- Linux-stable-mirror - lists.linaro.org

v3.18.115 build: 0 failures 1 warnings (v3.18.115)

by Build bot for Mark Brown

Tree/Branch: v3.18.115 Git describe: v3.18.115 Commit: ac35b66883 Linux 3.18.115 Build Time: 45 min 26 sec Passed: 10 / 10 (100.00 %) Failed: 0 / 10 ( 0.00 %) Errors: 0 Warnings: 1 Section Mismatches: 0 ------------------------------------------------------------------------------- defconfigs with issues (other than build errors): 7 warnings 0 mismatches : x86_64-allmodconfig 2 warnings 0 mismatches : x86_64-defconfig ------------------------------------------------------------------------------- Warnings Summary: 1 9 ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] =============================================================================== Detailed per-defconfig build reports below: ------------------------------------------------------------------------------- x86_64-allmodconfig : PASS, 0 errors, 7 warnings, 0 section mismatches Warnings: ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] ------------------------------------------------------------------------------- x86_64-defconfig : PASS, 0 errors, 2 warnings, 0 section mismatches Warnings: ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] ../include/linux/ftrace.h:632:36: warning: calling '__builtin_return_address' with a nonzero argument is unsafe [-Wframe-address] ------------------------------------------------------------------------------- Passed with no errors, warnings or mismatches: arm64-allnoconfig arm64-allmodconfig arm-multi_v5_defconfig arm-multi_v7_defconfig arm-allmodconfig arm-allnoconfig x86_64-allnoconfig arm64-defconfig

7 years, 5 months

1
0
0 0

Linux 4.17.6

by Greg KH

I'm announcing the release of the 4.17.6 kernel. All users of the 4.17 kernel series must upgrade. The updated 4.17.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.17.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/boot/dts/am3517.dtsi | 4 arch/arm/boot/dts/dra7.dtsi | 2 arch/arm/boot/dts/imx51-zii-rdu1.dts | 2 arch/s390/kernel/entry.S | 4 drivers/acpi/acpica/uterror.c | 6 - drivers/acpi/battery.c | 9 - drivers/block/drbd/drbd_worker.c | 2 drivers/dax/super.c | 48 ++++---- drivers/gpu/drm/amd/amdgpu/amdgpu.h | 46 +------- drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c | 131 ++++++++++++++++++----- drivers/gpu/drm/amd/amdgpu/amdgpu_atpx_handler.c | 6 + drivers/gpu/drm/drm_property.c | 6 - drivers/gpu/drm/udl/udl_fb.c | 5 drivers/gpu/drm/udl/udl_transfer.c | 11 + drivers/hid/hid-core.c | 5 drivers/hid/hid-debug.c | 8 + drivers/hid/i2c-hid/i2c-hid.c | 2 drivers/hid/usbhid/hiddev.c | 11 + drivers/i2c/i2c-core-smbus.c | 12 +- drivers/md/dm-table.c | 7 - drivers/md/dm.c | 3 drivers/mtd/chips/cfi_cmdset_0002.c | 30 +++-- drivers/pci/pci-acpi.c | 12 ++ drivers/scsi/aacraid/aachba.c | 15 +- drivers/scsi/sg.c | 42 +++++++ drivers/staging/comedi/drivers/quatech_daqp_cs.c | 2 drivers/target/target_core_pr.c | 15 +- drivers/vfio/vfio_iommu_type1.c | 16 +- fs/cifs/cifsglob.h | 1 fs/cifs/cifsproto.h | 1 fs/cifs/cifssmb.c | 10 + fs/cifs/connect.c | 8 + fs/cifs/smb1ops.c | 1 fs/cifs/smb2ops.c | 3 fs/cifs/smb2pdu.c | 25 ++-- fs/cifs/smb2transport.c | 1 fs/cifs/transport.c | 18 ++- fs/ext2/super.c | 3 fs/ext4/balloc.c | 21 ++- fs/ext4/ext4.h | 8 - fs/ext4/ext4_extents.h | 1 fs/ext4/extents.c | 6 + fs/ext4/ialloc.c | 14 ++ fs/ext4/inline.c | 39 ------ fs/ext4/inode.c | 7 - fs/ext4/mballoc.c | 6 - fs/ext4/super.c | 89 +++++++++++++-- fs/ext4/xattr.c | 40 +++---- fs/jbd2/transaction.c | 9 + fs/userfaultfd.c | 12 +- fs/xfs/xfs_ioctl.c | 3 fs/xfs/xfs_iops.c | 30 ++++- fs/xfs/xfs_super.c | 10 + include/linux/dax.h | 11 + include/linux/hid.h | 3 kernel/trace/trace_events_hist.c | 2 kernel/trace/trace_functions_graph.c | 5 mm/debug.c | 18 ++- mm/hugetlb.c | 1 mm/vmstat.c | 2 net/netfilter/nf_log.c | 9 + 62 files changed, 595 insertions(+), 286 deletions(-) Adam Ford (1): ARM: dts: omap3: Fix am3517 mdio and emac clock references Arnd Bergmann (1): tracing: Avoid string overflow Benjamin Tissoires (1): HID: core: allow concurrent registration of drivers Cannon Matthews (1): mm: hugetlb: yield when prepping struct pages Changbin Du (1): tracing: Fix missing return symbol in function_graph output Christian Borntraeger (1): s390: Correct register corruption in critical section cleanup Dan Carpenter (1): staging: comedi: quatech_daqp_cs: fix no-op loop daqp_ao_insn_write() Daniel Rosenberg (1): HID: debug: check length before copy_to_user() Darrick J. Wong (1): fs: allow per-device dax status checking for filesystems Dave Jiang (1): dax: change bdev_dax_supported() to support boolean returns David Disseldorp (1): scsi: target: Fix truncated PR-in ReadKeys response Greg Kroah-Hartman (1): Linux 4.17.6 Gustavo A. R. Silva (1): HID: hiddev: fix potential Spectre v1 Jann Horn (2): scsi: sg: mitigate read/write abuse netfilter: nf_log: don't hold nf_log_mutex during user access Janosch Frank (1): userfaultfd: hugetlbfs: fix userfaultfd_huge_must_wait() pte access Jason Andryuk (1): HID: i2c-hid: Fix "incomplete report" noise Jason Gunthorpe (1): vfio: Use get_user_pages_longterm correctly Jon Derrick (1): ext4: check superblock mapped prior to committing Jouke Witteveen (1): ACPI / battery: Safe unregistering of hooks Lars Ellenberg (1): drbd: fix access after free Lars Persson (1): cifs: Fix use after free of a mid_q_entry Lyude Paul (3): drm/amdgpu: Make struct amdgpu_atif private to amdgpu_acpi.c drm/amdgpu: Add amdgpu_atpx_get_dhandle() drm/amdgpu: Dynamically probe for ATIF handle (v2) Michel Dänzer (1): drm: Use kvzalloc for allocating blob property memory Mikulas Patocka (1): drm/udl: fix display corruption of the last line Nick Dyer (1): ARM: dts: imx51-zii-rdu1: fix touchscreen pinctrl Paulo Alcantara (2): cifs: Fix memory leak in smb2_set_ea() cifs: Fix infinite loop when using hard mount option Pavel Tatashin (1): mm: teach dump_page() to correctly output poisoned struct pages Peter Rosin (1): i2c: smbus: kill memory leak on emulated and failed DMA SMBus xfers Rafael J. Wysocki (2): PCI / ACPI / PM: Resume bridges w/o drivers on suspend-to-RAM ACPICA: Drop leading newlines from error messages Raghava Aditya Renukunta (1): scsi: aacraid: Fix PD performance regression over incorrect qd being set Roger Quadros (1): ARM: dts: dra7: Disable metastability workaround for USB2 Ross Zwisler (2): dax: check for QUEUE_FLAG_DAX in bdev_dax_supported() dm: prevent DAX mounts if not supported Sebastian Andrzej Siewior (1): Revert mm/vmstat.c: fix vmstat_update() preemption BUG Stefano Brivio (1): cifs: Fix slab-out-of-bounds in send_set_info() on SMB2 ACE setting Theodore Ts'o (13): jbd2: don't mark block as modified if the handle is out of credits ext4: add corruption check in ext4_xattr_set_entry() ext4: always verify the magic number in xattr blocks ext4: make sure bitmaps and the inode table don't overlap with bg descriptors ext4: always check block group bounds in ext4_init_block_bitmap() ext4: only look at the bg_flags field if it is valid ext4: verify the depth of extent tree in ext4_find_extent() ext4: include the illegal physical block in the bad map ext4_error msg ext4: clear i_data in ext4_inode_info when removing inline data ext4: never move the system.data xattr out of the inode body ext4: avoid running out of journal credits when appending to an inline file ext4: add more inode number paranoia checks ext4: add more mount time checks of the superblock Tokunori Ikegami (3): mtd: cfi_cmdset_0002: Change definition naming to retry write operation mtd: cfi_cmdset_0002: Change erase functions to retry for error mtd: cfi_cmdset_0002: Change erase functions to check chip good only Wenwen Wang (1): i2c: core: smbus: fix a potential missing-check bug

7 years, 5 months

1
1
0 0

Linux 4.14.55

by Greg KH

I'm announcing the release of the 4.14.55 kernel. All users of the 4.14 kernel series must upgrade. The updated 4.14.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.14.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/s390/kernel/entry.S | 4 block/blk-lib.c | 108 +++++++++++++++-------- drivers/block/drbd/drbd_worker.c | 2 drivers/dax/super.c | 42 +++++--- drivers/gpu/drm/drm_property.c | 6 - drivers/gpu/drm/udl/udl_fb.c | 5 - drivers/gpu/drm/udl/udl_transfer.c | 11 +- drivers/hid/hid-debug.c | 8 + drivers/hid/i2c-hid/i2c-hid.c | 2 drivers/hid/usbhid/hiddev.c | 11 ++ drivers/md/dm-table.c | 9 + drivers/md/dm.c | 6 - drivers/media/i2c/cx25840/cx25840-core.c | 28 ++++- drivers/media/v4l2-core/videobuf2-core.c | 9 + drivers/mtd/chips/cfi_cmdset_0002.c | 30 ++++-- drivers/mtd/nand/mxc_nand.c | 5 - drivers/net/ethernet/freescale/dpaa/dpaa_eth.c | 2 drivers/scsi/sg.c | 42 ++++++++ drivers/staging/comedi/drivers/quatech_daqp_cs.c | 2 drivers/target/target_core_pr.c | 15 ++- drivers/vfio/vfio_iommu_type1.c | 16 +-- fs/cifs/cifsglob.h | 1 fs/cifs/cifsproto.h | 1 fs/cifs/cifssmb.c | 10 +- fs/cifs/connect.c | 8 + fs/cifs/smb1ops.c | 1 fs/cifs/smb2ops.c | 3 fs/cifs/smb2pdu.c | 25 +++-- fs/cifs/smb2transport.c | 1 fs/cifs/transport.c | 18 +++ fs/ext2/super.c | 3 fs/ext4/balloc.c | 21 ++-- fs/ext4/ext4.h | 8 - fs/ext4/ext4_extents.h | 1 fs/ext4/extents.c | 6 + fs/ext4/ialloc.c | 14 ++ fs/ext4/inline.c | 39 -------- fs/ext4/inode.c | 7 - fs/ext4/mballoc.c | 6 - fs/ext4/super.c | 89 +++++++++++++++--- fs/ext4/xattr.c | 40 +++----- fs/f2fs/file.c | 9 + fs/jbd2/transaction.c | 9 + fs/userfaultfd.c | 12 +- fs/xfs/xfs_ioctl.c | 3 fs/xfs/xfs_iops.c | 30 +++++- fs/xfs/xfs_super.c | 10 +- include/linux/dax.h | 11 +- include/linux/mm.h | 1 include/trace/events/sched.h | 4 kernel/irq/irqdesc.c | 6 - kernel/trace/trace_functions_graph.c | 5 - mm/hugetlb.c | 1 mm/memory-failure.c | 16 +++ mm/vmstat.c | 2 net/netfilter/nf_log.c | 9 + scripts/Kbuild.include | 5 - tools/build/Build.include | 5 - tools/objtool/Makefile | 2 tools/scripts/Makefile.include | 2 61 files changed, 555 insertions(+), 254 deletions(-) Brad Love (1): media: cx25840: Use subdev host data for PLL override Cannon Matthews (1): mm: hugetlb: yield when prepping struct pages Changbin Du (1): tracing: Fix missing return symbol in function_graph output Christian Borntraeger (1): s390: Correct register corruption in critical section cleanup Dan Carpenter (1): staging: comedi: quatech_daqp_cs: fix no-op loop daqp_ao_insn_write() Daniel Rosenberg (1): HID: debug: check length before copy_to_user() Darrick J. Wong (1): fs: allow per-device dax status checking for filesystems Dave Jiang (1): dax: change bdev_dax_supported() to support boolean returns David Disseldorp (1): scsi: target: Fix truncated PR-in ReadKeys response Greg Kroah-Hartman (2): Revert "dpaa_eth: fix error in dpaa_remove()" Linux 4.14.55 Gustavo A. R. Silva (1): HID: hiddev: fix potential Spectre v1 Ilya Dryomov (2): block: factor out __blkdev_issue_zero_pages() block: cope with WRITE ZEROES failing in blkdev_issue_zeroout() Jaegeuk Kim (1): f2fs: truncate preallocated blocks in error case Jann Horn (2): scsi: sg: mitigate read/write abuse netfilter: nf_log: don't hold nf_log_mutex during user access Janosch Frank (1): userfaultfd: hugetlbfs: fix userfaultfd_huge_must_wait() pte access Jason Andryuk (1): HID: i2c-hid: Fix "incomplete report" noise Jason Gunthorpe (1): vfio: Use get_user_pages_longterm correctly Jon Derrick (1): ext4: check superblock mapped prior to committing Lars Ellenberg (1): drbd: fix access after free Lars Persson (1): cifs: Fix use after free of a mid_q_entry Martin Kaiser (1): mtd: rawnand: mxc: set spare area size register explicitly Michel Dänzer (1): drm: Use kvzalloc for allocating blob property memory Mike Snitzer (1): dm: set QUEUE_FLAG_DAX accordingly in dm_table_set_restrictions() Mikulas Patocka (1): drm/udl: fix display corruption of the last line Naoya Horiguchi (1): mm: hwpoison: disable memory error handling on 1GB hugepage Paulo Alcantara (2): cifs: Fix memory leak in smb2_set_ea() cifs: Fix infinite loop when using hard mount option Rakib Mullick (1): irq/core: Fix boot crash when the irqaffinity= boot parameter is passed on CPUMASK_OFFSTACK=y kernels(v1) Rasmus Villemoes (1): Kbuild: fix # escaping in .cmd files for future Make Ross Zwisler (2): dax: check for QUEUE_FLAG_DAX in bdev_dax_supported() dm: prevent DAX mounts if not supported Sakari Ailus (1): media: vb2: core: Finish buffers at the end of the stream Sebastian Andrzej Siewior (2): sched, tracing: Fix trace_sched_pi_setprio() for deboosting Revert mm/vmstat.c: fix vmstat_update() preemption BUG Stefano Brivio (1): cifs: Fix slab-out-of-bounds in send_set_info() on SMB2 ACE setting Theodore Ts'o (13): jbd2: don't mark block as modified if the handle is out of credits ext4: add corruption check in ext4_xattr_set_entry() ext4: always verify the magic number in xattr blocks ext4: make sure bitmaps and the inode table don't overlap with bg descriptors ext4: always check block group bounds in ext4_init_block_bitmap() ext4: only look at the bg_flags field if it is valid ext4: verify the depth of extent tree in ext4_find_extent() ext4: include the illegal physical block in the bad map ext4_error msg ext4: clear i_data in ext4_inode_info when removing inline data ext4: never move the system.data xattr out of the inode body ext4: avoid running out of journal credits when appending to an inline file ext4: add more inode number paranoia checks ext4: add more mount time checks of the superblock Tokunori Ikegami (3): mtd: cfi_cmdset_0002: Change definition naming to retry write operation mtd: cfi_cmdset_0002: Change erase functions to retry for error mtd: cfi_cmdset_0002: Change erase functions to check chip good only

7 years, 5 months

1
1
0 0

Linux 4.9.112

by Greg KH

I'm announcing the release of the 4.9.112 kernel. All users of the 4.9 kernel series must upgrade. The updated 4.9.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.9.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/boot/dts/imx6q.dtsi | 2 arch/s390/kernel/entry.S | 4 - arch/x86/kernel/cpu/common.c | 7 + arch/x86/kernel/kprobes/core.c | 42 +++++------ arch/x86/xen/smp.c | 5 + drivers/base/power/opp/core.c | 2 drivers/block/drbd/drbd_worker.c | 2 drivers/gpu/drm/udl/udl_fb.c | 5 + drivers/gpu/drm/udl/udl_transfer.c | 11 +- drivers/hid/hid-debug.c | 8 +- drivers/hid/i2c-hid/i2c-hid.c | 2 drivers/hid/usbhid/hiddev.c | 11 ++ drivers/i2c/busses/i2c-rcar.c | 4 - drivers/infiniband/hw/hfi1/chip.c | 8 +- drivers/infiniband/hw/hfi1/file_ops.c | 2 drivers/infiniband/hw/hfi1/init.c | 9 +- drivers/md/dm-bufio.c | 31 ++++---- drivers/media/i2c/cx25840/cx25840-core.c | 28 +++++-- drivers/mtd/chips/cfi_cmdset_0002.c | 30 +++++--- drivers/mtd/nand/mxc_nand.c | 5 + drivers/net/ethernet/mellanox/mlxsw/spectrum.c | 6 - drivers/net/phy/micrel.c | 17 ---- drivers/scsi/sg.c | 42 ++++++++++- drivers/staging/android/ion/ion_heap.c | 2 drivers/staging/comedi/drivers/quatech_daqp_cs.c | 2 drivers/tty/n_tty.c | 55 ++++++++------ drivers/tty/vt/vt.c | 4 - drivers/usb/class/cdc-acm.c | 3 drivers/usb/dwc2/hcd_queue.c | 2 drivers/usb/serial/cp210x.c | 14 +++ fs/cifs/cifssmb.c | 10 ++ fs/cifs/smb2pdu.c | 18 +++- fs/ext4/balloc.c | 21 +++-- fs/ext4/ext4.h | 5 - fs/ext4/ext4_extents.h | 1 fs/ext4/extents.c | 6 + fs/ext4/ialloc.c | 14 +++ fs/ext4/inline.c | 1 fs/ext4/inode.c | 7 + fs/ext4/mballoc.c | 6 + fs/ext4/super.c | 86 +++++++++++++++++++---- fs/jbd2/transaction.c | 9 ++ kernel/trace/trace_functions_graph.c | 5 + mm/hugetlb.c | 1 mm/page_alloc.c | 1 net/ipv4/fib_semantics.c | 2 net/ipv6/sit.c | 1 net/netfilter/nf_log.c | 9 +- net/netfilter/nf_tables_core.c | 3 scripts/Kbuild.include | 5 - tools/build/Build.include | 5 - tools/objtool/Makefile | 2 tools/scripts/Makefile.include | 2 54 files changed, 407 insertions(+), 180 deletions(-) Alexander Potapenko (1): vt: prevent leaking uninitialized data to userspace via /dev/vcs* Andy Lutomirski (1): x86/cpu: Re-apply forced caps every time CPU caps are re-read Ben Hutchings (1): ipv4: Fix error return value in fib_convert_metrics() Brad Love (1): media: cx25840: Use subdev host data for PLL override Cannon Matthews (1): mm: hugetlb: yield when prepping struct pages Changbin Du (1): tracing: Fix missing return symbol in function_graph output Christian Borntraeger (1): s390: Correct register corruption in critical section cleanup Dan Carpenter (1): staging: comedi: quatech_daqp_cs: fix no-op loop daqp_ao_insn_write() Daniel Rosenberg (1): HID: debug: check length before copy_to_user() David S. Miller (1): Revert "sit: reload iphdr in ipip6_rcv" Douglas Anderson (1): dm bufio: avoid sleeping while holding the dm_bufio lock Greg Kroah-Hartman (1): Linux 4.9.112 Grygorii Strashko (1): net: phy: micrel: fix crash when statistic requested for KSZ9031 phy Gustavo A. R. Silva (1): HID: hiddev: fix potential Spectre v1 Houston Yaroschoff (1): usb: cdc_acm: Add quirk for Uniden UBC125 scanner Ido Schimmel (1): mlxsw: spectrum: Forbid linking of VLAN devices to devices that have uppers Jann Horn (2): scsi: sg: mitigate read/write abuse netfilter: nf_log: don't hold nf_log_mutex during user access Jason Andryuk (1): HID: i2c-hid: Fix "incomplete report" noise Johan Hovold (1): USB: serial: cp210x: add CESINEL device ids Jon Derrick (1): ext4: check superblock mapped prior to committing Juergen Gross (1): x86/xen: Add call of speculative_store_bypass_ht_init() to PV paths Karoly Pados (1): USB: serial: cp210x: add Silicon Labs IDs for Windows Update Lars Ellenberg (1): drbd: fix access after free Laura Abbott (1): staging: android: ion: Return an ERR_PTR in ion_map_kernel Martin Kaiser (1): mtd: rawnand: mxc: set spare area size register explicitly Masami Hiramatsu (1): kprobes/x86: Do not modify singlestep buffer while resuming Mike Marciniszyn (1): IB/hfi1: Fix user context tail allocation for DMA_RTAIL Mikulas Patocka (3): drm/udl: fix display corruption of the last line dm bufio: drop the lock when doing GFP_NOIO allocation dm bufio: don't take the lock in dm_bufio_shrink_count Paulo Alcantara (1): cifs: Fix infinite loop when using hard mount option Rasmus Villemoes (1): Kbuild: fix # escaping in .cmd files for future Make Sean Nyekjaer (1): ARM: dts: imx6q: Use correct SDMA script for SPI5 core Taehee Yoo (1): netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON in nft_do_chain() Tetsuo Handa (2): n_tty: Fix stall at n_tty_receive_char_special(). n_tty: Access echo_* variables carefully. Theodore Ts'o (9): jbd2: don't mark block as modified if the handle is out of credits ext4: make sure bitmaps and the inode table don't overlap with bg descriptors ext4: always check block group bounds in ext4_init_block_bitmap() ext4: only look at the bg_flags field if it is valid ext4: verify the depth of extent tree in ext4_find_extent() ext4: include the illegal physical block in the bad map ext4_error msg ext4: clear i_data in ext4_inode_info when removing inline data ext4: add more inode number paranoia checks ext4: add more mount time checks of the superblock Tokunori Ikegami (3): mtd: cfi_cmdset_0002: Change definition naming to retry write operation mtd: cfi_cmdset_0002: Change erase functions to retry for error mtd: cfi_cmdset_0002: Change erase functions to check chip good only Vlastimil Babka (1): mm, page_alloc: do not break __GFP_THISNODE by zonelist reset Waldemar Rymarkiewicz (1): PM / OPP: Update voltage in case freq == old_freq William Wu (1): usb: dwc2: fix the incorrect bitmaps for the ports of multi_tt hub Wolfram Sang (1): i2c: rcar: fix resume by always initializing registers before transfer

7 years, 5 months

1
1
0 0

Linux 4.4.140

by Greg KH

I'm announcing the release of the 4.4.140 kernel. All users of the 4.4 kernel series must upgrade. The updated 4.4.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.4.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/boot/dts/imx6q.dtsi | 2 arch/s390/kernel/entry.S | 4 - arch/x86/kernel/cpu/mcheck/mce.c | 51 ++++++++---- arch/x86/kernel/kprobes/core.c | 42 +++++----- arch/x86/lib/cmdline.c | 34 ++++++-- drivers/block/drbd/drbd_worker.c | 2 drivers/hid/hid-debug.c | 8 +- drivers/hid/i2c-hid/i2c-hid.c | 2 drivers/hid/usbhid/hiddev.c | 11 ++ drivers/i2c/busses/i2c-rcar.c | 3 drivers/md/dm-bufio.c | 31 ++++--- drivers/media/i2c/cx25840/cx25840-core.c | 28 +++++-- drivers/mtd/chips/cfi_cmdset_0002.c | 30 +++++-- drivers/mtd/nand/mxc_nand.c | 5 + drivers/mtd/ubi/eba.c | 92 ++++++++++++++++++++++- drivers/net/wireless/ath/ath10k/htt_rx.c | 5 - drivers/nvme/host/pci.c | 4 - drivers/scsi/sg.c | 42 ++++++++++ drivers/staging/android/ion/ion_heap.c | 2 drivers/staging/comedi/drivers/quatech_daqp_cs.c | 2 drivers/tty/n_tty.c | 55 ++++++++----- drivers/usb/class/cdc-acm.c | 3 drivers/usb/serial/cp210x.c | 14 +++ fs/cifs/cifssmb.c | 10 ++ fs/cifs/smb2pdu.c | 18 +++- fs/ext4/balloc.c | 21 +++-- fs/ext4/ext4.h | 5 - fs/ext4/ext4_extents.h | 1 fs/ext4/extents.c | 6 + fs/ext4/ialloc.c | 14 +++ fs/ext4/inline.c | 1 fs/ext4/inode.c | 7 + fs/ext4/mballoc.c | 6 + fs/ext4/super.c | 86 ++++++++++++++++++--- fs/jbd2/transaction.c | 9 ++ kernel/trace/trace_functions_graph.c | 5 + mm/hugetlb.c | 1 mm/page_alloc.c | 2 net/ipv4/fib_semantics.c | 2 net/netfilter/nf_log.c | 9 +- net/netfilter/nf_tables_core.c | 3 42 files changed, 512 insertions(+), 168 deletions(-) Ben Hutchings (1): ipv4: Fix error return value in fib_convert_metrics() Brad Love (1): media: cx25840: Use subdev host data for PLL override Cannon Matthews (1): mm: hugetlb: yield when prepping struct pages Changbin Du (1): tracing: Fix missing return symbol in function_graph output Christian Borntraeger (1): s390: Correct register corruption in critical section cleanup Dan Carpenter (1): staging: comedi: quatech_daqp_cs: fix no-op loop daqp_ao_insn_write() Daniel Rosenberg (1): HID: debug: check length before copy_to_user() Dave Hansen (1): x86/boot: Fix early command-line parsing when matching at end Douglas Anderson (1): dm bufio: avoid sleeping while holding the dm_bufio lock Greg Kroah-Hartman (1): Linux 4.4.140 Gustavo A. R. Silva (1): HID: hiddev: fix potential Spectre v1 Houston Yaroschoff (1): usb: cdc_acm: Add quirk for Uniden UBC125 scanner Jann Horn (2): scsi: sg: mitigate read/write abuse netfilter: nf_log: don't hold nf_log_mutex during user access Jason Andryuk (1): HID: i2c-hid: Fix "incomplete report" noise Johan Hovold (1): USB: serial: cp210x: add CESINEL device ids Jon Derrick (1): ext4: check superblock mapped prior to committing Karoly Pados (1): USB: serial: cp210x: add Silicon Labs IDs for Windows Update Keith Busch (1): nvme-pci: initialize queue memory before interrupts Lars Ellenberg (1): drbd: fix access after free Laura Abbott (1): staging: android: ion: Return an ERR_PTR in ion_map_kernel Martin Kaiser (1): mtd: rawnand: mxc: set spare area size register explicitly Masami Hiramatsu (1): kprobes/x86: Do not modify singlestep buffer while resuming Mikulas Patocka (2): dm bufio: drop the lock when doing GFP_NOIO allocation dm bufio: don't take the lock in dm_bufio_shrink_count Paulo Alcantara (1): cifs: Fix infinite loop when using hard mount option Richard Weinberger (1): ubi: fastmap: Correctly handle interrupted erasures in EBA Sean Nyekjaer (1): ARM: dts: imx6q: Use correct SDMA script for SPI5 core Taehee Yoo (1): netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON in nft_do_chain() Tetsuo Handa (2): n_tty: Fix stall at n_tty_receive_char_special(). n_tty: Access echo_* variables carefully. Theodore Ts'o (9): jbd2: don't mark block as modified if the handle is out of credits ext4: make sure bitmaps and the inode table don't overlap with bg descriptors ext4: always check block group bounds in ext4_init_block_bitmap() ext4: only look at the bg_flags field if it is valid ext4: verify the depth of extent tree in ext4_find_extent() ext4: include the illegal physical block in the bad map ext4_error msg ext4: clear i_data in ext4_inode_info when removing inline data ext4: add more inode number paranoia checks ext4: add more mount time checks of the superblock Tokunori Ikegami (3): mtd: cfi_cmdset_0002: Change definition naming to retry write operation mtd: cfi_cmdset_0002: Change erase functions to retry for error mtd: cfi_cmdset_0002: Change erase functions to check chip good only Tony Luck (1): x86/mce: Fix incorrect "Machine check from unknown source" message Vasanthakumar Thiagarajan (1): ath10k: fix rfc1042 header retrieval in QCA4019 with eth decap mode Vlastimil Babka (1): mm, page_alloc: do not break __GFP_THISNODE by zonelist reset Wolfram Sang (1): i2c: rcar: fix resume by always initializing registers before transfer Yazen Ghannam (1): x86/mce: Detect local MCEs properly

7 years, 5 months

1
1
0 0

Linux 3.18.115

by Greg KH

I'm announcing the release of the 3.18.115 kernel. All users of the 3.18 kernel series must upgrade. The updated 3.18.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-3.18.y and can be browsed at the normal kernel.org git web browser: http://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/x86/lib/cmdline.c | 34 ++++++++--- drivers/atm/zatm.c | 4 - drivers/hid/hid-debug.c | 8 ++ drivers/hid/i2c-hid/i2c-hid.c | 2 drivers/md/dm-bufio.c | 15 ++++- drivers/media/i2c/cx25840/cx25840-core.c | 28 +++++++-- drivers/mtd/chips/cfi_cmdset_0002.c | 30 +++++++--- drivers/mtd/nand/mxc_nand.c | 5 + drivers/mtd/ubi/eba.c | 92 ++++++++++++++++++++++++++++++- drivers/net/ethernet/natsemi/sonic.c | 2 drivers/net/usb/qmi_wwan.c | 1 drivers/scsi/sg.c | 42 +++++++++++++- drivers/staging/android/ion/ion_heap.c | 2 drivers/tty/n_tty.c | 13 ++-- fs/cifs/cifssmb.c | 10 ++- fs/cifs/smb2pdu.c | 18 ++++-- fs/ext4/inline.c | 1 fs/ext4/super.c | 62 +++++++++++++++++--- net/bridge/netfilter/ebtables.c | 3 - net/netfilter/nf_log.c | 9 ++- 21 files changed, 317 insertions(+), 66 deletions(-) Brad Love (1): media: cx25840: Use subdev host data for PLL override Daniel Rosenberg (1): HID: debug: check length before copy_to_user() Dave Hansen (1): x86/boot: Fix early command-line parsing when matching at end Douglas Anderson (1): dm bufio: avoid sleeping while holding the dm_bufio lock Finn Thain (1): net/sonic: Use dma_mapping_error() Greg Kroah-Hartman (1): Linux 3.18.115 Ivan Bornyakov (1): atm: zatm: fix memcmp casting Jann Horn (2): scsi: sg: mitigate read/write abuse netfilter: nf_log: don't hold nf_log_mutex during user access Jason Andryuk (1): HID: i2c-hid: Fix "incomplete report" noise Josh Hill (1): net: qmi_wwan: Add Netgear Aircard 779S Laura Abbott (1): staging: android: ion: Return an ERR_PTR in ion_map_kernel Martin Kaiser (1): mtd: rawnand: mxc: set spare area size register explicitly Mikulas Patocka (1): dm bufio: drop the lock when doing GFP_NOIO allocation Paolo Abeni (1): netfilter: ebtables: handle string from userspace with care Paulo Alcantara (1): cifs: Fix infinite loop when using hard mount option Richard Weinberger (1): ubi: fastmap: Correctly handle interrupted erasures in EBA Tetsuo Handa (1): n_tty: Fix stall at n_tty_receive_char_special(). Theodore Ts'o (3): ext4: make sure bitmaps and the inode table don't overlap with bg descriptors ext4: clear i_data in ext4_inode_info when removing inline data ext4: add more mount time checks of the superblock Tokunori Ikegami (3): mtd: cfi_cmdset_0002: Change definition naming to retry write operation mtd: cfi_cmdset_0002: Change erase functions to retry for error mtd: cfi_cmdset_0002: Change erase functions to check chip good only

7 years, 5 months

1
1
0 0

[PATCH] xen: setup pv irq ops vector earlier

by Juergen Gross

Setting pv_irq_ops for Xen PV domains should be done as early as possible in order to support e.g. very early printk() usage. Remove the no longer necessary conditional in xen_init_irq_ops() from PVH V1 times to make clear this is a PV only function. Cc: <stable(a)vger.kernel.org> # 4.14 Signed-off-by: Juergen Gross <jgross(a)suse.com> --- arch/x86/xen/enlighten_pv.c | 3 +-- arch/x86/xen/irq.c | 4 +--- 2 files changed, 2 insertions(+), 5 deletions(-) diff --git a/arch/x86/xen/enlighten_pv.c b/arch/x86/xen/enlighten_pv.c index 8d4e2e1ae60b..0f4cd9e5bed4 100644 --- a/arch/x86/xen/enlighten_pv.c +++ b/arch/x86/xen/enlighten_pv.c @@ -1213,6 +1213,7 @@ asmlinkage __visible void __init xen_start_kernel(void) pv_info = xen_info; pv_init_ops.patch = paravirt_patch_default; pv_cpu_ops = xen_cpu_ops; + xen_init_irq_ops(); x86_platform.get_nmi_reason = xen_get_nmi_reason; @@ -1249,8 +1250,6 @@ asmlinkage __visible void __init xen_start_kernel(void) get_cpu_cap(&boot_cpu_data); x86_configure_nx(); - xen_init_irq_ops(); - /* Let's presume PV guests always boot on vCPU with id 0. */ per_cpu(xen_vcpu_id, 0) = 0; diff --git a/arch/x86/xen/irq.c b/arch/x86/xen/irq.c index 74179852e46c..7515a19fd324 100644 --- a/arch/x86/xen/irq.c +++ b/arch/x86/xen/irq.c @@ -128,8 +128,6 @@ static const struct pv_irq_ops xen_irq_ops __initconst = { void __init xen_init_irq_ops(void) { - /* For PVH we use default pv_irq_ops settings. */ - if (!xen_feature(XENFEAT_hvm_callback_vector)) - pv_irq_ops = xen_irq_ops; + pv_irq_ops = xen_irq_ops; x86_init.irqs.intr_init = xen_init_IRQ; } -- 2.13.7

7 years, 5 months

3
4
0 0

[PATCH 4.17 00/56] 4.17.6-stable review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 4.17.6 release. There are 56 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Thu Jul 12 18:24:40 UTC 2018. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.17.6-rc1… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.17.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 4.17.6-rc1 Sebastian Andrzej Siewior <bigeasy(a)linutronix.de> Revert mm/vmstat.c: fix vmstat_update() preemption BUG Dan Carpenter <dan.carpenter(a)oracle.com> staging: comedi: quatech_daqp_cs: fix no-op loop daqp_ao_insn_write() Jann Horn <jannh(a)google.com> netfilter: nf_log: don't hold nf_log_mutex during user access Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> mtd: cfi_cmdset_0002: Change erase functions to check chip good only Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> mtd: cfi_cmdset_0002: Change erase functions to retry for error Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> mtd: cfi_cmdset_0002: Change definition naming to retry write operation Ross Zwisler <ross.zwisler(a)linux.intel.com> dm: prevent DAX mounts if not supported Ross Zwisler <ross.zwisler(a)linux.intel.com> dax: check for QUEUE_FLAG_DAX in bdev_dax_supported() Dave Jiang <dave.jiang(a)intel.com> dax: change bdev_dax_supported() to support boolean returns Darrick J. Wong <darrick.wong(a)oracle.com> fs: allow per-device dax status checking for filesystems Peter Rosin <peda(a)axentia.se> i2c: smbus: kill memory leak on emulated and failed DMA SMBus xfers Wenwen Wang <wang6495(a)umn.edu> i2c: core: smbus: fix a potential missing-check bug Benjamin Tissoires <benjamin.tissoires(a)redhat.com> HID: core: allow concurrent registration of drivers Daniel Rosenberg <drosen(a)google.com> HID: debug: check length before copy_to_user() Gustavo A. R. Silva <gustavo(a)embeddedor.com> HID: hiddev: fix potential Spectre v1 Jason Andryuk <jandryuk(a)gmail.com> HID: i2c-hid: Fix "incomplete report" noise Jon Derrick <jonathan.derrick(a)intel.com> ext4: check superblock mapped prior to committing Theodore Ts'o <tytso(a)mit.edu> ext4: add more mount time checks of the superblock Theodore Ts'o <tytso(a)mit.edu> ext4: add more inode number paranoia checks Theodore Ts'o <tytso(a)mit.edu> ext4: avoid running out of journal credits when appending to an inline file Theodore Ts'o <tytso(a)mit.edu> ext4: never move the system.data xattr out of the inode body Theodore Ts'o <tytso(a)mit.edu> ext4: clear i_data in ext4_inode_info when removing inline data Theodore Ts'o <tytso(a)mit.edu> ext4: include the illegal physical block in the bad map ext4_error msg Theodore Ts'o <tytso(a)mit.edu> ext4: verify the depth of extent tree in ext4_find_extent() Theodore Ts'o <tytso(a)mit.edu> ext4: only look at the bg_flags field if it is valid Theodore Ts'o <tytso(a)mit.edu> ext4: always check block group bounds in ext4_init_block_bitmap() Theodore Ts'o <tytso(a)mit.edu> ext4: make sure bitmaps and the inode table don't overlap with bg descriptors Theodore Ts'o <tytso(a)mit.edu> ext4: always verify the magic number in xattr blocks Theodore Ts'o <tytso(a)mit.edu> ext4: add corruption check in ext4_xattr_set_entry() Theodore Ts'o <tytso(a)mit.edu> jbd2: don't mark block as modified if the handle is out of credits Lyude Paul <lyude(a)redhat.com> drm/amdgpu: Dynamically probe for ATIF handle (v2) Lyude Paul <lyude(a)redhat.com> drm/amdgpu: Add amdgpu_atpx_get_dhandle() Mikulas Patocka <mpatocka(a)redhat.com> drm/udl: fix display corruption of the last line Michel Dänzer <michel.daenzer(a)amd.com> drm: Use kvzalloc for allocating blob property memory Paulo Alcantara <paulo(a)paulo.ac> cifs: Fix infinite loop when using hard mount option Stefano Brivio <sbrivio(a)redhat.com> cifs: Fix slab-out-of-bounds in send_set_info() on SMB2 ACE setting Paulo Alcantara <paulo(a)paulo.ac> cifs: Fix memory leak in smb2_set_ea() Lars Persson <lars.persson(a)axis.com> cifs: Fix use after free of a mid_q_entry Roger Quadros <rogerq(a)ti.com> ARM: dts: dra7: Disable metastability workaround for USB2 Adam Ford <aford173(a)gmail.com> ARM: dts: omap3: Fix am3517 mdio and emac clock references Nick Dyer <nick(a)shmanahar.org> ARM: dts: imx51-zii-rdu1: fix touchscreen pinctrl Jason Gunthorpe <jgg(a)ziepe.ca> vfio: Use get_user_pages_longterm correctly Lars Ellenberg <lars.ellenberg(a)linbit.com> drbd: fix access after free Christian Borntraeger <borntraeger(a)de.ibm.com> s390: Correct register corruption in critical section cleanup David Disseldorp <ddiss(a)suse.de> scsi: target: Fix truncated PR-in ReadKeys response Raghava Aditya Renukunta <RaghavaAditya.Renukunta(a)microsemi.com> scsi: aacraid: Fix PD performance regression over incorrect qd being set Jann Horn <jannh(a)google.com> scsi: sg: mitigate read/write abuse Changbin Du <changbin.du(a)intel.com> tracing: Fix missing return symbol in function_graph output Arnd Bergmann <arnd(a)arndb.de> tracing: Avoid string overflow Lyude Paul <lyude(a)redhat.com> drm/amdgpu: Make struct amdgpu_atif private to amdgpu_acpi.c Jouke Witteveen <j.witteveen(a)gmail.com> ACPI / battery: Safe unregistering of hooks Rafael J. Wysocki <rafael.j.wysocki(a)intel.com> ACPICA: Drop leading newlines from error messages Rafael J. Wysocki <rafael.j.wysocki(a)intel.com> PCI / ACPI / PM: Resume bridges w/o drivers on suspend-to-RAM Pavel Tatashin <pasha.tatashin(a)oracle.com> mm: teach dump_page() to correctly output poisoned struct pages Cannon Matthews <cannonmatthews(a)google.com> mm: hugetlb: yield when prepping struct pages Janosch Frank <frankja(a)linux.ibm.com> userfaultfd: hugetlbfs: fix userfaultfd_huge_must_wait() pte access ------------- Diffstat: Makefile | 4 +- arch/arm/boot/dts/am3517.dtsi | 4 + arch/arm/boot/dts/dra7.dtsi | 2 +- arch/arm/boot/dts/imx51-zii-rdu1.dts | 2 +- arch/s390/kernel/entry.S | 4 +- drivers/acpi/acpica/uterror.c | 6 +- drivers/acpi/battery.c | 9 +- drivers/block/drbd/drbd_worker.c | 2 +- drivers/dax/super.c | 48 +++++---- drivers/gpu/drm/amd/amdgpu/amdgpu.h | 46 ++------ drivers/gpu/drm/amd/amdgpu/amdgpu_acpi.c | 131 +++++++++++++++++++---- drivers/gpu/drm/amd/amdgpu/amdgpu_atpx_handler.c | 6 ++ drivers/gpu/drm/drm_property.c | 6 +- drivers/gpu/drm/udl/udl_fb.c | 5 +- drivers/gpu/drm/udl/udl_transfer.c | 11 +- drivers/hid/hid-core.c | 5 +- drivers/hid/hid-debug.c | 8 +- drivers/hid/i2c-hid/i2c-hid.c | 2 +- drivers/hid/usbhid/hiddev.c | 11 ++ drivers/i2c/i2c-core-smbus.c | 12 ++- drivers/md/dm-table.c | 7 +- drivers/md/dm.c | 3 +- drivers/mtd/chips/cfi_cmdset_0002.c | 30 ++++-- drivers/pci/pci-acpi.c | 12 +++ drivers/scsi/aacraid/aachba.c | 15 ++- drivers/scsi/sg.c | 42 +++++++- drivers/staging/comedi/drivers/quatech_daqp_cs.c | 2 +- drivers/target/target_core_pr.c | 15 ++- drivers/vfio/vfio_iommu_type1.c | 16 ++- fs/cifs/cifsglob.h | 1 + fs/cifs/cifsproto.h | 1 + fs/cifs/cifssmb.c | 10 +- fs/cifs/connect.c | 8 +- fs/cifs/smb1ops.c | 1 + fs/cifs/smb2ops.c | 3 + fs/cifs/smb2pdu.c | 25 +++-- fs/cifs/smb2transport.c | 1 + fs/cifs/transport.c | 18 +++- fs/ext2/super.c | 3 +- fs/ext4/balloc.c | 21 ++-- fs/ext4/ext4.h | 8 -- fs/ext4/ext4_extents.h | 1 + fs/ext4/extents.c | 6 ++ fs/ext4/ialloc.c | 14 ++- fs/ext4/inline.c | 39 +------ fs/ext4/inode.c | 7 +- fs/ext4/mballoc.c | 6 +- fs/ext4/super.c | 89 ++++++++++++--- fs/ext4/xattr.c | 40 ++++--- fs/jbd2/transaction.c | 9 +- fs/userfaultfd.c | 12 ++- fs/xfs/xfs_ioctl.c | 3 +- fs/xfs/xfs_iops.c | 30 +++++- fs/xfs/xfs_super.c | 10 +- include/linux/dax.h | 11 +- include/linux/hid.h | 3 +- kernel/trace/trace_events_hist.c | 2 +- kernel/trace/trace_functions_graph.c | 5 +- mm/debug.c | 18 +++- mm/hugetlb.c | 1 + mm/vmstat.c | 2 - net/netfilter/nf_log.c | 9 +- 62 files changed, 596 insertions(+), 287 deletions(-)

7 years, 5 months

4
62
0 0

[PATCH 4.14 00/53] 4.14.55-stable review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 4.14.55 release. There are 53 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Thu Jul 12 18:24:36 UTC 2018. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.14.55-rc… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.14.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 4.14.55-rc1 Sebastian Andrzej Siewior <bigeasy(a)linutronix.de> Revert mm/vmstat.c: fix vmstat_update() preemption BUG Sebastian Andrzej Siewior <bigeasy(a)linutronix.de> sched, tracing: Fix trace_sched_pi_setprio() for deboosting Dan Carpenter <dan.carpenter(a)oracle.com> staging: comedi: quatech_daqp_cs: fix no-op loop daqp_ao_insn_write() Jann Horn <jannh(a)google.com> netfilter: nf_log: don't hold nf_log_mutex during user access Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> mtd: cfi_cmdset_0002: Change erase functions to check chip good only Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> mtd: cfi_cmdset_0002: Change erase functions to retry for error Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> mtd: cfi_cmdset_0002: Change definition naming to retry write operation Ross Zwisler <ross.zwisler(a)linux.intel.com> dm: prevent DAX mounts if not supported Mike Snitzer <snitzer(a)redhat.com> dm: set QUEUE_FLAG_DAX accordingly in dm_table_set_restrictions() Ross Zwisler <ross.zwisler(a)linux.intel.com> dax: check for QUEUE_FLAG_DAX in bdev_dax_supported() Dave Jiang <dave.jiang(a)intel.com> dax: change bdev_dax_supported() to support boolean returns Darrick J. Wong <darrick.wong(a)oracle.com> fs: allow per-device dax status checking for filesystems Martin Kaiser <martin(a)kaiser.cx> mtd: rawnand: mxc: set spare area size register explicitly Brad Love <brad(a)nextdimension.cc> media: cx25840: Use subdev host data for PLL override Rasmus Villemoes <linux(a)rasmusvillemoes.dk> Kbuild: fix # escaping in .cmd files for future Make Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Revert "dpaa_eth: fix error in dpaa_remove()" Jaegeuk Kim <jaegeuk(a)kernel.org> f2fs: truncate preallocated blocks in error case Sakari Ailus <sakari.ailus(a)linux.intel.com> media: vb2: core: Finish buffers at the end of the stream Naoya Horiguchi <n-horiguchi(a)ah.jp.nec.com> mm: hwpoison: disable memory error handling on 1GB hugepage Rakib Mullick <rakib.mullick(a)gmail.com> irq/core: Fix boot crash when the irqaffinity= boot parameter is passed on CPUMASK_OFFSTACK=y kernels(v1) Daniel Rosenberg <drosen(a)google.com> HID: debug: check length before copy_to_user() Gustavo A. R. Silva <gustavo(a)embeddedor.com> HID: hiddev: fix potential Spectre v1 Jason Andryuk <jandryuk(a)gmail.com> HID: i2c-hid: Fix "incomplete report" noise Ilya Dryomov <idryomov(a)gmail.com> block: cope with WRITE ZEROES failing in blkdev_issue_zeroout() Ilya Dryomov <idryomov(a)gmail.com> block: factor out __blkdev_issue_zero_pages() Jon Derrick <jonathan.derrick(a)intel.com> ext4: check superblock mapped prior to committing Theodore Ts'o <tytso(a)mit.edu> ext4: add more mount time checks of the superblock Theodore Ts'o <tytso(a)mit.edu> ext4: add more inode number paranoia checks Theodore Ts'o <tytso(a)mit.edu> ext4: avoid running out of journal credits when appending to an inline file Theodore Ts'o <tytso(a)mit.edu> ext4: never move the system.data xattr out of the inode body Theodore Ts'o <tytso(a)mit.edu> ext4: clear i_data in ext4_inode_info when removing inline data Theodore Ts'o <tytso(a)mit.edu> ext4: include the illegal physical block in the bad map ext4_error msg Theodore Ts'o <tytso(a)mit.edu> ext4: verify the depth of extent tree in ext4_find_extent() Theodore Ts'o <tytso(a)mit.edu> ext4: only look at the bg_flags field if it is valid Theodore Ts'o <tytso(a)mit.edu> ext4: always check block group bounds in ext4_init_block_bitmap() Theodore Ts'o <tytso(a)mit.edu> ext4: make sure bitmaps and the inode table don't overlap with bg descriptors Theodore Ts'o <tytso(a)mit.edu> ext4: always verify the magic number in xattr blocks Theodore Ts'o <tytso(a)mit.edu> ext4: add corruption check in ext4_xattr_set_entry() Theodore Ts'o <tytso(a)mit.edu> jbd2: don't mark block as modified if the handle is out of credits Mikulas Patocka <mpatocka(a)redhat.com> drm/udl: fix display corruption of the last line Michel Dänzer <michel.daenzer(a)amd.com> drm: Use kvzalloc for allocating blob property memory Stefano Brivio <sbrivio(a)redhat.com> cifs: Fix slab-out-of-bounds in send_set_info() on SMB2 ACE setting Paulo Alcantara <paulo(a)paulo.ac> cifs: Fix infinite loop when using hard mount option Paulo Alcantara <paulo(a)paulo.ac> cifs: Fix memory leak in smb2_set_ea() Lars Persson <lars.persson(a)axis.com> cifs: Fix use after free of a mid_q_entry Jason Gunthorpe <jgg(a)mellanox.com> vfio: Use get_user_pages_longterm correctly Lars Ellenberg <lars.ellenberg(a)linbit.com> drbd: fix access after free Christian Borntraeger <borntraeger(a)de.ibm.com> s390: Correct register corruption in critical section cleanup David Disseldorp <ddiss(a)suse.de> scsi: target: Fix truncated PR-in ReadKeys response Jann Horn <jannh(a)google.com> scsi: sg: mitigate read/write abuse Changbin Du <changbin.du(a)intel.com> tracing: Fix missing return symbol in function_graph output Cannon Matthews <cannonmatthews(a)google.com> mm: hugetlb: yield when prepping struct pages Janosch Frank <frankja(a)linux.ibm.com> userfaultfd: hugetlbfs: fix userfaultfd_huge_must_wait() pte access ------------- Diffstat: Makefile | 4 +- arch/s390/kernel/entry.S | 4 +- block/blk-lib.c | 108 +++++++++++++++-------- drivers/block/drbd/drbd_worker.c | 2 +- drivers/dax/super.c | 42 +++++---- drivers/gpu/drm/drm_property.c | 6 +- drivers/gpu/drm/udl/udl_fb.c | 5 +- drivers/gpu/drm/udl/udl_transfer.c | 11 ++- drivers/hid/hid-debug.c | 8 +- drivers/hid/i2c-hid/i2c-hid.c | 2 +- drivers/hid/usbhid/hiddev.c | 11 +++ drivers/md/dm-table.c | 9 +- drivers/md/dm.c | 6 +- drivers/media/i2c/cx25840/cx25840-core.c | 28 ++++-- drivers/media/v4l2-core/videobuf2-core.c | 9 ++ drivers/mtd/chips/cfi_cmdset_0002.c | 30 +++++-- drivers/mtd/nand/mxc_nand.c | 5 +- drivers/net/ethernet/freescale/dpaa/dpaa_eth.c | 2 +- drivers/scsi/sg.c | 42 ++++++++- drivers/staging/comedi/drivers/quatech_daqp_cs.c | 2 +- drivers/target/target_core_pr.c | 15 ++-- drivers/vfio/vfio_iommu_type1.c | 16 ++-- fs/cifs/cifsglob.h | 1 + fs/cifs/cifsproto.h | 1 + fs/cifs/cifssmb.c | 10 ++- fs/cifs/connect.c | 8 +- fs/cifs/smb1ops.c | 1 + fs/cifs/smb2ops.c | 3 + fs/cifs/smb2pdu.c | 25 ++++-- fs/cifs/smb2transport.c | 1 + fs/cifs/transport.c | 18 +++- fs/ext2/super.c | 3 +- fs/ext4/balloc.c | 21 +++-- fs/ext4/ext4.h | 8 -- fs/ext4/ext4_extents.h | 1 + fs/ext4/extents.c | 6 ++ fs/ext4/ialloc.c | 14 ++- fs/ext4/inline.c | 39 +------- fs/ext4/inode.c | 7 +- fs/ext4/mballoc.c | 6 +- fs/ext4/super.c | 89 ++++++++++++++++--- fs/ext4/xattr.c | 40 ++++----- fs/f2fs/file.c | 9 ++ fs/jbd2/transaction.c | 9 +- fs/userfaultfd.c | 12 +-- fs/xfs/xfs_ioctl.c | 3 +- fs/xfs/xfs_iops.c | 30 +++++-- fs/xfs/xfs_super.c | 10 ++- include/linux/dax.h | 11 +-- include/linux/mm.h | 1 + include/trace/events/sched.h | 4 +- kernel/irq/irqdesc.c | 6 +- kernel/trace/trace_functions_graph.c | 5 +- mm/hugetlb.c | 1 + mm/memory-failure.c | 16 ++++ mm/vmstat.c | 2 - net/netfilter/nf_log.c | 9 +- scripts/Kbuild.include | 5 +- tools/build/Build.include | 5 +- tools/objtool/Makefile | 2 +- tools/scripts/Makefile.include | 2 + 61 files changed, 556 insertions(+), 255 deletions(-)

7 years, 5 months

4
56
0 0

[PATCH 3.18 00/23] 3.18.115-stable review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 3.18.115 release. There are 23 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Thu Jul 12 18:22:59 UTC 2018. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v3.x/stable-review/patch-3.18.115-r… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-3.18.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 3.18.115-rc1 Jann Horn <jannh(a)google.com> netfilter: nf_log: don't hold nf_log_mutex during user access Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> mtd: cfi_cmdset_0002: Change erase functions to check chip good only Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> mtd: cfi_cmdset_0002: Change erase functions to retry for error Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> mtd: cfi_cmdset_0002: Change definition naming to retry write operation Martin Kaiser <martin(a)kaiser.cx> mtd: rawnand: mxc: set spare area size register explicitly Mikulas Patocka <mpatocka(a)redhat.com> dm bufio: drop the lock when doing GFP_NOIO allocation Douglas Anderson <dianders(a)chromium.org> dm bufio: avoid sleeping while holding the dm_bufio lock Brad Love <brad(a)nextdimension.cc> media: cx25840: Use subdev host data for PLL override Daniel Rosenberg <drosen(a)google.com> HID: debug: check length before copy_to_user() Jason Andryuk <jandryuk(a)gmail.com> HID: i2c-hid: Fix "incomplete report" noise Theodore Ts'o <tytso(a)mit.edu> ext4: add more mount time checks of the superblock Theodore Ts'o <tytso(a)mit.edu> ext4: clear i_data in ext4_inode_info when removing inline data Theodore Ts'o <tytso(a)mit.edu> ext4: make sure bitmaps and the inode table don't overlap with bg descriptors Paulo Alcantara <paulo(a)paulo.ac> cifs: Fix infinite loop when using hard mount option Jann Horn <jannh(a)google.com> scsi: sg: mitigate read/write abuse Finn Thain <fthain(a)telegraphics.com.au> net/sonic: Use dma_mapping_error() Josh Hill <josh(a)joshuajhill.com> net: qmi_wwan: Add Netgear Aircard 779S Ivan Bornyakov <brnkv.i1(a)gmail.com> atm: zatm: fix memcmp casting Paolo Abeni <pabeni(a)redhat.com> netfilter: ebtables: handle string from userspace with care Richard Weinberger <richard(a)nod.at> ubi: fastmap: Correctly handle interrupted erasures in EBA Dave Hansen <dave.hansen(a)linux.intel.com> x86/boot: Fix early command-line parsing when matching at end Laura Abbott <labbott(a)redhat.com> staging: android: ion: Return an ERR_PTR in ion_map_kernel Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp> n_tty: Fix stall at n_tty_receive_char_special(). ------------- Diffstat: Makefile | 4 +- arch/x86/lib/cmdline.c | 34 ++++++++---- drivers/atm/zatm.c | 4 +- drivers/hid/hid-debug.c | 8 ++- drivers/hid/i2c-hid/i2c-hid.c | 2 +- drivers/md/dm-bufio.c | 15 +++++- drivers/media/i2c/cx25840/cx25840-core.c | 28 +++++++--- drivers/mtd/chips/cfi_cmdset_0002.c | 30 +++++++---- drivers/mtd/nand/mxc_nand.c | 5 +- drivers/mtd/ubi/eba.c | 92 +++++++++++++++++++++++++++++++- drivers/net/ethernet/natsemi/sonic.c | 2 +- drivers/net/usb/qmi_wwan.c | 1 + drivers/scsi/sg.c | 42 ++++++++++++++- drivers/staging/android/ion/ion_heap.c | 2 +- drivers/tty/n_tty.c | 13 +++-- fs/cifs/cifssmb.c | 10 +++- fs/cifs/smb2pdu.c | 18 ++++--- fs/ext4/inline.c | 1 + fs/ext4/super.c | 62 +++++++++++++++++---- net/bridge/netfilter/ebtables.c | 3 +- net/netfilter/nf_log.c | 9 ++-- 21 files changed, 318 insertions(+), 67 deletions(-)

7 years, 5 months

5
28
0 0

you need photos

by Julie Ryan

We would like to introduce our image editing for you. . Cut out, masking, clipping path, deep etching, transparent background Colour correction, black and white, light and shadows etc. . Dust cleaning, spot cleaning . Beauty retouching, skin retouching, face retouching, body retouching . Product image Retouching . Wedding & Event Album Design. . Portrait image Retouching We give you editing test on your photos. Thanks, Julie Ryan

7 years, 5 months

1
0
0 0

Re: in stable 4.4.131 kprobes seems to be broken

by Greg Kroah-Hartman

[Adding the stable list] On Mon, Jul 09, 2018 at 11:53:37PM -0700, Victor Kamensky wrote: > Hi Masami, > > I am not sure maybe you are aware about this issue already, but > I am writing in case if you are not. > > After move to 4.4.131 stable very basic SystemTap script that involves > kprobes stopped working - it crashes kernel. > > The SystemTap script like this: > > probe kernel.function("meminfo_proc_show") { > println("meminfo_proc_show called") > } > > which effectively will translate into kprobe entry in meminfo_proc_show > function, crashes like this. > > BUG: unable to handle kernel paging request at ffffffffc063f002 > IP: [<ffffffffa3c3558b>] resume_execution+0xe5/0x151 > PGD 24613067 ca > PUD 24615067 PMD 1523e9067 PTE 3370d061 > Oops: 0003 [#1] SMP Modules linked in: <snip> > CPU: 3 PID: 20078 Comm: <snip> Tainted: G O 4.4.131 #1 > task: ffff880031ead780 ti: ffff880032238000 task.ti: ffff880032238000 > t /RIP: 0010:[<ffffffffa3c3558b>] [<ffffffffa3c3558b>] resume_execution+0xe5/0x151 > RSP: 0018:ffff88017fccaec8 EFLAGS: 00010006 > RAX: ffffffffa3dad154 RBX: ffffffffa3dad152 RCX: 000000003f9c0ff9 > RDX: ffffffffc063f002 RSI: ffff88017fccaf58 RDI: 0000000000000041 > RBP: ffff8801549f83c0 R08: 0000000000000001 R09: 0000000000000001 > R10: ffff88003223bdd8 R11: 0000000000000246 R12: ffff88003223bdd8 > R13: ffff88017fccaf58 R14: ffffffffc063f000 R15: ffff88017fccee40 > FS: 00007f9f34520240(0000) GS:ffff88017fcc0000(0000) knlGS:0000000000000000 > CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 > CR2: ffffffffc063f002 CR3: 0000000152b46000 CR4: 0000000000100670 > Stack: > ffff88017fccee40 ffff88017fccaf58 ffff8801549f83c0 0000000000000000 > ffff880033cde500 0000000000000001 ffffffffa3c35633 ffff88017fccaf58 > ffff880031ead780 0000000000000000 ffffffffa3c04e9d 0000000000004000 > Call Trace: > <#DB> > [<ffffffffa3c35633>] ? kprobe_debug_handler+0x3c/0xc8 > [<ffffffffa3c04e9d>] ? do_debug+0x7a/0x182 > [<ffffffffa4163afe>] ? debug+0x3e/0x70 > [<ffffffffa3dad14d>] ? meminfo_proc_open+0x1c/0x1c > [<ffffffffa3d73111>] ? seq_buf_alloc+0x23/0x3c > <<EOE>> > [<ffffffffa3d735a8>] ? seq_read+0x1a6/0x40d > [<ffffffffa3da5700>] ? proc_reg_read+0x47/0x65 > [<ffffffffa3da56b9>] ? proc_reg_write+0x65/0x65 > [<ffffffffa3d55ebf>] ? __vfs_read+0x34/0xea > [<ffffffffa3d564f9>] ? rw_verify_area+0x7a/0xc9 > [<ffffffffa3d565dc>] ? vfs_read+0x94/0xf9 > [<ffffffffa3d570a4>] ? SyS_read+0x61/0xb4 > [<ffffffffa4161b8a>] ? entry_SYSCALL_64_fastpath+0x1e/0x8e > Code: 7d 70 00 75 3e 49 8b 95 80 00 00 00 49 39 d6 73 2b 48 89 d0 4c 29 f0 > 48 8d 48 05 48 83 f9 0e 77 1b b9 fb ff ff ff 48 01 d8 29 d1 <c6> 02 e9 01 c8 > 89 42 01 c7 45 70 01 00 00 00 eb 07 c7 45 70 ff RIP [<ffffffffa3c3558b>] > resume_execution+0xe5/0x151 > RSP <ffff88017fccaec8> > CR2: ffffffffc063f002 > > Decoding crash: > > (gdb) p &resume_execution > $1 = (void (*)(struct kprobe *, struct pt_regs *, > struct kprobe_ctlblk *)) 0xffffffff810354a6 <resume_execution> > (gdb) b *(0xffffffff810354a6 + 0xe5) > Breakpoint 1 at 0xffffffff8103558b: file <snip>/kernel-source/arch/x86/kernel/kprobes/core.c, line 126. > > corresponds to: > > static nokprobe_inline void > __synthesize_relative_insn(void *from, void *to, u8 op) > { > struct __arch_relative_insn { > u8 op; > s32 raddr; > } __packed *insn; > > insn = (struct __arch_relative_insn *)from; > insn->raddr = (s32)((long)(to) - ((long)(from) + 5)); > insn->op = op; <---------------------------------------- > } > > > (gdb) p /x &kprobe_debug_handler > $1 = 0xffffffff810355f7 > (gdb) b *(0xffffffff810355f7 + 0x3c) > Breakpoint 1 at 0xffffffff81035633: file <snip>/kernel-source/arch/x86/kernel/kprobes/core.c, line 932. > > corresponds to > > static void resume_execution(struct kprobe *p, struct pt_regs *regs, > struct kprobe_ctlblk *kcb) > { > <snip> > if (p->ainsn.boostable == 0) { > if ((regs->ip > copy_ip) && > (regs->ip - copy_ip) + 5 < MAX_INSN_SIZE) { > /* > * These instructions can be executed directly if it > * jumps back to correct address. > */ > synthesize_reljump((void *)regs->ip, > (void *)orig_ip + (regs->ip - copy_ip)); <------- > p->ainsn.boostable = 1; > } else { > p->ainsn.boostable = -1; > } > } > > Further digging points to the following couple commits that 4.4.y stable > picked up: > > 1dd26ec7 kprobes/x86: Fix to set RWX bits correctly before releasing trampoline > 76bee4 kprobes/x86: Set kprobes pages read-only > > Effectively the way I read: the problem is that linux-4.4.y branch is > missing your following commit > > commit 804dec5bda9b4fcdab5f67fe61db4a0498af5221 > Author: Masami Hiramatsu <mhiramat(a)kernel.org> > Date: Wed Mar 29 14:00:25 2017 +0900 > > kprobes/x86: Do not modify singlestep buffer while resuming > > Do not modify singlestep execution buffer (kprobe.ainsn.insn) > while resuming from single-stepping, instead, modifies > the buffer to add a jump back instruction at preparing > buffer. > > Signed-off-by: Masami Hiramatsu <mhiramat(a)kernel.org> > Cc: Ananth N Mavinakayanahalli <ananth(a)linux.vnet.ibm.com> > > and as result synthesize_reljump function call still exists from > resume_execution function but it does not have proper page permission > manipulation code around it, so making kprobes pages as > read-only has averse effect: I.e when called from resume_execution > function it hits read-only page and crashes. > > Please advise how to proceed besides obvious backing out above mentioned > two commits. So if you apply the above commit, all works properly for you? thanks, greg k-h

7 years, 5 months

4
4
0 0

[char-misc-next v2 1/2] mei: bus: type promotion bug in mei_nfc_if_version()

by Tomas Winkler

From: Dan Carpenter <dan.carpenter(a)oracle.com> We accidentally removed the check for negative returns without considering the issue of type promotion. The "if_version_length" variable is type size_t so if __mei_cl_recv() returns a negative then "bytes_recv" is type promoted to a high positive value and treated as success. Cc: <stable(a)vger.kernel.org> Fixes: 582ab27a063a ("mei: bus: fix received data size check in NFC fixup") Signed-off-by: Dan Carpenter <dan.carpenter(a)oracle.com> Signed-off-by: Tomas Winkler <tomas.winkler(a)intel.com> --- V2: rebase drivers/misc/mei/bus-fixup.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/misc/mei/bus-fixup.c b/drivers/misc/mei/bus-fixup.c index e45fe826d87d..65e28be3c8cc 100644 --- a/drivers/misc/mei/bus-fixup.c +++ b/drivers/misc/mei/bus-fixup.c @@ -341,7 +341,7 @@ static int mei_nfc_if_version(struct mei_cl *cl, ret = 0; bytes_recv = __mei_cl_recv(cl, (u8 *)reply, if_version_length, 0, 0); - if (bytes_recv < if_version_length) { + if (bytes_recv < 0 || bytes_recv < if_version_length) { dev_err(bus->dev, "Could not read IF version\n"); ret = -EIO; goto err; -- 2.14.4

7 years, 5 months

1
0
0 0

[PATCH V2] MIPS: implement smp_cond_load_acquire() for Loongson-3

by Huacai Chen

After commit 7f56b58a92aaf2c ("locking/mcs: Use smp_cond_load_acquire() in MCS spin loop") Loongson-3 fails to boot. This is because Loongson-3 has SFB (Store Fill Buffer) and the weak-ordering may cause READ_ONCE() to get an old value in a tight loop. So in smp_cond_load_acquire() we need a __smp_rmb() before the READ_ONCE() loop. This patch introduce a Loongson-specific smp_cond_load_acquire(). And it should be backported to as early as linux-4.5, in which release the smp_cond_acquire() is introduced. There may be other cases where memory barriers is needed, we will fix them one by one. Cc: stable(a)vger.kernel.org Signed-off-by: Huacai Chen <chenhc(a)lemote.com> --- arch/mips/include/asm/barrier.h | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) diff --git a/arch/mips/include/asm/barrier.h b/arch/mips/include/asm/barrier.h index a5eb1bb..e8c4c63 100644 --- a/arch/mips/include/asm/barrier.h +++ b/arch/mips/include/asm/barrier.h @@ -222,6 +222,24 @@ #define __smp_mb__before_atomic() __smp_mb__before_llsc() #define __smp_mb__after_atomic() smp_llsc_mb() +#ifdef CONFIG_CPU_LOONGSON3 +/* Loongson-3 need a __smp_rmb() before READ_ONCE() loop */ +#define smp_cond_load_acquire(ptr, cond_expr) \ +({ \ + typeof(ptr) __PTR = (ptr); \ + typeof(*ptr) VAL; \ + __smp_rmb(); \ + for (;;) { \ + VAL = READ_ONCE(*__PTR); \ + if (cond_expr) \ + break; \ + cpu_relax(); \ + } \ + __smp_rmb(); \ + VAL; \ +}) +#endif /* CONFIG_CPU_LOONGSON3 */ + #include <asm-generic/barrier.h> #endif /* __ASM_BARRIER_H */ -- 2.7.0

7 years, 5 months

8
15
0 0

FAILED: patch "[PATCH] ovl: hash non-dir by lower inode for fsnotify" failed to apply to 4.14-stable tree

by gregkh＠linuxfoundation.org

The patch below does not apply to the 4.14-stable tree. If someone wants it applied there, or to any other stable or longterm tree, then please email the backport, including the original git commit id to <stable(a)vger.kernel.org>. thanks, greg k-h ------------------ original commit in Linus's tree ------------------ >From 764baba80168ad3adafb521d2ab483ccbc49e344 Mon Sep 17 00:00:00 2001 From: Amir Goldstein <amir73il(a)gmail.com> Date: Sun, 4 Feb 2018 15:35:09 +0200 Subject: [PATCH] ovl: hash non-dir by lower inode for fsnotify Commit 31747eda41ef ("ovl: hash directory inodes for fsnotify") fixed an issue of inotify watch on directory that stops getting events after dropping dentry caches. A similar issue exists for non-dir non-upper files, for example: $ mkdir -p lower upper work merged $ touch lower/foo $ mount -t overlay -o lowerdir=lower,workdir=work,upperdir=upper none merged $ inotifywait merged/foo & $ echo 2 > /proc/sys/vm/drop_caches $ cat merged/foo inotifywait doesn't get the OPEN event, because ovl_lookup() called from 'cat' allocates a new overlay inode and does not reuse the watched inode. Fix this by hashing non-dir overlay inodes by lower real inode in the following cases that were not hashed before this change: - A non-upper overlay mount - A lower non-hardlink when index=off A helper ovl_hash_bylower() was added to put all the logic and documentation about which real inode an overlay inode is hashed by into one place. The issue dates back to initial version of overlayfs, but this patch depends on ovl_inode code that was introduced in kernel v4.13. Cc: <stable(a)vger.kernel.org> #v4.13 Signed-off-by: Amir Goldstein <amir73il(a)gmail.com> Signed-off-by: Miklos Szeredi <mszeredi(a)redhat.com> diff --git a/fs/overlayfs/inode.c b/fs/overlayfs/inode.c index fcd97b783fa1..3b1bd469accd 100644 --- a/fs/overlayfs/inode.c +++ b/fs/overlayfs/inode.c @@ -669,38 +669,59 @@ struct inode *ovl_lookup_inode(struct super_block *sb, struct dentry *real, return inode; } +/* + * Does overlay inode need to be hashed by lower inode? + */ +static bool ovl_hash_bylower(struct super_block *sb, struct dentry *upper, + struct dentry *lower, struct dentry *index) +{ + struct ovl_fs *ofs = sb->s_fs_info; + + /* No, if pure upper */ + if (!lower) + return false; + + /* Yes, if already indexed */ + if (index) + return true; + + /* Yes, if won't be copied up */ + if (!ofs->upper_mnt) + return true; + + /* No, if lower hardlink is or will be broken on copy up */ + if ((upper || !ovl_indexdir(sb)) && + !d_is_dir(lower) && d_inode(lower)->i_nlink > 1) + return false; + + /* No, if non-indexed upper with NFS export */ + if (sb->s_export_op && upper) + return false; + + /* Otherwise, hash by lower inode for fsnotify */ + return true; +} + struct inode *ovl_get_inode(struct super_block *sb, struct dentry *upperdentry, struct dentry *lowerdentry, struct dentry *index, unsigned int numlower) { - struct ovl_fs *ofs = sb->s_fs_info; struct inode *realinode = upperdentry ? d_inode(upperdentry) : NULL; struct inode *inode; - /* Already indexed or could be indexed on copy up? */ - bool indexed = (index || (ovl_indexdir(sb) && !upperdentry)); - struct dentry *origin = indexed ? lowerdentry : NULL; + bool bylower = ovl_hash_bylower(sb, upperdentry, lowerdentry, index); bool is_dir; - if (WARN_ON(upperdentry && indexed && !lowerdentry)) - return ERR_PTR(-EIO); - if (!realinode) realinode = d_inode(lowerdentry); /* - * Copy up origin (lower) may exist for non-indexed non-dir upper, but - * we must not use lower as hash key in that case. - * Hash non-dir that is or could be indexed by origin inode. - * Hash dir that is or could be merged by origin inode. - * Hash pure upper and non-indexed non-dir by upper inode. - * Hash non-indexed dir by upper inode for NFS export. + * Copy up origin (lower) may exist for non-indexed upper, but we must + * not use lower as hash key if this is a broken hardlink. */ is_dir = S_ISDIR(realinode->i_mode); - if (is_dir && (indexed || !sb->s_export_op || !ofs->upper_mnt)) - origin = lowerdentry; - - if (upperdentry || origin) { - struct inode *key = d_inode(origin ?: upperdentry); + if (upperdentry || bylower) { + struct inode *key = d_inode(bylower ? lowerdentry : + upperdentry); unsigned int nlink = is_dir ? 1 : realinode->i_nlink; inode = iget5_locked(sb, (unsigned long) key, @@ -728,6 +749,7 @@ struct inode *ovl_get_inode(struct super_block *sb, struct dentry *upperdentry, nlink = ovl_get_nlink(lowerdentry, upperdentry, nlink); set_nlink(inode, nlink); } else { + /* Lower hardlink that will be broken on copy up */ inode = new_inode(sb); if (!inode) goto out_nomem;

7 years, 5 months

5
16
0 0

Re: [PATCH 2/3] xen: set cpu capabilities from xen_start_kernel()

by Juergen Gross

On 11/07/18 11:15, Woodhouse, David wrote: > On Wed, 2018-05-30 at 13:09 +0200, Juergen Gross wrote: >> There is no need to set the same capabilities for each cpu >> individually. This can easily be done for all cpus when starting the >> kernel. >> >> Upstream commit: 0808e80cb760de2733c0527d2090ed2205a1eef8 ("xen: set >> cpu capabilities from xen_start_kernel()") >> >> Signed-off-by: Juergen Gross <jgross(a)suse.com> >> Reviewed-by: Boris Ostrovsky <boris.ostrovsky(a)oracle.com> > > That breaks PV guests because they get KAISER enabled — when > kaiser_check_boottime_disable() runs, X86_FEATURE_XENPV isn't set. Which kernel version are you talking about? With upstream commit 60d3450167433f2d099ce2869dc52dd9e7dc9b29 which will be part of next stable-4.9 everything is fine. Juergen

7 years, 5 months

1
0
0 0

[PATCH 3/3] IB/srpt: Fix a use-after-free

by Bart Van Assche

Make sure that channel objects continue to exist until the target core has called the .close_session() callback function. This patch voids that KASAN sporadically reports the following: BUG: KASAN: use-after-free in do_raw_spin_lock+0x1c/0x130 Read of size 4 at addr ffff8801534b16e4 by task rmdir/14805 CPU: 16 PID: 14805 Comm: rmdir Not tainted 4.18.0-rc2-dbg+ #5 Call Trace: dump_stack+0xa4/0xf5 print_address_description+0x6f/0x270 kasan_report+0x241/0x360 __asan_load4+0x78/0x80 do_raw_spin_lock+0x1c/0x130 _raw_spin_lock_irqsave+0x52/0x60 srpt_set_ch_state+0x27/0x70 [ib_srpt] srpt_disconnect_ch+0x1b/0xc0 [ib_srpt] srpt_close_session+0xa8/0x260 [ib_srpt] target_shutdown_sessions+0x170/0x180 [target_core_mod] core_tpg_del_initiator_node_acl+0xf3/0x200 [target_core_mod] target_fabric_nacl_base_release+0x25/0x30 [target_core_mod] config_item_release+0x9c/0x110 [configfs] config_item_put+0x26/0x30 [configfs] configfs_rmdir+0x3b8/0x510 [configfs] vfs_rmdir+0xb3/0x1e0 do_rmdir+0x262/0x2c0 do_syscall_64+0x77/0x230 entry_SYSCALL_64_after_hwframe+0x49/0xbe Fixes: a42d985bd5b2 ("ib_srpt: Initial SRP Target merge for v3.3-rc1") Signed-off-by: Bart Van Assche <bart.vanassche(a)wdc.com> Cc: <stable(a)vger.kernel.org> --- drivers/infiniband/ulp/srpt/ib_srpt.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/drivers/infiniband/ulp/srpt/ib_srpt.c b/drivers/infiniband/ulp/srpt/ib_srpt.c index 325bae29e90d..705f6a992d82 100644 --- a/drivers/infiniband/ulp/srpt/ib_srpt.c +++ b/drivers/infiniband/ulp/srpt/ib_srpt.c @@ -2152,6 +2152,7 @@ static int srpt_cm_req_recv(struct srpt_device *const sdev, } kref_init(&ch->kref); + kref_get(&ch->kref); ch->pkey = be16_to_cpu(pkey); ch->nexus = nexus; ch->zw_cqe.done = srpt_zerolength_write_done; @@ -3212,6 +3213,7 @@ static void srpt_close_session(struct se_session *se_sess) struct srpt_rdma_ch *ch = se_sess->fabric_sess_ptr; srpt_disconnect_ch_sync(ch); + kref_put(&ch->kref, srpt_free_ch); } /** -- 2.18.0

7 years, 5 months

5
8
0 0

[PATCH v4 0/8] mm: Rework hmm to use devm_memremap_pages and other fixes

by Dan Williams

Changes since v3 [1]: * Collect Logan's reviewed-by on patch 3 * Collect John's and Joe's tested-by on patch 8 * Update the changelog for patch 1 and 7 to better explain the EXPORT_SYMBOL_GPL rationale. * Update the changelog for patch 2 to clarify that it is a cleanup to make the following patch-3 fix easier [1]: https://lkml.org/lkml/2018/6/19/108 --- Hi Andrew, As requested, here is a resend of the devm_memremap_pages() fixups. Please consider for 4.18. --- As ZONE_DEVICE continues to attract new users, it is imperative to keep all users consolidated on devm_memremap_pages() as the interface for create "device pages". The devm_memremap_pages() implementation was recently reworked to make it more generic for arbitrary users, like the proposed peer-to-peer PCI-E enabling. HMM pre-dated this rework and opted to duplicate devm_memremap_pages() as hmm_devmem_pages_create(). Rework hmm to be a consumer of devm_memremap_pages() directly and fix up the licensing on the exports given the deep dependencies and exposure of core mm internals. With the exports of devm_memremap_pages() and hmm fixed up we can fix the regression of inadvertently making put_page() have EXPORT_SYMBOL_GPL dependencies, which breaks consumers like OpenAFS. The series was tested against v4.18-rc2. --- Dan Williams (8): mm, devm_memremap_pages: Mark devm_memremap_pages() EXPORT_SYMBOL_GPL mm, devm_memremap_pages: Kill mapping "System RAM" support mm, devm_memremap_pages: Fix shutdown handling mm, devm_memremap_pages: Add MEMORY_DEVICE_PRIVATE support mm, hmm: Use devm semantics for hmm_devmem_{add,remove} mm, hmm: Replace hmm_devmem_pages_create() with devm_memremap_pages() mm, hmm: Mark hmm_devmem_{add,add_resource} EXPORT_SYMBOL_GPL mm: Fix exports that inadvertently make put_page() EXPORT_SYMBOL_GPL drivers/dax/pmem.c | 10 - drivers/nvdimm/pmem.c | 18 +- include/linux/hmm.h | 4 include/linux/memremap.h | 7 + kernel/memremap.c | 89 +++++++---- mm/hmm.c | 306 +++++-------------------------------- tools/testing/nvdimm/test/iomap.c | 21 ++- 7 files changed, 132 insertions(+), 323 deletions(-)

7 years, 5 months

1
1
0 0

[PATCH 1/2] x86/gpu: reserve ICL's graphics stolen memory

by Paulo Zanoni

ICL changes the registers and addresses to 64 bits. I also briefly looked at implementing an u64 version of the PCI config read functions, but I concluded this wouldn't be trivial, so it's not worth doing it for a single user that can't have any racing problems while reading the register in two separate operations. v2: - Scrub the development (non-public) changelog (Joonas). - Remove the i915.ko bits so this can be easily backported in order to properly avoid stolen memory even on machines without i915.ko (Joonas). - CC stable for the reasons above. Issue: VIZ-9250 CC: stable(a)vger.kernel.org Cc: Ingo Molnar <mingo(a)kernel.org> Cc: H. Peter Anvin <hpa(a)zytor.com> Cc: x86(a)kernel.org Cc: Daniele Ceraolo Spurio <daniele.ceraolospurio(a)intel.com> Cc: Joonas Lahtinen <joonas.lahtinen(a)linux.intel.com> Signed-off-by: Paulo Zanoni <paulo.r.zanoni(a)intel.com> --- arch/x86/kernel/early-quirks.c | 18 ++++++++++++++++++ include/drm/i915_drm.h | 4 +++- 2 files changed, 21 insertions(+), 1 deletion(-) diff --git a/arch/x86/kernel/early-quirks.c b/arch/x86/kernel/early-quirks.c index bae0d32e327b..72c2cf961d44 100644 --- a/arch/x86/kernel/early-quirks.c +++ b/arch/x86/kernel/early-quirks.c @@ -340,6 +340,18 @@ static resource_size_t __init gen3_stolen_base(int num, int slot, int func, return bsm & INTEL_BSM_MASK; } +static resource_size_t __init gen11_stolen_base(int num, int slot, int func, + resource_size_t stolen_size) +{ + u64 bsm; + + bsm = read_pci_config(num, slot, func, INTEL_GEN11_BSM_DW0); + bsm &= INTEL_BSM_MASK; + bsm |= (u64)read_pci_config(num, slot, func, INTEL_GEN11_BSM_DW1) << 32; + + return bsm; +} + static resource_size_t __init i830_stolen_size(int num, int slot, int func) { u16 gmch_ctrl; @@ -500,6 +512,11 @@ static const struct intel_early_ops chv_early_ops __initconst = { .stolen_size = chv_stolen_size, }; +static const struct intel_early_ops gen11_early_ops __initconst = { + .stolen_base = gen11_stolen_base, + .stolen_size = gen9_stolen_size, +}; + static const struct pci_device_id intel_early_ids[] __initconst = { INTEL_I830_IDS(&i830_early_ops), INTEL_I845G_IDS(&i845_early_ops), @@ -531,6 +548,7 @@ static const struct pci_device_id intel_early_ids[] __initconst = { INTEL_CFL_IDS(&gen9_early_ops), INTEL_GLK_IDS(&gen9_early_ops), INTEL_CNL_IDS(&gen9_early_ops), + INTEL_ICL_11_IDS(&gen11_early_ops), }; struct resource intel_graphics_stolen_res __ro_after_init = DEFINE_RES_MEM(0, 0); diff --git a/include/drm/i915_drm.h b/include/drm/i915_drm.h index c9e5a6621b95..c44703f471b3 100644 --- a/include/drm/i915_drm.h +++ b/include/drm/i915_drm.h @@ -95,7 +95,9 @@ extern struct resource intel_graphics_stolen_res; #define I845_TSEG_SIZE_512K (2 << 1) #define I845_TSEG_SIZE_1M (3 << 1) -#define INTEL_BSM 0x5c +#define INTEL_BSM 0x5c +#define INTEL_GEN11_BSM_DW0 0xc0 +#define INTEL_GEN11_BSM_DW1 0xc4 #define INTEL_BSM_MASK (-(1u << 20)) #endif /* _I915_DRM_H_ */ -- 2.14.3

7 years, 5 months

4
7
0 0

[PATCH 1/4] mtd: cfi_cmdset_0002: Change write buffer to check correct value

by Tokunori Ikegami

For the word write it is checked if the chip has the correct value. But it is not checked for the write buffer as only checked if ready. To make sure for the write buffer change to check the value. It is enough as this patch is only checking the last written word. Since it is described by data sheets to check the operation status. Signed-off-by: Tokunori Ikegami <ikegami(a)allied-telesis.co.jp> Reviewed-by: Joakim Tjernlund <Joakim.Tjernlund(a)infinera.com> Cc: Chris Packham <chris.packham(a)alliedtelesis.co.nz> Cc: Brian Norris <computersforpeace(a)gmail.com> Cc: David Woodhouse <dwmw2(a)infradead.org> Cc: Boris Brezillon <boris.brezillon(a)free-electrons.com> Cc: Marek Vasut <marek.vasut(a)gmail.com> Cc: Richard Weinberger <richard(a)nod.at> Cc: Cyrille Pitchen <cyrille.pitchen(a)wedev4u.fr> Cc: linux-mtd(a)lists.infradead.org Cc: stable(a)vger.kernel.org Signed-off-by: Boris Brezillon <boris.brezillon(a)bootlin.com> --- drivers/mtd/chips/cfi_cmdset_0002.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/mtd/chips/cfi_cmdset_0002.c b/drivers/mtd/chips/cfi_cmdset_0002.c index 692902df2598..9ab521d25ea2 100644 --- a/drivers/mtd/chips/cfi_cmdset_0002.c +++ b/drivers/mtd/chips/cfi_cmdset_0002.c @@ -1880,7 +1880,7 @@ static int __xipram do_write_buffer(struct map_info *map, struct flchip *chip, if (time_after(jiffies, timeo) && !chip_ready(map, adr)) break; - if (chip_ready(map, adr)) { + if (chip_good(map, adr, datum)) { xip_enable(map, chip, adr); goto op_done; } -- 2.16.1

7 years, 5 months

3
7
0 0

[PATCH] xen: remove global bit from __default_kernel_pte_mask for pv guests

by Juergen Gross

When removing the global bit from __supported_pte_mask do the same for __default_kernel_pte_mask in order to avoid the WARN_ONCE() in check_pgprot() when setting a kernel pte before having called init_mem_mapping(). Cc: <stable(a)vger.kernel.org> # 4.17 Reported-by: Michael Young <m.a.young(a)durham.ac.uk> Signed-off-by: Juergen Gross <jgross(a)suse.com> --- arch/x86/xen/enlighten_pv.c | 1 + 1 file changed, 1 insertion(+) diff --git a/arch/x86/xen/enlighten_pv.c b/arch/x86/xen/enlighten_pv.c index 0f4cd9e5bed4..cf7b13d3e911 100644 --- a/arch/x86/xen/enlighten_pv.c +++ b/arch/x86/xen/enlighten_pv.c @@ -1230,6 +1230,7 @@ asmlinkage __visible void __init xen_start_kernel(void) /* Prevent unwanted bits from being set in PTEs. */ __supported_pte_mask &= ~_PAGE_GLOBAL; + __default_kernel_pte_mask &= ~_PAGE_GLOBAL; /* * Prevent page tables from being allocated in highmem, even -- 2.13.7

7 years, 5 months

2
1
0 0

+ mm-fix-vma_is_anonymous-false-positives.patch added to -mm tree

by akpm＠linux-foundation.org

The patch titled Subject: mm: Fix vma_is_anonymous() false-positives has been added to the -mm tree. Its filename is mm-fix-vma_is_anonymous-false-positives.patch This patch should soon appear at http://ozlabs.org/~akpm/mmots/broken-out/mm-fix-vma_is_anonymous-false-posi… and later at http://ozlabs.org/~akpm/mmotm/broken-out/mm-fix-vma_is_anonymous-false-posi… Before you just go and hit "reply", please: a) Consider who else should be cc'ed b) Prefer to cc a suitable mailing list as well c) Ideally: find the original patch on the mailing list and do a reply-to-all to that, adding suitable additional cc's *** Remember to use Documentation/process/submit-checklist.rst when testing your code *** The -mm tree is included into linux-next and is updated there every 3-4 working days ------------------------------------------------------ From: "Kirill A. Shutemov" <kirill.shutemov(a)linux.intel.com> Subject: mm: Fix vma_is_anonymous() false-positives vma_is_anonymous() relies on ->vm_ops being NULL to detect anonymous VMA. This is unreliable as ->mmap may not set ->vm_ops. False-positive vma_is_anonymous() may lead to crashes: next ffff8801ce5e7040 prev ffff8801d20eca50 mm ffff88019c1e13c0 prot 27 anon_vma ffff88019680cdd8 vm_ops 0000000000000000 pgoff 0 file ffff8801b2ec2d00 private_data 0000000000000000 flags: 0xff(read|write|exec|shared|mayread|maywrite|mayexec|mayshare) ------------[ cut here ]------------ kernel BUG at mm/memory.c:1422! invalid opcode: 0000 [#1] SMP KASAN CPU: 0 PID: 18486 Comm: syz-executor3 Not tainted 4.18.0-rc3+ #136 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:zap_pmd_range mm/memory.c:1421 [inline] RIP: 0010:zap_pud_range mm/memory.c:1466 [inline] RIP: 0010:zap_p4d_range mm/memory.c:1487 [inline] RIP: 0010:unmap_page_range+0x1c18/0x2220 mm/memory.c:1508 Code: ff 31 ff 4c 89 e6 42 c6 04 33 f8 e8 92 dd d0 ff 4d 85 e4 0f 85 4a eb ff ff e8 54 dc d0 ff 48 8b bd 10 fc ff ff e8 82 95 fe ff <0f> 0b e8 41 dc d0 ff 0f 0b 4c 89 ad 18 fc ff ff c7 85 7c fb ff ff RSP: 0018:ffff8801b0587330 EFLAGS: 00010286 RAX: 000000000000013c RBX: 1ffff100360b0e9c RCX: ffffc90002620000 RDX: 0000000000000000 RSI: ffffffff81631851 RDI: 0000000000000001 RBP: ffff8801b05877c8 R08: ffff880199d40300 R09: ffffed003b5c4fc0 R10: ffffed003b5c4fc0 R11: ffff8801dae27e07 R12: 0000000000000000 R13: ffff88019c1e13c0 R14: dffffc0000000000 R15: 0000000020e01000 FS: 00007fca32251700(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f04c540d000 CR3: 00000001ac1f0000 CR4: 00000000001426f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: unmap_single_vma+0x1a0/0x310 mm/memory.c:1553 zap_page_range_single+0x3cc/0x580 mm/memory.c:1644 unmap_mapping_range_vma mm/memory.c:2792 [inline] unmap_mapping_range_tree mm/memory.c:2813 [inline] unmap_mapping_pages+0x3a7/0x5b0 mm/memory.c:2845 unmap_mapping_range+0x48/0x60 mm/memory.c:2880 truncate_pagecache+0x54/0x90 mm/truncate.c:800 truncate_setsize+0x70/0xb0 mm/truncate.c:826 simple_setattr+0xe9/0x110 fs/libfs.c:409 notify_change+0xf13/0x10f0 fs/attr.c:335 do_truncate+0x1ac/0x2b0 fs/open.c:63 do_sys_ftruncate+0x492/0x560 fs/open.c:205 __do_sys_ftruncate fs/open.c:215 [inline] __se_sys_ftruncate fs/open.c:213 [inline] __x64_sys_ftruncate+0x59/0x80 fs/open.c:213 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe Reproducer: #include <stdio.h> #include <stddef.h> #include <stdint.h> #include <stdlib.h> #include <string.h> #include <sys/types.h> #include <sys/stat.h> #include <sys/ioctl.h> #include <sys/mman.h> #include <unistd.h> #include <fcntl.h> #define KCOV_INIT_TRACE _IOR('c', 1, unsigned long) #define KCOV_ENABLE _IO('c', 100) #define KCOV_DISABLE _IO('c', 101) #define COVER_SIZE (1024<<10) #define KCOV_TRACE_PC 0 #define KCOV_TRACE_CMP 1 int main(int argc, char **argv) { int fd; unsigned long *cover; system("mount -t debugfs none /sys/kernel/debug"); fd = open("/sys/kernel/debug/kcov", O_RDWR); ioctl(fd, KCOV_INIT_TRACE, COVER_SIZE); cover = mmap(NULL, COVER_SIZE * sizeof(unsigned long), PROT_READ | PROT_WRITE, MAP_SHARED, fd, 0); munmap(cover, COVER_SIZE * sizeof(unsigned long)); cover = mmap(NULL, COVER_SIZE * sizeof(unsigned long), PROT_READ | PROT_WRITE, MAP_PRIVATE, fd, 0); memset(cover, 0, COVER_SIZE * sizeof(unsigned long)); ftruncate(fd, 3UL << 20); return 0; } This can be fixed by assigning anonymous VMAs own vm_ops and not relying on it being NULL. If ->mmap() failed to set ->vm_ops, mmap_region() will set it to dummy_vm_ops. This way we will have non-NULL ->vm_ops for all VMAs. Link: http://lkml.kernel.org/r/20180710134821.84709-2-kirill.shutemov@linux.intel… Signed-off-by: Kirill A. Shutemov <kirill.shutemov(a)linux.intel.com> Reported-by: syzbot+3f84280d52be9b7083cc(a)syzkaller.appspotmail.com Reviewed-by: Andrew Morton <akpm(a)linux-foundation.org> Cc: Dmitry Vyukov <dvyukov(a)google.com> Cc: Oleg Nesterov <oleg(a)redhat.com> Cc: Andrea Arcangeli <aarcange(a)redhat.com> Cc: <stable(a)vger.kernel.org> Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> --- drivers/char/mem.c | 1 + fs/exec.c | 1 + fs/hugetlbfs/inode.c | 1 + include/linux/mm.h | 5 ++++- mm/khugepaged.c | 4 ++-- mm/mmap.c | 13 +++++++++++++ mm/shmem.c | 1 + 7 files changed, 23 insertions(+), 3 deletions(-) diff -puN drivers/char/mem.c~mm-fix-vma_is_anonymous-false-positives drivers/char/mem.c --- a/drivers/char/mem.c~mm-fix-vma_is_anonymous-false-positives +++ a/drivers/char/mem.c @@ -708,6 +708,7 @@ static int mmap_zero(struct file *file, #endif if (vma->vm_flags & VM_SHARED) return shmem_zero_setup(vma); + vma->vm_ops = &anon_vm_ops; return 0; } diff -puN fs/exec.c~mm-fix-vma_is_anonymous-false-positives fs/exec.c --- a/fs/exec.c~mm-fix-vma_is_anonymous-false-positives +++ a/fs/exec.c @@ -307,6 +307,7 @@ static int __bprm_mm_init(struct linux_b * configured yet. */ BUILD_BUG_ON(VM_STACK_FLAGS & VM_STACK_INCOMPLETE_SETUP); + vma->vm_ops = &anon_vm_ops; vma->vm_end = STACK_TOP_MAX; vma->vm_start = vma->vm_end - PAGE_SIZE; vma->vm_flags = VM_SOFTDIRTY | VM_STACK_FLAGS | VM_STACK_INCOMPLETE_SETUP; diff -puN fs/hugetlbfs/inode.c~mm-fix-vma_is_anonymous-false-positives fs/hugetlbfs/inode.c --- a/fs/hugetlbfs/inode.c~mm-fix-vma_is_anonymous-false-positives +++ a/fs/hugetlbfs/inode.c @@ -597,6 +597,7 @@ static long hugetlbfs_fallocate(struct f memset(&pseudo_vma, 0, sizeof(struct vm_area_struct)); pseudo_vma.vm_flags = (VM_HUGETLB | VM_MAYSHARE | VM_SHARED); pseudo_vma.vm_file = file; + pseudo_vma.vm_ops = &dummy_vm_ops; for (index = start; index < end; index++) { /* diff -puN include/linux/mm.h~mm-fix-vma_is_anonymous-false-positives include/linux/mm.h --- a/include/linux/mm.h~mm-fix-vma_is_anonymous-false-positives +++ a/include/linux/mm.h @@ -1536,9 +1536,12 @@ int clear_page_dirty_for_io(struct page int get_cmdline(struct task_struct *task, char *buffer, int buflen); +extern const struct vm_operations_struct anon_vm_ops; +extern const struct vm_operations_struct dummy_vm_ops; + static inline bool vma_is_anonymous(struct vm_area_struct *vma) { - return !vma->vm_ops; + return vma->vm_ops == &anon_vm_ops; } #ifdef CONFIG_SHMEM diff -puN mm/khugepaged.c~mm-fix-vma_is_anonymous-false-positives mm/khugepaged.c --- a/mm/khugepaged.c~mm-fix-vma_is_anonymous-false-positives +++ a/mm/khugepaged.c @@ -440,7 +440,7 @@ int khugepaged_enter_vma_merge(struct vm * page fault if needed. */ return 0; - if (vma->vm_ops || (vm_flags & VM_NO_KHUGEPAGED)) + if (!vma_is_anonymous(vma) || (vm_flags & VM_NO_KHUGEPAGED)) /* khugepaged not yet working on file or special mappings */ return 0; hstart = (vma->vm_start + ~HPAGE_PMD_MASK) & HPAGE_PMD_MASK; @@ -831,7 +831,7 @@ static bool hugepage_vma_check(struct vm return IS_ALIGNED((vma->vm_start >> PAGE_SHIFT) - vma->vm_pgoff, HPAGE_PMD_NR); } - if (!vma->anon_vma || vma->vm_ops) + if (!vma->anon_vma || !vma_is_anonymous(vma)) return false; if (is_vma_temporary_stack(vma)) return false; diff -puN mm/mmap.c~mm-fix-vma_is_anonymous-false-positives mm/mmap.c --- a/mm/mmap.c~mm-fix-vma_is_anonymous-false-positives +++ a/mm/mmap.c @@ -71,6 +71,9 @@ int mmap_rnd_compat_bits __read_mostly = static bool ignore_rlimit_data; core_param(ignore_rlimit_data, ignore_rlimit_data, bool, 0644); +const struct vm_operations_struct anon_vm_ops = {}; +const struct vm_operations_struct dummy_vm_ops = {}; + static void unmap_region(struct mm_struct *mm, struct vm_area_struct *vma, struct vm_area_struct *prev, unsigned long start, unsigned long end); @@ -561,6 +564,8 @@ static unsigned long count_vma_pages_ran void __vma_link_rb(struct mm_struct *mm, struct vm_area_struct *vma, struct rb_node **rb_link, struct rb_node *rb_parent) { + WARN_ONCE(!vma->vm_ops, "missing vma->vm_ops"); + /* Update tracking information for the gap following the new vma. */ if (vma->vm_next) vma_gap_update(vma->vm_next); @@ -1774,12 +1779,19 @@ unsigned long mmap_region(struct file *f */ WARN_ON_ONCE(addr != vma->vm_start); + /* All mappings must have ->vm_ops set */ + if (!vma->vm_ops) + vma->vm_ops = &dummy_vm_ops; + addr = vma->vm_start; vm_flags = vma->vm_flags; } else if (vm_flags & VM_SHARED) { error = shmem_zero_setup(vma); if (error) goto free_vma; + } else { + /* vma_is_anonymous() relies on this. */ + vma->vm_ops = &anon_vm_ops; } vma_link(mm, vma, prev, rb_link, rb_parent); @@ -2992,6 +3004,7 @@ static int do_brk_flags(unsigned long ad INIT_LIST_HEAD(&vma->anon_vma_chain); vma->vm_mm = mm; + vma->vm_ops = &anon_vm_ops; vma->vm_start = addr; vma->vm_end = addr + len; vma->vm_pgoff = pgoff; diff -puN mm/shmem.c~mm-fix-vma_is_anonymous-false-positives mm/shmem.c --- a/mm/shmem.c~mm-fix-vma_is_anonymous-false-positives +++ a/mm/shmem.c @@ -1424,6 +1424,7 @@ static void shmem_pseudo_vma_init(struct /* Bias interleave by inode number to distribute better across nodes */ vma->vm_pgoff = index + info->vfs_inode.i_ino; vma->vm_policy = mpol_shared_policy_lookup(&info->policy, index); + vma->vm_ops = &dummy_vm_ops; } static void shmem_pseudo_vma_destroy(struct vm_area_struct *vma) _ Patches currently in -mm which might be from kirill.shutemov(a)linux.intel.com are mm-fix-vma_is_anonymous-false-positives.patch mm-page_ext-drop-definition-of-unused-page_ext_debug_poison.patch mm-page_ext-constify-lookup_page_ext-argument.patch

7 years, 5 months

1
0
0 0

[PATCH] Revert "drm/amd/display: Don't return ddc result and read_bytes in same return value"

by Alex Deucher

This reverts commit 018d82e5f02ef3583411bcaa4e00c69786f46f19. This breaks DDC in certain cases. Revert for 4.18 and previous kernels. For 4.19, this is fixed with the following more extensive patches: drm/amd/display: Serialize is_dp_sink_present drm/amd/display: Break out function to simply read aux reply drm/amd/display: Return aux replies directly to DRM drm/amd/display: Right shift AUX reply value sooner than later drm/amd/display: Read AUX channel even if only status byte is returned Link: https://lists.freedesktop.org/archives/amd-gfx/2018-July/023788.html Signed-off-by: Alex Deucher <alexander.deucher(a)amd.com> Cc: stable(a)vger.kernel.org --- .../drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c | 20 ++++++++------------ drivers/gpu/drm/amd/display/dc/core/dc_link_ddc.c | 10 +++------- drivers/gpu/drm/amd/display/dc/inc/dc_link_ddc.h | 5 ++--- 3 files changed, 13 insertions(+), 22 deletions(-) diff --git a/drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c b/drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c index 4304d9e408b8..ace9ad578ca0 100644 --- a/drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c +++ b/drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c @@ -83,22 +83,21 @@ static ssize_t dm_dp_aux_transfer(struct drm_dp_aux *aux, enum i2c_mot_mode mot = (msg->request & DP_AUX_I2C_MOT) ? I2C_MOT_TRUE : I2C_MOT_FALSE; enum ddc_result res; - uint32_t read_bytes = msg->size; + ssize_t read_bytes; if (WARN_ON(msg->size > 16)) return -E2BIG; switch (msg->request & ~DP_AUX_I2C_MOT) { case DP_AUX_NATIVE_READ: - res = dal_ddc_service_read_dpcd_data( + read_bytes = dal_ddc_service_read_dpcd_data( TO_DM_AUX(aux)->ddc_service, false, I2C_MOT_UNDEF, msg->address, msg->buffer, - msg->size, - &read_bytes); - break; + msg->size); + return read_bytes; case DP_AUX_NATIVE_WRITE: res = dal_ddc_service_write_dpcd_data( TO_DM_AUX(aux)->ddc_service, @@ -109,15 +108,14 @@ static ssize_t dm_dp_aux_transfer(struct drm_dp_aux *aux, msg->size); break; case DP_AUX_I2C_READ: - res = dal_ddc_service_read_dpcd_data( + read_bytes = dal_ddc_service_read_dpcd_data( TO_DM_AUX(aux)->ddc_service, true, mot, msg->address, msg->buffer, - msg->size, - &read_bytes); - break; + msg->size); + return read_bytes; case DP_AUX_I2C_WRITE: res = dal_ddc_service_write_dpcd_data( TO_DM_AUX(aux)->ddc_service, @@ -139,9 +137,7 @@ static ssize_t dm_dp_aux_transfer(struct drm_dp_aux *aux, r == DDC_RESULT_SUCESSFULL); #endif - if (res != DDC_RESULT_SUCESSFULL) - return -EIO; - return read_bytes; + return msg->size; } static enum drm_connector_status diff --git a/drivers/gpu/drm/amd/display/dc/core/dc_link_ddc.c b/drivers/gpu/drm/amd/display/dc/core/dc_link_ddc.c index ae48d603ebd6..49c2face1e7a 100644 --- a/drivers/gpu/drm/amd/display/dc/core/dc_link_ddc.c +++ b/drivers/gpu/drm/amd/display/dc/core/dc_link_ddc.c @@ -629,14 +629,13 @@ bool dal_ddc_service_query_ddc_data( return ret; } -enum ddc_result dal_ddc_service_read_dpcd_data( +ssize_t dal_ddc_service_read_dpcd_data( struct ddc_service *ddc, bool i2c, enum i2c_mot_mode mot, uint32_t address, uint8_t *data, - uint32_t len, - uint32_t *read) + uint32_t len) { struct aux_payload read_payload = { .i2c_over_aux = i2c, @@ -653,8 +652,6 @@ enum ddc_result dal_ddc_service_read_dpcd_data( .mot = mot }; - *read = 0; - if (len > DEFAULT_AUX_MAX_DATA_SIZE) { BREAK_TO_DEBUGGER(); return DDC_RESULT_FAILED_INVALID_OPERATION; @@ -664,8 +661,7 @@ enum ddc_result dal_ddc_service_read_dpcd_data( ddc->ctx->i2caux, ddc->ddc_pin, &command)) { - *read = command.payloads->length; - return DDC_RESULT_SUCESSFULL; + return (ssize_t)command.payloads->length; } return DDC_RESULT_FAILED_OPERATION; diff --git a/drivers/gpu/drm/amd/display/dc/inc/dc_link_ddc.h b/drivers/gpu/drm/amd/display/dc/inc/dc_link_ddc.h index 30b3a08b91be..090b7a8dd67b 100644 --- a/drivers/gpu/drm/amd/display/dc/inc/dc_link_ddc.h +++ b/drivers/gpu/drm/amd/display/dc/inc/dc_link_ddc.h @@ -102,14 +102,13 @@ bool dal_ddc_service_query_ddc_data( uint8_t *read_buf, uint32_t read_size); -enum ddc_result dal_ddc_service_read_dpcd_data( +ssize_t dal_ddc_service_read_dpcd_data( struct ddc_service *ddc, bool i2c, enum i2c_mot_mode mot, uint32_t address, uint8_t *data, - uint32_t len, - uint32_t *read); + uint32_t len); enum ddc_result dal_ddc_service_write_dpcd_data( struct ddc_service *ddc, -- 2.13.6

7 years, 5 months

2
1
0 0

Revert mm/vmstat.c: fix vmstat_update() preemption BUG

by Sebastian Andrzej Siewior

Upstream commit 28557cc106e6d2aa8b8c5c7687ea9f8055ff3911 The commit c7f26ccfb2c3 ("mm/vmstat.c: fix vmstat_update() preemption BUG") does not fix a bug but papers over it. The reported and author never came back with an explanation nor was the symptom reproduced by someone else. The commit was reverted upstream but it made its was to the stable tree therefore I ask there for a revert, too. Please include this patch in the v4.14 stable tree. Sebastian

7 years, 5 months

2
2
0 0

[PATCH 2/3] IB/srpt: Fix srpt_cm_req_recv() error path (2/2)

by Bart Van Assche

If a login request was received through the RDMA/CM and if an error occurs during login, clear rdma_cm_id->context instead of ib_cm_id->context. Fixes: 63cf1a902c9d ("IB/srpt: Add RDMA/CM support") Signed-off-by: Bart Van Assche <bart.vanassche(a)wdc.com> Cc: <stable(a)vger.kernel.org> --- drivers/infiniband/ulp/srpt/ib_srpt.c | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/drivers/infiniband/ulp/srpt/ib_srpt.c b/drivers/infiniband/ulp/srpt/ib_srpt.c index e95d0c1c0652..325bae29e90d 100644 --- a/drivers/infiniband/ulp/srpt/ib_srpt.c +++ b/drivers/infiniband/ulp/srpt/ib_srpt.c @@ -2361,8 +2361,11 @@ static int srpt_cm_req_recv(struct srpt_device *const sdev, srpt_free_ioctx_ring((struct srpt_ioctx **)ch->ioctx_ring, ch->sport->sdev, ch->rq_size, ch->max_rsp_size, DMA_TO_DEVICE); + free_ch: - if (ib_cm_id) + if (rdma_cm_id) + rdma_cm_id->context = NULL; + else ib_cm_id->context = NULL; kfree(ch); ch = NULL; -- 2.18.0

7 years, 5 months

1
0
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror