Linux-stable-mirror

linux-stable-mirror@lists.linaro.org

84 participants
123770 discussions

by Greg Kroah-Hartman

I'm announcing the release of the 5.6.13 kernel. All users of the 5.6 kernel series must upgrade. The updated 5.6.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.6.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/crypto/chacha-glue.c | 14 + arch/arm/crypto/nhpoly1305-neon-glue.c | 2 arch/arm/crypto/poly1305-glue.c | 15 + arch/arm64/crypto/chacha-neon-glue.c | 14 + arch/arm64/crypto/nhpoly1305-neon-glue.c | 2 arch/arm64/crypto/poly1305-glue.c | 15 + arch/arm64/kvm/guest.c | 7 arch/arm64/mm/hugetlbpage.c | 2 arch/riscv/mm/init.c | 3 arch/s390/kvm/priv.c | 4 arch/x86/crypto/blake2s-glue.c | 10 - arch/x86/crypto/chacha_glue.c | 14 + arch/x86/crypto/nhpoly1305-avx2-glue.c | 2 arch/x86/crypto/nhpoly1305-sse2-glue.c | 2 arch/x86/crypto/poly1305_glue.c | 13 - arch/x86/entry/calling.h | 40 ++-- arch/x86/entry/entry_64.S | 14 - arch/x86/include/asm/kvm_host.h | 4 arch/x86/include/asm/unwind.h | 2 arch/x86/kernel/unwind_orc.c | 61 +++++- arch/x86/kvm/ioapic.c | 10 - arch/x86/kvm/svm.c | 2 arch/x86/kvm/vmx/vmenter.S | 3 arch/x86/mm/pat/set_memory.c | 12 - block/blk-iocost.c | 117 +++++++------ drivers/amba/bus.c | 1 drivers/base/platform.c | 2 drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 7 drivers/gpu/drm/amd/display/dc/dcn20/dcn20_resource.c | 31 ++- drivers/gpu/drm/ingenic/ingenic-drm.c | 1 drivers/hid/usbhid/hid-core.c | 37 +++- drivers/hid/usbhid/usbhid.h | 1 drivers/hid/wacom_sys.c | 4 drivers/hid/wacom_wac.c | 88 ++------- drivers/iommu/virtio-iommu.c | 2 drivers/misc/mei/hw-me.c | 8 drivers/misc/mei/hw-me.h | 4 drivers/misc/mei/pci-me.c | 2 drivers/net/ethernet/broadcom/bnxt/bnxt.c | 20 +- drivers/net/ethernet/broadcom/bnxt/bnxt.h | 1 drivers/net/ethernet/broadcom/bnxt/bnxt_devlink.h | 2 drivers/net/ethernet/broadcom/bnxt/bnxt_sriov.c | 10 - drivers/net/ethernet/cadence/macb_main.c | 24 +- drivers/net/ethernet/chelsio/cxgb4/sge.c | 39 ++++ drivers/net/ethernet/freescale/enetc/enetc_pci_mdio.c | 2 drivers/net/ethernet/marvell/mvpp2/mvpp2_cls.c | 3 drivers/net/ethernet/marvell/mvpp2/mvpp2_main.c | 2 drivers/net/ethernet/mellanox/mlx4/main.c | 4 drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 6 drivers/net/ethernet/mellanox/mlx5/core/en_rep.c | 9 - drivers/net/ethernet/mellanox/mlx5/core/steering/dr_send.c | 14 + drivers/net/ethernet/mellanox/mlxsw/spectrum_acl_tcam.c | 12 + drivers/net/ethernet/netronome/nfp/abm/main.c | 1 drivers/net/ethernet/toshiba/tc35815.c | 2 drivers/net/macsec.c | 3 drivers/net/phy/dp83640.c | 2 drivers/net/phy/marvell10g.c | 27 ++- drivers/net/usb/qmi_wwan.c | 1 drivers/net/wireguard/queueing.c | 4 drivers/net/wireguard/receive.c | 8 drivers/net/wireguard/send.c | 4 drivers/net/wireguard/socket.c | 12 - drivers/nvme/host/core.c | 28 +-- drivers/staging/gasket/gasket_core.c | 4 drivers/thunderbolt/usb4.c | 3 drivers/tty/serial/xilinx_uartps.c | 1 drivers/tty/vt/vt.c | 9 - drivers/usb/chipidea/ci_hdrc_msm.c | 2 drivers/usb/serial/garmin_gps.c | 4 drivers/usb/serial/qcserial.c | 1 drivers/usb/storage/unusual_uas.h | 7 fs/ceph/mds_client.c | 8 fs/ceph/quota.c | 4 fs/coredump.c | 8 fs/eventpoll.c | 61 +++--- fs/ext4/ext4_jbd2.h | 3 fs/ext4/super.c | 13 + fs/io_uring.c | 6 fs/notify/fanotify/fanotify.c | 9 - fs/notify/inotify/inotify_fsnotify.c | 4 fs/notify/inotify/inotify_user.c | 2 include/linux/amba/bus.h | 1 include/linux/backing-dev-defs.h | 1 include/linux/backing-dev.h | 9 - include/linux/fsnotify_backend.h | 7 include/linux/platform_device.h | 1 include/linux/virtio_net.h | 26 ++ include/net/inet_ecn.h | 57 ++++++ include/net/ip6_fib.h | 4 include/net/net_namespace.h | 7 ipc/mqueue.c | 34 ++- kernel/trace/preemptirq_delay_test.c | 30 ++- kernel/trace/trace.c | 13 + kernel/trace/trace_boot.c | 20 -- kernel/trace/trace_kprobe.c | 8 kernel/umh.c | 5 mm/backing-dev.c | 13 + mm/memcontrol.c | 15 + mm/page_alloc.c | 9 + net/batman-adv/bat_v_ogm.c | 2 net/batman-adv/network-coding.c | 9 - net/batman-adv/sysfs.c | 3 net/bridge/br_netlink.c | 1 net/core/devlink.c | 12 + net/core/neighbour.c | 6 net/dsa/dsa2.c | 2 net/dsa/master.c | 3 net/ipv6/route.c | 25 ++ net/netfilter/nf_nat_proto.c | 4 net/netfilter/nfnetlink_osf.c | 12 - net/sched/sch_choke.c | 3 net/sched/sch_fq_codel.c | 2 net/sched/sch_sfq.c | 9 + net/sched/sch_skbprio.c | 3 net/sctp/sm_statefuns.c | 6 net/tipc/topsrv.c | 5 net/tls/tls_sw.c | 7 scripts/decodecode | 2 tools/cgroup/iocost_monitor.py | 7 tools/objtool/check.c | 2 tools/testing/selftests/net/tcp_mmap.c | 7 tools/testing/selftests/wireguard/netns.sh | 54 +++++- virt/kvm/arm/hyp/aarch32.c | 8 virt/kvm/arm/vgic/vgic-mmio.c | 4 125 files changed, 963 insertions(+), 458 deletions(-) Alan Stern (1): HID: usbhid: Fix race between usbhid_close() and usbhid_stop() Amir Goldstein (2): fsnotify: replace inode pointer with an object id fanotify: merge duplicate events on parent and child Andy Shevchenko (1): net: macb: Fix runtime PM refcounting Anthony Felice (1): net: tc35815: Fix phydev supported/advertising mask Arnd Bergmann (1): netfilter: nf_osf: avoid passing pointer to local var Aya Levin (1): devlink: Fix reporter's recovery condition Baruch Siach (1): net: phy: marvell10g: fix temperature sensor on 2110 Bryan O'Donoghue (1): usb: chipidea: msm: Ensure proper controller reset using role switch API Christian Borntraeger (1): KVM: s390: Remove false WARN_ON_ONCE for the PQAP instruction Christoph Hellwig (3): nvme: refactor nvme_identify_ns_descs error handling bdi: move bdi_dev_name out of line bdi: add a ->dev_name field to struct backing_dev_info Dan Carpenter (2): net: mvpp2: prevent buffer overflow in mvpp22_rss_ctx() net: mvpp2: cls: Prevent buffer overflow in mvpp2_ethtool_cls_rule_del() Daniel Kolesa (1): drm/amd/display: work around fp code being emitted outside of DC_FP_START/END David Ahern (1): ipv6: Use global sernum for dst validation with nexthop objects David Hildenbrand (1): mm/page_alloc: fix watchdog soft lockups during set_zone_contiguous() Dejin Zheng (2): net: macb: fix an issue about leak related system resources net: enetc: fix an issue about leak system resources Erez Shitrit (1): net/mlx5: DR, On creation set CQ's arm_db member to right value Eric Dumazet (6): fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks net_sched: sch_skbprio: add message validation to skbprio_change() sch_choke: avoid potential panic in choke_reset() sch_sfq: validate silly quantum values selftests: net: tcp_mmap: clear whole tcp_zerocopy_receive struct selftests: net: tcp_mmap: fix SO_RCVLOWAT setting Eric Whitney (1): ext4: disable dioread_nolock whenever delayed allocation is disabled Evan Quan (2): drm/amdgpu: move kfd suspend after ip_suspend_phase1 drm/amdgpu: drop redundant cg/pg ungate on runpm enter Florian Fainelli (2): net: dsa: Do not leave DSA master with NULL netdev_ops net: dsa: Do not make user port errors fatal George Spelvin (1): batman-adv: fix batadv_nc_random_weight_tq Greg Kroah-Hartman (1): Linux 5.6.13 Guillaume Nault (1): netfilter: nat: never update the UDP checksum when it's 0 H. Nikolaus Schaller (1): drm: ingenic-drm: add MODULE_DEVICE_TABLE Henry Willard (1): mm: limit boost_watermark on small zones Ido Schimmel (1): net: bridge: vlan: Add a schedule point during VLAN processing Ivan Delalande (1): scripts/decodecode: fix trapping instruction formatting Jakub Kicinski (1): devlink: fix return value after hitting end in region read Janakarajan Natarajan (1): arch/x86/kvm/svm/sev.c: change flag passed to GUP fast in sev_pin_memory() Jann Horn (1): x86/entry/64: Fix unwind hints in rewind_stack_do_exit() Jason A. Donenfeld (5): wireguard: queueing: cleanup ptr_ring in error path of packet_queue_init wireguard: socket: remove errant restriction on looping to self wireguard: send/receive: cond_resched() when processing worker ringbuffers crypto: arch/nhpoly1305 - process in explicit 4k chunks crypto: arch/lib - limit simd usage to 4k chunks Jason Gerecke (3): HID: wacom: Read HID_DG_CONTACTMAX directly for non-generic devices Revert "HID: wacom: generic: read the number of expected touches on a per collection basis" HID: wacom: Report 2nd-gen Intuos Pro S center button status over BT Jeff Layton (1): ceph: fix endianness bug when handling MDS session feature bits Jere Leppänen (1): sctp: Fix bundling of SHUTDOWN with COOKIE-ACK Jiri Pirko (1): mlxsw: spectrum_acl_tcam: Position vchunk in a vregion list properly Josh Poimboeuf (7): x86/entry/64: Fix unwind hints in register clearing code x86/entry/64: Fix unwind hints in kernel exit path x86/entry/64: Fix unwind hints in __switch_to_asm() x86/unwind/orc: Prevent unwinding before ORC initialization x86/unwind/orc: Fix error path for bad ORC entry type x86/unwind/orc: Fix premature unwind stoppage due to IRET frames objtool: Fix stack offset tracking for indirect CFAs Julia Lawall (2): dp83640: reverse arguments to list_add_tail iommu/virtio: Reverse arguments to list_add Khazhismel Kumykov (1): eventpoll: fix missing wakeup for ovflist in ep_poll_callback Luis Chamberlain (1): coredump: fix crash when umh is disabled Luis Henriques (1): ceph: demote quotarealm lookup warning to a debug message Marc Zyngier (2): KVM: arm: vgic: Fix limit condition when writing to GICD_I[CS]ACTIVER KVM: arm64: Fix 32bit PC wrap-around Mark Rutland (1): arm64: hugetlb: avoid potential NULL dereference Masami Hiramatsu (3): tracing/kprobes: Fix a double initialization typo tracing/boottime: Fix kprobe event API usage tracing/kprobes: Reject new event if loc is NULL Matt Jolly (2): USB: serial: qcserial: Add DW5816e support net: usb: qmi_wwan: add support for DW5816e Max Kellermann (1): io_uring: don't use 'fd' for openat/openat2/statx Michael Chan (4): bnxt_en: Fix VF anti-spoof filter setup. bnxt_en: Improve AER slot reset. bnxt_en: Return error when allocating zero size context memory. bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features(). Mika Westerberg (1): thunderbolt: Check return value of tb_sw_read() in usb4_switch_op() Miroslav Benes (1): x86/unwind/orc: Don't skip the first frame for inactive tasks Moshe Shemesh (2): net/mlx5: Fix forced completion access non initialized command entry net/mlx5: Fix command entry leak in Internal Error State Nicolas Pitre (1): vt: fix unicode console freeing with a common interface Oleg Nesterov (1): ipc/mqueue.c: change __do_notify() to bypass check_kill_permission() Oliver Neukum (2): USB: uas: add quirk for LaCie 2Big Quadra USB: serial: garmin_gps: add sanity checking for data length Oscar Carter (1): staging: gasket: Check the return value of gasket_get_bar_index() Paolo Bonzini (1): kvm: ioapic: Restrict lazy EOI update to edge-triggered interrupts Qiushi Wu (1): nfp: abm: fix a memory leak bug Rahul Lakkireddy (1): cxgb4: fix EOTID leak when disabling TC-MQPRIO offload Rick Edgecombe (1): x86/mm/cpa: Flush direct map alias during cpa Ritesh Harjani (1): ext4: don't set dioread_nolock by default for blocksize < pagesize Roi Dayan (1): net/mlx5e: Fix q counters on uplink representors Roman Mashak (1): neigh: send protocol value in neighbor create notification Roman Penyaev (1): epoll: atomically remove wait entry on wake up Sagi Grimberg (1): nvme: fix possible hang when ns scanning fails during error recovery Scott Dial (1): net: macsec: preserve ingress frame ordering Sean Christopherson (1): KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path Shubhrajyoti Datta (1): tty: xilinx_uartps: Fix missing id assignment to the console Steven Rostedt (VMware) (2): tracing: Wait for preempt irq delay thread to finish tracing: Add a vmalloc_sync_mappings() for safe measure Suravee Suthikulpanit (1): KVM: x86: Fixes posted interrupt check for IRQs delivery modes Tariq Toukan (1): net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() Tejun Heo (1): iocost: protect iocg->abs_vdebt with iocg->waitq.lock Toke Høiland-Jørgensen (2): tunnel: Propagate ECT(1) when decapsulating as recommended by RFC6040 wireguard: receive: use tunnel helpers for decapsulating ECN markings Tomas Winkler (1): mei: me: disable mei interface on LBG servers. Tuong Lien (1): tipc: fix partial topology connection closure Ulf Hansson (2): driver core: platform: Initialize dma_parms for platform devices amba: Initialize dma_parms for amba devices Vasundhara Volam (1): bnxt_en: Reduce BNXT_MSIX_VEC_MAX value to supported CQs per PF. Vincent Chen (1): riscv: set max_pfn to the PFN of the last page Willem de Bruijn (1): net: stricter validation of untrusted gso packets Xiyu Yang (5): net/tls: Fix sk_psock refcnt leak in bpf_exec_tx_verdict() net/tls: Fix sk_psock refcnt leak when in tls_data_ready() batman-adv: Fix refcnt leak in batadv_show_throughput_override batman-adv: Fix refcnt leak in batadv_store_throughput_override batman-adv: Fix refcnt leak in batadv_v_ogm_process Yafang Shao (1): mm, memcg: fix error return value of mem_cgroup_css_alloc()

5 years, 7 months

Linux 5.4.41

by Greg Kroah-Hartman

I'm announcing the release of the 5.4.41 kernel. All users of the 5.4 kernel series must upgrade. The updated 5.4.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.4.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/crypto/nhpoly1305-neon-glue.c | 2 arch/arm64/crypto/nhpoly1305-neon-glue.c | 2 arch/arm64/kvm/guest.c | 7 arch/arm64/mm/hugetlbpage.c | 2 arch/riscv/mm/init.c | 3 arch/s390/kvm/priv.c | 4 arch/x86/crypto/nhpoly1305-avx2-glue.c | 2 arch/x86/crypto/nhpoly1305-sse2-glue.c | 2 arch/x86/entry/calling.h | 40 ++-- arch/x86/entry/entry_64.S | 9 - arch/x86/include/asm/kvm_host.h | 4 arch/x86/include/asm/unwind.h | 2 arch/x86/kernel/unwind_orc.c | 61 +++++- arch/x86/kvm/svm.c | 2 arch/x86/kvm/vmx/vmenter.S | 3 block/blk-iocost.c | 117 +++++++------ drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 7 drivers/gpu/drm/ingenic/ingenic-drm.c | 1 drivers/hid/usbhid/hid-core.c | 37 +++- drivers/hid/usbhid/usbhid.h | 1 drivers/hid/wacom_sys.c | 4 drivers/hid/wacom_wac.c | 88 ++------- drivers/iommu/virtio-iommu.c | 2 drivers/net/ethernet/broadcom/bnxt/bnxt.c | 20 +- drivers/net/ethernet/broadcom/bnxt/bnxt.h | 1 drivers/net/ethernet/broadcom/bnxt/bnxt_devlink.h | 2 drivers/net/ethernet/broadcom/bnxt/bnxt_sriov.c | 10 - drivers/net/ethernet/cadence/macb_main.c | 24 +- drivers/net/ethernet/marvell/mvpp2/mvpp2_cls.c | 3 drivers/net/ethernet/marvell/mvpp2/mvpp2_main.c | 2 drivers/net/ethernet/mellanox/mlx4/main.c | 4 drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 6 drivers/net/ethernet/mellanox/mlx5/core/steering/dr_send.c | 14 + drivers/net/ethernet/mellanox/mlxsw/spectrum_acl_tcam.c | 12 + drivers/net/ethernet/netronome/nfp/abm/main.c | 1 drivers/net/ethernet/toshiba/tc35815.c | 2 drivers/net/macsec.c | 3 drivers/net/phy/dp83640.c | 2 drivers/net/usb/qmi_wwan.c | 1 drivers/nvme/host/core.c | 28 +-- drivers/staging/gasket/gasket_core.c | 4 drivers/tty/serial/xilinx_uartps.c | 1 drivers/tty/vt/vt.c | 9 - drivers/usb/chipidea/ci_hdrc_msm.c | 2 drivers/usb/serial/garmin_gps.c | 4 drivers/usb/serial/qcserial.c | 1 drivers/usb/storage/unusual_uas.h | 7 fs/ceph/mds_client.c | 8 fs/ceph/quota.c | 4 fs/coredump.c | 8 fs/eventpoll.c | 61 +++--- fs/notify/fanotify/fanotify.c | 9 - fs/notify/inotify/inotify_fsnotify.c | 4 fs/notify/inotify/inotify_user.c | 2 include/linux/backing-dev-defs.h | 1 include/linux/backing-dev.h | 9 - include/linux/fsnotify_backend.h | 7 include/linux/virtio_net.h | 26 ++ include/net/inet_ecn.h | 57 ++++++ include/net/ip6_fib.h | 4 include/net/net_namespace.h | 7 ipc/mqueue.c | 34 ++- kernel/trace/trace.c | 13 + kernel/trace/trace_kprobe.c | 2 kernel/umh.c | 5 mm/backing-dev.c | 13 + mm/memcontrol.c | 15 + mm/page_alloc.c | 9 + net/batman-adv/bat_v_ogm.c | 2 net/batman-adv/network-coding.c | 9 - net/batman-adv/sysfs.c | 3 net/core/devlink.c | 5 net/core/neighbour.c | 6 net/dsa/master.c | 3 net/ipv6/route.c | 25 ++ net/netfilter/nf_nat_proto.c | 4 net/netfilter/nfnetlink_osf.c | 12 - net/sched/sch_choke.c | 3 net/sched/sch_fq_codel.c | 2 net/sched/sch_sfq.c | 9 + net/sched/sch_skbprio.c | 3 net/sctp/sm_statefuns.c | 6 net/tipc/topsrv.c | 5 net/tls/tls_sw.c | 7 scripts/decodecode | 2 tools/cgroup/iocost_monitor.py | 7 tools/objtool/check.c | 2 virt/kvm/arm/hyp/aarch32.c | 8 virt/kvm/arm/vgic/vgic-mmio.c | 4 90 files changed, 647 insertions(+), 345 deletions(-) Alan Stern (1): HID: usbhid: Fix race between usbhid_close() and usbhid_stop() Amir Goldstein (2): fsnotify: replace inode pointer with an object id fanotify: merge duplicate events on parent and child Andy Shevchenko (1): net: macb: Fix runtime PM refcounting Anthony Felice (1): net: tc35815: Fix phydev supported/advertising mask Arnd Bergmann (1): netfilter: nf_osf: avoid passing pointer to local var Bryan O'Donoghue (1): usb: chipidea: msm: Ensure proper controller reset using role switch API Christian Borntraeger (1): KVM: s390: Remove false WARN_ON_ONCE for the PQAP instruction Christoph Hellwig (3): nvme: refactor nvme_identify_ns_descs error handling bdi: move bdi_dev_name out of line bdi: add a ->dev_name field to struct backing_dev_info Dan Carpenter (2): net: mvpp2: prevent buffer overflow in mvpp22_rss_ctx() net: mvpp2: cls: Prevent buffer overflow in mvpp2_ethtool_cls_rule_del() David Ahern (1): ipv6: Use global sernum for dst validation with nexthop objects David Hildenbrand (1): mm/page_alloc: fix watchdog soft lockups during set_zone_contiguous() Dejin Zheng (1): net: macb: fix an issue about leak related system resources Erez Shitrit (1): net/mlx5: DR, On creation set CQ's arm_db member to right value Eric Dumazet (4): fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks net_sched: sch_skbprio: add message validation to skbprio_change() sch_choke: avoid potential panic in choke_reset() sch_sfq: validate silly quantum values Evan Quan (2): drm/amdgpu: move kfd suspend after ip_suspend_phase1 drm/amdgpu: drop redundant cg/pg ungate on runpm enter Florian Fainelli (1): net: dsa: Do not leave DSA master with NULL netdev_ops George Spelvin (1): batman-adv: fix batadv_nc_random_weight_tq Greg Kroah-Hartman (1): Linux 5.4.41 Guillaume Nault (1): netfilter: nat: never update the UDP checksum when it's 0 H. Nikolaus Schaller (1): drm: ingenic-drm: add MODULE_DEVICE_TABLE Henry Willard (1): mm: limit boost_watermark on small zones Ivan Delalande (1): scripts/decodecode: fix trapping instruction formatting Jakub Kicinski (1): devlink: fix return value after hitting end in region read Janakarajan Natarajan (1): arch/x86/kvm/svm/sev.c: change flag passed to GUP fast in sev_pin_memory() Jann Horn (1): x86/entry/64: Fix unwind hints in rewind_stack_do_exit() Jason A. Donenfeld (1): crypto: arch/nhpoly1305 - process in explicit 4k chunks Jason Gerecke (3): HID: wacom: Read HID_DG_CONTACTMAX directly for non-generic devices Revert "HID: wacom: generic: read the number of expected touches on a per collection basis" HID: wacom: Report 2nd-gen Intuos Pro S center button status over BT Jeff Layton (1): ceph: fix endianness bug when handling MDS session feature bits Jere Leppänen (1): sctp: Fix bundling of SHUTDOWN with COOKIE-ACK Jiri Pirko (1): mlxsw: spectrum_acl_tcam: Position vchunk in a vregion list properly Josh Poimboeuf (6): x86/entry/64: Fix unwind hints in register clearing code x86/entry/64: Fix unwind hints in kernel exit path x86/unwind/orc: Prevent unwinding before ORC initialization x86/unwind/orc: Fix error path for bad ORC entry type x86/unwind/orc: Fix premature unwind stoppage due to IRET frames objtool: Fix stack offset tracking for indirect CFAs Julia Lawall (2): dp83640: reverse arguments to list_add_tail iommu/virtio: Reverse arguments to list_add Khazhismel Kumykov (1): eventpoll: fix missing wakeup for ovflist in ep_poll_callback Luis Chamberlain (1): coredump: fix crash when umh is disabled Luis Henriques (1): ceph: demote quotarealm lookup warning to a debug message Marc Zyngier (2): KVM: arm: vgic: Fix limit condition when writing to GICD_I[CS]ACTIVER KVM: arm64: Fix 32bit PC wrap-around Mark Rutland (1): arm64: hugetlb: avoid potential NULL dereference Masami Hiramatsu (1): tracing/kprobes: Fix a double initialization typo Matt Jolly (2): USB: serial: qcserial: Add DW5816e support net: usb: qmi_wwan: add support for DW5816e Michael Chan (4): bnxt_en: Fix VF anti-spoof filter setup. bnxt_en: Improve AER slot reset. bnxt_en: Return error when allocating zero size context memory. bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features(). Miroslav Benes (1): x86/unwind/orc: Don't skip the first frame for inactive tasks Moshe Shemesh (2): net/mlx5: Fix forced completion access non initialized command entry net/mlx5: Fix command entry leak in Internal Error State Nicolas Pitre (1): vt: fix unicode console freeing with a common interface Oleg Nesterov (1): ipc/mqueue.c: change __do_notify() to bypass check_kill_permission() Oliver Neukum (2): USB: uas: add quirk for LaCie 2Big Quadra USB: serial: garmin_gps: add sanity checking for data length Oscar Carter (1): staging: gasket: Check the return value of gasket_get_bar_index() Qiushi Wu (1): nfp: abm: fix a memory leak bug Roman Mashak (1): neigh: send protocol value in neighbor create notification Roman Penyaev (1): epoll: atomically remove wait entry on wake up Sagi Grimberg (1): nvme: fix possible hang when ns scanning fails during error recovery Scott Dial (1): net: macsec: preserve ingress frame ordering Sean Christopherson (1): KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path Shubhrajyoti Datta (1): tty: xilinx_uartps: Fix missing id assignment to the console Steven Rostedt (VMware) (1): tracing: Add a vmalloc_sync_mappings() for safe measure Suravee Suthikulpanit (1): KVM: x86: Fixes posted interrupt check for IRQs delivery modes Tariq Toukan (1): net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() Tejun Heo (1): iocost: protect iocg->abs_vdebt with iocg->waitq.lock Toke Høiland-Jørgensen (1): tunnel: Propagate ECT(1) when decapsulating as recommended by RFC6040 Tuong Lien (1): tipc: fix partial topology connection closure Vasundhara Volam (1): bnxt_en: Reduce BNXT_MSIX_VEC_MAX value to supported CQs per PF. Vincent Chen (1): riscv: set max_pfn to the PFN of the last page Willem de Bruijn (1): net: stricter validation of untrusted gso packets Xiyu Yang (5): net/tls: Fix sk_psock refcnt leak in bpf_exec_tx_verdict() net/tls: Fix sk_psock refcnt leak when in tls_data_ready() batman-adv: Fix refcnt leak in batadv_show_throughput_override batman-adv: Fix refcnt leak in batadv_store_throughput_override batman-adv: Fix refcnt leak in batadv_v_ogm_process Yafang Shao (1): mm, memcg: fix error return value of mem_cgroup_css_alloc()

5 years, 7 months

Linux 4.19.123

by Greg Kroah-Hartman

I'm announcing the release of the 4.19.123 kernel. All users of the 4.19 kernel series must upgrade. The updated 4.19.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.19.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm64/kvm/guest.c | 7 + arch/arm64/mm/hugetlbpage.c | 2 arch/x86/entry/calling.h | 40 +++++----- arch/x86/entry/entry_64.S | 9 +- arch/x86/include/asm/unwind.h | 2 arch/x86/kernel/unwind_orc.c | 61 +++++++++++----- arch/x86/kvm/vmx.c | 91 +++++++++++++----------- drivers/hid/usbhid/hid-core.c | 37 +++++++-- drivers/hid/usbhid/usbhid.h | 1 drivers/hid/wacom_sys.c | 4 - drivers/net/ethernet/broadcom/bnxt/bnxt.c | 18 +++- drivers/net/ethernet/broadcom/bnxt/bnxt.h | 1 drivers/net/ethernet/broadcom/bnxt/bnxt_sriov.c | 9 -- drivers/net/ethernet/mellanox/mlx4/main.c | 4 - drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 6 + drivers/net/macsec.c | 3 drivers/net/phy/dp83640.c | 2 drivers/net/usb/qmi_wwan.c | 1 drivers/staging/gasket/gasket_core.c | 4 + drivers/tty/vt/vt.c | 9 +- drivers/usb/serial/garmin_gps.c | 4 - drivers/usb/serial/qcserial.c | 1 drivers/usb/storage/unusual_uas.h | 7 + fs/coredump.c | 8 ++ include/linux/virtio_net.h | 26 ++++++ ipc/mqueue.c | 34 ++++++-- kernel/trace/trace.c | 13 +++ kernel/trace/trace_kprobe.c | 2 kernel/umh.c | 5 + mm/page_alloc.c | 1 net/batman-adv/bat_v_ogm.c | 2 net/batman-adv/network-coding.c | 9 -- net/batman-adv/sysfs.c | 3 net/netfilter/nf_nat_proto_udp.c | 5 - net/netfilter/nfnetlink_osf.c | 12 +-- net/sched/sch_choke.c | 3 net/sched/sch_fq_codel.c | 2 net/sched/sch_sfq.c | 9 ++ net/sched/sch_skbprio.c | 3 net/sctp/sm_statefuns.c | 6 - net/tipc/topsrv.c | 5 - scripts/decodecode | 2 tools/objtool/check.c | 2 virt/kvm/arm/hyp/aarch32.c | 8 +- virt/kvm/arm/vgic/vgic-mmio.c | 4 - 46 files changed, 334 insertions(+), 155 deletions(-) Alan Stern (1): HID: usbhid: Fix race between usbhid_close() and usbhid_stop() Arnd Bergmann (1): netfilter: nf_osf: avoid passing pointer to local var David Hildenbrand (1): mm/page_alloc: fix watchdog soft lockups during set_zone_contiguous() Eric Dumazet (4): fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks net_sched: sch_skbprio: add message validation to skbprio_change() sch_choke: avoid potential panic in choke_reset() sch_sfq: validate silly quantum values George Spelvin (1): batman-adv: fix batadv_nc_random_weight_tq Greg Kroah-Hartman (1): Linux 4.19.123 Guillaume Nault (1): netfilter: nat: never update the UDP checksum when it's 0 Ivan Delalande (1): scripts/decodecode: fix trapping instruction formatting Jann Horn (1): x86/entry/64: Fix unwind hints in rewind_stack_do_exit() Jason Gerecke (1): HID: wacom: Read HID_DG_CONTACTMAX directly for non-generic devices Jere Leppänen (1): sctp: Fix bundling of SHUTDOWN with COOKIE-ACK Josh Poimboeuf (6): x86/entry/64: Fix unwind hints in register clearing code x86/entry/64: Fix unwind hints in kernel exit path x86/unwind/orc: Prevent unwinding before ORC initialization x86/unwind/orc: Fix error path for bad ORC entry type x86/unwind/orc: Fix premature unwind stoppage due to IRET frames objtool: Fix stack offset tracking for indirect CFAs Julia Lawall (1): dp83640: reverse arguments to list_add_tail Luis Chamberlain (1): coredump: fix crash when umh is disabled Marc Zyngier (2): KVM: arm: vgic: Fix limit condition when writing to GICD_I[CS]ACTIVER KVM: arm64: Fix 32bit PC wrap-around Mark Rutland (1): arm64: hugetlb: avoid potential NULL dereference Masami Hiramatsu (1): tracing/kprobes: Fix a double initialization typo Matt Jolly (2): USB: serial: qcserial: Add DW5816e support net: usb: qmi_wwan: add support for DW5816e Michael Chan (3): bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features(). bnxt_en: Improve AER slot reset. bnxt_en: Fix VF anti-spoof filter setup. Miroslav Benes (1): x86/unwind/orc: Don't skip the first frame for inactive tasks Moshe Shemesh (2): net/mlx5: Fix forced completion access non initialized command entry net/mlx5: Fix command entry leak in Internal Error State Nicolas Pitre (1): vt: fix unicode console freeing with a common interface Oleg Nesterov (1): ipc/mqueue.c: change __do_notify() to bypass check_kill_permission() Oliver Neukum (2): USB: uas: add quirk for LaCie 2Big Quadra USB: serial: garmin_gps: add sanity checking for data length Oscar Carter (1): staging: gasket: Check the return value of gasket_get_bar_index() Scott Dial (1): net: macsec: preserve ingress frame ordering Sean Christopherson (2): KVM: VMX: Explicitly reference RCX as the vmx_vcpu pointer in asm blobs KVM: VMX: Mark RCX, RDX and RSI as clobbered in vmx_vcpu_run()'s asm blob Steven Rostedt (VMware) (1): tracing: Add a vmalloc_sync_mappings() for safe measure Tariq Toukan (1): net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() Tuong Lien (1): tipc: fix partial topology connection closure Willem de Bruijn (1): net: stricter validation of untrusted gso packets Xiyu Yang (3): batman-adv: Fix refcnt leak in batadv_show_throughput_override batman-adv: Fix refcnt leak in batadv_store_throughput_override batman-adv: Fix refcnt leak in batadv_v_ogm_process

5 years, 7 months

[patch 5/7] ipc/util.c: sysvipc_find_ipc() incorrectly updates position index

by Andrew Morton

From: Vasily Averin <vvs(a)virtuozzo.com> Subject: ipc/util.c: sysvipc_find_ipc() incorrectly updates position index Commit 89163f93c6f9 ("ipc/util.c: sysvipc_find_ipc() should increase position index") is causing this bug (seen on 5.6.8): # ipcs -q ------ Message Queues -------- key msqid owner perms used-bytes messages # ipcmk -Q Message queue id: 0 # ipcs -q ------ Message Queues -------- key msqid owner perms used-bytes messages 0x82db8127 0 root 644 0 0 # ipcmk -Q Message queue id: 1 # ipcs -q ------ Message Queues -------- key msqid owner perms used-bytes messages 0x82db8127 0 root 644 0 0 0x76d1fb2a 1 root 644 0 0 # ipcrm -q 0 # ipcs -q ------ Message Queues -------- key msqid owner perms used-bytes messages 0x76d1fb2a 1 root 644 0 0 0x76d1fb2a 1 root 644 0 0 # ipcmk -Q Message queue id: 2 # ipcrm -q 2 # ipcs -q ------ Message Queues -------- key msqid owner perms used-bytes messages 0x76d1fb2a 1 root 644 0 0 0x76d1fb2a 1 root 644 0 0 # ipcmk -Q Message queue id: 3 # ipcrm -q 1 # ipcs -q ------ Message Queues -------- key msqid owner perms used-bytes messages 0x7c982867 3 root 644 0 0 0x7c982867 3 root 644 0 0 0x7c982867 3 root 644 0 0 0x7c982867 3 root 644 0 0 Whenever an IPC item with a low id is deleted, the items with higher ids are duplicated, as if filling a hole. new_pos should jump through hole of unused ids, pos can be updated inside "for" cycle. Link: http://lkml.kernel.org/r/4921fe9b-9385-a2b4-1dc4-1099be6d2e39@virtuozzo.com Fixes: 89163f93c6f9 ("ipc/util.c: sysvipc_find_ipc() should increase position index") Signed-off-by: Vasily Averin <vvs(a)virtuozzo.com> Reported-by: Andreas Schwab <schwab(a)suse.de> Acked-by: Waiman Long <longman(a)redhat.com> Cc: NeilBrown <neilb(a)suse.com> Cc: Steven Rostedt <rostedt(a)goodmis.org> Cc: Ingo Molnar <mingo(a)redhat.com> Cc: Peter Oberparleiter <oberpar(a)linux.ibm.com> Cc: Davidlohr Bueso <dave(a)stgolabs.net> Cc: Manfred Spraul <manfred(a)colorfullife.com> Cc: <stable(a)vger.kernel.org> Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> --- ipc/util.c | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) --- a/ipc/util.c~ipc-utilc-sysvipc_find_ipc-incorrectly-updates-position-index +++ a/ipc/util.c @@ -764,21 +764,21 @@ static struct kern_ipc_perm *sysvipc_fin total++; } - *new_pos = pos + 1; + ipc = NULL; if (total >= ids->in_use) - return NULL; + goto out; for (; pos < ipc_mni; pos++) { ipc = idr_find(&ids->ipcs_idr, pos); if (ipc != NULL) { rcu_read_lock(); ipc_lock_object(ipc); - return ipc; + break; } } - - /* Out of range - return NULL to terminate iteration */ - return NULL; +out: + *new_pos = pos + 1; + return ipc; } static void *sysvipc_proc_next(struct seq_file *s, void *it, loff_t *pos) _

5 years, 7 months

[patch 2/7] epoll: call final ep_events_available() check under the lock

by Andrew Morton

From: Roman Penyaev <rpenyaev(a)suse.de> Subject: epoll: call final ep_events_available() check under the lock There is a possible race when ep_scan_ready_list() leaves ->rdllist and ->obflist empty for a short period of time although some events are pending. It is quite likely that ep_events_available() observes empty lists and goes to sleep. Since 339ddb53d373 ("fs/epoll: remove unnecessary wakeups of nested epoll") we are conservative in wakeups (there is only one place for wakeup and this is ep_poll_callback()), thus ep_events_available() must always observe correct state of two lists. The easiest and correct way is to do the final check under the lock. This does not impact the performance, since lock is taken anyway for adding a wait entry to the wait queue. The discussion of the problem can be found here: https://lore.kernel.org/linux-fsdevel/a2f22c3c-c25a-4bda-8339-a7bdaf17849e@… In this patch barrierless __set_current_state() is used. This is safe since waitqueue_active() is called under the same lock on wakeup side. Short-circuit for fatal signals (i.e. fatal_signal_pending() check) is moved to the line just before actual events harvesting routine. This is fully compliant to what is said in the comment of the patch where the actual fatal_signal_pending() check was added: c257a340ede0 ("fs, epoll: short circuit fetching events if thread has been killed"). Link: http://lkml.kernel.org/r/20200505145609.1865152-1-rpenyaev@suse.de Fixes: 339ddb53d373 ("fs/epoll: remove unnecessary wakeups of nested epoll") Signed-off-by: Roman Penyaev <rpenyaev(a)suse.de> Reported-by: Jason Baron <jbaron(a)akamai.com> Reviewed-by: Jason Baron <jbaron(a)akamai.com> Cc: Khazhismel Kumykov <khazhy(a)google.com> Cc: Alexander Viro <viro(a)zeniv.linux.org.uk> Cc: <stable(a)vger.kernel.org> Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> --- fs/eventpoll.c | 48 +++++++++++++++++++++++++++-------------------- 1 file changed, 28 insertions(+), 20 deletions(-) --- a/fs/eventpoll.c~epoll-call-final-ep_events_available-check-under-the-lock +++ a/fs/eventpoll.c @@ -1879,34 +1879,33 @@ fetch_events: * event delivery. */ init_wait(&wait); - write_lock_irq(&ep->lock); - __add_wait_queue_exclusive(&ep->wq, &wait); - write_unlock_irq(&ep->lock); + write_lock_irq(&ep->lock); /* - * We don't want to sleep if the ep_poll_callback() sends us - * a wakeup in between. That's why we set the task state - * to TASK_INTERRUPTIBLE before doing the checks. + * Barrierless variant, waitqueue_active() is called under + * the same lock on wakeup ep_poll_callback() side, so it + * is safe to avoid an explicit barrier. */ - set_current_state(TASK_INTERRUPTIBLE); + __set_current_state(TASK_INTERRUPTIBLE); + /* - * Always short-circuit for fatal signals to allow - * threads to make a timely exit without the chance of - * finding more events available and fetching - * repeatedly. + * Do the final check under the lock. ep_scan_ready_list() + * plays with two lists (->rdllist and ->ovflist) and there + * is always a race when both lists are empty for short + * period of time although events are pending, so lock is + * important. */ - if (fatal_signal_pending(current)) { - res = -EINTR; - break; + eavail = ep_events_available(ep); + if (!eavail) { + if (signal_pending(current)) + res = -EINTR; + else + __add_wait_queue_exclusive(&ep->wq, &wait); } + write_unlock_irq(&ep->lock); - eavail = ep_events_available(ep); - if (eavail) - break; - if (signal_pending(current)) { - res = -EINTR; + if (eavail || res) break; - } if (!schedule_hrtimeout_range(to, slack, HRTIMER_MODE_ABS)) { timed_out = 1; @@ -1927,6 +1926,15 @@ fetch_events: } send_events: + if (fatal_signal_pending(current)) { + /* + * Always short-circuit for fatal signals to allow + * threads to make a timely exit without the chance of + * finding more events available and fetching + * repeatedly. + */ + res = -EINTR; + } /* * Try to transfer events to user space. In case we get 0 events and * there's still timeout left over, we go trying again in search of _

5 years, 7 months

[patch 1/7] mm, memcg: fix inconsistent oom event behavior

by Andrew Morton

From: Yafang Shao <laoar.shao(a)gmail.com> Subject: mm, memcg: fix inconsistent oom event behavior A recent commit 9852ae3fe529 ("mm, memcg: consider subtrees in memory.events") changes the behavior of memcg events, which will consider subtrees in memory.events. But oom_kill event is a special one as it is used in both cgroup1 and cgroup2. In cgroup1, it is displayed in memory.oom_control. The file memory.oom_control is in both root memcg and non root memcg, that is different with memory.event as it only in non-root memcg. That commit is okay for cgroup2, but it is not okay for cgroup1 as it will cause inconsistent behavior between root memcg and non-root memcg. Here's an example on why this behavior is inconsistent in cgroup1. root memcg / memcg foo / memcg bar Suppose there's an oom_kill in memcg bar, then the oon_kill will be root memcg : memory.oom_control(oom_kill) 0 / memcg foo : memory.oom_control(oom_kill) 1 / memcg bar : memory.oom_control(oom_kill) 1 For the non-root memcg, its memory.oom_control(oom_kill) includes its descendants' oom_kill, but for root memcg, it doesn't include its descendants' oom_kill. That means, memory.oom_control(oom_kill) has different meanings in different memcgs. That is inconsistent. Then the user has to know whether the memcg is root or not. If we can't fully support it in cgroup1, for example by adding memory.events.local into cgroup1 as well, then let's don't touch its original behavior. Link: http://lkml.kernel.org/r/20200502141055.7378-1-laoar.shao@gmail.com Fixes: 9852ae3fe529 ("mm, memcg: consider subtrees in memory.events") Signed-off-by: Yafang Shao <laoar.shao(a)gmail.com> Reviewed-by: Shakeel Butt <shakeelb(a)google.com> Acked-by: Johannes Weiner <hannes(a)cmpxchg.org> Acked-by: Chris Down <chris(a)chrisdown.name> Acked-by: Michal Hocko <mhocko(a)suse.com> Cc: <stable(a)vger.kernel.org> Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> --- include/linux/memcontrol.h | 2 ++ 1 file changed, 2 insertions(+) --- a/include/linux/memcontrol.h~mm-memcg-fix-inconsistent-oom-event-behavior +++ a/include/linux/memcontrol.h @@ -783,6 +783,8 @@ static inline void memcg_memory_event(st atomic_long_inc(&memcg->memory_events[event]); cgroup_file_notify(&memcg->events_file); + if (!cgroup_subsys_on_dfl(memory_cgrp_subsys)) + break; if (cgrp_dfl_root.flags & CGRP_ROOT_MEMORY_LOCAL_EVENTS) break; } while ((memcg = parent_mem_cgroup(memcg)) && _

5 years, 7 months

[PATCH 5.4 00/90] 5.4.41-rc1 review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 5.4.41 release. There are 90 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Fri, 15 May 2020 09:41:20 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.4.41-rc1… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.4.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 5.4.41-rc1 Amir Goldstein <amir73il(a)gmail.com> fanotify: merge duplicate events on parent and child Amir Goldstein <amir73il(a)gmail.com> fsnotify: replace inode pointer with an object id Christoph Hellwig <hch(a)lst.de> bdi: add a ->dev_name field to struct backing_dev_info Christoph Hellwig <hch(a)lst.de> bdi: move bdi_dev_name out of line Yafang Shao <laoar.shao(a)gmail.com> mm, memcg: fix error return value of mem_cgroup_css_alloc() Ivan Delalande <colona(a)arista.com> scripts/decodecode: fix trapping instruction formatting Julia Lawall <Julia.Lawall(a)inria.fr> iommu/virtio: Reverse arguments to list_add Josh Poimboeuf <jpoimboe(a)redhat.com> objtool: Fix stack offset tracking for indirect CFAs Arnd Bergmann <arnd(a)arndb.de> netfilter: nf_osf: avoid passing pointer to local var Guillaume Nault <gnault(a)redhat.com> netfilter: nat: never update the UDP checksum when it's 0 Janakarajan Natarajan <Janakarajan.Natarajan(a)amd.com> arch/x86/kvm/svm/sev.c: change flag passed to GUP fast in sev_pin_memory() Suravee Suthikulpanit <suravee.suthikulpanit(a)amd.com> KVM: x86: Fixes posted interrupt check for IRQs delivery modes Josh Poimboeuf <jpoimboe(a)redhat.com> x86/unwind/orc: Fix premature unwind stoppage due to IRET frames Josh Poimboeuf <jpoimboe(a)redhat.com> x86/unwind/orc: Fix error path for bad ORC entry type Josh Poimboeuf <jpoimboe(a)redhat.com> x86/unwind/orc: Prevent unwinding before ORC initialization Miroslav Benes <mbenes(a)suse.cz> x86/unwind/orc: Don't skip the first frame for inactive tasks Jann Horn <jannh(a)google.com> x86/entry/64: Fix unwind hints in rewind_stack_do_exit() Josh Poimboeuf <jpoimboe(a)redhat.com> x86/entry/64: Fix unwind hints in kernel exit path Josh Poimboeuf <jpoimboe(a)redhat.com> x86/entry/64: Fix unwind hints in register clearing code Xiyu Yang <xiyuyang19(a)fudan.edu.cn> batman-adv: Fix refcnt leak in batadv_v_ogm_process Xiyu Yang <xiyuyang19(a)fudan.edu.cn> batman-adv: Fix refcnt leak in batadv_store_throughput_override Xiyu Yang <xiyuyang19(a)fudan.edu.cn> batman-adv: Fix refcnt leak in batadv_show_throughput_override George Spelvin <lkml(a)sdf.org> batman-adv: fix batadv_nc_random_weight_tq Tejun Heo <tj(a)kernel.org> iocost: protect iocg->abs_vdebt with iocg->waitq.lock Vincent Chen <vincent.chen(a)sifive.com> riscv: set max_pfn to the PFN of the last page Luis Chamberlain <mcgrof(a)kernel.org> coredump: fix crash when umh is disabled Oscar Carter <oscar.carter(a)gmx.com> staging: gasket: Check the return value of gasket_get_bar_index() Luis Henriques <lhenriques(a)suse.com> ceph: demote quotarealm lookup warning to a debug message Jeff Layton <jlayton(a)kernel.org> ceph: fix endianness bug when handling MDS session feature bits Henry Willard <henry.willard(a)oracle.com> mm: limit boost_watermark on small zones David Hildenbrand <david(a)redhat.com> mm/page_alloc: fix watchdog soft lockups during set_zone_contiguous() Khazhismel Kumykov <khazhy(a)google.com> eventpoll: fix missing wakeup for ovflist in ep_poll_callback Roman Penyaev <rpenyaev(a)suse.de> epoll: atomically remove wait entry on wake up Oleg Nesterov <oleg(a)redhat.com> ipc/mqueue.c: change __do_notify() to bypass check_kill_permission() H. Nikolaus Schaller <hns(a)goldelico.com> drm: ingenic-drm: add MODULE_DEVICE_TABLE Mark Rutland <mark.rutland(a)arm.com> arm64: hugetlb: avoid potential NULL dereference Marc Zyngier <maz(a)kernel.org> KVM: arm64: Fix 32bit PC wrap-around Marc Zyngier <maz(a)kernel.org> KVM: arm: vgic: Fix limit condition when writing to GICD_I[CS]ACTIVER Sean Christopherson <sean.j.christopherson(a)intel.com> KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path Christian Borntraeger <borntraeger(a)de.ibm.com> KVM: s390: Remove false WARN_ON_ONCE for the PQAP instruction Jason A. Donenfeld <Jason(a)zx2c4.com> crypto: arch/nhpoly1305 - process in explicit 4k chunks Steven Rostedt (VMware) <rostedt(a)goodmis.org> tracing: Add a vmalloc_sync_mappings() for safe measure Oliver Neukum <oneukum(a)suse.com> USB: serial: garmin_gps: add sanity checking for data length Bryan O'Donoghue <bryan.odonoghue(a)linaro.org> usb: chipidea: msm: Ensure proper controller reset using role switch API Oliver Neukum <oneukum(a)suse.com> USB: uas: add quirk for LaCie 2Big Quadra Jason Gerecke <killertofu(a)gmail.com> HID: wacom: Report 2nd-gen Intuos Pro S center button status over BT Alan Stern <stern(a)rowland.harvard.edu> HID: usbhid: Fix race between usbhid_close() and usbhid_stop() Jason Gerecke <killertofu(a)gmail.com> Revert "HID: wacom: generic: read the number of expected touches on a per collection basis" Jere Leppänen <jere.leppanen(a)nokia.com> sctp: Fix bundling of SHUTDOWN with COOKIE-ACK Jason Gerecke <jason.gerecke(a)wacom.com> HID: wacom: Read HID_DG_CONTACTMAX directly for non-generic devices Dan Carpenter <dan.carpenter(a)oracle.com> net: mvpp2: cls: Prevent buffer overflow in mvpp2_ethtool_cls_rule_del() Dan Carpenter <dan.carpenter(a)oracle.com> net: mvpp2: prevent buffer overflow in mvpp22_rss_ctx() Moshe Shemesh <moshe(a)mellanox.com> net/mlx5: Fix command entry leak in Internal Error State Moshe Shemesh <moshe(a)mellanox.com> net/mlx5: Fix forced completion access non initialized command entry Erez Shitrit <erezsh(a)mellanox.com> net/mlx5: DR, On creation set CQ's arm_db member to right value Michael Chan <michael.chan(a)broadcom.com> bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features(). Michael Chan <michael.chan(a)broadcom.com> bnxt_en: Return error when allocating zero size context memory. Michael Chan <michael.chan(a)broadcom.com> bnxt_en: Improve AER slot reset. Vasundhara Volam <vasundhara-v.volam(a)broadcom.com> bnxt_en: Reduce BNXT_MSIX_VEC_MAX value to supported CQs per PF. Michael Chan <michael.chan(a)broadcom.com> bnxt_en: Fix VF anti-spoof filter setup. Toke Høiland-Jørgensen <toke(a)redhat.com> tunnel: Propagate ECT(1) when decapsulating as recommended by RFC6040 Tuong Lien <tuong.t.lien(a)dektech.com.au> tipc: fix partial topology connection closure Eric Dumazet <edumazet(a)google.com> sch_sfq: validate silly quantum values Eric Dumazet <edumazet(a)google.com> sch_choke: avoid potential panic in choke_reset() Qiushi Wu <wu000273(a)umn.edu> nfp: abm: fix a memory leak bug Matt Jolly <Kangie(a)footclan.ninja> net: usb: qmi_wwan: add support for DW5816e Xiyu Yang <xiyuyang19(a)fudan.edu.cn> net/tls: Fix sk_psock refcnt leak when in tls_data_ready() Xiyu Yang <xiyuyang19(a)fudan.edu.cn> net/tls: Fix sk_psock refcnt leak in bpf_exec_tx_verdict() Anthony Felice <tony.felice(a)timesys.com> net: tc35815: Fix phydev supported/advertising mask Willem de Bruijn <willemb(a)google.com> net: stricter validation of untrusted gso packets Eric Dumazet <edumazet(a)google.com> net_sched: sch_skbprio: add message validation to skbprio_change() Tariq Toukan <tariqt(a)mellanox.com> net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() Scott Dial <scott(a)scottdial.com> net: macsec: preserve ingress frame ordering Dejin Zheng <zhengdejin5(a)gmail.com> net: macb: fix an issue about leak related system resources Florian Fainelli <f.fainelli(a)gmail.com> net: dsa: Do not leave DSA master with NULL netdev_ops Roman Mashak <mrv(a)mojatatu.com> neigh: send protocol value in neighbor create notification Jiri Pirko <jiri(a)mellanox.com> mlxsw: spectrum_acl_tcam: Position vchunk in a vregion list properly David Ahern <dsahern(a)kernel.org> ipv6: Use global sernum for dst validation with nexthop objects Eric Dumazet <edumazet(a)google.com> fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks Julia Lawall <Julia.Lawall(a)inria.fr> dp83640: reverse arguments to list_add_tail Jakub Kicinski <kuba(a)kernel.org> devlink: fix return value after hitting end in region read Shubhrajyoti Datta <shubhrajyoti.datta(a)xilinx.com> tty: xilinx_uartps: Fix missing id assignment to the console Nicolas Pitre <nico(a)fluxnic.net> vt: fix unicode console freeing with a common interface Evan Quan <evan.quan(a)amd.com> drm/amdgpu: drop redundant cg/pg ungate on runpm enter Evan Quan <evan.quan(a)amd.com> drm/amdgpu: move kfd suspend after ip_suspend_phase1 Andy Shevchenko <andriy.shevchenko(a)linux.intel.com> net: macb: Fix runtime PM refcounting Masami Hiramatsu <mhiramat(a)kernel.org> tracing/kprobes: Fix a double initialization typo Sagi Grimberg <sagi(a)grimberg.me> nvme: fix possible hang when ns scanning fails during error recovery Christoph Hellwig <hch(a)lst.de> nvme: refactor nvme_identify_ns_descs error handling Matt Jolly <Kangie(a)footclan.ninja> USB: serial: qcserial: Add DW5816e support ------------- Diffstat: Makefile | 4 +- arch/arm/crypto/nhpoly1305-neon-glue.c | 2 +- arch/arm64/crypto/nhpoly1305-neon-glue.c | 2 +- arch/arm64/kvm/guest.c | 7 ++ arch/arm64/mm/hugetlbpage.c | 2 + arch/riscv/mm/init.c | 3 +- arch/s390/kvm/priv.c | 4 +- arch/x86/crypto/nhpoly1305-avx2-glue.c | 2 +- arch/x86/crypto/nhpoly1305-sse2-glue.c | 2 +- arch/x86/entry/calling.h | 40 +++---- arch/x86/entry/entry_64.S | 9 +- arch/x86/include/asm/kvm_host.h | 4 +- arch/x86/include/asm/unwind.h | 2 +- arch/x86/kernel/unwind_orc.c | 61 ++++++++--- arch/x86/kvm/svm.c | 2 +- arch/x86/kvm/vmx/vmenter.S | 3 + block/blk-iocost.c | 117 +++++++++++++-------- drivers/gpu/drm/amd/amdgpu/amdgpu_device.c | 7 +- drivers/gpu/drm/ingenic/ingenic-drm.c | 1 + drivers/hid/usbhid/hid-core.c | 37 +++++-- drivers/hid/usbhid/usbhid.h | 1 + drivers/hid/wacom_sys.c | 4 +- drivers/hid/wacom_wac.c | 88 ++++------------ drivers/iommu/virtio-iommu.c | 2 +- drivers/net/ethernet/broadcom/bnxt/bnxt.c | 20 ++-- drivers/net/ethernet/broadcom/bnxt/bnxt.h | 1 - drivers/net/ethernet/broadcom/bnxt/bnxt_devlink.h | 2 +- drivers/net/ethernet/broadcom/bnxt/bnxt_sriov.c | 10 +- drivers/net/ethernet/cadence/macb_main.c | 24 ++--- drivers/net/ethernet/marvell/mvpp2/mvpp2_cls.c | 3 + drivers/net/ethernet/marvell/mvpp2/mvpp2_main.c | 2 + drivers/net/ethernet/mellanox/mlx4/main.c | 4 +- drivers/net/ethernet/mellanox/mlx5/core/cmd.c | 6 +- .../ethernet/mellanox/mlx5/core/steering/dr_send.c | 14 ++- .../ethernet/mellanox/mlxsw/spectrum_acl_tcam.c | 12 ++- drivers/net/ethernet/netronome/nfp/abm/main.c | 1 + drivers/net/ethernet/toshiba/tc35815.c | 2 +- drivers/net/macsec.c | 3 +- drivers/net/phy/dp83640.c | 2 +- drivers/net/usb/qmi_wwan.c | 1 + drivers/nvme/host/core.c | 28 +++-- drivers/staging/gasket/gasket_core.c | 4 + drivers/tty/serial/xilinx_uartps.c | 1 + drivers/tty/vt/vt.c | 9 +- drivers/usb/chipidea/ci_hdrc_msm.c | 2 +- drivers/usb/serial/garmin_gps.c | 4 +- drivers/usb/serial/qcserial.c | 1 + drivers/usb/storage/unusual_uas.h | 7 ++ fs/ceph/mds_client.c | 8 +- fs/ceph/quota.c | 4 +- fs/coredump.c | 8 ++ fs/eventpoll.c | 61 ++++++----- fs/notify/fanotify/fanotify.c | 9 +- fs/notify/inotify/inotify_fsnotify.c | 4 +- fs/notify/inotify/inotify_user.c | 2 +- include/linux/backing-dev-defs.h | 1 + include/linux/backing-dev.h | 9 +- include/linux/fsnotify_backend.h | 7 +- include/linux/virtio_net.h | 26 ++++- include/net/inet_ecn.h | 57 +++++++++- include/net/ip6_fib.h | 4 + include/net/net_namespace.h | 7 ++ ipc/mqueue.c | 34 ++++-- kernel/trace/trace.c | 13 +++ kernel/trace/trace_kprobe.c | 2 +- kernel/umh.c | 5 + mm/backing-dev.c | 13 ++- mm/memcontrol.c | 15 +-- mm/page_alloc.c | 9 ++ net/batman-adv/bat_v_ogm.c | 2 +- net/batman-adv/network-coding.c | 9 +- net/batman-adv/sysfs.c | 3 +- net/core/devlink.c | 5 + net/core/neighbour.c | 6 +- net/dsa/master.c | 3 +- net/ipv6/route.c | 25 +++++ net/netfilter/nf_nat_proto.c | 4 +- net/netfilter/nfnetlink_osf.c | 12 ++- net/sched/sch_choke.c | 3 +- net/sched/sch_fq_codel.c | 2 +- net/sched/sch_sfq.c | 9 ++ net/sched/sch_skbprio.c | 3 + net/sctp/sm_statefuns.c | 6 +- net/tipc/topsrv.c | 5 +- net/tls/tls_sw.c | 7 +- scripts/decodecode | 2 +- tools/cgroup/iocost_monitor.py | 7 +- tools/objtool/check.c | 2 +- virt/kvm/arm/hyp/aarch32.c | 8 +- virt/kvm/arm/vgic/vgic-mmio.c | 4 +- 90 files changed, 648 insertions(+), 346 deletions(-)

5 years, 7 months

stable-rc/linux-5.6.y boot: 130 boots: 4 failed, 118 passed with 2 offline, 6 untried/unknown (v5.6.12-119-gf1d28d1c7608)

by kernelci.org bot

stable-rc/linux-5.6.y boot: 130 boots: 4 failed, 118 passed with 2 offline, 6 untried/unknown (v5.6.12-119-gf1d28d1c7608) Full Boot Summary: https://kernelci.org/boot/all/job/stable-rc/branch/linux-5.6.y/kernel/v5.6.… Full Build Summary: https://kernelci.org/build/stable-rc/branch/linux-5.6.y/kernel/v5.6.12-119-… Tree: stable-rc Branch: linux-5.6.y Git Describe: v5.6.12-119-gf1d28d1c7608 Git Commit: f1d28d1c7608478dd10b7a36c40f2375bcc1648e Git URL: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git Tested: 90 unique boards, 23 SoC families, 19 builds out of 200 Boot Regressions Detected: arm64: defconfig: gcc-8: meson-g12a-sei510: lab-baylibre: new failure (last pass: v5.6.12) meson-gxm-q200: lab-baylibre: new failure (last pass: v5.6.12) sun50i-a64-pine64-plus: lab-baylibre: new failure (last pass: v5.6.12) Boot Failures Detected: arm64: defconfig: gcc-8: meson-g12a-sei510: 1 failed lab meson-gxm-q200: 1 failed lab sun50i-a64-pine64-plus: 1 failed lab arm: multi_v7_defconfig: gcc-8: bcm2836-rpi-2-b: 1 failed lab Offline Platforms: arm: qcom_defconfig: gcc-8 qcom-apq8064-cm-qs600: 1 offline lab exynos_defconfig: gcc-8 exynos5800-peach-pi: 1 offline lab --- For more info write to <info(a)kernelci.org>

5 years, 7 months

stable-rc/linux-4.14.y boot: 128 boots: 2 failed, 115 passed with 5 offline, 6 untried/unknown (v4.14.180-49-g188e090339cf)

by kernelci.org bot

stable-rc/linux-4.14.y boot: 128 boots: 2 failed, 115 passed with 5 offline, 6 untried/unknown (v4.14.180-49-g188e090339cf) Full Boot Summary: https://kernelci.org/boot/all/job/stable-rc/branch/linux-4.14.y/kernel/v4.1… Full Build Summary: https://kernelci.org/build/stable-rc/branch/linux-4.14.y/kernel/v4.14.180-4… Tree: stable-rc Branch: linux-4.14.y Git Describe: v4.14.180-49-g188e090339cf Git Commit: 188e090339cf9e022f51461e094756a0e44efb43 Git URL: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git Tested: 75 unique boards, 20 SoC families, 17 builds out of 201 Boot Regressions Detected: arm: qcom_defconfig: gcc-8: qcom-apq8064-cm-qs600: lab-baylibre-seattle: failing since 1 day (last pass: v4.14.180 - first fail: v4.14.180-37-gad4fc99d1989) versatile_defconfig: gcc-8: versatile-pb: lab-collabora: new failure (last pass: v4.14.180-37-gad4fc99d1989) arm64: defconfig: gcc-8: sun50i-a64-pine64-plus: lab-baylibre: new failure (last pass: v4.14.180-37-gad4fc99d1989) Boot Failures Detected: arm64: defconfig: gcc-8: meson-gxbb-p200: 1 failed lab meson-gxm-q200: 1 failed lab Offline Platforms: arm: multi_v7_defconfig: gcc-8 exynos5800-peach-pi: 1 offline lab qcom-apq8064-cm-qs600: 1 offline lab stih410-b2120: 1 offline lab qcom_defconfig: gcc-8 qcom-apq8064-cm-qs600: 1 offline lab exynos_defconfig: gcc-8 exynos5800-peach-pi: 1 offline lab --- For more info write to <info(a)kernelci.org>

5 years, 7 months

stable-rc 4.19: WARNING: at lib/refcount.c:187 refcount_sub_and_test_checked

by Naresh Kamboju

While running LTP sched on stable-rc 4.19 branch kernel on arm64 hikey device. Thermal alarm triggered and followed by kernel warnings and Internal error: Oops: steps to reproduce: cd /opt/ltp ./runltp -f sched Test running hackbench test case from LTP sched Test case: hackbench 50 process 1000 Running with 50*40 (== 2000) tasks. [ 33.758553] LDO2_2V8: disabling [ 33.761846] LDO13_1V8: disabling [ 33.767592] LDO14_2V8: disabling [ 33.771918] LDO17_2V5: disabling [ 34.182704] hisi_thermal f7030700.tsensor: THERMAL ALARM: 66385 > 65000 [ 39.518923] ------------[ cut here ]------------ [ 39.525600] refcount_t: underflow; use-after-free. [ 39.532816] WARNING: CPU: 1 PID: 5624 at lib/refcount.c:187 refcount_sub_and_test_checked+0xa0/0xa8 [ 39.542099] Modules linked in: wl18xx wlcore mac80211 cfg80211 hci_uart adv7511 snd_soc_audio_graph_card crc32_ce btbcm snd_soc_simple_card_utils crct10dif_ce cec kirin_drm bluetooth drm_kms_helper dw_drm_dsi drm wlcore_sdio rfkill drm_panel_orientation_quirks fuse [ 39.566135] CPU: 1 PID: 5624 Comm: hackbench Not tainted 4.19.123-rc1-00049-g6d5c161fb73d #1 [ 39.574768] Hardware name: HiKey Development Board (DT) [ 39.580122] pstate: 40000005 (nZcv daif -PAN -UAO) [ 39.585043] pc : refcount_sub_and_test_checked+0xa0/0xa8 [ 39.590491] lr : refcount_sub_and_test_checked+0xa0/0xa8 [ 39.595933] sp : ffff0000142bba60 [ 39.599331] x29: ffff0000142bba60 x28: ffff80004e20d4c8 [ 39.604771] x27: ffff800048273f28 x26: 0000000000000064 [ 39.610213] x25: ffff800048273f00 x24: 0000000000000000 [ 39.615657] x23: 0000000000000064 x22: ffff80004e20d740 [ 39.621097] x21: 0000000000000000 x20: ffff800058991944 [ 39.626538] x19: 0000000000000000 x18: 0000000000000000 [ 39.631980] x17: 0000000000000000 x16: 0000000000000000 [ 39.637418] x15: 0000000000000400 x14: 0000000000000333 [ 39.642857] x13: 0000000000000001 x12: 0000000000000000 [ 39.648295] x11: 0000000000000002 x10: 0000000000000960 [ 39.653734] x9 : ffff0000142bb7a0 x8 : ffff80004e2573c0 [ 39.659174] x7 : ffff8000757a6c00 x6 : 0000000000000010 [ 39.664612] x5 : ffff800077f1a790 x4 : ffff800077f1b0d0 [ 39.670053] x3 : ffff800077f21eb0 x2 : ffff800077f1b0d0 [ 39.675493] x1 : d13523b333b73d00 x0 : 0000000000000000 [ 39.680930] Call trace: [ 39.683455] refcount_sub_and_test_checked+0xa0/0xa8 [ 39.688550] sock_wfree+0x4c/0xa0 [ 39.691957] unix_destruct_scm+0x70/0x90 [ 39.695986] skb_release_head_state+0x5c/0xf0 [ 39.700460] skb_release_all+0x14/0x30 [ 39.704306] consume_skb+0x2c/0x58 [ 39.707801] unix_stream_read_generic+0x680/0x750 [ 39.712623] unix_stream_recvmsg+0x4c/0x70 [ 39.716829] sock_read_iter+0x94/0xe8 [ 39.720589] __vfs_read+0xf8/0x148 [ 39.724084] vfs_read+0xa8/0x160 [ 39.727400] ksys_read+0x64/0xd8 [ 39.730714] __arm64_sys_read+0x18/0x20 [ 39.734655] el0_svc_common+0x70/0x168 [ 39.738509] el0_svc_handler+0x2c/0x80 [ 39.742360] el0_svc+0x8/0xc [ 39.745321] ---[ end trace 6e44f0c23e5d9fb1 ]--- [ 44.241524] ------------[ cut here ]------------ [ 44.248838] WARNING: CPU: 0 PID: 5624 at net/unix/af_unix.c:498 unix_sock_destructor+0xf4/0x100 [ 44.257760] Modules linked in: wl18xx wlcore mac80211 cfg80211 hci_uart adv7511 snd_soc_audio_graph_card crc32_ce btbcm snd_soc_simple_card_utils crct10dif_ce cec kirin_drm bluetooth drm_kms_helper dw_drm_dsi drm wlcore_sdio rfkill drm_panel_orientation_quirks fuse [ 44.281801] CPU: 0 PID: 5624 Comm: hackbench Tainted: G W 4.19.123-rc1-00049-g6d5c161fb73d #1 [ 44.291854] Hardware name: HiKey Development Board (DT) [ 44.297209] pstate: 40000005 (nZcv daif -PAN -UAO) [ 44.302126] pc : unix_sock_destructor+0xf4/0x100 [ 44.306863] lr : unix_sock_destructor+0xf4/0x100 [ 44.311593] sp : ffff0000142bb9f0 [ 44.314990] x29: ffff0000142bb9f0 x28: ffff80004e20d4c8 [ 44.320429] x27: ffff800048273f28 x26: 0000000000000064 [ 44.325869] x25: ffff800048273f00 x24: 0000000000000000 [ 44.331308] x23: 0000000000000064 x22: ffff80004e20d740 [ 44.336747] x21: ffff800058991800 x20: ffff8000589916b8 [ 44.342186] x19: ffff800058991800 x18: 0000000000000000 [ 44.347625] x17: 0000000000000000 x16: 0000000000000000 [ 44.353066] x15: 0000000000000400 x14: 0000000000000333 [ 44.358508] x13: 0000000000000001 x12: 0000000000000000 [ 44.370733] x11: 0000000000000002 x10: 0000000000000960 [ 44.382900] x9 : ffff0000142bb760 x8 : ffff80004e2573c0 [ 44.395054] x7 : ffff8000757a6a00 x6 : 0000000000000010 [ 44.406985] x5 : ffff800077f04790 x4 : ffff800077f050d0 [ 44.418678] x3 : ffff800077f0beb0 x2 : d13523b333b73d00 [ 44.430478] x1 : 0000000000000000 x0 : 0000000000000024 [ 44.442258] Call trace: [ 44.451166] unix_sock_destructor+0xf4/0x100 [ 44.461909] __sk_destruct+0x2c/0x150 [ 44.471973] sk_destruct+0x48/0x60 [ 44.481725] __sk_free+0x38/0xd0 [ 44.491237] sock_wfree+0x7c/0xa0 [ 44.500416] unix_destruct_scm+0x70/0x90 [ 44.509821] skb_release_head_state+0x5c/0xf0 [ 44.519571] skb_release_all+0x14/0x30 [ 44.528610] consume_skb+0x2c/0x58 [ 44.537257] unix_stream_read_generic+0x680/0x750 [ 44.547227] unix_stream_recvmsg+0x4c/0x70 [ 44.556616] sock_read_iter+0x94/0xe8 [ 44.565510] __vfs_read+0xf8/0x148 [ 44.574124] vfs_read+0xa8/0x160 [ 44.582578] ksys_read+0x64/0xd8 [ 44.591057] __arm64_sys_read+0x18/0x20 [ 44.600160] el0_svc_common+0x70/0x168 [ 44.609177] el0_svc_handler+0x2c/0x80 [ 44.618194] el0_svc+0x8/0xc [ 44.626370] ---[ end trace 6e44f0c23e5d9fb2 ]--- [ 44.804127] ------------[ cut here ]------------ [ 44.851402] refcount_t: addition on 0; use-after-free. [ 45.083709] ------------[ cut here ]------------ [ 45.095872] WARNING: CPU: 1 PID: 5624 at net/unix/af_unix.c:499 unix_sock_destructor+0xe0/0x100 [ 45.110316] Modules linked in: wl18xx wlcore mac80211 cfg80211 hci_uart adv7511 snd_soc_audio_graph_card crc32_ce btbcm snd_soc_simple_card_utils crct10dif_ce cec kirin_drm bluetooth drm_kms_helper dw_drm_dsi drm wlcore_sdio rfkill drm_panel_orientation_quirks fuse [ 45.146603] CPU: 1 PID: 5624 Comm: hackbench Tainted: G W 4.19.123-rc1-00049-g6d5c161fb73d #1 [ 45.163052] Hardware name: HiKey Development Board (DT) [ 45.174863] pstate: 40000005 (nZcv daif -PAN -UAO) [ 45.186303] pc : unix_sock_destructor+0xe0/0x100 [ 45.197560] lr : unix_sock_destructor+0xe0/0x100 [ 45.208757] sp : ffff0000142bb9f0 [ 45.218636] x29: ffff0000142bb9f0 x28: ffff80004e20d4c8 [ 45.230537] x27: ffff800048273f28 x26: 0000000000000064 [ 45.242423] x25: ffff800048273f00 x24: 0000000000000000 [ 45.254317] x23: 0000000000000064 x22: ffff80004e20d740 [ 45.266248] x21: ffff800058991800 x20: ffff8000589916b8 [ 45.278128] x19: ffff800058991800 x18: 0000000000000000 [ 45.289964] x17: 0000000000000000 x16: 0000000000000000 [ 45.301854] x15: 0000000000000400 x14: 0000000000000333 [ 45.313691] x13: 0000000000000001 x12: 0000000000000000 [ 45.325466] x11: 0000000000000002 x10: 0000000000000960 [ 45.337205] x9 : ffff0000142bb760 x8 : ffff80004e2573c0 [ 45.349011] x7 : ffff8000757a6c00 x6 : 0000000000000010 [ 45.360826] x5 : ffff800077f1a790 x4 : ffff800077f1b0d0 [ 45.372682] x3 : ffff800077f21eb0 x2 : d13523b333b73d00 [ 45.384432] x1 : 0000000000000000 x0 : 0000000000000024 [ 45.396161] Call trace: [ 45.404576] unix_sock_destructor+0xe0/0x100 [ 45.414505] __sk_destruct+0x2c/0x150 [ 45.423673] sk_destruct+0x48/0x60 [ 45.432482] __sk_free+0x38/0xd0 [ 45.441123] sock_wfree+0x7c/0xa0 [ 45.449751] unix_destruct_scm+0x70/0x90 [ 45.459098] skb_release_head_state+0x5c/0xf0 [ 45.468851] skb_release_all+0x14/0x30 [ 45.477977] consume_skb+0x2c/0x58 [ 45.486728] unix_stream_read_generic+0x680/0x750 [ 45.496892] unix_stream_recvmsg+0x4c/0x70 [ 45.506383] sock_read_iter+0x94/0xe8 [ 45.515494] __vfs_read+0xf8/0x148 [ 45.524328] vfs_read+0xa8/0x160 [ 45.532979] ksys_read+0x64/0xd8 [ 45.541711] __arm64_sys_read+0x18/0x20 [ 45.551056] el0_svc_common+0x70/0x168 [ 45.560334] el0_svc_handler+0x2c/0x80 [ 45.569595] el0_svc+0x8/0xc [ 45.577983] ---[ end trace 6e44f0c23e5d9fb3 ]--- [ 46.230081] unix: Attempt to release alive unix socket: 00000000c16f8bab [ 46.581410] WARNING: CPU: 7 PID: 4201 at lib/refcount.c:102 refcount_add_checked+0x40/0x48 [ 46.595469] Modules linked in: wl18xx wlcore mac80211 cfg80211 hci_uart adv7511 snd_soc_audio_graph_card crc32_ce btbcm snd_soc_simple_card_utils crct10dif_ce cec kirin_drm bluetooth drm_kms_helper dw_drm_dsi drm wlcore_sdio rfkill drm_panel_orientation_quirks fuse [ 46.631752] CPU: 7 PID: 4201 Comm: hackbench Tainted: G W 4.19.123-rc1-00049-g6d5c161fb73d #1 [ 46.648192] Hardware name: HiKey Development Board (DT) [ 46.660070] pstate: 40000005 (nZcv daif -PAN -UAO) [ 46.671520] pc : refcount_add_checked+0x40/0x48 [ 46.682787] lr : refcount_add_checked+0x40/0x48 [ 46.693921] sp : ffff000011653b10 [ 46.703835] x29: ffff000011653b10 x28: 0000000000000000 [ 46.715810] x27: 0000000000000003 x26: 0000000000000000 [ 46.727832] x25: 7fffffffffffffff x24: ffff000011653c74 [ 46.739766] x23: ffff0000092198c8 x22: ffff0000081187c8 [ 46.751748] x21: ffff800058991400 x20: ffff800058991800 [ 46.763739] x19: ffff80004bcad300 x18: 0000000000000000 [ 46.775673] x17: 0000000000000000 x16: 0000000000000000 [ 46.787641] x15: 0000000000000400 x14: 0000000000000333 [ 46.799574] x13: 0000000000000001 x12: 0000000000000000 [ 46.811479] x11: 0000000000000070 x10: 0000000000000960 [ 46.823383] x9 : ffff000011653850 x8 : ffff800058b43180 [ 46.835276] x7 : ffff8000757a7800 x6 : 0000000000000010 [ 46.847198] x5 : ffff800077f9e790 x4 : ffff800077f9f0d0 [ 46.859090] x3 : ffff800077fa5eb0 x2 : ffff800077f9f0d0 [ 46.870964] x1 : d13523b333b73d00 x0 : 0000000000000000 [ 46.882829] Call trace: [ 46.891741] refcount_add_checked+0x40/0x48 [ 46.902369] skb_set_owner_w+0x60/0xa8 [ 46.912144] sock_alloc_send_pskb+0x200/0x210 [ 46.922202] unix_stream_sendmsg+0x1d0/0x340 [ 46.931999] sock_sendmsg+0x18/0x30 [ 46.940976] sock_write_iter+0x8c/0xe0 [ 46.950159] __vfs_write+0xf8/0x160 [ 46.959014] vfs_write+0xa4/0x1b0 [ 46.967712] ksys_write+0x64/0xd8 [ 46.976420] __arm64_sys_write+0x18/0x20 [ 46.985743] el0_svc_common+0x70/0x168 [ 46.994915] el0_svc_handler+0x2c/0x80 [ 47.004074] el0_svc+0x8/0xc [ 47.012329] ---[ end trace 6e44f0c23e5d9fb4 ]--- [ 51.942160] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000008 [ 51.956600] Mem abort info: [ 51.964994] ESR = 0x96000046 [ 51.973658] Exception class = DABT (current EL), IL = 32 bits [ 51.985323] SET = 0, FnV = 0 [ 51.994116] EA = 0, S1PTW = 0 [ 52.002991] Data abort info: [ 52.011559] ISV = 0, ISS = 0x00000046 [ 52.021139] CM = 0, WnR = 1 [ 52.029826] user pgtable: 4k pages, 48-bit VAs, pgdp = 00000000cd136acc [ 52.042281] [0000000000000008] pgd=000000004e23d003, pud=000000004e23e003, pmd=0000000000000000 [ 52.056947] Internal error: Oops: 96000046 [#1] PREEMPT SMP [ 52.068511] Modules linked in: wl18xx wlcore mac80211 cfg80211 hci_uart adv7511 snd_soc_audio_graph_card crc32_ce btbcm snd_soc_simple_card_utils crct10dif_ce cec kirin_drm bluetooth drm_kms_helper dw_drm_dsi drm wlcore_sdio rfkill drm_panel_orientation_quirks fuse [ 52.105341] Process hackbench (pid: 5616, stack limit = 0x00000000a84269cf) [ 52.119153] CPU: 2 PID: 5616 Comm: hackbench Tainted: G W 4.19.123-rc1-00049-g6d5c161fb73d #1 [ 52.136027] Hardware name: HiKey Development Board (DT) [ 52.148385] pstate: 60000085 (nZCv daIf -PAN -UAO) [ 52.160272] pc : skb_unlink+0x40/0x60 [ 52.171005] lr : skb_unlink+0x24/0x60 [ 52.181698] sp : ffff00001427bb20 [ 52.191997] x29: ffff00001427bb20 x28: ffff80004e2094c8 [ 52.204398] x27: ffff800048273528 x26: 0000000000000064 [ 52.216760] x25: ffff800048273500 x24: 0000000000000000 [ 52.229121] x23: 0000000000000064 x22: ffff80004e209740 [ 52.241486] x21: ffff80004e2094dc x20: ffff80004e2094c8 [ 52.253822] x19: ffff800048273500 x18: 0000000000000000 [ 52.266159] x17: 0000000000000000 x16: 0000000000000000 [ 52.278498] x15: 0000000000000000 x14: 00000000226300a0 [ 52.290796] x13: 00000000226300a0 x12: 00000000004012f8 [ 52.303077] x11: 00000000004014b4 x10: 0000fffff7fe03b0 [ 52.315350] x9 : 00000000226300a0 x8 : 0000000000000008 [ 52.327541] x7 : 0000000000000007 x6 : 0000000000000001 [ 52.339623] x5 : 0000000000000001 x4 : 0000000000000002 [ 52.351279] x3 : 0000000000000000 x2 : 0000000000000000 [ 52.362553] x1 : 0000000000000000 x0 : ffff80004e2094dc [ 52.373690] Call trace: [ 52.381864] skb_unlink+0x40/0x60 [ 52.390837] unix_stream_read_generic+0x678/0x750 [ 52.401221] unix_stream_recvmsg+0x4c/0x70 [ 52.411043] sock_read_iter+0x94/0xe8 [ 52.420417] __vfs_read+0xf8/0x148 [ 52.429510] vfs_read+0xa8/0x160 [ 52.438457] ksys_read+0x64/0xd8 [ 52.447370] __arm64_sys_read+0x18/0x20 [ 52.456911] el0_svc_common+0x70/0x168 [ 52.466376] el0_svc_handler+0x2c/0x80 [ 52.475801] el0_svc+0x8/0xc [ 52.484345] Code: 51000442 b9001282 a9400a63 a9007e7f (f9000462) [ 52.496245] ---[ end trace 6e44f0c23e5d9fb5 ]--- [ 52.506922] note: hackbench[5616] exited with preempt_count 1 Broadcast message from systemd-journald@hikey (Sun 2019-03-24 19:24:41 UTC): kernel[3032]: [ 52.056947] Internal error: Oops: 96000046 [#1] PREEMPT SMP Broadcast message from systemd-journald@hikey (Sun 2019-03-24 19:24:41 UTC): kernel[3032]: [ 52.105341] Process hackbench (pid: 5616, stack limit = 0x00000000a84269cf) Broadcast message from systemd-journald@hikey (Sun 2019-03-24 19:24:41 UTC): kernel[3032]: [ 52.484345] Code: 51000442 b9001282 a9400a63 a9007e7f (f9000462) SERVER: read (error: Bad address) Running with 20*40 (== 800) tasks. [ 53.050369] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 [ 53.065286] Mem abort info: [ 53.074084] ESR = 0x96000044 [ 53.083135] Exception class = DABT (current EL), IL = 32 bits [ 53.095174] SET = 0, FnV = 0 [ 53.104314] EA = 0, S1PTW = 0 [ 53.113497] Data abort info: [ 53.122392] ISV = 0, ISS = 0x00000044 [ 53.132261] CM = 0, WnR = 1 [ 53.141238] user pgtable: 4k pages, 48-bit VAs, pgdp = 000000005aa0b283 [ 53.153996] [0000000000000000] pgd=0000000000000000 [ 53.165047] Internal error: Oops: 96000044 [#2] PREEMPT SMP [ 53.176817] Modules linked in: wl18xx wlcore mac80211 cfg80211 hci_uart adv7511 snd_soc_audio_graph_card crc32_ce btbcm snd_soc_simple_card_utils crct10dif_ce cec kirin_drm bluetooth drm_kms_helper dw_drm_dsi drm wlcore_sdio rfkill drm_panel_orientation_quirks fuse [ 53.214090] Process hackbench (pid: 5624, stack limit = 0x0000000092e9188f) [ 53.228138] CPU: 7 PID: 5624 Comm: hackbench Tainted: G D W 4.19.123-rc1-00049-g6d5c161fb73d #1 [ 53.245231] Hardware name: HiKey Development Board (DT) [ 53.257701] pstate: 80000085 (Nzcv daIf -PAN -UAO) [ 53.269773] pc : skb_dequeue+0x4c/0x90 [ 53.280804] lr : skb_dequeue+0x20/0x90 [ 53.291782] sp : ffff0000142bbae0 [ 53.302190] x29: ffff0000142bbae0 x28: ffff80004e256a00 [ 53.314558] x27: 0000000000000000 x26: ffff80004e20db40 [ 53.326910] x25: 0000000000000003 x24: 0000000000000001 [ 53.339232] x23: ffff0000092198c8 x22: ffff80004e20d4c8 [ 53.351527] x21: ffff80004e20d4dc x20: ffff800048273500 [ 53.363836] x19: ffff80004e20d4c8 x18: 0000000000000333 [ 53.376137] x17: 0000000000000000 x16: 0000000000000000 [ 53.388449] x15: 0000000000000400 x14: 0000000000000333 [ 53.400697] x13: 0000000000000001 x12: 0000000000000000 [ 53.412874] x11: 0000000000000002 x10: ffff800005f0a800 [ 53.424943] x9 : 0000000000000010 x8 : ffff800077fac8e8 [ 53.436880] x7 : 0000000044040000 x6 : 0000000000000002 [ 53.448446] x5 : 0000000000000001 x4 : 0000000000000003 [ 53.459613] x3 : ffff80004e20d4dc x2 : ffff800048273c00 [ 53.470707] x1 : 0000000000000000 x0 : 0000000000000000 [ 53.481673] Call trace: [ 53.489657] skb_dequeue+0x4c/0x90 [ 53.498571] unix_release_sock+0x138/0x268 [ 53.508190] unix_release+0x20/0x38 [ 53.517203] __sock_release+0x40/0xb8 [ 53.526390] sock_close+0x14/0x20 [ 53.535243] __fput+0x88/0x1b0 [ 53.543818] ____fput+0xc/0x18 [ 53.552379] task_work_run+0x90/0xb0 [ 53.561486] do_exit+0x350/0x9a8 [ 53.570250] do_group_exit+0x34/0x98 [ 53.579335] get_signal+0xac/0x618 [ 53.588266] do_signal+0x8c/0x2a0 [ 53.597122] do_notify_resume+0xd0/0x110 [ 53.606623] work_pending+0x8/0x10 [ 53.615588] Code: b9001260 a9400282 a9007e9f f9000440 (f9000002) [ 53.627346] ---[ end trace 6e44f0c23e5d9fb6 ]--- [ 53.637660] Fixing recursive fault but reboot is needed! Broadcast message from systemd-journald@hikey (Sun 2019-03-24 19:24:42 UTC): kernel[3032]: [ 53.165047] Internal error: Oops: 96000044 [#2] PREEMPT SMP Broadcast message from systemd-journald@hikey (Sun 2019-03-24 19:24:42 UTC): kernel[3032]: [ 53.214090] Process hackbench (pid: 5624, stack limit = 0x0000000092e9188f) Broadcast message from systemd-journald@hikey (Sun 2019-03-24 19:24:42 UTC): kernel[3032]: [ 53.615588] Code: b9001260 a9400282 a9007e9f f9000440 (f9000002) [ 54.489871] hisi_thermal f7030700.tsensor: THERMAL ALARM stopped: 61675 < 65000 [ 74.654864] rcu: INFO: rcu_sched detected stalls on CPUs/tasks: [ 74.666836] rcu: 2-...0: (1 GPs behind) idle=daa/1/0x4000000000000000 softirq=3834/3912 fqs=2623 [ 74.681934] rcu: (detected by 5, t=5252 jiffies, g=2345, q=677) [ 74.694094] Task dump for CPU 2: [ 74.703435] hackbench R running task 0 5616 1 0x0000022e [ 74.716735] Call trace: [ 74.725367] __switch_to+0xe8/0x148 [ 74.735044] (null) [ 74.744269] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 74.756718] rcu: 2-...0: (1 GPs behind) idle=daa/1/0x4000000000000000 softirq=3836/3912 fqs=2623 [ 74.772141] rcu: (detected by 5, t=5273 jiffies, g=2645, q=16353) [ 74.784812] Task dump for CPU 2: [ 74.794529] hackbench R running task 0 5616 1 0x0000022e [ 74.808210] Call trace: [ 74.817173] __switch_to+0xe8/0x148 [ 74.827156] (null) [ 137.674820] rcu: INFO: rcu_sched detected stalls on CPUs/tasks: [ 137.687231] rcu: 2-...0: (1 GPs behind) idle=daa/1/0x4000000000000000 softirq=3834/3912 fqs=10479 [ 137.702783] rcu: (detected by 5, t=21007 jiffies, g=2345, q=677) [ 137.715437] Task dump for CPU 2: [ 137.725159] hackbench R running task 0 5616 1 0x0000022e [ 137.738781] Call trace: [ 137.747752] __switch_to+0xe8/0x148 [ 137.757797] (null) [ 137.767359] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 137.780138] rcu: 2-...0: (1 GPs behind) idle=daa/1/0x4000000000000000 softirq=3836/3912 fqs=10464 [ 137.795939] rcu: (detected by 5, t=21029 jiffies, g=2645, q=16636) [ 137.808940] Task dump for CPU 2: [ 137.818844] hackbench R running task 0 5616 1 0x0000022e [ 137.832327] Call trace: [ 137.840756] __switch_to+0xe8/0x148 [ 137.850166] (null) [ 185.305855] audit: type=1701 audit(1553455613.779:3): auid=4294967295 uid=993 gid=990 ses=4294967295 pid=2943 comm=\"systemd-network\" exe=\"/lib/systemd/systemd-networkd\" sig=6 res=1 [ 185.326450] dwmmc_k3 f723d000.dwmmc0: Unexpected interrupt latency [ 200.694868] rcu: INFO: rcu_sched detected stalls on CPUs/tasks: Ref: https://qa-reports.linaro.org/lkft/linux-stable-rc-4.19-oe/build/v4.19.122-… https://qa-reports.linaro.org/lkft/linux-stable-rc-4.19-oe/build/v4.19.122-… kernel config: https://builds.tuxbuild.com/CiEjvux-yM6p2wRSLY2A0Q/kernel.config -- Linaro LKFT https://lkft.linaro.org

5 years, 7 months

Jump to page:

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror