December 2018 - Linux-stable-mirror

[PATCH 4.9 000/101] 4.9.144-stable review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 4.9.144 release. There are 101 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Sat Dec 8 14:29:43 UTC 2018. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.9.144-rc… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.9.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 4.9.144-rc1 Darrick J. Wong <darrick.wong(a)oracle.com> xfs: don't fail when converting shortform attr to long form during ATTR_REPLACE Ben Hutchings <ben.hutchings(a)codethink.co.uk> f2fs: fix to do sanity check with cp_pack_start_sum Jaegeuk Kim <jaegeuk(a)kernel.org> f2fs: free meta pages if sanity check for ckpt is failed Chao Yu <yuchao0(a)huawei.com> f2fs: fix to do sanity check with block address in main area v2 Jaegeuk Kim <jaegeuk(a)kernel.org> f2fs: fix missing up_read Chao Yu <yuchao0(a)huawei.com> f2fs: fix to do sanity check with block address in main area Chao Yu <yuchao0(a)huawei.com> f2fs: fix to do sanity check with node footer and iblocks Ben Hutchings <ben.hutchings(a)codethink.co.uk> f2fs: Add sanity_check_inode() function Chao Yu <yuchao0(a)huawei.com> f2fs: fix to do sanity check with user_block_count Chao Yu <yuchao0(a)huawei.com> f2fs: fix to do sanity check with secs_per_zone Chao Yu <yuchao0(a)huawei.com> f2fs: introduce and spread verify_blkaddr Chao Yu <yuchao0(a)huawei.com> f2fs: clean up with is_valid_blkaddr() Jaegeuk Kim <jaegeuk(a)kernel.org> f2fs: enhance sanity_check_raw_super() to avoid potential overflow Jaegeuk Kim <jaegeuk(a)kernel.org> f2fs: sanity check on sit entry Yunlei He <heyunlei(a)huawei.com> f2fs: check blkaddr more accuratly before issue a bio Jaegeuk Kim <jaegeuk(a)kernel.org> f2fs: return error during fill_super Jaegeuk Kim <jaegeuk(a)kernel.org> f2fs: detect wrong layout Chao Yu <yuchao0(a)huawei.com> f2fs: fix race condition in between free nid allocator/initializer Yunlei He <heyunlei(a)huawei.com> f2fs: fix a panic caused by NULL flush_cmd_control Shaokun Zhang <zhangshaokun(a)hisilicon.com> btrfs: tree-checker: Fix misleading group system information Qu Wenruo <wqu(a)suse.com> btrfs: tree-checker: Check level for leaves and nodes Qu Wenruo <wqu(a)suse.com> btrfs: Check that each block group has corresponding chunk at mount time Qu Wenruo <wqu(a)suse.com> btrfs: tree-checker: Detect invalid and empty essential trees Qu Wenruo <wqu(a)suse.com> btrfs: tree-checker: Verify block_group_item David Sterba <dsterba(a)suse.com> btrfs: tree-check: reduce stack consumption in check_dir_item Arnd Bergmann <arnd(a)arndb.de> btrfs: tree-checker: use %zu format string for size_t Qu Wenruo <wqu(a)suse.com> btrfs: tree-checker: Add checker for dir item Qu Wenruo <wqu(a)suse.com> btrfs: tree-checker: Fix false panic for sanity test Qu Wenruo <quwenruo.btrfs(a)gmx.com> btrfs: tree-checker: Enhance btrfs_check_node output Jeff Mahoney <jeffm(a)suse.com> btrfs: struct-funcs, constify readers Qu Wenruo <quwenruo.btrfs(a)gmx.com> btrfs: Move leaf and node validation checker to tree-checker.c Qu Wenruo <quwenruo.btrfs(a)gmx.com> btrfs: Add checker for EXTENT_CSUM Qu Wenruo <quwenruo.btrfs(a)gmx.com> btrfs: Add sanity check for EXTENT_DATA when reading out leaf Qu Wenruo <quwenruo.btrfs(a)gmx.com> btrfs: Check if item pointer overlaps with the item itself Qu Wenruo <quwenruo.btrfs(a)gmx.com> btrfs: Refactor check_leaf function for later expansion Qu Wenruo <wqu(a)suse.com> btrfs: Verify that every chunk has corresponding block group at mount time Gu Jinxiang <gujx(a)cn.fujitsu.com> btrfs: validate type when reading a chunk Mike Kravetz <mike.kravetz(a)oracle.com> hugetlbfs: check for pgoff value overflow Mike Kravetz <mike.kravetz(a)oracle.com> hugetlbfs: fix offset overflow in hugetlbfs mmap Mike Kravetz <mike.kravetz(a)oracle.com> mm/hugetlb.c: don't call region_abort if region_chg fails Lior David <qca_liord(a)qca.qualcomm.com> wil6210: missing length check in wmi_set_ie Alexei Starovoitov <ast(a)kernel.org> bpf: Prevent memory disambiguation attack Ben Hutchings <ben.hutchings(a)codethink.co.uk> bpf/verifier: Pass instruction index to check_mem_access() and check_xadd() Ben Hutchings <ben.hutchings(a)codethink.co.uk> bpf/verifier: Add spi variable to check_stack_write() Ilya Dryomov <idryomov(a)gmail.com> libceph: check authorizer reply/challenge length before reading Ilya Dryomov <idryomov(a)gmail.com> libceph: weaken sizeof check in ceph_x_verify_authorizer_reply() Ilya Dryomov <idryomov(a)gmail.com> libceph: implement CEPHX_V2 calculation mode Ilya Dryomov <idryomov(a)gmail.com> libceph: add authorizer challenge Ilya Dryomov <idryomov(a)gmail.com> libceph: factor out encrypt_authorizer() Ilya Dryomov <idryomov(a)gmail.com> libceph: factor out __ceph_x_decrypt() Ilya Dryomov <idryomov(a)gmail.com> libceph: factor out __prepare_write_connect() Ilya Dryomov <idryomov(a)gmail.com> libceph: store ceph_auth_handshake pointer in ceph_connection Ilya Dryomov <idryomov(a)gmail.com> libceph: no need to drop con->mutex for ->get_authorizer() Ilya Dryomov <idryomov(a)gmail.com> libceph: drop len argument of *verify_authorizer_reply() Guoqing Jiang <gqjiang(a)suse.com> tipc: use destination length for copy string Arnd Bergmann <arnd(a)arndb.de> net: qed: use correct strncpy() size Arnd Bergmann <arnd(a)arndb.de> usb: gadget: dummy: fix nonsensical comparisons Pavel Tikhomirov <ptikhomirov(a)virtuozzo.com> mm: cleancache: fix corruption on missed inode invalidation Masahiro Yamada <yamada.masahiro(a)socionext.com> reset: remove remaining WARN_ON() in <linux/reset.h> Masahiro Yamada <yamada.masahiro(a)socionext.com> reset: make device_reset_optional() really optional Philipp Zabel <p.zabel(a)pengutronix.de> reset: add exported __reset_control_get, return NULL if optional Philipp Zabel <p.zabel(a)pengutronix.de> reset: fix optional reset_control_get stubs to return NULL Heiner Kallweit <hkallweit1(a)gmail.com> reset: core: fix reset_control_put Ramiro Oliveira <Ramiro.Oliveira(a)synopsys.com> reset: make optional functions really optional Jan Kara <jack(a)suse.cz> udf: Allow mounting volumes with incorrect identification strings Alexey Brodkin <abrodkin(a)synopsys.com> arc: [devboards] Add support of NFSv3 ACL Kevin Hilman <khilman(a)baylibre.com> ARC: change defconfig defaults to ARCv2 Filipe Manana <fdmanana(a)suse.com> Btrfs: fix use-after-free when dumping free space Nikolay Borisov <nborisov(a)suse.com> btrfs: Always try all copies when reading extent buffers Adam Wong <adam(a)adamwong.me> Input: elan_i2c - add support for ELAN0621 touchpad Noah Westervelt <nwestervelt(a)outlook.com> Input: elan_i2c - add ACPI ID for Lenovo IdeaPad 330-15ARR Patrick Gaskin <patrick(a)pgaskin.net> Input: elan_i2c - add ELAN0620 to the ACPI table Christian Hoff <christian_hoff(a)gmx.net> Input: matrix_keypad - check for errors from of_get_named_gpio() Cameron Gutman <aicommander(a)gmail.com> Input: xpad - quirk all PDP Xbox One gamepads Johan Hovold <johan(a)kernel.org> drm/mediatek: fix OF sibling-node lookup Wei Wang <wawei(a)amazon.de> svm: Add mutex_lock to protect apic_access_page_done on AMD systems Todd Kjos <tkjos(a)android.com> binder: fix proc->files use-after-free Laura Abbott <labbott(a)redhat.com> kgdboc: Fix warning with module build Laura Abbott <labbott(a)redhat.com> kgdboc: Fix restrict error Kees Cook <keescook(a)chromium.org> scsi: csiostor: Avoid content leaks and casts Takashi Iwai <tiwai(a)suse.de> ALSA: trident: Suppress gcc string warning Martin Wilck <mwilck(a)suse.com> scsi: scsi_devinfo: cleanly zero-pad devinfo strings Sergio Correia <sergio(a)correia.cc> drm: set is_master to 0 upon drm_new_set_master() failure Sam Bobroff <sbobroff(a)linux.ibm.com> drm/ast: Fix incorrect free on ioregs Michael Guralnik <michaelgur(a)mellanox.com> IB/mlx5: Avoid load failure due to unknown link width Dmitry V. Levin <ldv(a)altlinux.org> mips: fix mips_get_syscall_arg o32 check Mathias Kresin <dev(a)kresin.me> MIPS: ralink: Fix mt7620 nd_sd pinmux Andrea Parri <andrea.parri(a)amarulasolutions.com> uprobes: Fix handle_swbp() vs. unregister() + register() race once more Sagi Grimberg <sagi(a)grimberg.me> iser: set sector for ambiguous mr status errors Kees Cook <keescook(a)chromium.org> x86/power/64: Use char arrays for asm function names Arnd Bergmann <arnd(a)arndb.de> kdb: use memmove instead of overlapping memcpy Arnd Bergmann <arnd(a)arndb.de> staging: rts5208: fix gcc-8 logic error warning Arnd Bergmann <arnd(a)arndb.de> scsi: bfa: convert to strlcpy/strlcat Arnd Bergmann <arnd(a)arndb.de> drm: gma500: fix logic error Sultan Alsawaf <sultanxda(a)gmail.com> ip_tunnel: Fix name string concatenate in __ip_tunnel_create() Guenter Roeck <linux(a)roeck-us.net> kernfs: Replace strncpy with memcpy Linus Torvalds <torvalds(a)linux-foundation.org> unifdef: use memcpy instead of strncpy Guenter Roeck <linux(a)roeck-us.net> kobject: Replace strncpy with memcpy Linus Torvalds <torvalds(a)linux-foundation.org> test_hexdump: use memcpy instead of strncpy Stephen Rothwell <sfr(a)canb.auug.org.au> disable stringop truncation warnings for now Xiongfeng Wang <xiongfeng.wang(a)linaro.org> Kbuild: suppress packed-not-aligned warning for default setting only ------------- Diffstat: Makefile | 7 +- arch/arc/Kconfig | 2 +- arch/arc/Makefile | 2 +- arch/arc/configs/axs101_defconfig | 2 + arch/arc/configs/axs103_defconfig | 1 + arch/arc/configs/axs103_smp_defconfig | 1 + arch/arc/configs/nps_defconfig | 2 + arch/arc/configs/nsim_700_defconfig | 1 + arch/arc/configs/nsimosci_defconfig | 2 + arch/arc/configs/nsimosci_hs_defconfig | 1 + arch/arc/configs/nsimosci_hs_smp_defconfig | 1 + arch/arc/configs/tb10x_defconfig | 1 + arch/arc/configs/vdk_hs38_defconfig | 1 + arch/arc/configs/vdk_hs38_smp_defconfig | 1 + arch/mips/include/asm/syscall.h | 2 +- arch/mips/ralink/mt7620.c | 2 +- arch/x86/include/asm/suspend_64.h | 5 +- arch/x86/kvm/svm.c | 19 +- arch/x86/power/hibernate_64.c | 6 +- drivers/android/binder.c | 41 +- drivers/gpu/drm/ast/ast_main.c | 3 +- drivers/gpu/drm/drm_auth.c | 2 + drivers/gpu/drm/gma500/mdfld_intel_display.c | 2 +- drivers/gpu/drm/mediatek/mtk_hdmi.c | 5 +- drivers/infiniband/hw/mlx5/main.c | 29 +- drivers/infiniband/ulp/iser/iser_verbs.c | 7 +- drivers/input/joystick/xpad.c | 16 +- drivers/input/keyboard/matrix_keypad.c | 23 +- drivers/input/mouse/elan_i2c_core.c | 3 + drivers/net/ethernet/qlogic/qed/qed_debug.c | 8 +- drivers/net/wireless/ath/wil6210/wmi.c | 8 +- drivers/reset/core.c | 79 +++- drivers/scsi/bfa/bfa_fcbuild.c | 8 +- drivers/scsi/bfa/bfa_fcs.c | 78 ++-- drivers/scsi/bfa/bfa_fcs_lport.c | 62 +-- drivers/scsi/bfa/bfa_ioc.c | 2 +- drivers/scsi/bfa/bfa_svc.c | 4 +- drivers/scsi/bfa/bfad.c | 20 +- drivers/scsi/bfa/bfad_attr.c | 2 +- drivers/scsi/bfa/bfad_bsg.c | 6 +- drivers/scsi/csiostor/csio_lnode.c | 43 +- drivers/scsi/scsi_devinfo.c | 22 +- drivers/staging/rts5208/sd.c | 6 - drivers/tty/serial/kgdboc.c | 43 +- drivers/usb/gadget/udc/dummy_hcd.c | 9 +- fs/btrfs/Makefile | 2 +- fs/btrfs/ctree.h | 128 +++--- fs/btrfs/disk-io.c | 162 +------ fs/btrfs/extent-tree.c | 86 +++- fs/btrfs/extent_io.c | 24 +- fs/btrfs/extent_io.h | 19 +- fs/btrfs/free-space-cache.c | 2 + fs/btrfs/struct-funcs.c | 9 +- fs/btrfs/tree-checker.c | 649 +++++++++++++++++++++++++++ fs/btrfs/tree-checker.h | 38 ++ fs/btrfs/volumes.c | 30 +- fs/btrfs/volumes.h | 2 + fs/ceph/mds_client.c | 15 +- fs/f2fs/checkpoint.c | 46 +- fs/f2fs/data.c | 33 +- fs/f2fs/f2fs.h | 41 +- fs/f2fs/file.c | 21 +- fs/f2fs/inode.c | 68 ++- fs/f2fs/node.c | 73 ++- fs/f2fs/recovery.c | 6 +- fs/f2fs/segment.c | 34 +- fs/f2fs/segment.h | 48 +- fs/f2fs/super.c | 107 ++++- fs/hugetlbfs/inode.c | 26 +- fs/kernfs/symlink.c | 2 +- fs/udf/super.c | 16 +- fs/udf/unicode.c | 14 +- fs/xfs/libxfs/xfs_attr.c | 9 +- include/linux/bpf_verifier.h | 1 + include/linux/ceph/auth.h | 13 +- include/linux/ceph/ceph_features.h | 4 +- include/linux/ceph/messenger.h | 8 +- include/linux/ceph/msgr.h | 2 +- include/linux/reset.h | 92 ++-- include/uapi/linux/btrfs_tree.h | 1 + kernel/bpf/verifier.c | 90 +++- kernel/debug/kdb/kdb_support.c | 4 +- kernel/events/uprobes.c | 12 +- lib/kobject.c | 2 +- lib/test_hexdump.c | 2 +- mm/hugetlb.c | 10 +- mm/truncate.c | 8 +- net/ceph/auth.c | 20 +- net/ceph/auth_x.c | 225 ++++++++-- net/ceph/auth_x_protocol.h | 7 + net/ceph/messenger.c | 101 +++-- net/ceph/osd_client.c | 15 +- net/ipv4/ip_tunnel.c | 4 +- net/tipc/subscr.c | 2 +- scripts/Makefile.extrawarn | 3 + scripts/unifdef.c | 4 +- sound/pci/trident/trident.c | 2 +- 97 files changed, 2154 insertions(+), 778 deletions(-)

6 years

7
114
0 0

media: ov5640: Fix set format regression

by Adam Ford

Commit 07115449919383548d094ff83cc27bd08639a8a1 is on Linux-Next and this fixes an issue on 4.19.y which fixes an issue where changing for image size fails. Can you please apply this patch to 4.19.y? Thank you adam

6 years

2
1
0 0

[PATCH] security/apparmor: allow matching on presence of extended attributes

by Eric Chiang

Currently, xattrs values must match the xmatch DFA to match a profile. This lets users construct profiles to match a file with a specific key and value with a basic regex. profile test xattrs(security.apparmor=/usr/bin/*) {} The xmatch DFA doesn't handle null characters in the xattrs value, since this is the special character used to indicate that the DFA is transitioning from matching the profile path to matching the xattr value. However, both IMA and EVM xattr values hold signatures which potentially have a null character. It's currently impossible to write a profile that requires a the presence of an EVM signature without checking the value. profile test xattrs(security.evm security.apparmor=/usr/bin/*) {} Add an additional "xattr_keys" array to the profile that only checks the presence of extended attributes, and not their values. A modified apparmor_parser that was used to test these changes can be found at: https://gitlab.com/ericchiang/apparmor/commits/parser-xattrs-keys To test, build the parser and run the following command: $ echo '/usr/bin/* xattrs=(user.foo user.bar=bar) {}' | \ ./apparmor_parser -r $ setfattr -n "user.foo" -v "foo" /usr/bin/whoami $ setfattr -n "user.bar" -v "bar" /usr/bin/whoami $ whoami # command fails Signed-off-by: Eric Chiang <ericchiang(a)google.com> CC: stable(a)vger.kernel.org --- security/apparmor/domain.c | 22 +++++++++++++++++++--- security/apparmor/include/policy.h | 6 ++++++ security/apparmor/policy.c | 3 +++ security/apparmor/policy_unpack.c | 18 ++++++++++++++++++ 4 files changed, 46 insertions(+), 3 deletions(-) diff --git a/security/apparmor/domain.c b/security/apparmor/domain.c index 08c88de0ffda..53c46e3e01f0 100644 --- a/security/apparmor/domain.c +++ b/security/apparmor/domain.c @@ -319,14 +319,30 @@ static int aa_xattrs_match(const struct linux_binprm *bprm, char *value = NULL; int value_size = 0, ret = profile->xattr_count; - if (!bprm || !profile->xattr_count) + if (!bprm) return 0; + d = bprm->file->f_path.dentry; + + if (profile->xattr_keys_count) { + /* validate that these attributes are present, ignore values */ + for (i = 0; i < profile->xattr_keys_count; i++) { + size = vfs_getxattr_alloc(d, profile->xattr_keys[i], + &value, value_size, + GFP_KERNEL); + if (size < 0) { + ret = -EINVAL; + goto out; + } + } + } + + if (!profile->xattr_count) + goto out; + /* transition from exec match to xattr set */ state = aa_dfa_null_transition(profile->xmatch, state); - d = bprm->file->f_path.dentry; - for (i = 0; i < profile->xattr_count; i++) { size = vfs_getxattr_alloc(d, profile->xattrs[i], &value, value_size, GFP_KERNEL); diff --git a/security/apparmor/include/policy.h b/security/apparmor/include/policy.h index 8e6707c837be..8ed1d30de7ce 100644 --- a/security/apparmor/include/policy.h +++ b/security/apparmor/include/policy.h @@ -112,6 +112,10 @@ struct aa_data { * @policy: general match rules governing policy * @file: The set of rules governing basic file access and domain transitions * @caps: capabilities for the profile + * @xattr_count: number of xattrs values + * @xattrs: extended attributes whose values must match the xmatch + * @xattr_keys_count: number of xattr keys values + * @xattr_keys: extended attributes that must be present to match the profile * @rlimits: rlimits for the profile * * @dents: dentries for the profiles file entries in apparmorfs @@ -152,6 +156,8 @@ struct aa_profile { int xattr_count; char **xattrs; + int xattr_keys_count; + char **xattr_keys; struct aa_rlimit rlimits; diff --git a/security/apparmor/policy.c b/security/apparmor/policy.c index df9c5890a878..e0f9cf8b8318 100644 --- a/security/apparmor/policy.c +++ b/security/apparmor/policy.c @@ -231,6 +231,9 @@ void aa_free_profile(struct aa_profile *profile) for (i = 0; i < profile->xattr_count; i++) kzfree(profile->xattrs[i]); kzfree(profile->xattrs); + for (i = 0; i < profile->xattr_keys_count; i++) + kzfree(profile->xattr_keys[i]); + kzfree(profile->xattr_keys); for (i = 0; i < profile->secmark_count; i++) kzfree(profile->secmark[i].label); kzfree(profile->secmark); diff --git a/security/apparmor/policy_unpack.c b/security/apparmor/policy_unpack.c index 379682e2a8d5..d1fd75093260 100644 --- a/security/apparmor/policy_unpack.c +++ b/security/apparmor/policy_unpack.c @@ -535,6 +535,24 @@ static bool unpack_xattrs(struct aa_ext *e, struct aa_profile *profile) goto fail; } + if (unpack_nameX(e, AA_STRUCT, "xattr_keys")) { + int i, size; + + size = unpack_array(e, NULL); + profile->xattr_keys_count = size; + profile->xattr_keys = kcalloc(size, sizeof(char *), GFP_KERNEL); + if (!profile->xattr_keys) + goto fail; + for (i = 0; i < size; i++) { + if (!unpack_strdup(e, &profile->xattr_keys[i], NULL)) + goto fail; + } + if (!unpack_nameX(e, AA_ARRAYEND, NULL)) + goto fail; + if (!unpack_nameX(e, AA_STRUCTEND, NULL)) + goto fail; + } + return 1; fail: -- 2.20.0.rc2.403.gdbc3b29805-goog

6 years

1
0
0 0

stable-rc/linux-4.9.y boot: 102 boots: 1 failed, 100 passed with 1 offline (v4.9.143-103-g2eb2c353eec4)

by kernelci.org bot

stable-rc/linux-4.9.y boot: 102 boots: 1 failed, 100 passed with 1 offline (v4.9.143-103-g2eb2c353eec4) Full Boot Summary: https://kernelci.org/boot/all/job/stable-rc/branch/linux-4.9.y/kernel/v4.9.… Full Build Summary: https://kernelci.org/build/stable-rc/branch/linux-4.9.y/kernel/v4.9.143-103… Tree: stable-rc Branch: linux-4.9.y Git Describe: v4.9.143-103-g2eb2c353eec4 Git Commit: 2eb2c353eec495008169e908951ae0eacaf1bb5b Git URL: http://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git Tested: 49 unique boards, 21 SoC families, 13 builds out of 193 Boot Regressions Detected: arm: qcom_defconfig: qcom-apq8064-cm-qs600: lab-baylibre-seattle: new failure (last pass: v4.9.143-102-gcf137e4b4373) Boot Failure Detected: arm: qcom_defconfig qcom-apq8064-cm-qs600: 1 failed lab Offline Platforms: arm: multi_v7_defconfig: stih410-b2120: 1 offline lab --- For more info write to <info(a)kernelci.org>

6 years

1
0
0 0

+ hwpoison-memory_hotplug-allow-hwpoisoned-pages-to-be-offlined.patch added to -mm tree

by akpm＠linux-foundation.org

The patch titled Subject: hwpoison, memory_hotplug: allow hwpoisoned pages to be offlined has been added to the -mm tree. Its filename is hwpoison-memory_hotplug-allow-hwpoisoned-pages-to-be-offlined.patch This patch should soon appear at http://ozlabs.org/~akpm/mmots/broken-out/hwpoison-memory_hotplug-allow-hwpo… and later at http://ozlabs.org/~akpm/mmotm/broken-out/hwpoison-memory_hotplug-allow-hwpo… Before you just go and hit "reply", please: a) Consider who else should be cc'ed b) Prefer to cc a suitable mailing list as well c) Ideally: find the original patch on the mailing list and do a reply-to-all to that, adding suitable additional cc's *** Remember to use Documentation/process/submit-checklist.rst when testing your code *** The -mm tree is included into linux-next and is updated there every 3-4 working days ------------------------------------------------------ From: Michal Hocko <mhocko(a)suse.com> Subject: hwpoison, memory_hotplug: allow hwpoisoned pages to be offlined We have received a bug report that an injected MCE about faulty memory prevents memory offline to succeed on 4.4 base kernel. The underlying reason was that the HWPoison page has an elevated reference count and the migration keeps failing. There are two problems with that. First of all it is dubious to migrate the poisoned page because we know that accessing that memory is possible to fail. Secondly it doesn't make any sense to migrate a potentially broken content and preserve the memory corruption over to a new location. Oscar has found out that 4.4 and the current upstream kernels behave slightly differently with his simply testcase === int main(void) { int ret; int i; int fd; char *array = malloc(4096); char *array_locked = malloc(4096); fd = open("/tmp/data", O_RDONLY); read(fd, array, 4095); for (i = 0; i < 4096; i++) array_locked[i] = 'd'; ret = mlock((void *)PAGE_ALIGN((unsigned long)array_locked), sizeof(array_locked)); if (ret) perror("mlock"); sleep (20); ret = madvise((void *)PAGE_ALIGN((unsigned long)array_locked), 4096, MADV_HWPOISON); if (ret) perror("madvise"); for (i = 0; i < 4096; i++) array_locked[i] = 'd'; return 0; } === + offline this memory. In 4.4 kernels he saw the hwpoisoned page to be returned back to the LRU list kernel: [<ffffffff81019ac9>] dump_trace+0x59/0x340 kernel: [<ffffffff81019e9a>] show_stack_log_lvl+0xea/0x170 kernel: [<ffffffff8101ac71>] show_stack+0x21/0x40 kernel: [<ffffffff8132bb90>] dump_stack+0x5c/0x7c kernel: [<ffffffff810815a1>] warn_slowpath_common+0x81/0xb0 kernel: [<ffffffff811a275c>] __pagevec_lru_add_fn+0x14c/0x160 kernel: [<ffffffff811a2eed>] pagevec_lru_move_fn+0xad/0x100 kernel: [<ffffffff811a334c>] __lru_cache_add+0x6c/0xb0 kernel: [<ffffffff81195236>] add_to_page_cache_lru+0x46/0x70 kernel: [<ffffffffa02b4373>] extent_readpages+0xc3/0x1a0 [btrfs] kernel: [<ffffffff811a16d7>] __do_page_cache_readahead+0x177/0x200 kernel: [<ffffffff811a18c8>] ondemand_readahead+0x168/0x2a0 kernel: [<ffffffff8119673f>] generic_file_read_iter+0x41f/0x660 kernel: [<ffffffff8120e50d>] __vfs_read+0xcd/0x140 kernel: [<ffffffff8120e9ea>] vfs_read+0x7a/0x120 kernel: [<ffffffff8121404b>] kernel_read+0x3b/0x50 kernel: [<ffffffff81215c80>] do_execveat_common.isra.29+0x490/0x6f0 kernel: [<ffffffff81215f08>] do_execve+0x28/0x30 kernel: [<ffffffff81095ddb>] call_usermodehelper_exec_async+0xfb/0x130 kernel: [<ffffffff8161c045>] ret_from_fork+0x55/0x80 And that latter confuses the hotremove path because an LRU page is attempted to be migrated and that fails due to an elevated reference count. It is quite possible that the reuse of the HWPoisoned page is some kind of fixed race condition but I am not really sure about that. With the upstream kernel the failure is slightly different. The page doesn't seem to have LRU bit set but isolate_movable_page simply fails and do_migrate_range simply puts all the isolated pages back to LRU and therefore no progress is made and scan_movable_pages finds same set of pages over and over again. Fix both cases by explicitly checking HWPoisoned pages before we even try to get reference on the page, try to unmap it if it is still mapped. As explained by Naoya: : Hwpoison code never unmapped those for no big reason because : Ksm pages never dominate memory, so we simply didn't have strong : motivation to save the pages. Also put WARN_ON(PageLRU) in case there is a race and we can hit LRU HWPoison pages which shouldn't happen but I couldn't convince myself about that. Naoya has noted the following: : Theoretically no such gurantee, because try_to_unmap() doesn't have a : guarantee of success and then memory_failure() returns immediately : when hwpoison_user_mappings fails. : Or the following code (comes after hwpoison_user_mappings block) also impli= : es : that the target page can still have PageLRU flag. : : /* : * Torn down by someone else? : */ : if (PageLRU(p) && !PageSwapCache(p) && p->mapping =3D=3D NULL) { : action_result(pfn, MF_MSG_TRUNCATED_LRU, MF_IGNORED); : res =3D -EBUSY; : goto out; : } : : So I think it's OK to keep "if (WARN_ON(PageLRU(page)))" block in : current version of your patch. Link: http://lkml.kernel.org/r/20181206120135.14079-1-mhocko@kernel.org Signed-off-by: Michal Hocko <mhocko(a)suse.com> Reviewed-by: Oscar Salvador <osalvador(a)suse.com> Debugged-by: Oscar Salvador <osalvador(a)suse.com> Tested-by: Oscar Salvador <osalvador(a)suse.com> Acked-by: David Hildenbrand <david(a)redhat.com> Acked-by: Naoya Horiguchi <n-horiguchi(a)ah.jp.nec.com> Cc: <stable(a)vger.kernel.org> Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> --- mm/memory_hotplug.c | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) --- a/mm/memory_hotplug.c~hwpoison-memory_hotplug-allow-hwpoisoned-pages-to-be-offlined +++ a/mm/memory_hotplug.c @@ -34,6 +34,7 @@ #include <linux/hugetlb.h> #include <linux/memblock.h> #include <linux/compaction.h> +#include <linux/rmap.h> #include <asm/tlbflush.h> @@ -1343,6 +1344,21 @@ do_migrate_range(unsigned long start_pfn pfn = page_to_pfn(compound_head(page)) + hpage_nr_pages(page) - 1; + /* + * HWPoison pages have elevated reference counts so the migration would + * fail on them. It also doesn't make any sense to migrate them in the + * first place. Still try to unmap such a page in case it is still mapped + * (e.g. current hwpoison implementation doesn't unmap KSM pages but keep + * the unmap as the catch all safety net). + */ + if (PageHWPoison(page)) { + if (WARN_ON(PageLRU(page))) + isolate_lru_page(page); + if (page_mapped(page)) + try_to_unmap(page, TTU_IGNORE_MLOCK | TTU_IGNORE_ACCESS); + continue; + } + if (!get_page_unless_zero(page)) continue; /* _ Patches currently in -mm which might be from mhocko(a)suse.com are mm-print-more-information-about-mapping-in-__dump_page.patch mm-lower-the-printk-loglevel-for-__dump_page-messages.patch mm-memory_hotplug-drop-pointless-block-alignment-checks-from-__offline_pages.patch mm-memory_hotplug-print-reason-for-the-offlining-failure.patch mm-memory_hotplug-be-more-verbose-for-memory-offline-failures.patch mm-memory_hotplug-be-more-verbose-for-memory-offline-failures-update.patch mm-memory_hotplug-do-not-clear-numa_node-association-after-hot_remove.patch hwpoison-memory_hotplug-allow-hwpoisoned-pages-to-be-offlined.patch

6 years

1
0
0 0

[PATCH 1/2] drm/amdkfd: add new vega10 pci ids

by Alex Deucher

New vega10 ids. Signed-off-by: Alex Deucher <alexander.deucher(a)amd.com> Cc: stable(a)vger.kernel.org --- drivers/gpu/drm/amd/amdkfd/kfd_device.c | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/drivers/gpu/drm/amd/amdkfd/kfd_device.c b/drivers/gpu/drm/amd/amdkfd/kfd_device.c index 9ed14a11afa2..b78b3c2fa9d8 100644 --- a/drivers/gpu/drm/amd/amdkfd/kfd_device.c +++ b/drivers/gpu/drm/amd/amdkfd/kfd_device.c @@ -378,7 +378,13 @@ static const struct kfd_deviceid supported_devices[] = { { 0x6864, &vega10_device_info }, /* Vega10 */ { 0x6867, &vega10_device_info }, /* Vega10 */ { 0x6868, &vega10_device_info }, /* Vega10 */ + { 0x6869, &vega10_device_info }, /* Vega10 */ + { 0x686A, &vega10_device_info }, /* Vega10 */ + { 0x686B, &vega10_device_info }, /* Vega10 */ { 0x686C, &vega10_vf_device_info }, /* Vega10 vf*/ + { 0x686D, &vega10_device_info }, /* Vega10 */ + { 0x686E, &vega10_device_info }, /* Vega10 */ + { 0x686F, &vega10_device_info }, /* Vega10 */ { 0x687F, &vega10_device_info }, /* Vega10 */ { 0x69A0, &vega12_device_info }, /* Vega12 */ { 0x69A1, &vega12_device_info }, /* Vega12 */ -- 2.13.6

6 years

2
1
0 0

[PATCH 1/2] drm/amdgpu: add some additional vega10 pci ids

by Alex Deucher

New vega ids. Signed-off-by: Alex Deucher <alexander.deucher(a)amd.com> Cc: stable(a)vger.kernel.org --- drivers/gpu/drm/amd/amdgpu/amdgpu_drv.c | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/drivers/gpu/drm/amd/amdgpu/amdgpu_drv.c b/drivers/gpu/drm/amd/amdgpu/amdgpu_drv.c index 90f474f98b6e..e32f6f43a46b 100644 --- a/drivers/gpu/drm/amd/amdgpu/amdgpu_drv.c +++ b/drivers/gpu/drm/amd/amdgpu/amdgpu_drv.c @@ -873,7 +873,13 @@ static const struct pci_device_id pciidlist[] = { {0x1002, 0x6864, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, {0x1002, 0x6867, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, {0x1002, 0x6868, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, + {0x1002, 0x6869, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, + {0x1002, 0x686a, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, + {0x1002, 0x686b, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, {0x1002, 0x686c, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, + {0x1002, 0x686d, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, + {0x1002, 0x686e, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, + {0x1002, 0x686f, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, {0x1002, 0x687f, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA10}, /* Vega 12 */ {0x1002, 0x69A0, PCI_ANY_ID, PCI_ANY_ID, 0, 0, CHIP_VEGA12}, -- 2.13.6

6 years

2
1
0 0

[PATCH 4.9-stable] mm: don't warn about allocations which stall for too long

by Amit Shah

From: Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp> commit 400e22499dd92613821374c8c6c88c7225359980 upstream. Commit 63f53dea0c98 ("mm: warn about allocations which stall for too long") was a great step for reducing possibility of silent hang up problem caused by memory allocation stalls. But this commit reverts it, for it is possible to trigger OOM lockup and/or soft lockups when many threads concurrently called warn_alloc() (in order to warn about memory allocation stalls) due to current implementation of printk(), and it is difficult to obtain useful information due to limitation of synchronous warning approach. Current printk() implementation flushes all pending logs using the context of a thread which called console_unlock(). printk() should be able to flush all pending logs eventually unless somebody continues appending to printk() buffer. Since warn_alloc() started appending to printk() buffer while waiting for oom_kill_process() to make forward progress when oom_kill_process() is processing pending logs, it became possible for warn_alloc() to force oom_kill_process() loop inside printk(). As a result, warn_alloc() significantly increased possibility of preventing oom_kill_process() from making forward progress. ---------- Pseudo code start ---------- Before warn_alloc() was introduced: retry: if (mutex_trylock(&oom_lock)) { while (atomic_read(&printk_pending_logs) > 0) { atomic_dec(&printk_pending_logs); print_one_log(); } // Send SIGKILL here. mutex_unlock(&oom_lock) } goto retry; After warn_alloc() was introduced: retry: if (mutex_trylock(&oom_lock)) { while (atomic_read(&printk_pending_logs) > 0) { atomic_dec(&printk_pending_logs); print_one_log(); } // Send SIGKILL here. mutex_unlock(&oom_lock) } else if (waited_for_10seconds()) { atomic_inc(&printk_pending_logs); } goto retry; ---------- Pseudo code end ---------- Although waited_for_10seconds() becomes true once per 10 seconds, unbounded number of threads can call waited_for_10seconds() at the same time. Also, since threads doing waited_for_10seconds() keep doing almost busy loop, the thread doing print_one_log() can use little CPU resource. Therefore, this situation can be simplified like ---------- Pseudo code start ---------- retry: if (mutex_trylock(&oom_lock)) { while (atomic_read(&printk_pending_logs) > 0) { atomic_dec(&printk_pending_logs); print_one_log(); } // Send SIGKILL here. mutex_unlock(&oom_lock) } else { atomic_inc(&printk_pending_logs); } goto retry; ---------- Pseudo code end ---------- when printk() is called faster than print_one_log() can process a log. One of possible mitigation would be to introduce a new lock in order to make sure that no other series of printk() (either oom_kill_process() or warn_alloc()) can append to printk() buffer when one series of printk() (either oom_kill_process() or warn_alloc()) is already in progress. Such serialization will also help obtaining kernel messages in readable form. ---------- Pseudo code start ---------- retry: if (mutex_trylock(&oom_lock)) { mutex_lock(&oom_printk_lock); while (atomic_read(&printk_pending_logs) > 0) { atomic_dec(&printk_pending_logs); print_one_log(); } // Send SIGKILL here. mutex_unlock(&oom_printk_lock); mutex_unlock(&oom_lock) } else { if (mutex_trylock(&oom_printk_lock)) { atomic_inc(&printk_pending_logs); mutex_unlock(&oom_printk_lock); } } goto retry; ---------- Pseudo code end ---------- But this commit does not go that direction, for we don't want to introduce a new lock dependency, and we unlikely be able to obtain useful information even if we serialized oom_kill_process() and warn_alloc(). Synchronous approach is prone to unexpected results (e.g. too late [1], too frequent [2], overlooked [3]). As far as I know, warn_alloc() never helped with providing information other than "something is going wrong". I want to consider asynchronous approach which can obtain information during stalls with possibly relevant threads (e.g. the owner of oom_lock and kswapd-like threads) and serve as a trigger for actions (e.g. turn on/off tracepoints, ask libvirt daemon to take a memory dump of stalling KVM guest for diagnostic purpose). This commit temporarily loses ability to report e.g. OOM lockup due to unable to invoke the OOM killer due to !__GFP_FS allocation request. But asynchronous approach will be able to detect such situation and emit warning. Thus, let's remove warn_alloc(). [1] https://bugzilla.kernel.org/show_bug.cgi?id=192981 [2] http://lkml.kernel.org/r/CAM_iQpWuPVGc2ky8M-9yukECtS+zKjiDasNymX7rMcBjBFyM_… [3] commit db73ee0d46379922 ("mm, vmscan: do not loop on too_many_isolated for ever")) Link: http://lkml.kernel.org/r/1509017339-4802-1-git-send-email-penguin-kernel@I-… Signed-off-by: Tetsuo Handa <penguin-kernel(a)I-love.SAKURA.ne.jp> Reported-by: Cong Wang <xiyou.wangcong(a)gmail.com> Reported-by: yuwang.yuwang <yuwang.yuwang(a)alibaba-inc.com> Reported-by: Johannes Weiner <hannes(a)cmpxchg.org> Acked-by: Michal Hocko <mhocko(a)suse.com> Acked-by: Johannes Weiner <hannes(a)cmpxchg.org> Cc: Vlastimil Babka <vbabka(a)suse.cz> Cc: Mel Gorman <mgorman(a)suse.de> Cc: Dave Hansen <dave.hansen(a)intel.com> Cc: Sergey Senozhatsky <sergey.senozhatsky(a)gmail.com> Cc: Petr Mladek <pmladek(a)suse.com> Cc: Steven Rostedt <rostedt(a)goodmis.org> Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds(a)linux-foundation.org> [Resolved backport conflict due to missing 8225196, a8e9925, 9e80c71 and 9a67f64 in 4.9 -- all of which modified this hunk being removed.] Signed-off-by: Amit Shah <amit(a)kernel.org> --- mm/page_alloc.c | 10 ---------- 1 file changed, 10 deletions(-) diff --git a/mm/page_alloc.c b/mm/page_alloc.c index 28240ce475d6..3af727d95c17 100644 --- a/mm/page_alloc.c +++ b/mm/page_alloc.c @@ -3530,8 +3530,6 @@ __alloc_pages_slowpath(gfp_t gfp_mask, unsigned int order, enum compact_result compact_result; int compaction_retries; int no_progress_loops; - unsigned long alloc_start = jiffies; - unsigned int stall_timeout = 10 * HZ; unsigned int cpuset_mems_cookie; /* @@ -3704,14 +3702,6 @@ __alloc_pages_slowpath(gfp_t gfp_mask, unsigned int order, if (order > PAGE_ALLOC_COSTLY_ORDER && !(gfp_mask & __GFP_REPEAT)) goto nopage; - /* Make sure we know about allocations which stall for too long */ - if (time_after(jiffies, alloc_start + stall_timeout)) { - warn_alloc(gfp_mask, - "page allocation stalls for %ums, order:%u", - jiffies_to_msecs(jiffies-alloc_start), order); - stall_timeout += 10 * HZ; - } - if (should_reclaim_retry(gfp_mask, order, ac, alloc_flags, did_some_progress > 0, &no_progress_loops)) goto retry; -- 2.15.3.AMZN

6 years

1
0
0 0

[PATCH 4.14 00/55] 4.14.87-stable review

by Greg Kroah-Hartman

This is the start of the stable review cycle for the 4.14.87 release. There are 55 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Sat Dec 8 14:29:38 UTC 2018. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.14.87-rc… or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.14.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Linux 4.14.87-rc1 Guoqing Jiang <gqjiang(a)suse.com> tipc: use destination length for copy string Arnd Bergmann <arnd(a)arndb.de> net: qed: use correct strncpy() size Roman Gushchin <guro(a)fb.com> mm: hide incomplete nr_indirectly_reclaimable in /proc/zoneinfo Daniel Lezcano <daniel.lezcano(a)linaro.org> thermal/drivers/hisi: Remove costly sensor inspection Daniel Lezcano <daniel.lezcano(a)linaro.org> thermal/drivers/hisi: Fix configuration register setting Daniel Lezcano <daniel.lezcano(a)linaro.org> thermal/drivers/hisi: Encapsulate register writes into helpers Daniel Lezcano <daniel.lezcano(a)linaro.org> thermal/drivers/hisi: Remove pointless lock Daniel Lezcano <daniel.lezcano(a)linaro.org> thermal/drivers/hisi: Remove the multiple sensors support Pavel Tikhomirov <ptikhomirov(a)virtuozzo.com> mm: cleancache: fix corruption on missed inode invalidation Masahiro Yamada <yamada.masahiro(a)socionext.com> reset: remove remaining WARN_ON() in <linux/reset.h> Masahiro Yamada <yamada.masahiro(a)socionext.com> reset: make device_reset_optional() really optional Jan Kara <jack(a)suse.cz> udf: Allow mounting volumes with incorrect identification strings Alexey Brodkin <abrodkin(a)synopsys.com> arc: [devboards] Add support of NFSv3 ACL Kevin Hilman <khilman(a)baylibre.com> ARC: change defconfig defaults to ARCv2 Nikolay Borisov <nborisov(a)suse.com> btrfs: Always try all copies when reading extent buffers Qu Wenruo <wqu(a)suse.com> btrfs: tree-checker: Don't check max block group size as current max chunk size limit is unreliable Adam Wong <adam(a)adamwong.me> Input: elan_i2c - add support for ELAN0621 touchpad Noah Westervelt <nwestervelt(a)outlook.com> Input: elan_i2c - add ACPI ID for Lenovo IdeaPad 330-15ARR Patrick Gaskin <patrick(a)pgaskin.net> Input: elan_i2c - add ELAN0620 to the ACPI table Brian Norris <briannorris(a)chromium.org> Input: cros_ec_keyb - fix button/switch capability reports Christian Hoff <christian_hoff(a)gmx.net> Input: matrix_keypad - check for errors from of_get_named_gpio() Lyude Paul <lyude(a)redhat.com> Input: synaptics - add PNP ID for ThinkPad P50 to SMBus Cameron Gutman <aicommander(a)gmail.com> Input: xpad - quirk all PDP Xbox One gamepads Johan Hovold <johan(a)kernel.org> drm/msm: fix OF child-node lookup Wei Wang <wawei(a)amazon.de> svm: Add mutex_lock to protect apic_access_page_done on AMD systems Laura Abbott <labbott(a)redhat.com> kgdboc: Fix warning with module build Laura Abbott <labbott(a)redhat.com> kgdboc: Fix restrict error Takashi Iwai <tiwai(a)suse.de> ALSA: trident: Suppress gcc string warning Andrea Arcangeli <aarcange(a)redhat.com> userfaultfd: shmem/hugetlbfs: only allow to register VM_MAYWRITE vmas Martin Wilck <mwilck(a)suse.com> scsi: scsi_devinfo: cleanly zero-pad devinfo strings Andrea Arcangeli <aarcange(a)redhat.com> userfaultfd: shmem: UFFDIO_COPY: set the page dirty if VM_WRITE is not set Andrea Arcangeli <aarcange(a)redhat.com> userfaultfd: shmem: add i_size checks Andrea Arcangeli <aarcange(a)redhat.com> userfaultfd: shmem: allocate anonymous memory for MAP_PRIVATE shmem Andrea Arcangeli <aarcange(a)redhat.com> userfaultfd: use ENOENT instead of EFAULT if the atomic copy user fails Lyude Paul <lyude(a)redhat.com> drm/meson: Fix OOB memory accesses in meson_viu_set_osd_lut() Lyude Paul <lyude(a)redhat.com> drm/meson: Enable fast_io in meson_dw_hdmi_regmap_config Sergio Correia <sergio(a)correia.cc> drm: set is_master to 0 upon drm_new_set_master() failure Sam Bobroff <sbobroff(a)linux.ibm.com> drm/ast: Fix incorrect free on ioregs Michael Guralnik <michaelgur(a)mellanox.com> IB/mlx5: Avoid load failure due to unknown link width Dmitry V. Levin <ldv(a)altlinux.org> mips: fix mips_get_syscall_arg o32 check Mathias Kresin <dev(a)kresin.me> MIPS: ralink: Fix mt7620 nd_sd pinmux Andrea Parri <andrea.parri(a)amarulasolutions.com> uprobes: Fix handle_swbp() vs. unregister() + register() race once more Sagi Grimberg <sagi(a)grimberg.me> iser: set sector for ambiguous mr status errors Arnd Bergmann <arnd(a)arndb.de> kdb: use memmove instead of overlapping memcpy Arnd Bergmann <arnd(a)arndb.de> staging: rts5208: fix gcc-8 logic error warning Arnd Bergmann <arnd(a)arndb.de> scsi: bfa: convert to strlcpy/strlcat Arnd Bergmann <arnd(a)arndb.de> drm: gma500: fix logic error Sultan Alsawaf <sultanxda(a)gmail.com> ip_tunnel: Fix name string concatenate in __ip_tunnel_create() Guenter Roeck <linux(a)roeck-us.net> kernfs: Replace strncpy with memcpy Linus Torvalds <torvalds(a)linux-foundation.org> unifdef: use memcpy instead of strncpy Takashi Iwai <tiwai(a)suse.de> ALSA: intel_hdmi: Use strlcpy() instead of strncpy() Guenter Roeck <linux(a)roeck-us.net> kobject: Replace strncpy with memcpy Linus Torvalds <torvalds(a)linux-foundation.org> test_hexdump: use memcpy instead of strncpy Stephen Rothwell <sfr(a)canb.auug.org.au> disable stringop truncation warnings for now Xiongfeng Wang <xiongfeng.wang(a)linaro.org> Kbuild: suppress packed-not-aligned warning for default setting only ------------- Diffstat: Makefile | 7 +- arch/arc/Kconfig | 2 +- arch/arc/Makefile | 2 +- arch/arc/configs/axs101_defconfig | 2 + arch/arc/configs/axs103_defconfig | 1 + arch/arc/configs/axs103_smp_defconfig | 1 + arch/arc/configs/hsdk_defconfig | 1 + arch/arc/configs/nps_defconfig | 2 + arch/arc/configs/nsim_700_defconfig | 1 + arch/arc/configs/nsimosci_defconfig | 2 + arch/arc/configs/nsimosci_hs_defconfig | 1 + arch/arc/configs/nsimosci_hs_smp_defconfig | 1 + arch/arc/configs/tb10x_defconfig | 1 + arch/arc/configs/vdk_hs38_defconfig | 1 + arch/arc/configs/vdk_hs38_smp_defconfig | 1 + arch/mips/include/asm/syscall.h | 2 +- arch/mips/ralink/mt7620.c | 2 +- arch/x86/kvm/svm.c | 19 +- drivers/gpu/drm/ast/ast_main.c | 3 +- drivers/gpu/drm/drm_auth.c | 2 + drivers/gpu/drm/gma500/mdfld_intel_display.c | 2 +- drivers/gpu/drm/meson/meson_dw_hdmi.c | 1 + drivers/gpu/drm/meson/meson_viu.c | 12 +- drivers/gpu/drm/msm/adreno/adreno_device.c | 5 +- drivers/infiniband/hw/mlx5/main.c | 29 +-- drivers/infiniband/ulp/iser/iser_verbs.c | 7 +- drivers/input/joystick/xpad.c | 16 +- drivers/input/keyboard/cros_ec_keyb.c | 3 +- drivers/input/keyboard/matrix_keypad.c | 23 +- drivers/input/mouse/elan_i2c_core.c | 3 + drivers/input/mouse/synaptics.c | 1 + drivers/net/ethernet/qlogic/qed/qed_debug.c | 6 +- drivers/reset/core.c | 9 +- drivers/scsi/bfa/bfa_fcbuild.c | 8 +- drivers/scsi/bfa/bfa_fcs.c | 78 +++---- drivers/scsi/bfa/bfa_fcs_lport.c | 62 ++---- drivers/scsi/bfa/bfa_ioc.c | 2 +- drivers/scsi/bfa/bfa_svc.c | 4 +- drivers/scsi/bfa/bfad.c | 20 +- drivers/scsi/bfa/bfad_attr.c | 2 +- drivers/scsi/bfa/bfad_bsg.c | 6 +- drivers/scsi/scsi_devinfo.c | 22 +- drivers/staging/rts5208/sd.c | 6 - drivers/thermal/hisi_thermal.c | 318 ++++++++++++++------------- drivers/tty/serial/kgdboc.c | 43 ++-- fs/btrfs/disk-io.c | 10 +- fs/btrfs/tree-checker.c | 8 +- fs/kernfs/symlink.c | 2 +- fs/udf/super.c | 16 +- fs/udf/unicode.c | 14 +- fs/userfaultfd.c | 15 ++ include/linux/reset.h | 34 ++- kernel/debug/kdb/kdb_support.c | 4 +- kernel/events/uprobes.c | 12 +- lib/kobject.c | 2 +- lib/test_hexdump.c | 2 +- mm/hugetlb.c | 2 +- mm/shmem.c | 31 ++- mm/truncate.c | 8 +- mm/userfaultfd.c | 62 ++++-- mm/vmstat.c | 4 + net/ipv4/ip_tunnel.c | 4 +- net/tipc/subscr.c | 2 +- scripts/Makefile.extrawarn | 3 + scripts/unifdef.c | 4 +- sound/pci/trident/trident.c | 2 +- sound/x86/intel_hdmi_audio.c | 2 +- 67 files changed, 538 insertions(+), 447 deletions(-)

6 years

6
60
0 0

Re: [Xen-devel] Patch "x86/entry/64: Remove %ebx handling from error_entry/exit" has been added to the 4.9-stable tree

by David Woodhouse

On Wed, 2018-08-22 at 09:19 +0200, gregkh(a)linuxfoundation.org wrote: > This is a note to let you know that I've just added the patch titled > > x86/entry/64: Remove %ebx handling from error_entry/exit > > to the 4.9-stable tree which can be found at: > http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… > > The filename of the patch is: > x86-entry-64-remove-ebx-handling-from-error_entry-exit.patch > and it can be found in the queue-4.9 subdirectory. Can we have it for 4.4 too, please? > [ Note to stable maintainers: this should probably get applied to all > kernels. If you're nervous about that, a more conservative fix to > add xorl %ebx,%ebx; incl %ebx before the jump to error_exit should > also fix the problem. ] Can we assume it's always from kernel? The Xen code definitely seems to handle invoking this from both kernel and userspace contexts. Shouldn't %ebx get set to !(regs->rsp & 3) ? Either way, let's just do it in the stable tree exactly the same way it's done upstream. > - * On entry, EBX is a "return to kernel mode" flag: Re-introduce the typo 'EBS' here, to make the patch apply cleanly to 4.4. It's only removing that line anyway. Or just cherry-pick upstream commit 75ca5b22260ef7 first.

6 years

5
8
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror December 2018