- Linux-stable-mirror - lists.linaro.org

[git:media_tree/master] media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors

by Mauro Carvalho Chehab

This is an automatic generated email to let you know that the following patch were queued: Subject: media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors Author: Will Deacon <will(a)kernel.org> Date: Fri Nov 8 16:48:38 2019 +0100 Way back in 2017, fuzzing the 4.14-rc2 USB stack with syzkaller kicked up the following WARNING from the UVC chain scanning code: | list_add double add: new=ffff880069084010, prev=ffff880069084010, | next=ffff880067d22298. | ------------[ cut here ]------------ | WARNING: CPU: 1 PID: 1846 at lib/list_debug.c:31 __list_add_valid+0xbd/0xf0 | Modules linked in: | CPU: 1 PID: 1846 Comm: kworker/1:2 Not tainted | 4.14.0-rc2-42613-g1488251d1a98 #238 | Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011 | Workqueue: usb_hub_wq hub_event | task: ffff88006b01ca40 task.stack: ffff880064358000 | RIP: 0010:__list_add_valid+0xbd/0xf0 lib/list_debug.c:29 | RSP: 0018:ffff88006435ddd0 EFLAGS: 00010286 | RAX: 0000000000000058 RBX: ffff880067d22298 RCX: 0000000000000000 | RDX: 0000000000000058 RSI: ffffffff85a58800 RDI: ffffed000c86bbac | RBP: ffff88006435dde8 R08: 1ffff1000c86ba52 R09: 0000000000000000 | R10: 0000000000000002 R11: 0000000000000000 R12: ffff880069084010 | R13: ffff880067d22298 R14: ffff880069084010 R15: ffff880067d222a0 | FS: 0000000000000000(0000) GS:ffff88006c900000(0000) knlGS:0000000000000000 | CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 | CR2: 0000000020004ff2 CR3: 000000006b447000 CR4: 00000000000006e0 | Call Trace: | __list_add ./include/linux/list.h:59 | list_add_tail+0x8c/0x1b0 ./include/linux/list.h:92 | uvc_scan_chain_forward.isra.8+0x373/0x416 | drivers/media/usb/uvc/uvc_driver.c:1471 | uvc_scan_chain drivers/media/usb/uvc/uvc_driver.c:1585 | uvc_scan_device drivers/media/usb/uvc/uvc_driver.c:1769 | uvc_probe+0x77f2/0x8f00 drivers/media/usb/uvc/uvc_driver.c:2104 Looking into the output from usbmon, the interesting part is the following data packet: ffff880069c63e00 30710169 C Ci:1:002:0 0 143 = 09028f00 01030080 00090403 00000e01 00000924 03000103 7c003328 010204db If we drop the lead configuration and interface descriptors, we're left with an output terminal descriptor describing a generic display: /* Output terminal descriptor */ buf[0] 09 buf[1] 24 buf[2] 03 /* UVC_VC_OUTPUT_TERMINAL */ buf[3] 00 /* ID */ buf[4] 01 /* type == 0x0301 (UVC_OTT_DISPLAY) */ buf[5] 03 buf[6] 7c buf[7] 00 /* source ID refers to self! */ buf[8] 33 The problem with this descriptor is that it is self-referential: the source ID of 0 matches itself! This causes the 'struct uvc_entity' representing the display to be added to its chain list twice during 'uvc_scan_chain()': once via 'uvc_scan_chain_entity()' when it is processed directly from the 'dev->entities' list and then again immediately afterwards when trying to follow the source ID in 'uvc_scan_chain_forward()' Add a check before adding an entity to a chain list to ensure that the entity is not already part of a chain. Link: https://lore.kernel.org/linux-media/CAAeHK+z+Si69jUR+N-SjN9q4O+o5KFiNManqEa… Cc: <stable(a)vger.kernel.org> Fixes: c0efd232929c ("V4L/DVB (8145a): USB Video Class driver") Reported-by: Andrey Konovalov <andreyknvl(a)google.com> Signed-off-by: Will Deacon <will(a)kernel.org> Signed-off-by: Laurent Pinchart <laurent.pinchart(a)ideasonboard.com> Signed-off-by: Mauro Carvalho Chehab <mchehab+huawei(a)kernel.org> drivers/media/usb/uvc/uvc_driver.c | 12 ++++++++++++ 1 file changed, 12 insertions(+) --- diff --git a/drivers/media/usb/uvc/uvc_driver.c b/drivers/media/usb/uvc/uvc_driver.c index 428235ca2635..2b688cc39bb8 100644 --- a/drivers/media/usb/uvc/uvc_driver.c +++ b/drivers/media/usb/uvc/uvc_driver.c @@ -1493,6 +1493,11 @@ static int uvc_scan_chain_forward(struct uvc_video_chain *chain, break; if (forward == prev) continue; + if (forward->chain.next || forward->chain.prev) { + uvc_trace(UVC_TRACE_DESCR, "Found reference to " + "entity %d already in chain.\n", forward->id); + return -EINVAL; + } switch (UVC_ENTITY_TYPE(forward)) { case UVC_VC_EXTENSION_UNIT: @@ -1574,6 +1579,13 @@ static int uvc_scan_chain_backward(struct uvc_video_chain *chain, return -1; } + if (term->chain.next || term->chain.prev) { + uvc_trace(UVC_TRACE_DESCR, "Found reference to " + "entity %d already in chain.\n", + term->id); + return -EINVAL; + } + if (uvc_trace_param & UVC_TRACE_PROBE) printk(KERN_CONT " %d", term->id);

5 years, 9 months

1
0
0 0

[PATCH 1/2] KVM: x86: reorganize pvclock_gtod_data members

by Paolo Bonzini

We will need a copy of tk->offs_boot in the next patch. Store it and cleanup the struct: instead of storing tk->tkr_xxx.base with the tk->offs_boot included, store the raw value in struct pvclock_clock and sum tk->offs_boot in do_monotonic_raw and do_realtime. tk->tkr_xxx.xtime_nsec also moves to struct pvclock_clock. While at it, fix a (usually harmless) typo in do_monotonic_raw, which was using gtod->clock.shift instead of gtod->raw_clock.shift. Fixes: 53fafdbb8b21f ("KVM: x86: switch KVMCLOCK base to monotonic raw clock") Cc: stable(a)vger.kernel.org Signed-off-by: Paolo Bonzini <pbonzini(a)redhat.com> --- arch/x86/kvm/x86.c | 29 ++++++++++++----------------- 1 file changed, 12 insertions(+), 17 deletions(-) diff --git a/arch/x86/kvm/x86.c b/arch/x86/kvm/x86.c index 89621025577a..1b4273cce63c 100644 --- a/arch/x86/kvm/x86.c +++ b/arch/x86/kvm/x86.c @@ -1532,6 +1532,8 @@ struct pvclock_clock { u64 mask; u32 mult; u32 shift; + u64 base_cycles; + u64 offset; }; struct pvclock_gtod_data { @@ -1540,11 +1542,8 @@ struct pvclock_gtod_data { struct pvclock_clock clock; /* extract of a clocksource struct */ struct pvclock_clock raw_clock; /* extract of a clocksource struct */ - u64 boot_ns_raw; - u64 boot_ns; - u64 nsec_base; + ktime_t offs_boot; u64 wall_time_sec; - u64 monotonic_raw_nsec; }; static struct pvclock_gtod_data pvclock_gtod_data; @@ -1552,10 +1551,6 @@ struct pvclock_gtod_data { static void update_pvclock_gtod(struct timekeeper *tk) { struct pvclock_gtod_data *vdata = &pvclock_gtod_data; - u64 boot_ns, boot_ns_raw; - - boot_ns = ktime_to_ns(ktime_add(tk->tkr_mono.base, tk->offs_boot)); - boot_ns_raw = ktime_to_ns(ktime_add(tk->tkr_raw.base, tk->offs_boot)); write_seqcount_begin(&vdata->seq); @@ -1565,20 +1560,20 @@ static void update_pvclock_gtod(struct timekeeper *tk) vdata->clock.mask = tk->tkr_mono.mask; vdata->clock.mult = tk->tkr_mono.mult; vdata->clock.shift = tk->tkr_mono.shift; + vdata->clock.base_cycles = tk->tkr_mono.xtime_nsec; + vdata->clock.offset = tk->tkr_mono.base; vdata->raw_clock.vclock_mode = tk->tkr_raw.clock->archdata.vclock_mode; vdata->raw_clock.cycle_last = tk->tkr_raw.cycle_last; vdata->raw_clock.mask = tk->tkr_raw.mask; vdata->raw_clock.mult = tk->tkr_raw.mult; vdata->raw_clock.shift = tk->tkr_raw.shift; - - vdata->boot_ns = boot_ns; - vdata->nsec_base = tk->tkr_mono.xtime_nsec; + vdata->raw_clock.base_cycles = tk->tkr_raw.xtime_nsec; + vdata->raw_clock.offset = tk->tkr_raw.base; vdata->wall_time_sec = tk->xtime_sec; - vdata->boot_ns_raw = boot_ns_raw; - vdata->monotonic_raw_nsec = tk->tkr_raw.xtime_nsec; + vdata->offs_boot = tk->offs_boot; write_seqcount_end(&vdata->seq); } @@ -2048,10 +2043,10 @@ static int do_monotonic_raw(s64 *t, u64 *tsc_timestamp) do { seq = read_seqcount_begin(&gtod->seq); - ns = gtod->monotonic_raw_nsec; + ns = gtod->raw_clock.base_cycles; ns += vgettsc(&gtod->raw_clock, tsc_timestamp, &mode); - ns >>= gtod->clock.shift; - ns += gtod->boot_ns_raw; + ns >>= gtod->raw_clock.shift; + ns += ktime_to_ns(ktime_add(gtod->raw_clock.offset, gtod->offs_boot)); } while (unlikely(read_seqcount_retry(&gtod->seq, seq))); *t = ns; @@ -2068,7 +2063,7 @@ static int do_realtime(struct timespec64 *ts, u64 *tsc_timestamp) do { seq = read_seqcount_begin(&gtod->seq); ts->tv_sec = gtod->wall_time_sec; - ns = gtod->nsec_base; + ns = gtod->clock.base_cycles; ns += vgettsc(&gtod->clock, tsc_timestamp, &mode); ns >>= gtod->clock.shift; } while (unlikely(read_seqcount_retry(&gtod->seq, seq))); -- 1.8.3.1

5 years, 9 months

2
2
0 0

Linux 4.19.98

by Greg KH

I'm announcing the release of the 4.19.98 kernel. All users of the 4.19 kernel series must upgrade. The updated 4.19.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.19.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/boot/dts/am571x-idk.dts | 2 arch/arm/boot/dts/imx6dl-icore-mipi.dts | 2 arch/arm/boot/dts/imx6q-dhcom-pdk2.dts | 2 arch/arm/boot/dts/imx6q-dhcom-som.dtsi | 2 arch/arm/boot/dts/imx6qdl-icore-1.5.dtsi | 34 ++ arch/arm/boot/dts/imx7s-colibri.dtsi | 4 arch/arm/boot/dts/meson8.dtsi | 2 arch/arm64/boot/dts/allwinner/sun50i-a64-olinuxino.dts | 2 arch/arm64/boot/dts/altera/socfpga_stratix10.dtsi | 8 arch/arm64/boot/dts/amlogic/meson-gxl-s905x-khadas-vim.dts | 4 arch/arm64/boot/dts/arm/juno-base.dtsi | 1 arch/arm64/boot/dts/marvell/armada-cp110.dtsi | 8 arch/x86/boot/compressed/head_64.S | 5 arch/x86/kernel/cpu/amd.c | 4 arch/x86/kernel/cpu/intel_rdt.c | 2 arch/x86/kernel/cpu/intel_rdt_rdtgroup.c | 6 block/blk-settings.c | 2 drivers/block/xen-blkfront.c | 4 drivers/clk/clk.c | 10 drivers/clk/qcom/gcc-sdm845.c | 7 drivers/clk/sprd/common.c | 2 drivers/gpu/drm/i915/selftests/i915_random.h | 1 drivers/gpu/drm/nouveau/nvkm/subdev/bar/gf100.c | 2 drivers/gpu/drm/nouveau/nvkm/subdev/bar/nv50.c | 2 drivers/gpu/drm/nouveau/nvkm/subdev/mmu/vmm.c | 2 drivers/hwmon/pmbus/ibm-cffps.c | 10 drivers/iio/industrialio-buffer.c | 6 drivers/irqchip/Kconfig | 4 drivers/md/dm-snap-persistent.c | 2 drivers/md/raid0.c | 2 drivers/message/fusion/mptctl.c | 213 +++---------- drivers/mtd/devices/mchp23k256.c | 20 - drivers/net/ethernet/hisilicon/hns/hns_enet.c | 4 drivers/net/ethernet/mellanox/mlxsw/spectrum.c | 13 drivers/net/ethernet/mellanox/mlxsw/spectrum_qdisc.c | 30 + drivers/net/ethernet/renesas/sh_eth.c | 38 +- drivers/net/ethernet/stmicro/stmmac/common.h | 5 drivers/net/ethernet/stmicro/stmmac/stmmac_main.c | 4 drivers/net/hyperv/rndis_filter.c | 2 drivers/net/macvlan.c | 5 drivers/net/usb/lan78xx.c | 1 drivers/net/usb/r8152.c | 3 drivers/net/wan/fsl_ucc_hdlc.c | 2 drivers/net/wireless/st/cw1200/fwio.c | 6 drivers/nfc/pn533/usb.c | 2 drivers/ptp/ptp_clock.c | 4 drivers/scsi/bnx2i/bnx2i_iscsi.c | 2 drivers/scsi/esas2r/esas2r_flash.c | 1 drivers/scsi/fnic/vnic_dev.c | 20 - drivers/scsi/qla2xxx/qla_init.c | 6 drivers/scsi/qla2xxx/qla_isr.c | 6 drivers/scsi/qla4xxx/ql4_mbx.c | 3 drivers/scsi/scsi_trace.c | 113 ++---- drivers/target/target_core_fabric_lib.c | 2 drivers/usb/core/hub.c | 1 drivers/usb/serial/ch341.c | 6 drivers/usb/serial/io_edgeport.c | 16 drivers/usb/serial/keyspan.c | 4 drivers/usb/serial/opticon.c | 2 drivers/usb/serial/option.c | 6 drivers/usb/serial/quatech2.c | 6 drivers/usb/serial/usb-serial-simple.c | 2 drivers/usb/serial/usb-serial.c | 3 firmware/Makefile | 2 fs/btrfs/inode.c | 73 ++-- fs/btrfs/qgroup.c | 6 fs/btrfs/root-tree.c | 10 fs/reiserfs/xattr.c | 8 include/dt-bindings/reset/amlogic,meson8b-reset.h | 6 include/linux/blkdev.h | 8 include/linux/lsm_hooks.h | 8 include/linux/regulator/ab8500.h | 2 include/linux/security.h | 28 - include/linux/tnum.h | 2 kernel/bpf/tnum.c | 9 kernel/bpf/verifier.c | 13 kernel/capability.c | 22 - kernel/ptrace.c | 15 kernel/seccomp.c | 4 kernel/time/tick-sched.c | 14 mm/huge_memory.c | 38 +- mm/page-writeback.c | 4 mm/shmem.c | 7 mm/slab_common.c | 3 net/batman-adv/distributed-arp-table.c | 4 net/dsa/tag_qca.c | 3 net/ipv4/netfilter/arp_tables.c | 19 - net/ipv4/tcp.c | 6 net/ipv4/tcp_input.c | 7 net/netfilter/ipset/ip_set_bitmap_gen.h | 2 net/netfilter/nf_tables_api.c | 38 +- net/netfilter/nft_tunnel.c | 2 net/wireless/nl80211.c | 1 net/wireless/rdev-ops.h | 4 net/wireless/sme.c | 6 net/wireless/util.c | 2 security/apparmor/capability.c | 14 security/apparmor/include/capability.h | 2 security/apparmor/ipc.c | 3 security/apparmor/lsm.c | 4 security/apparmor/resource.c | 2 security/commoncap.c | 17 - security/security.c | 14 security/selinux/hooks.c | 18 - security/smack/smack_access.c | 2 sound/core/seq/seq_timer.c | 14 sound/firewire/dice/dice-extension.c | 5 sound/soc/codecs/msm8916-wcd-analog.c | 20 - sound/soc/codecs/msm8916-wcd-digital.c | 6 sound/usb/pcm.c | 2 tools/perf/builtin-report.c | 5 tools/perf/util/hist.h | 4 tools/perf/util/probe-finder.c | 32 - 114 files changed, 643 insertions(+), 594 deletions(-) Adrian Huang (1): mm: memcg/slab: call flush_memcg_workqueue() only if memcg workqueue is valid Alexander Lobakin (1): net: dsa: tag_qca: fix doubled Tx statistics Alexandre Belloni (1): ARM: dts: imx6q-dhcom: fix rtc compatible Angelo Dureghello (1): mtd: devices: fix mchp23k256 read and write Ard Biesheuvel (1): x86/efistub: Disable paging at mixed mode entry Arnd Bergmann (1): scsi: fnic: fix invalid stack access Baolin Wang (1): clk: sprd: Use IS_ERR() to validate the return value of syscon_regmap_lookup_by_phandle() Bart Van Assche (2): scsi: target: core: Fix a pr_debug() argument scsi: core: scsi_trace: Use get_unaligned_be*() Bharath Vedartham (1): mm/huge_memory.c: make __thp_get_unmapped_area static Christian Brauner (1): ptrace: reintroduce usage of subjective credentials in ptrace_has_cap() Christian Hewitt (1): arm64: dts: meson-gxl-s905x-khadas-vim: fix gpio-keys-polled node Colin Ian King (1): net/wan/fsl_ucc_hdlc: fix out of bounds write on array utdm_info Cong Wang (1): netfilter: fix a use-after-free in mtype_destroy() Dan Carpenter (3): scsi: mptfusion: Fix double fetch bug in ioctl cw1200: Fix a signedness bug in cw1200_load_firmware() scsi: esas2r: unlock on error in esas2r_nvram_read_direct() Daniel Borkmann (1): bpf: Fix incorrect verifier simulation of ARSH under ALU32 Dinh Nguyen (1): arm64: dts: agilex/stratix10: fix pmu interrupt numbers Eddie James (1): hwmon: (pmbus/ibm-cffps) Switch LEDs to blocking brightness call Eric Dumazet (4): macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() net: usb: lan78xx: limit size of local TSO packets tcp: refine rule to allow EPOLLOUT generation under mem pressure tick/sched: Annotate lockless access to last_jiffies_update Felix Fietkau (2): cfg80211: fix memory leak in cfg80211_cqm_rssi_update cfg80211: fix page refcount issue in A-MSDU decap Florian Westphal (4): netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct netfilter: nft_tunnel: fix null-attribute check netfilter: nf_tables: remove WARN and add NLA_STRING upper limits netfilter: nf_tables: fix flowtable list del corruption Georgi Djakov (1): clk: qcom: gcc-sdm845: Add missing flag to votable GDSCs Greg Kroah-Hartman (1): Linux 4.19.98 Guenter Roeck (1): clk: Don't try to enable critical clocks if prepare failed Huacai Chen (1): scsi: qla2xxx: Fix qla2x00_request_irqs() for MSI Jacopo Mondi (1): ARM: dts: imx6qdl: Add Engicam i.Core 1.5 MX6 Jagan Teki (1): ARM: dts: imx6q-icore-mipi: Use 1.5 version of i.Core MX6DL Jari Ruusu (1): Fix built-in early-load Intel microcode alignment Jeff Mahoney (1): reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr Jerónimo Borque (1): USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx Jin Yao (1): perf report: Fix incorrectly added dimensions as switch perf data file Johan Hovold (10): USB: serial: opticon: fix control-message timeouts USB: serial: suppress driver bind attributes USB: serial: ch341: handle unbound port at reset_resume USB: serial: io_edgeport: handle unbound ports on URB completion USB: serial: io_edgeport: add missing active-port sanity check USB: serial: keyspan: handle unbound ports USB: serial: quatech2: handle unbound ports ALSA: usb-audio: fix sync-ep altsetting sanity check NFC: pn533: fix bulk-message timeout r8152: add missing endpoint sanity check Johannes Berg (1): cfg80211: check for set_wiphy_params Johannes Thumshirn (1): btrfs: fix memory leak in qgroup accounting Jon Derrick (3): drm/nouveau/bar/nv50: check bar1 vmm return value drm/nouveau/bar/gf100: ensure BAR is mapped drm/nouveau/mmu: qualify vmm during dtor Jonathan Neuschäfer (1): irqchip: Place CONFIG_SIFIVE_PLIC into the menu Jose Abreu (2): net: stmmac: 16KB buffer must be 16 byte aligned net: stmmac: Enable 16KB buffer size Josef Bacik (3): btrfs: rework arguments of btrfs_unlink_subvol btrfs: fix invalid removal of root ref btrfs: do not delete mismatched root refs Keiya Nobuta (1): usb: core: hub: Improved device recognition on remote wakeup Kirill A. Shutemov (2): mm/shmem.c: thp, shmem: fix conflict of above-47bit hint address and PMD alignment mm/huge_memory.c: thp: fix conflict of above-47bit hint address and PMD alignment Kishon Vijay Abraham I (1): ARM: dts: am571x-idk: Fix gpios property to have the correct gpio number Kristian Evensen (1): USB: serial: option: Add support for Quectel RM500Q Lars Möllendorf (1): iio: buffer: align the size of scan bytes to size of the largest element Marcel Ziswiler (1): ARM: dts: imx7: Fix Toradex Colibri iMX7S 256MB NAND flash support Marek Vasut (1): ARM: dts: imx6q-dhcom: Fix SGTL5000 VDDIO regulator connection Markus Theil (1): cfg80211: fix deadlocks in autodisconnect work Martin Blumenstingl (2): ARM: dts: meson8: fix the size of the PMU registers dt-bindings: reset: meson8b: fix duplicate reset IDs Martin Wilck (1): scsi: qla2xxx: fix rports not being mark as lost in sync fabric scan Masami Hiramatsu (1): perf probe: Fix wrong address verification Micah Morton (1): LSM: generalize flag passing to security_capable Mikulas Patocka (1): block: fix an integer overflow in logical block size Miquel Raynal (1): arm64: dts: marvell: Fix CP110 NAND controller node multi-line comment alignment Mohammed Gamal (1): hv_netvsc: Fix memory leak when removing rndis device Nathan Chancellor (1): xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk Pablo Neira Ayuso (1): netfilter: nf_tables: store transaction list locally while requesting module Pan Bian (2): scsi: qla4xxx: fix double free bug scsi: bnx2i: fix potential use after free Pengcheng Yang (1): tcp: fix marked lost packets not being retransmitted Petr Machata (2): mlxsw: spectrum: Wipe xstats.backlog of down ports mlxsw: spectrum_qdisc: Include MC TCs in Qdisc counters Qian Cai (1): x86/resctrl: Fix an imbalance in domain_remove_cpu() Reinhard Speyerer (1): USB: serial: option: add support for Quectel RM500Q in QDL mode Sergei Shtylyov (1): sh_eth: check sh_eth_cpu_data::dual_port when dumping registers Shakeel Butt (1): x86/resctrl: Fix potential memory leak Stefan Mavrodiev (1): arm64: dts: allwinner: a64: olinuxino: Fix SDIO supply regulator Stephan Gerhold (4): ASoC: msm8916-wcd-digital: Reset RX interpolation path after use ASoC: msm8916-wcd-analog: Fix selected events for MIC BIAS External1 ASoC: msm8916-wcd-analog: Fix MIC BIAS Internal1 regulator: ab8500: Remove SYSCLKREQ from enum ab8505_regulator_id Sudeep Holla (1): Revert "arm64: dts: juno: add dma-ranges property" Sven Eckelmann (1): batman-adv: Fix DAT candidate selection on little endian systems Takashi Iwai (1): ALSA: seq: Fix racy access for queue timer in proc read Takashi Sakamoto (1): ALSA: dice: fix fallback from protocol extension into limited functionality Tom Lendacky (1): x86/CPU/AMD: Ensure clearing of SME/SEV features is maintained Vladis Dronov (1): ptp: free ptp device pin descriptors properly Wen Yang (1): mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() Yonglong Liu (1): net: hns: fix soft lockup when there is not enough memory YueHaibing (1): drm/i915: Add missing include file <linux/math64.h> Yuya Fujita (1): perf hists: Fix variable name's inconsistency in hists__for_each() macro

5 years, 9 months

2
6
0 0

Linux 5.4.14

by Greg KH

I'm announcing the release of the 5.4.14 kernel. All users of the 5.4 kernel series must upgrade. The updated 5.4.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.4.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/devicetree/bindings/net/snps,dwmac.yaml | 1 Makefile | 2 arch/arm/boot/dts/am571x-idk.dts | 2 arch/arm/boot/dts/dra7-l4.dtsi | 2 arch/arm/boot/dts/imx6dl-icore-mipi.dts | 2 arch/arm/boot/dts/imx6q-dhcom-pdk2.dts | 2 arch/arm/boot/dts/imx6q-dhcom-som.dtsi | 2 arch/arm/boot/dts/imx6qdl-sabresd.dtsi | 4 arch/arm/boot/dts/imx6sl-evk.dts | 4 arch/arm/boot/dts/imx6sll-evk.dts | 4 arch/arm/boot/dts/imx6sx-sdb-reva.dts | 4 arch/arm/boot/dts/imx6sx-sdb.dts | 4 arch/arm/boot/dts/imx6ul-kontron-n6310-s.dts | 4 arch/arm/boot/dts/imx7s-colibri.dtsi | 4 arch/arm/boot/dts/imx7ulp.dtsi | 4 arch/arm/boot/dts/meson8.dtsi | 2 arch/arm/boot/dts/omap4.dtsi | 4 arch/arm/mach-davinci/Kconfig | 1 arch/arm/mach-omap2/pdata-quirks.c | 6 arch/arm64/boot/dts/allwinner/sun50i-a64-olinuxino-emmc.dts | 2 arch/arm64/boot/dts/allwinner/sun50i-a64-olinuxino.dts | 2 arch/arm64/boot/dts/allwinner/sun50i-a64.dtsi | 9 arch/arm64/boot/dts/altera/socfpga_stratix10.dtsi | 8 arch/arm64/boot/dts/amlogic/meson-axg.dtsi | 12 arch/arm64/boot/dts/amlogic/meson-g12-common.dtsi | 12 arch/arm64/boot/dts/amlogic/meson-gxl-s905x-khadas-vim.dts | 4 arch/arm64/boot/dts/arm/juno-base.dtsi | 1 arch/arm64/boot/dts/arm/juno-clocks.dtsi | 4 arch/arm64/boot/dts/freescale/fsl-ls1028a.dtsi | 2 arch/arm64/boot/dts/freescale/imx8mm-evk.dts | 2 arch/arm64/boot/dts/freescale/imx8mm.dtsi | 10 arch/arm64/boot/dts/freescale/imx8mq-librem5-devkit.dts | 2 arch/arm64/boot/dts/intel/socfpga_agilex.dtsi | 8 arch/arm64/boot/dts/marvell/armada-ap806-dual.dtsi | 2 arch/arm64/boot/dts/marvell/armada-cp110.dtsi | 8 arch/arm64/boot/dts/qcom/msm8998-mtp.dtsi | 68 +++ arch/arm64/boot/dts/qcom/msm8998.dtsi | 51 +- arch/arm64/boot/dts/qcom/sdm845-cheza.dtsi | 2 arch/arm64/boot/dts/qcom/sdm845.dtsi | 2 arch/arm64/boot/dts/renesas/hihope-common.dtsi | 20 - arch/arm64/boot/dts/renesas/r8a774a1.dtsi | 11 arch/arm64/boot/dts/renesas/r8a77970.dtsi | 2 arch/s390/kernel/setup.c | 2 arch/um/drivers/Kconfig | 2 arch/um/drivers/virtio_uml.c | 4 arch/um/os-Linux/main.c | 2 arch/x86/boot/compressed/head_64.S | 5 arch/x86/events/intel/uncore_snbep.c | 1 arch/x86/kernel/cpu/amd.c | 4 arch/x86/kernel/cpu/resctrl/core.c | 2 arch/x86/kernel/cpu/resctrl/rdtgroup.c | 6 block/blk-settings.c | 2 block/bsg-lib.c | 2 drivers/base/firmware_loader/builtin/Makefile | 2 drivers/block/xen-blkfront.c | 4 drivers/bus/ti-sysc.c | 10 drivers/clk/clk.c | 10 drivers/clk/imx/clk-imx7ulp.c | 6 drivers/clk/qcom/gcc-sdm845.c | 7 drivers/clk/samsung/clk-exynos5420.c | 8 drivers/clk/sprd/common.c | 2 drivers/clk/sunxi-ng/ccu-sun8i-r40.c | 6 drivers/cpuidle/governors/teo.c | 2 drivers/firmware/efi/earlycon.c | 16 drivers/gpio/Kconfig | 1 drivers/gpio/gpio-thunderx.c | 163 ++++++--- drivers/gpu/drm/amd/amdgpu/gfx_v9_0.c | 4 drivers/gpu/drm/amd/display/dc/core/dc_link.c | 2 drivers/gpu/drm/i915/selftests/i915_random.h | 1 drivers/hwmon/pmbus/ibm-cffps.c | 37 +- drivers/i2c/busses/i2c-iop3xx.c | 12 drivers/i2c/busses/i2c-tegra.c | 38 +- drivers/iio/adc/ad7124.c | 12 drivers/iio/chemical/Kconfig | 1 drivers/iio/imu/st_lsm6dsx/st_lsm6dsx_core.c | 3 drivers/iio/industrialio-buffer.c | 6 drivers/iio/light/vcnl4000.c | 3 drivers/irqchip/Kconfig | 4 drivers/md/dm-snap-persistent.c | 2 drivers/md/raid0.c | 2 drivers/message/fusion/mptctl.c | 213 ++---------- drivers/mtd/chips/cfi_cmdset_0002.c | 60 ++- drivers/mtd/devices/mchp23k256.c | 20 - drivers/mtd/nand/raw/gpmi-nand/gpmi-nand.c | 11 drivers/mtd/spi-nor/spi-nor.c | 4 drivers/net/dsa/bcm_sf2.c | 2 drivers/net/dsa/sja1105/sja1105_main.c | 2 drivers/net/ethernet/broadcom/bcmsysport.c | 7 drivers/net/ethernet/broadcom/bnxt/bnxt.c | 29 + drivers/net/ethernet/broadcom/bnxt/bnxt.h | 4 drivers/net/ethernet/broadcom/bnxt/bnxt_vfr.c | 3 drivers/net/ethernet/hisilicon/hns/hns_enet.c | 4 drivers/net/ethernet/hisilicon/hns3/hns3_enet.c | 6 drivers/net/ethernet/intel/i40e/i40e_main.c | 1 drivers/net/ethernet/mellanox/mlxsw/spectrum.c | 31 + drivers/net/ethernet/mellanox/mlxsw/spectrum_qdisc.c | 30 + drivers/net/ethernet/renesas/sh_eth.c | 38 +- drivers/net/ethernet/socionext/sni_ave.c | 20 - drivers/net/ethernet/stmicro/stmmac/common.h | 5 drivers/net/ethernet/stmicro/stmmac/stmmac_main.c | 4 drivers/net/ethernet/stmicro/stmmac/stmmac_selftests.c | 46 +- drivers/net/ethernet/stmicro/stmmac/stmmac_tc.c | 4 drivers/net/hyperv/rndis_filter.c | 2 drivers/net/macvlan.c | 5 drivers/net/phy/dp83867.c | 8 drivers/net/usb/lan78xx.c | 1 drivers/net/usb/r8152.c | 3 drivers/net/wan/fsl_ucc_hdlc.c | 2 drivers/net/wireless/realtek/rtw88/phy.c | 17 drivers/net/wireless/realtek/rtw88/phy.h | 9 drivers/net/wireless/realtek/rtw88/rtw8822c.c | 4 drivers/net/wireless/st/cw1200/fwio.c | 6 drivers/nfc/pn533/usb.c | 2 drivers/ptp/ptp_clock.c | 4 drivers/reset/core.c | 6 drivers/s390/crypto/zcrypt_ccamisc.c | 4 drivers/scsi/bnx2i/bnx2i_iscsi.c | 2 drivers/scsi/esas2r/esas2r_flash.c | 1 drivers/scsi/fnic/vnic_dev.c | 20 - drivers/scsi/hisi_sas/hisi_sas_main.c | 3 drivers/scsi/hisi_sas/hisi_sas_v3_hw.c | 11 drivers/scsi/lpfc/lpfc_scsi.c | 2 drivers/scsi/lpfc/lpfc_sli.c | 56 +-- drivers/scsi/qla2xxx/qla_init.c | 6 drivers/scsi/qla2xxx/qla_isr.c | 6 drivers/scsi/qla4xxx/ql4_mbx.c | 3 drivers/scsi/scsi_trace.c | 113 +----- drivers/scsi/scsi_transport_sas.c | 9 drivers/scsi/storvsc_drv.c | 4 drivers/soc/amlogic/meson-ee-pwrc.c | 24 - drivers/staging/comedi/drivers/ni_routes.c | 12 drivers/target/target_core_fabric_lib.c | 2 drivers/usb/core/hub.c | 1 drivers/usb/serial/ch341.c | 6 drivers/usb/serial/io_edgeport.c | 16 drivers/usb/serial/keyspan.c | 4 drivers/usb/serial/opticon.c | 2 drivers/usb/serial/option.c | 6 drivers/usb/serial/quatech2.c | 6 drivers/usb/serial/usb-serial-simple.c | 2 drivers/usb/serial/usb-serial.c | 3 fs/btrfs/inode.c | 73 ++-- fs/btrfs/ioctl.c | 14 fs/btrfs/qgroup.c | 6 fs/btrfs/relocation.c | 51 ++ fs/btrfs/root-tree.c | 10 fs/btrfs/volumes.c | 6 fs/fuse/file.c | 4 fs/io_uring.c | 6 fs/reiserfs/xattr.c | 8 include/dt-bindings/reset/amlogic,meson8b-reset.h | 6 include/linux/blkdev.h | 8 include/linux/mm.h | 18 - include/linux/mmzone.h | 5 include/linux/netdevice.h | 2 include/linux/regulator/ab8500.h | 2 include/linux/skmsg.h | 13 include/linux/tnum.h | 2 include/net/tcp.h | 6 include/trace/events/huge_memory.h | 3 init/main.c | 1 kernel/bpf/tnum.c | 9 kernel/bpf/verifier.c | 13 kernel/cpu.c | 143 ++++---- kernel/events/core.c | 4 kernel/locking/lockdep.c | 7 kernel/locking/rwsem.c | 4 kernel/ptrace.c | 15 kernel/time/tick-sched.c | 14 mm/huge_memory.c | 38 +- mm/memcontrol.c | 37 -- mm/page-writeback.c | 4 mm/page_alloc.c | 37 -- mm/shmem.c | 7 mm/slab.c | 4 mm/slab_common.c | 3 mm/slub.c | 2 mm/sparse.c | 9 mm/vmalloc.c | 4 net/batman-adv/distributed-arp-table.c | 4 net/core/dev.c | 12 net/core/devlink.c | 2 net/core/filter.c | 20 - net/core/skmsg.c | 2 net/core/sock_map.c | 7 net/dsa/tag_gswip.c | 2 net/dsa/tag_qca.c | 3 net/ipv4/netfilter/arp_tables.c | 19 - net/ipv4/tcp.c | 6 net/ipv4/tcp_bpf.c | 17 net/ipv4/tcp_input.c | 7 net/ipv4/tcp_ulp.c | 6 net/netfilter/ipset/ip_set_bitmap_gen.h | 2 net/netfilter/nf_nat_proto.c | 13 net/netfilter/nf_tables_api.c | 38 +- net/netfilter/nft_tunnel.c | 5 net/sched/act_ctinfo.c | 11 net/sched/act_ife.c | 7 net/tipc/bcast.c | 24 - net/tipc/socket.c | 32 + net/tls/tls_main.c | 10 net/tls/tls_sw.c | 31 + net/wireless/nl80211.c | 3 net/wireless/rdev-ops.h | 4 net/wireless/sme.c | 6 net/wireless/util.c | 2 sound/core/seq/seq_timer.c | 14 sound/firewire/dice/dice-extension.c | 5 sound/firewire/tascam/amdtp-tascam.c | 5 sound/soc/codecs/msm8916-wcd-analog.c | 20 - sound/soc/codecs/msm8916-wcd-digital.c | 6 sound/soc/intel/boards/bytcht_es8316.c | 3 sound/soc/stm/stm32_adfsdm.c | 12 sound/soc/stm/stm32_sai_sub.c | 194 +++++++--- sound/usb/pcm.c | 2 tools/bpf/bpftool/btf_dumper.c | 2 tools/perf/builtin-report.c | 5 tools/perf/builtin-script.c | 10 tools/perf/util/hist.h | 4 tools/perf/util/probe-finder.c | 32 - tools/perf/util/time-utils.c | 27 + tools/perf/util/time-utils.h | 5 tools/testing/selftests/drivers/net/mlxsw/qos_mc_aware.sh | 8 223 files changed, 1687 insertions(+), 1195 deletions(-) Adam Ford (1): arm64: dts: imx8mm: Change SDMA1 ahb clock for imx8mm Adrian Huang (1): mm: memcg/slab: call flush_memcg_workqueue() only if memcg workqueue is valid Alexander Lobakin (2): net: dsa: tag_qca: fix doubled Tx statistics net: dsa: tag_gswip: fix typo in tagger name Alexandre Belloni (1): ARM: dts: imx6q-dhcom: fix rtc compatible Alexandru Tachici (1): iio: adc: ad7124: Fix DT channel configuration Andi Kleen (2): perf script: Allow --time with --reltime perf script: Fix --reltime with --time Andre Przywara (2): arm64: dts: allwinner: a64: Re-add PMU node arm64: dts: juno: Fix UART frequency Angelo Dureghello (1): mtd: devices: fix mchp23k256 read and write Angus Ainslie (Purism) (1): arm64: dts: imx8mq-librem5-devkit: use correct interrupt for the magnetometer Anson Huang (6): ARM: dts: imx6qdl-sabresd: Remove incorrect power supply assignment ARM: dts: imx6sx-sdb: Remove incorrect power supply assignment ARM: dts: imx6sl-evk: Remove incorrect power supply assignment ARM: dts: imx6sll-evk: Remove incorrect power supply assignment clk: imx7ulp: Correct system clock source option #7 clk: imx7ulp: Correct DDR clock mux options Ard Biesheuvel (1): x86/efistub: Disable paging at mixed mode entry Arnd Bergmann (3): ARM: davinci: select CONFIG_RESET_CONTROLLER scsi: fnic: fix invalid stack access cpu/SMT: Fix x86 link error without CONFIG_SYSFS Arvind Sankar (1): efi/earlycon: Fix write-combine mapping on x86 Baolin Wang (1): clk: sprd: Use IS_ERR() to validate the return value of syscon_regmap_lookup_by_phandle() Bart Van Assche (4): block: Fix the type of 'sts' in bsg_queue_rq() scsi: target: core: Fix a pr_debug() argument scsi: core: scsi_trace: Use get_unaligned_be*() scsi: lpfc: Fix a kernel warning triggered by lpfc_get_sgl_per_hdwq() Biju Das (1): arm64: dts: renesas: r8a774a1: Remove audio port node Chen-Yu Tsai (1): clk: sunxi-ng: r40: Allow setting parent rate for external clock outputs Christian Brauner (1): ptrace: reintroduce usage of subjective credentials in ptrace_has_cap() Christian Hewitt (1): arm64: dts: meson-gxl-s905x-khadas-vim: fix gpio-keys-polled node Colin Ian King (1): net/wan/fsl_ucc_hdlc: fix out of bounds write on array utdm_info Cong Wang (2): netfilter: fix a use-after-free in mtype_destroy() net: avoid updating qdisc_xmit_lock_key in netdev_update_lockdep_key() Dan Carpenter (3): scsi: mptfusion: Fix double fetch bug in ioctl cw1200: Fix a signedness bug in cw1200_load_firmware() scsi: esas2r: unlock on error in esas2r_nvram_read_direct() Daniel Borkmann (1): bpf: Fix incorrect verifier simulation of ARSH under ALU32 David Hildenbrand (1): mm/memory_hotplug: don't free usage map when removing a re-added early section Dinh Nguyen (1): arm64: dts: agilex/stratix10: fix pmu interrupt numbers Dmitry Osipenko (2): i2c: tegra: Fix suspending in active runtime PM state i2c: tegra: Properly disable runtime PM on driver's probe error Eddie James (2): hwmon: (pmbus/ibm-cffps) Switch LEDs to blocking brightness call hwmon: (pmbus/ibm-cffps) Fix LED blink behavior Eric Dumazet (6): macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() net/sched: act_ife: initalize ife->metalist earlier net: usb: lan78xx: limit size of local TSO packets net: sched: act_ctinfo: fix memory leak tcp: refine rule to allow EPOLLOUT generation under mem pressure tick/sched: Annotate lockless access to last_jiffies_update Esben Haabendal (2): mtd: rawnand: gpmi: Fix suspend/resume problem mtd: rawnand: gpmi: Restore nfc timing setup after suspend/resume Eyal Birger (1): netfilter: nat: fix ICMP header corruption on ICMP errors Felix Fietkau (3): cfg80211: fix memory leak in nl80211_probe_mesh_link cfg80211: fix memory leak in cfg80211_cqm_rssi_update cfg80211: fix page refcount issue in A-MSDU decap Filipe Manana (1): Btrfs: always copy scrub arguments back to user space Florian Fainelli (2): net: systemport: Fixed queue mapping in internal ring map net: dsa: bcm_sf2: Configure IMP port for 2Gb/sec Florian Westphal (5): netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct netfilter: nft_tunnel: fix null-attribute check netfilter: nft_tunnel: ERSPAN_VERSION must not be null netfilter: nf_tables: remove WARN and add NLA_STRING upper limits netfilter: nf_tables: fix flowtable list del corruption Frieder Schrempf (1): ARM: dts: imx6ul-kontron-n6310-s: Disable the snvs-poweroff driver Geert Uytterhoeven (1): reset: Fix {of,devm}_reset_control_array_get kerneldoc return types Georgi Djakov (1): clk: qcom: gcc-sdm845: Add missing flag to votable GDSCs Greg Kroah-Hartman (1): Linux 5.4.14 Grygorii Strashko (1): ARM: dts: dra7: fix cpsw mdio fck clock Guenter Roeck (1): clk: Don't try to enable critical clocks if prepare failed Guido Günther (1): iio: light: vcnl4000: Fix scale for vcnl4040 Hans de Goede (1): ASoC: Intel: bytcht_es8316: Fix Irbis NB41 netbook quirk Harald Freudenberger (1): s390/zcrypt: Fix CCA cipher key gen with clear key value function Huacai Chen (1): scsi: qla2xxx: Fix qla2x00_request_irqs() for MSI Ian Abbott (2): staging: comedi: ni_routes: fix null dereference in ni_find_route_source() staging: comedi: ni_routes: allow partial routing information Ido Schimmel (2): mlxsw: spectrum: Do not modify cloned SKBs during xmit devlink: Wait longer before warning about unset port type Ikjoon Jang (1): cpuidle: teo: Fix intervals[] array indexing bug Jagan Teki (1): ARM: dts: imx6q-icore-mipi: Use 1.5 version of i.Core MX6DL James Smart (4): scsi: lpfc: fix: Coverity: lpfc_get_scsi_buf_s3(): Null pointer dereferences scsi: lpfc: Fix list corruption detected in lpfc_put_sgl_per_hdwq scsi: lpfc: Fix hdwq sgl locks and irq handling scsi: lpfc: use hdwq assigned cpu for allocation Jari Ruusu (1): Fix built-in early-load Intel microcode alignment Jeff Mahoney (1): reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr Jens Axboe (1): io_uring: only allow submit from owning task Jerome Brunet (2): arm64: dts: meson: axg: fix audio fifo reg size arm64: dts: meson: g12: fix audio fifo reg size Jerónimo Borque (1): USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx Jin Yao (1): perf report: Fix incorrectly added dimensions as switch perf data file Johan Hovold (10): ALSA: usb-audio: fix sync-ep altsetting sanity check USB: serial: opticon: fix control-message timeouts USB: serial: suppress driver bind attributes USB: serial: ch341: handle unbound port at reset_resume USB: serial: io_edgeport: handle unbound ports on URB completion USB: serial: io_edgeport: add missing active-port sanity check USB: serial: keyspan: handle unbound ports USB: serial: quatech2: handle unbound ports NFC: pn533: fix bulk-message timeout r8152: add missing endpoint sanity check Johannes Berg (3): cfg80211: check for set_wiphy_params um: Don't trace irqflags during shutdown um: virtio_uml: Disallow modular build Johannes Thumshirn (1): btrfs: fix memory leak in qgroup accounting John Fastabend (8): bpf: Sockmap/tls, during free we may call tcp_bpf_unhash() in loop bpf: Sockmap, ensure sock lock held during tear down bpf: Sockmap/tls, push write_space updates through ulp updates bpf: Sockmap, skmsg helper overestimates push, pull, and pop bounds bpf: Sockmap/tls, msg_push_data may leave end mark in place bpf: Sockmap/tls, tls_sw can create a plaintext buf > encrypt buf bpf: Sockmap/tls, skmsg can have wrapped skmsg that needs extra chaining bpf: Sockmap/tls, fix pop data with SK_DROP return code John Garry (1): scsi: scsi_transport_sas: Fix memory leak when removing devices Jonathan Neuschäfer (1): irqchip: Place CONFIG_SIFIVE_PLIC into the menu Jose Abreu (6): net: stmmac: 16KB buffer must be 16 byte aligned net: stmmac: Enable 16KB buffer size net: stmmac: selftests: Make it work in Synopsys AXS101 boards net: stmmac: selftests: Mark as fail when received VLAN ID != expected net: stmmac: selftests: Update status when disabling RSS net: stmmac: tc: Do not setup flower filtering if RSS is enabled Josef Bacik (4): btrfs: rework arguments of btrfs_unlink_subvol btrfs: fix invalid removal of root ref btrfs: do not delete mismatched root refs btrfs: check rw_devices, not num_devices for balance Kan Liang (1): perf/x86/intel/uncore: Fix missing marker for snr_uncore_imc_freerunning_events Keiya Nobuta (1): usb: core: hub: Improved device recognition on remote wakeup Kevin Hao (1): Revert "gpio: thunderx: Switch to GPIOLIB_IRQCHIP" Kieran Bingham (1): arm64: dts: renesas: r8a77970: Fix PWM3 Kirill A. Shutemov (2): mm/shmem.c: thp, shmem: fix conflict of above-47bit hint address and PMD alignment mm/huge_memory.c: thp: fix conflict of above-47bit hint address and PMD alignment Kishon Vijay Abraham I (1): ARM: dts: am571x-idk: Fix gpios property to have the correct gpio number Kristian Evensen (1): USB: serial: option: Add support for Quectel RM500Q Krzysztof Kozlowski (1): i2c: iop3xx: Fix memory leak in probe error path Kunihiko Hayashi (1): net: ethernet: ave: Avoid lockdep warning Lars Möllendorf (1): iio: buffer: align the size of scan bytes to size of the largest element Lingpeng Chen (1): bpf/sockmap: Read psock ingress_msg before sk_receive_queue Long Li (1): scsi: storvsc: Correctly set number of hardware queues for IDE disk Lorenz Bauer (1): net: bpf: Don't leak time wait and request sockets Marcel Ziswiler (1): ARM: dts: imx7: Fix Toradex Colibri iMX7S 256MB NAND flash support Marek Szyprowski (1): clk: samsung: exynos5420: Keep top G3D clocks enabled Marek Vasut (1): ARM: dts: imx6q-dhcom: Fix SGTL5000 VDDIO regulator connection Mario Kleiner (1): drm/amd/display: Reorder detect_edp_sink_caps before link settings read. Mark Rutland (1): perf: Correctly handle failed perf_get_aux_event() Markus Theil (1): cfg80211: fix deadlocks in autodisconnect work Martin Blumenstingl (4): ARM: dts: meson8: fix the size of the PMU registers soc: amlogic: meson-ee-pwrc: propagate PD provider registration errors soc: amlogic: meson-ee-pwrc: propagate errors from pm_genpd_init() dt-bindings: reset: meson8b: fix duplicate reset IDs Martin KaFai Lau (1): bpftool: Fix printing incorrect pointer in btf_dump_ptr Martin Wilck (1): scsi: qla2xxx: fix rports not being mark as lost in sync fabric scan Masami Hiramatsu (1): perf probe: Fix wrong address verification Michael Chan (3): bnxt_en: Fix NTUPLE firmware command failures. bnxt_en: Fix ipv6 RFS filter matching logic. bnxt_en: Do not treat DSN (Digital Serial Number) read failure as fatal. Michael Grzeschik (1): net: phy: dp83867: Set FORCE_LINK_GOOD to default after reset Miklos Szeredi (1): fuse: fix fuse_send_readpages() in the syncronous read case Mikulas Patocka (1): block: fix an integer overflow in logical block size Miquel Raynal (2): arm64: dts: marvell: Add AP806-dual missing CPU clocks arm64: dts: marvell: Fix CP110 NAND controller node multi-line comment alignment Mohammed Gamal (1): hv_netvsc: Fix memory leak when removing rndis device Nathan Chancellor (1): xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk Navid Emamdoost (1): i40e: prevent memory leak in i40e_setup_macvlans Olivier Moysan (2): ASoC: stm32: sai: fix possible circular locking ASoC: stm32: dfsdm: fix 16 bits record Pablo Neira Ayuso (1): netfilter: nf_tables: store transaction list locally while requesting module Pan Bian (2): scsi: qla4xxx: fix double free bug scsi: bnx2i: fix potential use after free Peng Fan (1): ARM: dts: imx7ulp: fix reg of cpu node Pengcheng Yang (1): tcp: fix marked lost packets not being retransmitted Petr Machata (3): mlxsw: spectrum: Wipe xstats.backlog of down ports mlxsw: spectrum_qdisc: Include MC TCs in Qdisc counters selftests: mlxsw: qos_mc_aware: Fix mausezahn invocation Philipp Rudo (1): s390/setup: Fix secure ipl message Qian Cai (1): x86/resctrl: Fix an imbalance in domain_remove_cpu() Qu Wenruo (1): btrfs: relocation: fix reloc_root lifespan and access Randy Dunlap (1): net: fix kernel-doc warning in <linux/netdevice.h> Reinhard Speyerer (1): USB: serial: option: add support for Quectel RM500Q in QDL mode Rob Clark (1): arm64: dts: qcom: sdm845-cheza: delete zap-shader Rob Herring (1): dt-bindings: Add missing 'properties' keyword enclosing 'snps,tso' Roman Gushchin (1): mm: memcg/slab: fix percpu slab vmstats flushing S.j. Wang (1): arm64: dts: imx8mm-evk: Assigned clocks for audio plls Sai Prakash Ranjan (1): arm64: dts: qcom: msm8998: Disable coresight by default Sergei Shtylyov (3): sh_eth: check sh_eth_cpu_data::dual_port when dumping registers mtd: cfi_cmdset_0002: only check errors when ready in cfi_check_err_status() mtd: cfi_cmdset_0002: fix delayed error detection on HyperFlash Shakeel Butt (1): x86/resctrl: Fix potential memory leak Stefan Mavrodiev (2): arm64: dts: allwinner: a64: olinuxino: Fix SDIO supply regulator arm64: dts: allwinner: a64: olinuxino: Fix eMMC supply regulator Stephan Gerhold (5): ASoC: msm8916-wcd-digital: Reset RX interpolation path after use ASoC: msm8916-wcd-analog: Fix selected events for MIC BIAS External1 ASoC: msm8916-wcd-analog: Fix MIC BIAS Internal1 iio: imu: st_lsm6dsx: Fix selection of ST_LSM6DS3_ID regulator: ab8500: Remove SYSCLKREQ from enum ab8505_regulator_id Sudeep Holla (1): Revert "arm64: dts: juno: add dma-ranges property" Sven Eckelmann (1): batman-adv: Fix DAT candidate selection on little endian systems Takashi Iwai (1): ALSA: seq: Fix racy access for queue timer in proc read Takashi Sakamoto (2): ALSA: dice: fix fallback from protocol extension into limited functionality ALSA: firewire-tascam: fix corruption due to spin lock without restoration in SoftIRQ context Tom Lendacky (1): x86/CPU/AMD: Ensure clearing of SME/SEV features is maintained Tomasz Duszynski (1): iio: chemical: pms7003: fix unmet triggered buffer dependency Tony Lindgren (3): bus: ti-sysc: Fix iterating over clocks ARM: OMAP2+: Fix ti_sysc_find_one_clockdomain to check for to_clk_hw_omap ARM: dts: Fix sgx sysconfig register for omap4 Tuong Lien (2): tipc: fix potential hanging after b/rcast changing tipc: fix retrans failure due to wrong destination Tzu-En Huang (1): rtw88: fix potential read outside array boundary Vignesh Raghavendra (1): mtd: spi-nor: Fix selection of 4-byte addressing opcodes on Spansion Vladimir Oltean (1): net: dsa: sja1105: Don't error out on disabled ports with no phy-mode Vladis Dronov (1): ptp: free ptp device pin descriptors properly Vlastimil Babka (1): mm, debug_pagealloc: don't rely on static keys too early Waiman Long (2): locking/rwsem: Fix kernel crash when spinning on RWSEM_OWNER_UNKNOWN locking/lockdep: Fix buffer overrun problem in stack_trace[] Wen Yang (1): mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() Xiang Chen (3): scsi: hisi_sas: Don't create debugfs dump folder twice scsi: hisi_sas: Set the BIST init value before enabling BIST scsi: hisi_sas: Return directly if init hardware failed Yang Shi (1): mm: khugepaged: add trace status description for SCAN_PAGE_HAS_PRIVATE Yinbo Zhu (1): arm64: dts: ls1028a: fix endian setting for dcfg Yonglong Liu (1): net: hns: fix soft lockup when there is not enough memory YueHaibing (1): drm/i915: Add missing include file <linux/math64.h> Yunsheng Lin (1): net: hns3: pad the short frame before sending to the hardware Yuya Fujita (1): perf hists: Fix variable name's inconsistency in hists__for_each() macro changzhu (1): drm/amdgpu: allow direct upload save restore list for raven2

5 years, 9 months

1
1
0 0

Linux 4.14.167

by Greg KH

I'm announcing the release of the 4.14.167 kernel. All users of the 4.14 kernel series must upgrade. The updated 4.14.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.14.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 arch/arm/boot/dts/am571x-idk.dts | 2 arch/arm64/boot/dts/altera/socfpga_stratix10.dtsi | 8 arch/arm64/boot/dts/amlogic/meson-gxl-s905x-khadas-vim.dts | 4 arch/arm64/boot/dts/arm/juno-base.dtsi | 1 arch/x86/boot/compressed/head_64.S | 5 arch/x86/kernel/cpu/intel_rdt.c | 2 block/blk-settings.c | 2 drivers/block/xen-blkfront.c | 4 drivers/clk/clk.c | 10 drivers/iio/industrialio-buffer.c | 6 drivers/md/dm-snap-persistent.c | 2 drivers/md/raid0.c | 2 drivers/message/fusion/mptctl.c | 213 +++---------- drivers/net/ethernet/hisilicon/hns/hns_enet.c | 4 drivers/net/ethernet/stmicro/stmmac/common.h | 5 drivers/net/ethernet/stmicro/stmmac/stmmac_main.c | 4 drivers/net/hyperv/rndis_filter.c | 2 drivers/net/macvlan.c | 5 drivers/net/usb/lan78xx.c | 1 drivers/net/usb/r8152.c | 3 drivers/net/wan/fsl_ucc_hdlc.c | 2 drivers/net/wireless/st/cw1200/fwio.c | 6 drivers/nfc/pn533/usb.c | 2 drivers/ptp/ptp_clock.c | 4 drivers/scsi/bnx2i/bnx2i_iscsi.c | 2 drivers/scsi/esas2r/esas2r_flash.c | 1 drivers/scsi/fnic/vnic_dev.c | 20 - drivers/scsi/qla2xxx/qla_init.c | 6 drivers/scsi/qla2xxx/qla_isr.c | 6 drivers/scsi/qla4xxx/ql4_mbx.c | 3 drivers/scsi/scsi_trace.c | 113 ++---- drivers/target/target_core_fabric_lib.c | 2 drivers/usb/core/hub.c | 1 drivers/usb/serial/ch341.c | 6 drivers/usb/serial/io_edgeport.c | 33 +- drivers/usb/serial/keyspan.c | 4 drivers/usb/serial/opticon.c | 2 drivers/usb/serial/option.c | 6 drivers/usb/serial/quatech2.c | 6 drivers/usb/serial/usb-serial-simple.c | 2 drivers/usb/serial/usb-serial.c | 3 firmware/Makefile | 2 fs/btrfs/qgroup.c | 6 fs/reiserfs/xattr.c | 8 include/dt-bindings/reset/amlogic,meson8b-reset.h | 6 include/linux/blkdev.h | 8 include/linux/regulator/ab8500.h | 2 kernel/ptrace.c | 15 kernel/time/tick-sched.c | 14 mm/huge_memory.c | 38 +- mm/page-writeback.c | 4 mm/shmem.c | 7 net/batman-adv/distributed-arp-table.c | 4 net/dsa/tag_qca.c | 3 net/ipv4/netfilter/arp_tables.c | 19 - net/ipv4/tcp_input.c | 7 net/netfilter/ipset/ip_set_bitmap_gen.h | 2 net/wireless/rdev-ops.h | 4 net/wireless/util.c | 2 sound/core/seq/seq_timer.c | 14 sound/soc/codecs/msm8916-wcd-analog.c | 4 tools/perf/builtin-report.c | 5 tools/perf/util/hist.h | 4 tools/perf/util/probe-finder.c | 32 - 65 files changed, 319 insertions(+), 408 deletions(-) Alexander Lobakin (1): net: dsa: tag_qca: fix doubled Tx statistics Ard Biesheuvel (1): x86/efistub: Disable paging at mixed mode entry Arnd Bergmann (1): scsi: fnic: fix invalid stack access Bart Van Assche (2): scsi: target: core: Fix a pr_debug() argument scsi: core: scsi_trace: Use get_unaligned_be*() Bharath Vedartham (1): mm/huge_memory.c: make __thp_get_unmapped_area static Christian Brauner (1): ptrace: reintroduce usage of subjective credentials in ptrace_has_cap() Christian Hewitt (1): arm64: dts: meson-gxl-s905x-khadas-vim: fix gpio-keys-polled node Colin Ian King (1): net/wan/fsl_ucc_hdlc: fix out of bounds write on array utdm_info Cong Wang (1): netfilter: fix a use-after-free in mtype_destroy() Dan Carpenter (3): scsi: mptfusion: Fix double fetch bug in ioctl cw1200: Fix a signedness bug in cw1200_load_firmware() scsi: esas2r: unlock on error in esas2r_nvram_read_direct() Dinh Nguyen (1): arm64: dts: agilex/stratix10: fix pmu interrupt numbers Eric Dumazet (3): macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() net: usb: lan78xx: limit size of local TSO packets tick/sched: Annotate lockless access to last_jiffies_update Felix Fietkau (1): cfg80211: fix page refcount issue in A-MSDU decap Florian Westphal (1): netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct Greg Kroah-Hartman (1): Linux 4.14.167 Guenter Roeck (1): clk: Don't try to enable critical clocks if prepare failed Huacai Chen (1): scsi: qla2xxx: Fix qla2x00_request_irqs() for MSI Jari Ruusu (1): Fix built-in early-load Intel microcode alignment Jeff Mahoney (1): reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr Jerónimo Borque (1): USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx Jin Yao (1): perf report: Fix incorrectly added dimensions as switch perf data file Johan Hovold (9): USB: serial: opticon: fix control-message timeouts USB: serial: suppress driver bind attributes USB: serial: ch341: handle unbound port at reset_resume USB: serial: io_edgeport: add missing active-port sanity check USB: serial: keyspan: handle unbound ports USB: serial: quatech2: handle unbound ports USB: serial: io_edgeport: handle unbound ports on URB completion NFC: pn533: fix bulk-message timeout r8152: add missing endpoint sanity check Johannes Berg (1): cfg80211: check for set_wiphy_params Johannes Thumshirn (1): btrfs: fix memory leak in qgroup accounting John Ogness (1): USB: serial: io_edgeport: use irqsave() in USB's complete callback Jose Abreu (2): net: stmmac: 16KB buffer must be 16 byte aligned net: stmmac: Enable 16KB buffer size Keiya Nobuta (1): usb: core: hub: Improved device recognition on remote wakeup Kirill A. Shutemov (2): mm/shmem.c: thp, shmem: fix conflict of above-47bit hint address and PMD alignment mm/huge_memory.c: thp: fix conflict of above-47bit hint address and PMD alignment Kishon Vijay Abraham I (1): ARM: dts: am571x-idk: Fix gpios property to have the correct gpio number Kristian Evensen (1): USB: serial: option: Add support for Quectel RM500Q Lars Möllendorf (1): iio: buffer: align the size of scan bytes to size of the largest element Martin Blumenstingl (1): dt-bindings: reset: meson8b: fix duplicate reset IDs Martin Wilck (1): scsi: qla2xxx: fix rports not being mark as lost in sync fabric scan Masami Hiramatsu (1): perf probe: Fix wrong address verification Mikulas Patocka (1): block: fix an integer overflow in logical block size Mohammed Gamal (1): hv_netvsc: Fix memory leak when removing rndis device Nathan Chancellor (1): xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk Pan Bian (2): scsi: qla4xxx: fix double free bug scsi: bnx2i: fix potential use after free Pengcheng Yang (1): tcp: fix marked lost packets not being retransmitted Qian Cai (1): x86/resctrl: Fix an imbalance in domain_remove_cpu() Reinhard Speyerer (1): USB: serial: option: add support for Quectel RM500Q in QDL mode Stephan Gerhold (2): ASoC: msm8916-wcd-analog: Fix selected events for MIC BIAS External1 regulator: ab8500: Remove SYSCLKREQ from enum ab8505_regulator_id Sudeep Holla (1): Revert "arm64: dts: juno: add dma-ranges property" Sven Eckelmann (1): batman-adv: Fix DAT candidate selection on little endian systems Takashi Iwai (1): ALSA: seq: Fix racy access for queue timer in proc read Vladis Dronov (1): ptp: free ptp device pin descriptors properly Wen Yang (1): mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() Yonglong Liu (1): net: hns: fix soft lockup when there is not enough memory Yuya Fujita (1): perf hists: Fix variable name's inconsistency in hists__for_each() macro

5 years, 9 months

1
1
0 0

Linux 4.9.211

by Greg KH

I'm announcing the release of the 4.9.211 kernel. All users of the 4.9 kernel series must upgrade. The updated 4.9.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.9.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/ABI/testing/sysfs-bus-mei | 2 Makefile | 2 arch/arm64/boot/dts/altera/socfpga_stratix10.dtsi | 8 arch/arm64/include/asm/kvm_mmu.h | 5 arch/arm64/include/asm/pgtable.h | 1 arch/arm64/kernel/hibernate.c | 3 arch/arm64/mm/mmu.c | 102 ++++++---- arch/hexagon/include/asm/atomic.h | 8 arch/hexagon/include/asm/bitops.h | 8 arch/hexagon/include/asm/cmpxchg.h | 2 arch/hexagon/include/asm/futex.h | 6 arch/hexagon/include/asm/spinlock.h | 20 - arch/hexagon/kernel/stacktrace.c | 4 arch/hexagon/kernel/vm_entry.S | 2 arch/mips/boot/compressed/Makefile | 3 arch/powerpc/platforms/powernv/pci.c | 17 + arch/x86/boot/compressed/head_64.S | 5 block/blk-settings.c | 2 drivers/block/xen-blkfront.c | 4 drivers/clk/clk.c | 10 drivers/clk/samsung/clk-exynos5420.c | 2 drivers/dma/ioat/dma.c | 3 drivers/gpio/gpio-mpc8xxx.c | 1 drivers/gpio/gpiolib.c | 5 drivers/hid/hidraw.c | 7 drivers/hid/uhid.c | 5 drivers/iio/imu/adis16480.c | 6 drivers/iio/industrialio-buffer.c | 6 drivers/infiniband/ulp/srpt/ib_srpt.c | 24 ++ drivers/iommu/iommu.c | 1 drivers/md/dm-snap-persistent.c | 2 drivers/md/raid0.c | 2 drivers/media/platform/exynos4-is/fimc-isp-video.c | 2 drivers/media/usb/zr364xx/zr364xx.c | 3 drivers/message/fusion/mptctl.c | 213 ++++----------------- drivers/misc/enclosure.c | 3 drivers/mtd/spi-nor/spi-nor.c | 2 drivers/net/ethernet/stmicro/stmmac/common.h | 4 drivers/net/ethernet/stmicro/stmmac/stmmac_main.c | 4 drivers/net/macvlan.c | 5 drivers/net/usb/lan78xx.c | 1 drivers/net/usb/r8152.c | 3 drivers/net/wan/fsl_ucc_hdlc.c | 2 drivers/net/wimax/i2400m/op-rfkill.c | 1 drivers/net/wireless/realtek/rtlwifi/regd.c | 2 drivers/net/wireless/rsi/rsi_91x_mac80211.c | 1 drivers/net/wireless/st/cw1200/fwio.c | 6 drivers/pci/pcie/ptm.c | 2 drivers/platform/x86/asus-wmi.c | 8 drivers/rtc/rtc-msm6242.c | 3 drivers/rtc/rtc-mt6397.c | 47 +++- drivers/scsi/bnx2i/bnx2i_iscsi.c | 2 drivers/scsi/cxgbi/libcxgbi.c | 3 drivers/scsi/esas2r/esas2r_flash.c | 1 drivers/scsi/fnic/vnic_dev.c | 30 +- drivers/scsi/qla4xxx/ql4_mbx.c | 3 drivers/scsi/scsi_trace.c | 113 +++-------- drivers/scsi/sd.c | 4 drivers/spi/spi-atmel.c | 10 drivers/target/target_core_fabric_lib.c | 2 drivers/tty/serial/imx.c | 2 drivers/tty/serial/pch_uart.c | 5 drivers/usb/core/hub.c | 1 drivers/usb/serial/ch341.c | 6 drivers/usb/serial/io_edgeport.c | 33 +-- drivers/usb/serial/keyspan.c | 4 drivers/usb/serial/opticon.c | 2 drivers/usb/serial/quatech2.c | 6 drivers/usb/serial/usb-serial-simple.c | 2 drivers/usb/serial/usb-serial.c | 3 firmware/Makefile | 2 fs/cifs/smb2file.c | 2 fs/ext4/inode.c | 15 + fs/ext4/super.c | 60 +++-- fs/f2fs/data.c | 2 fs/f2fs/file.c | 2 fs/ocfs2/journal.c | 8 fs/reiserfs/xattr.c | 8 include/dt-bindings/reset/amlogic,meson8b-reset.h | 6 include/linux/blkdev.h | 8 include/linux/poll.h | 4 include/linux/regulator/ab8500.h | 2 include/net/cfg80211.h | 11 + mm/page-writeback.c | 4 net/batman-adv/distributed-arp-table.c | 4 net/core/ethtool.c | 16 - net/dccp/feat.c | 7 net/dsa/tag_qca.c | 3 net/hsr/hsr_device.c | 2 net/ipv4/netfilter/arp_tables.c | 19 - net/ipv4/tcp_input.c | 7 net/mac80211/cfg.c | 55 ----- net/mac80211/sta_info.c | 4 net/netfilter/ipset/ip_set_bitmap_gen.h | 2 net/socket.c | 1 net/wireless/rdev-ops.h | 4 net/wireless/util.c | 47 ++++ sound/core/seq/seq_timer.c | 14 - tools/perf/builtin-report.c | 5 tools/perf/util/hist.h | 4 tools/perf/util/probe-finder.c | 32 --- tools/testing/selftests/rseq/settings | 1 102 files changed, 619 insertions(+), 564 deletions(-) Alexander Lobakin (1): net: dsa: tag_qca: fix doubled Tx statistics Alexander Usyskin (1): mei: fix modalias documentation Alexander.Barabash(a)dell.com (1): ioat: ioat_alloc_ring() failure handling. Alexandru Ardelean (1): iio: imu: adis16480: assign bias value only if operation succeeded Andy Shevchenko (1): scsi: fnic: use kernel's '%pM' format option to print MAC Ard Biesheuvel (2): arm64: mm: BUG on unsupported manipulations of live kernel mappings x86/efistub: Disable paging at mixed mode entry Arnd Bergmann (4): ethtool: reduce stack usage with clang fs/select: avoid clang stack usage warning compat_ioctl: handle SIOCOUTQNSD scsi: fnic: fix invalid stack access Barret Rhoden (1): ext4: fix use-after-free race with debug_want_extra_isize Bart Van Assche (3): RDMA/srpt: Report the SCSI residual to the initiator scsi: target: core: Fix a pr_debug() argument scsi: core: scsi_trace: Use get_unaligned_be*() Ben Hutchings (1): arm64: mm: Change page table pointer name in p[md]_set_huge() Bjorn Helgaas (1): PCI/PTM: Remove spurious "d" from granularity message Chao Yu (1): f2fs: fix potential overflow Colin Ian King (1): net/wan/fsl_ucc_hdlc: fix out of bounds write on array utdm_info Cong Wang (1): netfilter: fix a use-after-free in mtype_destroy() Dan Carpenter (3): scsi: mptfusion: Fix double fetch bug in ioctl cw1200: Fix a signedness bug in cw1200_load_firmware() scsi: esas2r: unlock on error in esas2r_nvram_read_direct() Dedy Lansky (1): cfg80211/mac80211: make ieee80211_send_layer2_update a public function Dinh Nguyen (1): arm64: dts: agilex/stratix10: fix pmu interrupt numbers Eric Dumazet (2): macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() net: usb: lan78xx: limit size of local TSO packets Fabian Henneke (1): hidraw: Return EPOLLOUT from hidraw_poll Felix Fietkau (1): cfg80211: fix page refcount issue in A-MSDU decap Florian Westphal (1): netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct Geert Uytterhoeven (1): gpio: Fix error message on out-of-range GPIO in lookup table Greg Kroah-Hartman (1): Linux 4.9.211 Guenter Roeck (1): clk: Don't try to enable critical clocks if prepare failed James Bottomley (1): scsi: enclosure: Fix stale device oops with hot replug Jari Ruusu (1): Fix built-in early-load Intel microcode alignment Jeff Mahoney (1): reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr Jerónimo Borque (1): USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx Jian-Hong Pan (1): platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 Jin Yao (1): perf report: Fix incorrectly added dimensions as switch perf data file Jiri Kosina (1): HID: hidraw, uhid: Always report EPOLLOUT Johan Hovold (8): USB: serial: opticon: fix control-message timeouts USB: serial: suppress driver bind attributes USB: serial: ch341: handle unbound port at reset_resume USB: serial: io_edgeport: add missing active-port sanity check USB: serial: quatech2: handle unbound ports USB: serial: io_edgeport: handle unbound ports on URB completion USB: serial: keyspan: handle unbound ports r8152: add missing endpoint sanity check Johannes Berg (1): cfg80211: check for set_wiphy_params John Ogness (1): USB: serial: io_edgeport: use irqsave() in USB's complete callback Johnson CH Chen (陳昭勳) (1): gpio: mpc8xxx: Add platform device to gpiochip->parent Jon Derrick (1): iommu: Remove device link to group on failure Jose Abreu (2): net: stmmac: 16KB buffer must be 16 byte aligned net: stmmac: Enable 16KB buffer size Jouni Hogander (1): MIPS: Prevent link failure with kcov instrumentation Jouni Malinen (1): mac80211: Do not send Layer 2 Update frame before authorization Kai Li (1): ocfs2: call journal flush to mark journal as empty after journal recovery when mount Kars de Jong (1): rtc: msm6242: Fix reading of 10-hour digit Keiya Nobuta (1): usb: core: hub: Improved device recognition on remote wakeup Kristina Martsenko (1): arm64: don't open code page table entry creation Lars Möllendorf (1): iio: buffer: align the size of scan bytes to size of the largest element Laura Abbott (1): arm64: Make sure permission updates happen for pmd/pud Mans Rullgard (1): spi: atmel: fix handling of cs_change set on non-last xfer Marcel Holtmann (1): HID: hidraw: Fix returning EPOLLOUT from hidraw_poll Marian Mihailescu (1): clk: samsung: exynos5420: Preserve CPU clocks configuration during suspend/resume Martin Blumenstingl (1): dt-bindings: reset: meson8b: fix duplicate reset IDs Masami Hiramatsu (1): perf probe: Fix wrong address verification Mathieu Desnoyers (1): rseq/selftests: Turn off timeout setting Mikulas Patocka (1): block: fix an integer overflow in logical block size Nathan Chancellor (3): cifs: Adjust indentation in smb2_open_file rtlwifi: Remove unnecessary NULL check in rtl_regd_init xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk Navid Emamdoost (2): wimax: i2400: fix memory leak wimax: i2400: Fix memory leak in i2400m_op_rfkill_sw_toggle Nick Desaulniers (2): hexagon: parenthesize registers in asm predicates hexagon: work around compiler crash Oliver O'Halloran (1): powerpc/powernv: Disable native PCIe port management Pan Bian (2): scsi: qla4xxx: fix double free bug scsi: bnx2i: fix potential use after free Peng Fan (2): tty: serial: imx: use the sg count from dma_map_sg tty: serial: pch_uart: correct usage of dma_unmap_sg Pengcheng Yang (1): tcp: fix marked lost packets not being retransmitted Ran Bi (1): rtc: mt6397: fix alarm register overwrite Sanjay Konduri (1): rsi: add fix for crash during assertions Sergei Shtylyov (1): mtd: spi-nor: fix silent truncation in spi_nor_read() Seung-Woo Kim (1): media: exynos4-is: Fix recursive locking in isp_video_release() Stephan Gerhold (1): regulator: ab8500: Remove SYSCLKREQ from enum ab8505_regulator_id Sven Eckelmann (1): batman-adv: Fix DAT candidate selection on little endian systems Taehee Yoo (1): hsr: reset network header when supervision frame is created Takashi Iwai (1): ALSA: seq: Fix racy access for queue timer in proc read Theodore Ts'o (1): ext4: add more paranoia checking in ext4_expand_extra_isize handling Vandana BN (1): media: usb:zr364xx:Fix KASAN:null-ptr-deref Read in zr364xx_vidioc_querycap Varun Prakash (1): scsi: libcxgbi: fix NULL pointer dereference in cxgbi_device_destroy() Wen Yang (1): mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() Will Deacon (1): arm64: Enforce BBM for huge IO/VMAP mappings Xiang Chen (1): scsi: sd: Clear sdkp->protection_type if disk is reformatted without PI YueHaibing (1): dccp: Fix memleak in __feat_register_sp Yuya Fujita (1): perf hists: Fix variable name's inconsistency in hists__for_each() macro

5 years, 9 months

1
1
0 0

Linux 4.4.211

by Greg KH

I'm announcing the release of the 4.4.211 kernel. All users of the 4.4 kernel series must upgrade. The updated 4.4.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.4.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/ABI/testing/sysfs-bus-mei | 2 Makefile | 2 arch/arm64/boot/dts/altera/socfpga_stratix10.dtsi | 8 arch/hexagon/kernel/stacktrace.c | 4 arch/x86/boot/compressed/head_64.S | 5 block/blk-settings.c | 2 drivers/block/xen-blkfront.c | 4 drivers/clk/samsung/clk-exynos5420.c | 2 drivers/gpio/gpiolib.c | 5 drivers/hid/hidraw.c | 7 drivers/hid/uhid.c | 5 drivers/iio/imu/adis16480.c | 6 drivers/infiniband/ulp/srpt/ib_srpt.c | 24 ++ drivers/iommu/iommu.c | 1 drivers/md/dm-snap-persistent.c | 2 drivers/md/raid0.c | 2 drivers/media/platform/exynos4-is/fimc-isp-video.c | 2 drivers/media/usb/zr364xx/zr364xx.c | 3 drivers/message/fusion/mptctl.c | 213 ++++----------------- drivers/misc/enclosure.c | 3 drivers/net/ethernet/stmicro/stmmac/common.h | 4 drivers/net/ethernet/stmicro/stmmac/stmmac_main.c | 4 drivers/net/macvlan.c | 5 drivers/net/usb/lan78xx.c | 1 drivers/net/usb/r8152.c | 3 drivers/net/wimax/i2400m/op-rfkill.c | 1 drivers/net/wireless/cw1200/fwio.c | 6 drivers/net/wireless/p54/p54usb.c | 43 +--- drivers/net/wireless/realtek/rtlwifi/regd.c | 2 drivers/net/wireless/rsi/rsi_91x_mac80211.c | 1 drivers/platform/x86/asus-wmi.c | 8 drivers/rtc/rtc-msm6242.c | 3 drivers/rtc/rtc-mt6397.c | 47 +++- drivers/scsi/bnx2i/bnx2i_iscsi.c | 2 drivers/scsi/esas2r/esas2r_flash.c | 1 drivers/scsi/fnic/vnic_dev.c | 30 +- drivers/scsi/qla4xxx/ql4_mbx.c | 3 drivers/scsi/scsi_trace.c | 114 +++-------- drivers/scsi/sd.c | 4 drivers/spi/spi-atmel.c | 10 drivers/target/target_core_fabric_lib.c | 2 drivers/tty/serial/imx.c | 2 drivers/tty/serial/pch_uart.c | 5 drivers/usb/core/hub.c | 1 drivers/usb/serial/ch341.c | 6 drivers/usb/serial/io_edgeport.c | 33 +-- drivers/usb/serial/keyspan.c | 4 drivers/usb/serial/opticon.c | 2 drivers/usb/serial/quatech2.c | 6 drivers/usb/serial/usb-serial-simple.c | 2 drivers/usb/serial/usb-serial.c | 3 drivers/xen/balloon.c | 16 + firmware/Makefile | 2 fs/cifs/smb2file.c | 2 fs/ext4/inode.c | 15 + fs/ext4/super.c | 60 +++-- fs/ocfs2/journal.c | 8 fs/proc/meminfo.c | 31 --- include/linux/blkdev.h | 8 include/linux/mm.h | 1 include/linux/regulator/ab8500.h | 2 include/net/cfg80211.h | 11 + mm/page-writeback.c | 4 mm/page_alloc.c | 43 ++++ net/batman-adv/distributed-arp-table.c | 4 net/dccp/feat.c | 7 net/hsr/hsr_device.c | 2 net/ipv4/tcp_input.c | 7 net/mac80211/cfg.c | 55 ----- net/mac80211/sta_info.c | 4 net/netfilter/ipset/ip_set_bitmap_gen.h | 2 net/socket.c | 1 net/wireless/rdev-ops.h | 4 net/wireless/util.c | 45 ++++ sound/core/seq/seq_timer.c | 14 - sound/usb/line6/pcm.c | 19 + tools/perf/util/probe-finder.c | 32 --- tools/testing/selftests/rseq/settings | 1 78 files changed, 528 insertions(+), 532 deletions(-) Alan Stern (1): p54usb: Fix race between disconnect and firmware loading Alexander Usyskin (1): mei: fix modalias documentation Alexandru Ardelean (1): iio: imu: adis16480: assign bias value only if operation succeeded Andy Shevchenko (1): scsi: fnic: use kernel's '%pM' format option to print MAC Ard Biesheuvel (1): x86/efistub: Disable paging at mixed mode entry Arnd Bergmann (2): compat_ioctl: handle SIOCOUTQNSD scsi: fnic: fix invalid stack access Barret Rhoden (1): ext4: fix use-after-free race with debug_want_extra_isize Bart Van Assche (3): RDMA/srpt: Report the SCSI residual to the initiator scsi: target: core: Fix a pr_debug() argument scsi: core: scsi_trace: Use get_unaligned_be*() Cong Wang (1): netfilter: fix a use-after-free in mtype_destroy() Dan Carpenter (3): scsi: mptfusion: Fix double fetch bug in ioctl cw1200: Fix a signedness bug in cw1200_load_firmware() scsi: esas2r: unlock on error in esas2r_nvram_read_direct() Dedy Lansky (1): cfg80211/mac80211: make ieee80211_send_layer2_update a public function Dinh Nguyen (1): arm64: dts: agilex/stratix10: fix pmu interrupt numbers Eric Dumazet (2): macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() net: usb: lan78xx: limit size of local TSO packets Fabian Henneke (1): hidraw: Return EPOLLOUT from hidraw_poll Geert Uytterhoeven (1): gpio: Fix error message on out-of-range GPIO in lookup table Greg Kroah-Hartman (1): Linux 4.4.211 Igor Redko (1): mm/page_alloc.c: calculate 'available' memory in a separate function James Bottomley (1): scsi: enclosure: Fix stale device oops with hot replug Jari Ruusu (1): Fix built-in early-load Intel microcode alignment Jerónimo Borque (1): USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx Jian-Hong Pan (1): platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 Jiri Kosina (1): HID: hidraw, uhid: Always report EPOLLOUT Johan Hovold (8): USB: serial: opticon: fix control-message timeouts USB: serial: suppress driver bind attributes USB: serial: ch341: handle unbound port at reset_resume USB: serial: io_edgeport: add missing active-port sanity check USB: serial: quatech2: handle unbound ports USB: serial: io_edgeport: handle unbound ports on URB completion USB: serial: keyspan: handle unbound ports r8152: add missing endpoint sanity check Johannes Berg (1): cfg80211: check for set_wiphy_params John Ogness (1): USB: serial: io_edgeport: use irqsave() in USB's complete callback Jon Derrick (1): iommu: Remove device link to group on failure Jose Abreu (2): net: stmmac: 16KB buffer must be 16 byte aligned net: stmmac: Enable 16KB buffer size Jouni Malinen (1): mac80211: Do not send Layer 2 Update frame before authorization Juergen Gross (1): xen: let alloc_xenballooned_pages() fail if not enough memory free Kai Li (1): ocfs2: call journal flush to mark journal as empty after journal recovery when mount Kars de Jong (1): rtc: msm6242: Fix reading of 10-hour digit Keiya Nobuta (1): usb: core: hub: Improved device recognition on remote wakeup Mans Rullgard (1): spi: atmel: fix handling of cs_change set on non-last xfer Marcel Holtmann (1): HID: hidraw: Fix returning EPOLLOUT from hidraw_poll Marian Mihailescu (1): clk: samsung: exynos5420: Preserve CPU clocks configuration during suspend/resume Masami Hiramatsu (1): perf probe: Fix wrong address verification Mathieu Desnoyers (1): rseq/selftests: Turn off timeout setting Mikulas Patocka (1): block: fix an integer overflow in logical block size Nathan Chancellor (3): cifs: Adjust indentation in smb2_open_file rtlwifi: Remove unnecessary NULL check in rtl_regd_init xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk Navid Emamdoost (2): wimax: i2400: fix memory leak wimax: i2400: Fix memory leak in i2400m_op_rfkill_sw_toggle Nick Desaulniers (1): hexagon: work around compiler crash Pan Bian (2): scsi: qla4xxx: fix double free bug scsi: bnx2i: fix potential use after free Peng Fan (2): tty: serial: imx: use the sg count from dma_map_sg tty: serial: pch_uart: correct usage of dma_unmap_sg Pengcheng Yang (1): tcp: fix marked lost packets not being retransmitted Ran Bi (1): rtc: mt6397: fix alarm register overwrite Sanjay Konduri (1): rsi: add fix for crash during assertions Seung-Woo Kim (1): media: exynos4-is: Fix recursive locking in isp_video_release() Stephan Gerhold (1): regulator: ab8500: Remove SYSCLKREQ from enum ab8505_regulator_id Sven Eckelmann (1): batman-adv: Fix DAT candidate selection on little endian systems Taehee Yoo (1): hsr: reset network header when supervision frame is created Takashi Iwai (3): ALSA: line6: Fix write on zero-sized buffer ALSA: line6: Fix memory leak at line6_init_pcm() error path ALSA: seq: Fix racy access for queue timer in proc read Theodore Ts'o (1): ext4: add more paranoia checking in ext4_expand_extra_isize handling Vandana BN (1): media: usb:zr364xx:Fix KASAN:null-ptr-deref Read in zr364xx_vidioc_querycap Wen Yang (1): mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() Xiang Chen (1): scsi: sd: Clear sdkp->protection_type if disk is reformatted without PI YueHaibing (1): dccp: Fix memleak in __feat_register_sp

5 years, 9 months

1
1
0 0

patch "usb: host: xhci-tegra: set MODULE_FIRMWARE for tegra186" added to usb-next

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled usb: host: xhci-tegra: set MODULE_FIRMWARE for tegra186 to my usb git tree which can be found at git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git in the usb-next branch. The patch will show up in the next release of the linux-next tree (usually sometime within the next 24 hours during the week.) The patch will also be merged in the next major kernel release during the merge window. If you have any questions about this process, please let me know. >From e1f236efd9c579a29d7df75aa052127d0d975267 Mon Sep 17 00:00:00 2001 From: Peter Robinson <pbrobinson(a)gmail.com> Date: Mon, 20 Jan 2020 14:19:10 +0000 Subject: usb: host: xhci-tegra: set MODULE_FIRMWARE for tegra186 Set the MODULE_FIRMWARE for tegra186, it's registered for 124/210 and ensures the firmware is available at the appropriate time such as in the initrd, else if the firmware is unavailable the driver fails with the following errors: tegra-xusb 3530000.usb: Direct firmware load for nvidia/tegra186/xusb.bin failed with error -2 tegra-xusb 3530000.usb: failed to request firmware: -2 tegra-xusb 3530000.usb: failed to load firmware: -2 tegra-xusb: probe of 3530000.usb failed with error -2 Fixes: 5f9be5f3f899 ("usb: host: xhci-tegra: Add Tegra186 XUSB support") Signed-off-by: Peter Robinson <pbrobinson(a)gmail.com> Acked-by: Thierry Reding <treding(a)nvidia.com> Cc: stable <stable(a)vger.kernel.org> Link: https://lore.kernel.org/r/20200120141910.116097-1-pbrobinson@gmail.com Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> --- drivers/usb/host/xhci-tegra.c | 1 + 1 file changed, 1 insertion(+) diff --git a/drivers/usb/host/xhci-tegra.c b/drivers/usb/host/xhci-tegra.c index 0b58ef3a7f7f..8163aefc6c6b 100644 --- a/drivers/usb/host/xhci-tegra.c +++ b/drivers/usb/host/xhci-tegra.c @@ -1744,6 +1744,7 @@ MODULE_FIRMWARE("nvidia/tegra210/xusb.bin"); static const char * const tegra186_supply_names[] = { }; +MODULE_FIRMWARE("nvidia/tegra186/xusb.bin"); static const struct tegra_xusb_phy_type tegra186_phy_types[] = { { .name = "usb3", .num = 3, }, -- 2.25.0

5 years, 9 months

1
0
0 0

patch "usb: dwc3: pci: add ID for the Intel Comet Lake -V variant" added to usb-next

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled usb: dwc3: pci: add ID for the Intel Comet Lake -V variant to my usb git tree which can be found at git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git in the usb-next branch. The patch will show up in the next release of the linux-next tree (usually sometime within the next 24 hours during the week.) The patch will also be merged in the next major kernel release during the merge window. If you have any questions about this process, please let me know. >From f5ae8869095552e3396ee3e404f9586cc6a828f0 Mon Sep 17 00:00:00 2001 From: Heikki Krogerus <heikki.krogerus(a)linux.intel.com> Date: Fri, 17 Jan 2020 12:30:33 +0300 Subject: usb: dwc3: pci: add ID for the Intel Comet Lake -V variant There is one more Comet Lake PCH variant, CML-V, that has its own PCI ID. Signed-off-by: Heikki Krogerus <heikki.krogerus(a)linux.intel.com> Cc: stable <stable(a)vger.kernel.org> Link: https://lore.kernel.org/r/20200117093033.48616-1-heikki.krogerus@linux.inte… Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> --- drivers/usb/dwc3/dwc3-pci.c | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/drivers/usb/dwc3/dwc3-pci.c b/drivers/usb/dwc3/dwc3-pci.c index 294276f7deb9..7051611229c9 100644 --- a/drivers/usb/dwc3/dwc3-pci.c +++ b/drivers/usb/dwc3/dwc3-pci.c @@ -34,6 +34,7 @@ #define PCI_DEVICE_ID_INTEL_GLK 0x31aa #define PCI_DEVICE_ID_INTEL_CNPLP 0x9dee #define PCI_DEVICE_ID_INTEL_CNPH 0xa36e +#define PCI_DEVICE_ID_INTEL_CNPV 0xa3b0 #define PCI_DEVICE_ID_INTEL_ICLLP 0x34ee #define PCI_DEVICE_ID_INTEL_EHLLP 0x4b7e #define PCI_DEVICE_ID_INTEL_TGPLP 0xa0ee @@ -342,6 +343,9 @@ static const struct pci_device_id dwc3_pci_id_table[] = { { PCI_VDEVICE(INTEL, PCI_DEVICE_ID_INTEL_CNPH), (kernel_ulong_t) &dwc3_pci_intel_properties, }, + { PCI_VDEVICE(INTEL, PCI_DEVICE_ID_INTEL_CNPV), + (kernel_ulong_t) &dwc3_pci_intel_properties, }, + { PCI_VDEVICE(INTEL, PCI_DEVICE_ID_INTEL_ICLLP), (kernel_ulong_t) &dwc3_pci_intel_properties, }, -- 2.25.0

5 years, 9 months

1
0
0 0

patch "staging: most: net: fix buffer overflow" added to staging-next

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled staging: most: net: fix buffer overflow to my staging git tree which can be found at git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/staging.git in the staging-next branch. The patch will show up in the next release of the linux-next tree (usually sometime within the next 24 hours during the week.) The patch will also be merged in the next major kernel release during the merge window. If you have any questions about this process, please let me know. >From 4d1356ac12f4d5180d0df345d85ff0ee42b89c72 Mon Sep 17 00:00:00 2001 From: Andrey Shvetsov <andrey.shvetsov(a)k2l.de> Date: Thu, 16 Jan 2020 18:22:39 +0100 Subject: staging: most: net: fix buffer overflow If the length of the socket buffer is 0xFFFFFFFF (max size for an unsigned int), then payload_len becomes 0xFFFFFFF1 after subtracting 14 (ETH_HLEN). Then, mdp_len is set to payload_len + 16 (MDP_HDR_LEN) which overflows and results in a value of 2. These values for payload_len and mdp_len will pass current buffer size checks. This patch checks if derived from skb->len sum may overflow. The check is based on the following idea: For any `unsigned V1, V2` and derived `unsigned SUM = V1 + V2`, `V1 + V2` overflows iif `SUM < V1`. Reported-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Signed-off-by: Andrey Shvetsov <andrey.shvetsov(a)k2l.de> Cc: stable <stable(a)vger.kernel.org> Link: https://lore.kernel.org/r/20200116172238.6046-1-andrey.shvetsov@microchip.c… Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> --- drivers/staging/most/net/net.c | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/drivers/staging/most/net/net.c b/drivers/staging/most/net/net.c index 8218c9a06cb5..5547e36e09de 100644 --- a/drivers/staging/most/net/net.c +++ b/drivers/staging/most/net/net.c @@ -82,6 +82,11 @@ static int skb_to_mamac(const struct sk_buff *skb, struct mbo *mbo) unsigned int payload_len = skb->len - ETH_HLEN; unsigned int mdp_len = payload_len + MDP_HDR_LEN; + if (mdp_len < skb->len) { + pr_err("drop: too large packet! (%u)\n", skb->len); + return -EINVAL; + } + if (mbo->buffer_length < mdp_len) { pr_err("drop: too small buffer! (%d for %d)\n", mbo->buffer_length, mdp_len); @@ -129,6 +134,11 @@ static int skb_to_mep(const struct sk_buff *skb, struct mbo *mbo) u8 *buff = mbo->virt_address; unsigned int mep_len = skb->len + MEP_HDR_LEN; + if (mep_len < skb->len) { + pr_err("drop: too large packet! (%u)\n", skb->len); + return -EINVAL; + } + if (mbo->buffer_length < mep_len) { pr_err("drop: too small buffer! (%d for %d)\n", mbo->buffer_length, mep_len); -- 2.25.0

5 years, 9 months

1
0
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror