_locks(); @@ -603,10 +600,11 @@ done: tsk->oom_reaper_list = NULL; /* - * Hide this mm from OOM killer because it has been either reaped or - * somebody can't call up_write(mmap_sem). + * If the oom reaper could not get started on this mm and it has not yet + * reached exit_mmap(), set MMF_OOM_SKIP to disregard. */ - set_bit(MMF_OOM_SKIP, &mm->flags); + if (!test_bit(MMF_UNSTABLE, &mm->flags)) + set_bit(MMF_OOM_SKIP, &mm->flags); /* Drop a reference taken by wake_oom_reaper */ put_task_struct(tsk); _ Patches currently in -mm which might be from rientjes(a)google.com are

7 years, 6 months

1
0
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror