May 2021 - Linux-stable-mirror

by Greg Kroah-Hartman

I'm announcing the release of the 5.4.123 kernel. All users of the 5.4 kernel series must upgrade. The updated 5.4.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.4.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Makefile | 2 - drivers/usb/dwc3/gadget.c | 4 +++ include/net/nfc/nci_core.h | 1 kernel/bpf/verifier.c | 46 ++++++++++++++++++++++++----------------- net/nfc/nci/core.c | 1 net/nfc/nci/hci.c | 5 ++++ tools/perf/util/unwind-libdw.c | 35 +++++++++++++++++++++++++++---- 7 files changed, 71 insertions(+), 23 deletions(-) Daniel Borkmann (3): bpf: Wrap aux data inside bpf_sanitize_info container bpf: Fix mask direction swap upon off reg sign change bpf: No need to simulate speculative domain for immediates Dave Rigby (1): perf unwind: Set userdata for all __report_module() paths Dongliang Mu (1): NFC: nci: fix memory leak in nci_allocate_device Greg Kroah-Hartman (1): Linux 5.4.123 Jack Pham (1): usb: dwc3: gadget: Enable suspend events Jan Kratochvil (1): perf unwind: Fix separate debug info files when using elfutils' libdw's unwinder

3 years, 7 months

1
1
0 0

[PATCH 4.19 00/12] bpf: fix verifier selftests, add CVE-2021-29155 fixes

by Ovidiu Panait

This patchset is based on Frank van der Linden's backport of CVE-2021-29155 fixes to 5.4 and 4.14: https://lore.kernel.org/stable/20210429220839.15667-1-fllinden@amazon.com/ https://lore.kernel.org/stable/20210501043014.33300-1-fllinden@amazon.com/ With this series, all verifier selftests but one (that has already been failing, see [1] for more details) succeed. What the series does is: * Fix verifier selftests by backporting various bpf/selftest upstream commits + add two 4.19 specific fixes * Backport fixes for CVE-2021-29155 from 5.4 stable, including selftest changes. Only minor context adjustements were made for 4.19 backport. The following commits that fix selftests are 4.19 specific: Ovidiu Panait (2): 1. bpf: fix up selftests after backports were fixed This is the 4.19 equivalent of https://lore.kernel.org/stable/20210501043014.33300-3-fllinden@amazon.com/ Basically a backport of upstream commit 80c9b2fae87b ("bpf: add various test cases to selftests") adapted to 4.19 in order to fix the selftests that began to fail after CVE-2019-7308 fixes. 2. selftests/bpf: add selftest part of "bpf: improve verifier branch analysis" This is a cherry-pick of the selftest parts that have been left out when backporting 4f7b3e82589e0 ("bpf: improve verifier branch analysis") to 4.19. [1] Note: There is one verifier selftest that still fails: ... #640/p bpf_get_stack return R0 within range FAIL Failed to load prog 'Invalid argument'! 0: (bf) r6 = r1 1: (7a) *(u64 *)(r10 -8) = 0 2: (bf) r2 = r10 3: (07) r2 += -8 4: (18) r1 = 0xffff89a8f5503000 6: (85) call bpf_map_lookup_elem#1 7: (15) if r0 == 0x0 goto pc+28 R0=map_value(id=0,off=0,ks=8,vs=48,imm=0) R6=ctx(id=0,off=0,imm=0) R10=fp0,call_-1 8: (bf) r7 = r0 9: (b7) r9 = 48 10: (bf) r1 = r6 11: (bf) r2 = r7 12: (b7) r3 = 48 13: (b7) r4 = 256 14: (85) call bpf_get_stack#67 R0=map_value(id=0,off=0,ks=8,vs=48,imm=0) R1_w=ctx(id=0,off=0,imm=0) R2_w=map_value(id=0,off=0,ks=8,vs=48,imm=0) R3_w=inv48 R4_w=inv256 R6=ctx(id=0,off=0,imm=0) R7_w=map_value(id=0,off=0,ks=8,vs=48,imm=0) R9_w=inv48 R10=fp0,call_-1 15: (b7) r1 = 0 16: (bf) r8 = r0 17: (67) r8 <<= 32 18: (c7) r8 s>>= 32 19: (cd) if r1 s< r8 goto pc+16 R0=inv(id=0,umax_value=48,var_off=(0x0; 0x3f)) R1=inv0 R6=ctx(id=0,off=0,imm=0) R7=map_value(id=0,off=0,ks=8,vs=48,imm=0) R8=inv0 R9=inv48 R10=fp0,call_-1 20: (1f) r9 -= r8 21: (bf) r2 = r7 22: (0f) r2 += r8 23: (bf) r1 = r9 24: (67) r1 <<= 32 25: (c7) r1 s>>= 32 26: (bf) r3 = r2 27: (0f) r3 += r1 28: (bf) r1 = r7 29: (b7) r5 = 48 30: (0f) r1 += r5 31: (3d) if r3 >= r1 goto pc+4 R0=inv(id=0,umax_value=48,var_off=(0x0; 0x3f)) R1=map_value(id=0,off=48,ks=8,vs=48,imm=0) R2=map_value(id=0,off=0,ks=8,vs=48,imm=0) R3=map_value(id=0,off=48,ks=8,vs=48,imm=0) R5=inv48 R6=ctx(id=0,off=0,imm=0) R7=map_value(id=0,off=0,ks=8,vs=48,imm=0) R8=inv0 R9=inv48 R10=fp0,call_-1 32: (bf) r1 = r6 33: (bf) r3 = r9 34: (b7) r4 = 0 35: (85) call bpf_get_stack#67 R0=inv(id=0,umax_value=48,var_off=(0x0; 0x3f)) R1_w=ctx(id=0,off=0,imm=0) R2=map_value(id=0,off=0,ks=8,vs=48,imm=0) R3_w=inv48 R4_w=inv0 R5=inv48 R6=ctx(id=0,off=0,imm=0) R7=map_value(id=0,off=0,ks=8,vs=48,imm=0) R8=inv0 R9=inv48 R10=fp0,call_-1 36: (95) exit from 35 to 36: R0=inv(id=0,umin_value=18446744071562067968,var_off=(0xffffffff80000000; 0x7fffffff)) R6=ctx(id=0,off=0,imm=0) R7=map_value(id=0,off=0,ks=8,vs=48,imm=0) R8=inv0 R9=inv48 R10=fp0,call_-1 36: (95) exit from 31 to 36: safe from 19 to 36: safe from 14 to 15: R0=inv(id=0,umin_value=18446744071562067968,var_off=(0xffffffff80000000; 0x7fffffff)) R6=ctx(id=0,off=0,imm=0) R7=map_value(id=0,off=0,ks=8,vs=48,imm=0) R9=inv48 R10=fp0,call_-1 15: (b7) r1 = 0 16: (bf) r8 = r0 17: (67) r8 <<= 32 18: (c7) r8 s>>= 32 19: (cd) if r1 s< r8 goto pc+16 R0=inv(id=0,umin_value=18446744071562067968,var_off=(0xffffffff80000000; 0x7fffffff)) R1=inv0 R6=ctx(id=0,off=0,imm=0) R7=map_value(id=0,off=0,ks=8,vs=48,imm=0) R8=inv(id=0,umin_value=18446744071562067968,var_off=(0xffffffff80000000; 0x7fffffff)) R9=inv48 R10=fp0,call_-1 20: (1f) r9 -= r8 21: (bf) r2 = r7 22: (0f) r2 += r8 value -2147483648 makes map_value pointer be out of bounds This failure was introduced after the following 4.19 fix: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=… In 5.4 it was fixed by the following commits, but backporting them to 4.19 is not enough to fix the failing test: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=… https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=… After bisect, the following upstream commit needs to be present as well in order for the selftest to pass, but I am not sure if it is suitable for stable backport: https://github.com/torvalds/linux/commit/2589726d12a1b12eaaa93c7f1ea64287e3… Andrey Ignatov (1): selftests/bpf: Test narrow loads with off > 0 in test_verifier Daniel Borkmann (8): bpf: Move off_reg into sanitize_ptr_alu bpf: Ensure off_reg has no mixed signed bounds for all types bpf: Rework ptr_limit into alu_limit and add common error path bpf: Improve verifier error messages for users bpf: Refactor and streamline bounds check into helper bpf: Move sanitize_val_alu out of op switch bpf: Tighten speculative pointer arithmetic mask bpf: Update selftests to reflect new error states Ovidiu Panait (2): bpf: fix up selftests after backports were fixed selftests/bpf: add selftest part of "bpf: improve verifier branch analysis" Piotr Krysiuk (1): bpf, selftests: Fix up some test_verifier cases for unprivileged kernel/bpf/verifier.c | 229 ++++++++++++++------ tools/testing/selftests/bpf/test_verifier.c | 104 +++++++-- 2 files changed, 241 insertions(+), 92 deletions(-) -- 2.17.1

3 years, 7 months

4
15
0 0

[PATCH v4.4-stable] spi: Fix use-after-free with devm_spi_alloc_*

by Lukas Wunner

Dear Greg, Dear Sasha, please consider applying the patch below to v4.4-stable. It is a backport of upstream commit 794aaf01444d, which has already been applied to all stable kernels going back to v4.14. Thanks! Lukas -- >8 -- >From 429a36a750568599640ae8b9e603d639181fee9a Mon Sep 17 00:00:00 2001 From: "William A. Kennington III" <wak(a)google.com> Date: Wed, 7 Apr 2021 02:55:27 -0700 Subject: [PATCH] spi: Fix use-after-free with devm_spi_alloc_* commit 794aaf01444d4e765e2b067cba01cc69c1c68ed9 upstream. We can't rely on the contents of the devres list during spi_unregister_controller(), as the list is already torn down at the time we perform devres_find() for devm_spi_release_controller. This causes devices registered with devm_spi_alloc_{master,slave}() to be mistakenly identified as legacy, non-devm managed devices and have their reference counters decremented below 0. ------------[ cut here ]------------ WARNING: CPU: 1 PID: 660 at lib/refcount.c:28 refcount_warn_saturate+0x108/0x174 [<b0396f04>] (refcount_warn_saturate) from [<b03c56a4>] (kobject_put+0x90/0x98) [<b03c5614>] (kobject_put) from [<b0447b4c>] (put_device+0x20/0x24) r4:b6700140 [<b0447b2c>] (put_device) from [<b07515e8>] (devm_spi_release_controller+0x3c/0x40) [<b07515ac>] (devm_spi_release_controller) from [<b045343c>] (release_nodes+0x84/0xc4) r5:b6700180 r4:b6700100 [<b04533b8>] (release_nodes) from [<b0454160>] (devres_release_all+0x5c/0x60) r8:b1638c54 r7:b117ad94 r6:b1638c10 r5:b117ad94 r4:b163dc10 [<b0454104>] (devres_release_all) from [<b044e41c>] (__device_release_driver+0x144/0x1ec) r5:b117ad94 r4:b163dc10 [<b044e2d8>] (__device_release_driver) from [<b044f70c>] (device_driver_detach+0x84/0xa0) r9:00000000 r8:00000000 r7:b117ad94 r6:b163dc54 r5:b1638c10 r4:b163dc10 [<b044f688>] (device_driver_detach) from [<b044d274>] (unbind_store+0xe4/0xf8) Instead, determine the devm allocation state as a flag on the controller which is guaranteed to be stable during cleanup. Fixes: 5e844cc37a5c ("spi: Introduce device-managed SPI controller allocation") Signed-off-by: William A. Kennington III <wak(a)google.com> Link: https://lore.kernel.org/r/20210407095527.2771582-1-wak@google.com Signed-off-by: Mark Brown <broonie(a)kernel.org> [lukas: backport to v4.4.270] Signed-off-by: Lukas Wunner <lukas(a)wunner.de> --- drivers/spi/spi.c | 9 ++------- include/linux/spi/spi.h | 3 +++ 2 files changed, 5 insertions(+), 7 deletions(-) diff --git a/drivers/spi/spi.c b/drivers/spi/spi.c index e85feee750e3..f743b95d5171 100644 --- a/drivers/spi/spi.c +++ b/drivers/spi/spi.c @@ -1762,6 +1762,7 @@ struct spi_master *devm_spi_alloc_master(struct device *dev, unsigned int size) master = spi_alloc_master(dev, size); if (master) { + master->devm_allocated = true; *ptr = master; devres_add(dev, ptr); } else { @@ -1951,11 +1952,6 @@ int devm_spi_register_master(struct device *dev, struct spi_master *master) } EXPORT_SYMBOL_GPL(devm_spi_register_master); -static int devm_spi_match_master(struct device *dev, void *res, void *master) -{ - return *(struct spi_master **)res == master; -} - static int __unregister(struct device *dev, void *null) { spi_unregister_device(to_spi_device(dev)); @@ -1994,8 +1990,7 @@ void spi_unregister_master(struct spi_master *master) /* Release the last reference on the master if its driver * has not yet been converted to devm_spi_alloc_master(). */ - if (!devres_find(master->dev.parent, devm_spi_release_master, - devm_spi_match_master, master)) + if (!master->devm_allocated) put_device(&master->dev); if (IS_ENABLED(CONFIG_SPI_DYNAMIC)) diff --git a/include/linux/spi/spi.h b/include/linux/spi/spi.h index f5d387140c46..da487e905337 100644 --- a/include/linux/spi/spi.h +++ b/include/linux/spi/spi.h @@ -425,6 +425,9 @@ struct spi_master { #define SPI_MASTER_MUST_RX BIT(3) /* requires rx */ #define SPI_MASTER_MUST_TX BIT(4) /* requires tx */ + /* flag indicating this is a non-devres managed controller */ + bool devm_allocated; + /* lock and mutex for SPI bus locking */ spinlock_t bus_lock_spinlock; struct mutex bus_lock_mutex; -- 2.31.1

3 years, 7 months

1
0
0 0

[PATCH v4.9-stable] spi: Fix use-after-free with devm_spi_alloc_*

by Lukas Wunner

Dear Greg, Dear Sasha, please consider applying the patch below to v4.9-stable. It is a backport of upstream commit 794aaf01444d, which has already been applied to all stable kernels going back to v4.14. Thanks! Lukas -- >8 -- From: "William A. Kennington III" <wak(a)google.com> Date: Wed, 7 Apr 2021 02:55:27 -0700 Subject: [PATCH] spi: Fix use-after-free with devm_spi_alloc_* commit 794aaf01444d4e765e2b067cba01cc69c1c68ed9 upstream. We can't rely on the contents of the devres list during spi_unregister_controller(), as the list is already torn down at the time we perform devres_find() for devm_spi_release_controller. This causes devices registered with devm_spi_alloc_{master,slave}() to be mistakenly identified as legacy, non-devm managed devices and have their reference counters decremented below 0. ------------[ cut here ]------------ WARNING: CPU: 1 PID: 660 at lib/refcount.c:28 refcount_warn_saturate+0x108/0x174 [<b0396f04>] (refcount_warn_saturate) from [<b03c56a4>] (kobject_put+0x90/0x98) [<b03c5614>] (kobject_put) from [<b0447b4c>] (put_device+0x20/0x24) r4:b6700140 [<b0447b2c>] (put_device) from [<b07515e8>] (devm_spi_release_controller+0x3c/0x40) [<b07515ac>] (devm_spi_release_controller) from [<b045343c>] (release_nodes+0x84/0xc4) r5:b6700180 r4:b6700100 [<b04533b8>] (release_nodes) from [<b0454160>] (devres_release_all+0x5c/0x60) r8:b1638c54 r7:b117ad94 r6:b1638c10 r5:b117ad94 r4:b163dc10 [<b0454104>] (devres_release_all) from [<b044e41c>] (__device_release_driver+0x144/0x1ec) r5:b117ad94 r4:b163dc10 [<b044e2d8>] (__device_release_driver) from [<b044f70c>] (device_driver_detach+0x84/0xa0) r9:00000000 r8:00000000 r7:b117ad94 r6:b163dc54 r5:b1638c10 r4:b163dc10 [<b044f688>] (device_driver_detach) from [<b044d274>] (unbind_store+0xe4/0xf8) Instead, determine the devm allocation state as a flag on the controller which is guaranteed to be stable during cleanup. Fixes: 5e844cc37a5c ("spi: Introduce device-managed SPI controller allocation") Signed-off-by: William A. Kennington III <wak(a)google.com> Link: https://lore.kernel.org/r/20210407095527.2771582-1-wak@google.com Signed-off-by: Mark Brown <broonie(a)kernel.org> [lukas: backport to v4.9.270] Signed-off-by: Lukas Wunner <lukas(a)wunner.de> --- drivers/spi/spi.c | 9 ++------- include/linux/spi/spi.h | 3 +++ 2 files changed, 5 insertions(+), 7 deletions(-) diff --git a/drivers/spi/spi.c b/drivers/spi/spi.c index f0ba5eb26128..84e2296c45a2 100644 --- a/drivers/spi/spi.c +++ b/drivers/spi/spi.c @@ -1869,6 +1869,7 @@ struct spi_master *devm_spi_alloc_master(struct device *dev, unsigned int size) master = spi_alloc_master(dev, size); if (master) { + master->devm_allocated = true; *ptr = master; devres_add(dev, ptr); } else { @@ -2059,11 +2060,6 @@ int devm_spi_register_master(struct device *dev, struct spi_master *master) } EXPORT_SYMBOL_GPL(devm_spi_register_master); -static int devm_spi_match_master(struct device *dev, void *res, void *master) -{ - return *(struct spi_master **)res == master; -} - static int __unregister(struct device *dev, void *null) { spi_unregister_device(to_spi_device(dev)); @@ -2102,8 +2098,7 @@ void spi_unregister_master(struct spi_master *master) /* Release the last reference on the master if its driver * has not yet been converted to devm_spi_alloc_master(). */ - if (!devres_find(master->dev.parent, devm_spi_release_master, - devm_spi_match_master, master)) + if (!master->devm_allocated) put_device(&master->dev); if (IS_ENABLED(CONFIG_SPI_DYNAMIC)) diff --git a/include/linux/spi/spi.h b/include/linux/spi/spi.h index 8470695e5dd7..9c8445f1af0c 100644 --- a/include/linux/spi/spi.h +++ b/include/linux/spi/spi.h @@ -443,6 +443,9 @@ struct spi_master { #define SPI_MASTER_MUST_RX BIT(3) /* requires rx */ #define SPI_MASTER_MUST_TX BIT(4) /* requires tx */ + /* flag indicating this is a non-devres managed controller */ + bool devm_allocated; + /* * on some hardware transfer / message size may be constrained * the limit may depend on device transfer settings -- 2.31.1

3 years, 7 months

1
0
0 0

[PATCH] usb: dwc3: gadget: Bail from dwc3_gadget_exit() if dwc->gadget is NULL

by Jack Pham

There exists a possible scenario in which dwc3_gadget_init() can fail: during during host -> peripheral mode switch in dwc3_set_mode(), and a pending gadget driver fails to bind. Then, if the DRD undergoes another mode switch from peripheral->host the resulting dwc3_gadget_exit() will attempt to reference an invalid and dangling dwc->gadget pointer as well as call dma_free_coherent() on unmapped DMA pointers. The exact scenario can be reproduced as follows: - Start DWC3 in peripheral mode - Configure ConfigFS gadget with FunctionFS instance (or use g_ffs) - Run FunctionFS userspace application (open EPs, write descriptors, etc) - Bind gadget driver to DWC3's UDC - Switch DWC3 to host mode => dwc3_gadget_exit() is called. usb_del_gadget() will put the ConfigFS driver instance on the gadget_driver_pending_list - Stop FunctionFS application (closes the ep files) - Switch DWC3 to peripheral mode => dwc3_gadget_init() fails as usb_add_gadget() calls check_pending_gadget_drivers() and attempts to rebind the UDC to the ConfigFS gadget but fails with -19 (-ENODEV) because the FFS instance is not in FFS_READY state. - Switch DWC3 back to host mode => dwc3_gadget_exit() is called again, but this time dwc->gadget is invalid. Although it can be argued that userspace should take responsibility for ensuring that the FunctionFS application be ready prior to allowing the composite driver bind to the UDC, failure to do so should not result in a panic from the kernel driver. Fix this by setting dwc->gadget to NULL in the failure path of dwc3_gadget_init() and add a check to dwc3_gadget_exit() to bail out unless the gadget pointer is valid. Fixes: e81a7018d93a ("usb: dwc3: allocate gadget structure dynamically") Cc: <stable(a)vger.kernel.org> Signed-off-by: Jack Pham <jackp(a)codeaurora.org> --- Hi Felipe, Although I marked the 'Fixes' tag above to e81a7018d93a, the problem theoretically exists prior to Peter's change. But I'm not sure how best to fix on versions prior to this change since dwc->gadget used to be an embedded struct so we can't do a simple NULL check as below. Suggestions on alternative approaches welcome if we want to proceed with backporting to older (pre-5.9) stable releases. Thanks, Jack drivers/usb/dwc3/gadget.c | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/drivers/usb/dwc3/gadget.c b/drivers/usb/dwc3/gadget.c index 612825a39f82..65d9b7227752 100644 --- a/drivers/usb/dwc3/gadget.c +++ b/drivers/usb/dwc3/gadget.c @@ -4046,6 +4046,7 @@ int dwc3_gadget_init(struct dwc3 *dwc) dwc3_gadget_free_endpoints(dwc); err4: usb_put_gadget(dwc->gadget); + dwc->gadget = NULL; err3: dma_free_coherent(dwc->sysdev, DWC3_BOUNCE_SIZE, dwc->bounce, dwc->bounce_addr); @@ -4065,6 +4066,9 @@ int dwc3_gadget_init(struct dwc3 *dwc) void dwc3_gadget_exit(struct dwc3 *dwc) { + if (!dwc->gadget) + return; + usb_del_gadget(dwc->gadget); dwc3_gadget_free_endpoints(dwc); usb_put_gadget(dwc->gadget); -- 2.24.0

3 years, 7 months

3
2
0 0

[PATCH 0/3] remoteproc: core: Fixes for rproc cdev and add

by Siddharth Gupta

This patch series contains stability fixes and error handling for remoteproc. The changes included in this series do the following: Patch 1: Fixes the creation of the rproc character device. Patch 2: Validates rproc as the first step of rproc_add(). Patch 3: Adds error handling in rproc_add(). Siddharth Gupta (3): remoteproc: core: Move cdev add before device add remoteproc: core: Move validate before device add remoteproc: core: Cleanup device in case of failure drivers/remoteproc/remoteproc_core.c | 25 +++++++++++++++++-------- 1 file changed, 17 insertions(+), 8 deletions(-) -- Qualcomm Innovation Center, Inc. is a member of the Code Aurora Forum, a Linux Foundation Collaborative Project

3 years, 7 months

2
6
0 0

Linux 5.10.40

by Greg Kroah-Hartman

I'm announcing the release of the 5.10.40 kernel. All users of the 5.10 kernel series must upgrade. The updated 5.10.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.10.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/powerpc/syscall64-abi.rst | 10 + Makefile | 2 arch/openrisc/kernel/setup.c | 2 arch/openrisc/mm/init.c | 3 arch/powerpc/include/asm/hvcall.h | 3 arch/powerpc/include/asm/paravirt.h | 22 ++- arch/powerpc/include/asm/ptrace.h | 45 +++--- arch/powerpc/include/asm/syscall.h | 42 +++--- arch/powerpc/kernel/setup_64.c | 4 arch/powerpc/platforms/pseries/hvCall.S | 10 + arch/powerpc/platforms/pseries/lpar.c | 3 arch/x86/boot/compressed/head_64.S | 85 ++++++++++++ arch/x86/events/intel/core.c | 2 arch/x86/kernel/sev-es-shared.c | 1 arch/x86/kernel/sev-es.c | 136 ++++++++++++-------- arch/x86/xen/enlighten_pv.c | 8 - drivers/cdrom/gdrom.c | 13 + drivers/firmware/arm_scpi.c | 4 drivers/gpu/drm/amd/amdgpu/amdgpu_ttm.c | 2 drivers/gpu/drm/amd/amdgpu/gfx_v10_0.c | 6 drivers/gpu/drm/amd/amdgpu/gfx_v9_0.c | 10 + drivers/gpu/drm/amd/amdgpu/sdma_v5_0.c | 4 drivers/gpu/drm/amd/amdgpu/soc15.c | 2 drivers/gpu/drm/i915/gt/gen7_renderclear.c | 5 drivers/hwmon/lm80.c | 11 - drivers/infiniband/core/cma.c | 5 drivers/infiniband/core/uverbs_std_types_device.c | 7 - drivers/infiniband/hw/mlx5/devx.c | 6 drivers/infiniband/hw/mlx5/main.c | 1 drivers/infiniband/sw/rxe/rxe_qp.c | 7 + drivers/infiniband/sw/siw/siw_verbs.c | 11 - drivers/leds/leds-lp5523.c | 2 drivers/md/dm-snap.c | 1 drivers/media/platform/rcar_drif.c | 1 drivers/misc/eeprom/at24.c | 6 drivers/misc/ics932s401.c | 2 drivers/mmc/host/sdhci-pci-gli.c | 7 - drivers/net/ethernet/qlogic/qlcnic/qlcnic_ethtool.c | 3 drivers/net/ethernet/stmicro/stmmac/dwmac-sunxi.c | 8 - drivers/net/ethernet/sun/niu.c | 32 ++-- drivers/net/wireless/realtek/rtlwifi/base.c | 18 +- drivers/nvme/host/core.c | 3 drivers/nvme/host/fc.c | 12 + drivers/nvme/host/multipath.c | 55 ++++---- drivers/nvme/host/nvme.h | 8 - drivers/nvme/host/tcp.c | 5 drivers/nvme/target/core.c | 15 -- drivers/nvme/target/io-cmd-file.c | 8 - drivers/nvme/target/loop.c | 4 drivers/nvme/target/nvmet.h | 1 drivers/platform/mellanox/mlxbf-tmfifo.c | 11 + drivers/platform/x86/Kconfig | 2 drivers/platform/x86/dell-smbios-wmi.c | 3 drivers/platform/x86/intel_int0002_vgpio.c | 80 ++++++++--- drivers/rapidio/rio_cm.c | 17 +- drivers/rtc/rtc-pcf85063.c | 7 - drivers/scsi/qedf/qedf_main.c | 4 drivers/scsi/qla2xxx/qla_nx.c | 3 drivers/scsi/ufs/ufs-hisi.c | 15 +- drivers/scsi/ufs/ufshcd.c | 5 drivers/tee/amdtee/amdtee_private.h | 13 + drivers/tee/amdtee/call.c | 94 ++++++++++++- drivers/tee/amdtee/core.c | 15 +- drivers/tty/serial/mvebu-uart.c | 3 drivers/tty/vt/vt.c | 2 drivers/tty/vt/vt_ioctl.c | 57 ++++++-- drivers/uio/uio_hv_generic.c | 8 - drivers/video/console/vgacon.c | 56 ++++---- drivers/video/fbdev/core/fbcon.c | 2 drivers/video/fbdev/hgafb.c | 21 +-- drivers/video/fbdev/imsttfb.c | 5 drivers/xen/xen-pciback/vpci.c | 14 +- drivers/xen/xen-pciback/xenbus.c | 22 ++- fs/btrfs/inode.c | 1 fs/cifs/smb2ops.c | 2 fs/ecryptfs/crypto.c | 6 include/linux/console_struct.h | 1 ipc/mqueue.c | 6 ipc/msg.c | 6 ipc/sem.c | 6 kernel/kcsan/debugfs.c | 3 kernel/locking/lockdep.c | 4 kernel/locking/mutex-debug.c | 4 kernel/locking/mutex-debug.h | 2 kernel/locking/mutex.c | 18 +- kernel/locking/mutex.h | 4 kernel/ptrace.c | 18 ++ net/bluetooth/smp.c | 9 + sound/firewire/Kconfig | 4 sound/firewire/amdtp-stream-trace.h | 6 sound/firewire/amdtp-stream.c | 42 +++--- sound/firewire/bebob/bebob.c | 2 sound/firewire/dice/dice-alesis.c | 2 sound/firewire/dice/dice-tcelectronic.c | 4 sound/firewire/oxfw/oxfw.c | 1 sound/isa/sb/sb8.c | 4 sound/pci/hda/patch_realtek.c | 135 +++++++++++++++++++ sound/pci/intel8x0.c | 7 + sound/usb/line6/driver.c | 4 sound/usb/line6/pod.c | 5 sound/usb/line6/variax.c | 6 sound/usb/midi.c | 4 tools/testing/selftests/exec/Makefile | 6 tools/testing/selftests/seccomp/seccomp_bpf.c | 27 ++- 104 files changed, 1041 insertions(+), 430 deletions(-) Alexey Kardashevskiy (1): powerpc: Fix early setup to make early_ioremap() work Amit (1): nvmet: remove unused ctrl->cqs Anirudh Rayabharam (3): rapidio: handle create_workqueue() failure net: stmicro: handle clk_prepare() failure during init video: hgafb: correctly handle card detect failure during probe Arnd Bergmann (1): kcsan: Fix debugfs initcall return type Atul Gopinathan (1): cdrom: gdrom: deallocate struct gdrom_unit fields in remove_gdrom Bart Van Assche (1): scsi: ufs: core: Increase the usable queue depth Changfeng (1): drm/amdgpu: disable 3DCGCG on picasso/raven1 to avoid compute hang Christoph Hellwig (1): nvme-multipath: fix double initialization of ANA state Christophe JAILLET (2): openrisc: Fix a memory leak uio_hv_generic: Fix a memory leak in error handling paths Dan Carpenter (2): firmware: arm_scpi: Prevent the ternary sign expansion bug RDMA/uverbs: Fix a NULL vs IS_ERR() bug Daniel Beer (1): mmc: sdhci-pci-gli: increase 1.8V regulator wait Daniel Cordova A (1): ALSA: hda: fixup headset for ASUS GU502 laptop Daniel Wagner (1): nvmet: seset ns->file when open fails Darrick J. Wong (1): ics932s401: fix broken handling of errors when word reading fails Du Cheng (1): ethernet: sun: niu: fix missing checks of niu_pci_eeprom_read() Elia Devito (1): ALSA: hda/realtek: Add fixup for HP Spectre x360 15-df0xxx Francois Gervais (1): rtc: pcf85063: fallback to parent of_node Greg Kroah-Hartman (18): Revert "ALSA: sb8: add a check for request_region" Revert "rapidio: fix a NULL pointer dereference when create_workqueue() fails" Revert "serial: mvebu-uart: Fix to avoid a potential NULL pointer dereference" Revert "video: hgafb: fix potential NULL pointer dereference" Revert "net: stmicro: fix a missing check of clk_prepare" Revert "leds: lp5523: fix a missing check of return value of lp55xx_read" Revert "hwmon: (lm80) fix a missing check of bus read in lm80 probe" Revert "video: imsttfb: fix potential NULL pointer dereferences" Revert "ecryptfs: replace BUG_ON with error handling code" Revert "scsi: ufs: fix a missing check of devm_reset_control_get" Revert "gdrom: fix a memory leak bug" cdrom: gdrom: initialize global variable at init time Revert "media: rcar_drif: fix a memory disclosure" Revert "rtlwifi: fix a potential NULL pointer dereference" Revert "qlcnic: Avoid potential NULL pointer dereference" Revert "niu: fix missing checks of niu_pci_eeprom_read" net: rtlwifi: properly check for alloc_workqueue() failure Linux 5.10.40 Guchun Chen (2): drm/amdgpu: update gc golden setting for Navi12 drm/amdgpu: update sdma golden setting for Navi12 Hans de Goede (2): platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios Hou Pu (1): nvmet: use new ana_log_size instead the old one Hsin-Yi Wang (1): misc: eeprom: at24: check suspend status before disable regulator Hui Wang (1): ALSA: hda/realtek: reset eapd coeff to default value for alc287 Igor Matheus Andrade Torrente (1): video: hgafb: fix potential NULL pointer dereference James Smart (1): nvme-fc: clear q_live at beginning of association teardown Jan Beulich (3): xen-pciback: redo VF placement in the virtual topology xen-pciback: reconfigure also from backend watch handler x86/Xen: swap NX determination and GDT setup on BSP Javed Hasan (1): scsi: qedf: Add pointer checks in qedf_update_link_speed() Joerg Roedel (4): x86/sev-es: Don't return NULL from sev_es_get_ghcb() x86/sev-es: Use __put_user()/__get_user() for data accesses x86/sev-es: Forward page-faults which happen during emulation x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path Josef Bacik (1): btrfs: avoid RCU stalls while running delayed iputs Keith Busch (1): nvme-tcp: rerun io_work if req_list is not empty Leo Yan (1): locking/lockdep: Correct calling tracepoints Leon Romanovsky (4): RDMA/siw: Properly check send and receive CQ pointers RDMA/siw: Release xarray entry RDMA/core: Prevent divide-by-zero error triggered by the user RDMA/rxe: Clear all QP fields if creation failed Like Xu (1): perf/x86: Avoid touching LBR_TOS MSR for Arch LBR Liming Sun (1): platform/mellanox: mlxbf-tmfifo: Fix a memory barrier issue Luiz Augusto von Dentz (1): Bluetooth: SMP: Fail if remote and local public keys are identical Maciej W. Rozycki (3): vgacon: Record video mode changes with VT_RESIZEX vt_ioctl: Revert VT_RESIZEX parameter handling removal vt: Fix character height handling with VT_RESIZEX Maor Gottlieb (2): RDMA/mlx5: Recover from fatal event in dual port mode RDMA/mlx5: Fix query DCT via DEVX Mike Rapoport (1): openrisc: mm/init.c: remove unused memblock_region variable in map_ram() Mikulas Patocka (1): dm snapshot: fix crash with transient storage and zero chunk size Nicholas Piggin (3): powerpc/pseries: Fix hcall tracing recursion in pv queued spinlocks powerpc/64s/syscall: Use pt_regs.trap to distinguish syscall ABI difference between sc and scv syscalls powerpc/64s/syscall: Fix ptrace syscall info with scv syscalls Oleg Nesterov (1): ptrace: make ptrace() fail if the tracee changed its pid unexpectedly PeiSen Hou (1): ALSA: hda/realtek: Add some CLOVE SSIDs of ALC293 Phillip Potter (2): scsi: ufs: handle cleanup correctly on devm_reset_control_get error leds: lp5523: check return value of lp5xx_read and jump to cleanup code Rijo Thomas (1): tee: amdtee: unload TA only when its refcount becomes 0 Ronnie Sahlberg (1): cifs: fix memory leak in smb2_copychunk_range Sagi Grimberg (1): nvme-tcp: fix possible use-after-completion Shay Drory (1): RDMA/core: Don't access cm_id after its destruction Simon Rettberg (1): drm/i915/gt: Disable HiZ Raw Stall Optimization on broken gen7 Takashi Iwai (5): ALSA: intel8x0: Don't update period unless prepared ALSA: line6: Fix racy initialization of LINE6 MIDI ALSA: usb-audio: Validate MS endpoint descriptors ALSA: hda/realtek: Fix silent headphone output on ASUS UX430UA ALSA: hda/realtek: Add fixup for HP OMEN laptop Takashi Sakamoto (6): ALSA: dice: fix stream format for TC Electronic Konnekt Live at high sampling transfer frequency ALSA: firewire-lib: fix amdtp_packet tracepoints event for packet_index field ALSA: dice: fix stream format at middle sampling rate for Alesis iO 26 ALSA: firewire-lib: fix calculation for size of IR context payload ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro ALSA: firewire-lib: fix check for the size of isochronous packet payload Tetsuo Handa (1): tty: vt: always invoke vc->vc_sw->con_resize callback Tom Lendacky (2): x86/sev-es: Move sev_es_put_ghcb() in prep for follow on patch x86/sev-es: Invalidate the GHCB after completing VMGEXIT Tom Seewald (1): qlcnic: Add null check after calling netdev_alloc_skb Varad Gautam (1): ipc/mqueue, msg, sem: avoid relying on a stack reference past its expiry Wu Bo (2): nvmet: fix memory leak in nvmet_alloc_ctrl() nvme-loop: fix memory leak in nvme_loop_create_ctrl() Yang Yingliang (1): tools/testing/selftests/exec: fix link error Yi Li (1): drm/amdgpu: Fix GPU TLB update error when PAGE_SIZE > AMDGPU_PAGE_SIZE Zhen Lei (1): scsi: qla2xxx: Fix error return code in qla82xx_write_flash_dword() Zqiang (1): locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal

3 years, 7 months

2
2
0 0

[to-be-updated] kthread-fix-kthread_mod_delayed_work-vs-kthread_cancel_delayed_work_sync-race.patch removed from -mm tree

by akpm＠linux-foundation.org

The patch titled Subject: kthread: fix kthread_mod_delayed_work vs kthread_cancel_delayed_work_sync race has been removed from the -mm tree. Its filename was kthread-fix-kthread_mod_delayed_work-vs-kthread_cancel_delayed_work_sync-race.patch This patch was dropped because an updated version will be merged ------------------------------------------------------ From: Martin Liu <liumartin(a)google.com> Subject: kthread: fix kthread_mod_delayed_work vs kthread_cancel_delayed_work_sync race We encountered a system hang issue while doing the tests. The callstack is as following schedule+0x80/0x100 schedule_timeout+0x48/0x138 wait_for_common+0xa4/0x134 wait_for_completion+0x1c/0x2c kthread_flush_work+0x114/0x1cc kthread_cancel_work_sync.llvm.16514401384283632983+0xe8/0x144 kthread_cancel_delayed_work_sync+0x18/0x2c xxxx_pm_notify+0xb0/0xd8 blocking_notifier_call_chain_robust+0x80/0x194 pm_notifier_call_chain_robust+0x28/0x4c suspend_prepare+0x40/0x260 enter_state+0x80/0x3f4 pm_suspend+0x60/0xdc state_store+0x108/0x144 kobj_attr_store+0x38/0x88 sysfs_kf_write+0x64/0xc0 kernfs_fop_write_iter+0x108/0x1d0 vfs_write+0x2f4/0x368 ksys_write+0x7c/0xec When we started investigating, we found race between kthread_mod_delayed_work vs kthread_cancel_delayed_work_sync. The race's result could be simply reproduced as a kthread_mod_delayed_work with a following kthread_flush_work call. Thing is we release kthread_mod_delayed_work kspin_lock in __kthread_cancel_work so it opens a race window for kthread_cancel_delayed_work_sync to change the canceling count used to prevent dwork from being requeued before calling kthread_flush_work. However, we don't check the canceling count after returning from __kthread_cancel_work and then insert the dwork to the worker. It results the following kthread_flush_work inserts flush work to dwork's tail which is at worker's dealyed_work_list. Therefore, flush work will never get moved to the worker's work_list to be executed. Finally, kthread_cancel_delayed_work_sync will NOT be able to get completed and wait forever. The code sequence diagram is as following Thread A Thread B kthread_mod_delayed_work spin_lock __kthread_cancel_work canceling = 1 spin_unlock kthread_cancel_delayed_work_sync spin_lock kthread_cancel_work canceling = 2 spin_unlock del_timer_sync spin_lock canceling = 1 // canceling count gets update in ThreadB before queue_delayed_work // dwork is put into the woker's dealyed_work_list without checking the canceling count spin_unlock kthread_flush_work spin_lock Insert flush work // at the tail of the dwork which is at the worker's dealyed_work_list spin_unlock wait_for_completion // Thread B stuck here as flush work will never get executed The canceling count could change in __kthread_cancel_work as the spinlock get released and regained in between, let's check the count again before we queue the delayed work to avoid the race. Link: https://lkml.kernel.org/r/20210513065458.941403-1-liumartin@google.com Fixes: 37be45d49dec2 ("kthread: allow to cancel kthread work") Signed-off-by: Martin Liu <liumartin(a)google.com> Tested-by: David Chao <davidchao(a)google.com> Reviewed-by: Petr Mladek <pmladek(a)suse.com> Cc: Tejun Heo <tj(a)kernel.org> Cc: Oleg Nesterov <oleg(a)redhat.com> Cc: Ingo Molnar <mingo(a)redhat.com> Cc: Peter Zijlstra <peterz(a)infradead.org> Cc: Steven Rostedt <rostedt(a)goodmis.org> Cc: "Paul E. McKenney" <paulmck(a)linux.vnet.ibm.com> Cc: Josh Triplett <josh(a)joshtriplett.org> Cc: Thomas Gleixner <tglx(a)linutronix.de> Cc: Jiri Kosina <jkosina(a)suse.cz> Cc: Borislav Petkov <bp(a)suse.de> Cc: Michal Hocko <mhocko(a)suse.cz> Cc: Vlastimil Babka <vbabka(a)suse.cz> Cc: Nathan Chancellor <nathan(a)kernel.org> Cc: Nick Desaulniers <ndesaulniers(a)google.com> Cc: <jenhaochen(a)google.com> Cc: <stable(a)vger.kernel.org> Signed-off-by: Andrew Morton <akpm(a)linux-foundation.org> --- kernel/kthread.c | 13 +++++++++++++ 1 file changed, 13 insertions(+) --- a/kernel/kthread.c~kthread-fix-kthread_mod_delayed_work-vs-kthread_cancel_delayed_work_sync-race +++ a/kernel/kthread.c @@ -1181,6 +1181,19 @@ bool kthread_mod_delayed_work(struct kth goto out; ret = __kthread_cancel_work(work, true, &flags); + + /* + * Canceling could run in parallel from kthread_cancel_delayed_work_sync + * and change work's canceling count as the spinlock is released and regain + * in __kthread_cancel_work so we need to check the count again. Otherwise, + * we might incorrectly queue the dwork and further cause + * cancel_delayed_work_sync thread waiting for flush dwork endlessly. + */ + if (work->canceling) { + ret = false; + goto out; + } + fast_queue: __kthread_queue_delayed_work(worker, dwork, delay); out: _ Patches currently in -mm which might be from liumartin(a)google.com are

3 years, 7 months

1
0
0 0

stable-rc/linux-5.4.y baseline: 124 runs, 4 regressions (v5.4.122-8-g69500752c057)

by kernelci.org bot

stable-rc/linux-5.4.y baseline: 124 runs, 4 regressions (v5.4.122-8-g69500752c057) Regressions Summary ------------------- platform | arch | lab | compiler | defconfig | regressions -------------------------+-------+--------------+----------+-----------+------------ hifive-unleashed-a00 | riscv | lab-baylibre | gcc-8 | defconfig | 1 meson-gxm-q200 | arm64 | lab-baylibre | gcc-8 | defconfig | 2 r8a774a1-hihope-rzg2m-ex | arm64 | lab-cip | gcc-8 | defconfig | 1 Details: https://kernelci.org/test/job/stable-rc/branch/linux-5.4.y/kernel/v5.4.122-… Test: baseline Tree: stable-rc Branch: linux-5.4.y Describe: v5.4.122-8-g69500752c057 URL: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git SHA: 69500752c0577511bd2a31b0169e1bcb6f710905 Test Regressions ---------------- platform | arch | lab | compiler | defconfig | regressions -------------------------+-------+--------------+----------+-----------+------------ hifive-unleashed-a00 | riscv | lab-baylibre | gcc-8 | defconfig | 1 Details: https://kernelci.org/test/plan/id/60afdac143af1c2143b3afbc Results: 0 PASS, 1 FAIL, 0 SKIP Full config: defconfig Compiler: gcc-8 (riscv64-linux-gnu-gcc (Debian 8.3.0-2) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-5.4.y/v5.4.122-8-g69500752c05… HTML log: https://storage.kernelci.org//stable-rc/linux-5.4.y/v5.4.122-8-g69500752c05… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.login: https://kernelci.org/test/case/id/60afdac143af1c2143b3afbd failing since 188 days (last pass: v5.4.77-152-ga3746663c3479, first fail: v5.4.78) platform | arch | lab | compiler | defconfig | regressions -------------------------+-------+--------------+----------+-----------+------------ meson-gxm-q200 | arm64 | lab-baylibre | gcc-8 | defconfig | 2 Details: https://kernelci.org/test/plan/id/60aff39cd4702c337db3afc0 Results: 2 PASS, 2 FAIL, 0 SKIP Full config: defconfig Compiler: gcc-8 (aarch64-linux-gnu-gcc (Debian 8.3.0-2) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-5.4.y/v5.4.122-8-g69500752c05… HTML log: https://storage.kernelci.org//stable-rc/linux-5.4.y/v5.4.122-8-g69500752c05… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.dmesg.alert: https://kernelci.org/test/case/id/60aff39cd4702c337db3afc4 new failure (last pass: v5.4.120) 11 lines 2021-05-27 19:30:21.454000+00:00 kern :alert : Mem abort info: 2021-05-27 19:30:21.494000+00:00 kern <8>[ 16.005520] <LAVA_SIGNAL_TESTCASE TEST_CASE_ID=alert RESULT=fail UNITS=lines MEASUREMENT=11> 2021-05-27 19:30:21.494000+00:00 :alert : ESR = 0x96000005 2021-05-27 19:30:21.494000+00:00 kern :alert : EC = 0x25: DABT (current EL), IL = 32 bits 2021-05-27 19:30:21.494000+00:00 kern :alert : SET = 0, FnV = 0 2021-05-27 19:30:21.495000+00:00 ker<1>[ 16.026228] Unable to handle kernel NULL pointer dereference at virtual address 000000000000000a 2021-05-27 19:30:21.495000+00:00 <8>[ 16.030662] <LAVA_SIGNAL_TESTCASE TEST_CASE_ID=emerg RESULT=fail UNITS=lines MEASUREMENT=2> 2021-05-27 19:30:21.495000+00:00 <1>[ 16.033335] Mem abort info: 2021-05-27 19:30:21.495000+00:00 <1>[ 16.044885] ESR = 0x96000006 * baseline.dmesg.emerg: https://kernelci.org/test/case/id/60aff39cd4702c337db3afc5 new failure (last pass: v5.4.120) 2 lines platform | arch | lab | compiler | defconfig | regressions -------------------------+-------+--------------+----------+-----------+------------ r8a774a1-hihope-rzg2m-ex | arm64 | lab-cip | gcc-8 | defconfig | 1 Details: https://kernelci.org/test/plan/id/60afdce17c66c6172ab3af97 Results: 0 PASS, 1 FAIL, 0 SKIP Full config: defconfig Compiler: gcc-8 (aarch64-linux-gnu-gcc (Debian 8.3.0-2) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-5.4.y/v5.4.122-8-g69500752c05… HTML log: https://storage.kernelci.org//stable-rc/linux-5.4.y/v5.4.122-8-g69500752c05… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.login: https://kernelci.org/test/case/id/60afdce17c66c6172ab3af98 new failure (last pass: v5.4.122)

3 years, 7 months

1
0
0 0

stable-rc/linux-4.9.y baseline: 87 runs, 7 regressions (v4.9.270-6-g71bb752d4ade)

by kernelci.org bot

stable-rc/linux-4.9.y baseline: 87 runs, 7 regressions (v4.9.270-6-g71bb752d4ade) Regressions Summary ------------------- platform | arch | lab | compiler | defconfig | regressions ---------------------+-------+---------------+----------+---------------------+------------ beaglebone-black | arm | lab-cip | gcc-8 | multi_v7_defconfig | 1 panda | arm | lab-collabora | gcc-8 | omap2plus_defconfig | 1 qemu_arm-versatilepb | arm | lab-broonie | gcc-8 | versatile_defconfig | 1 qemu_arm-versatilepb | arm | lab-cip | gcc-8 | versatile_defconfig | 1 qemu_arm-versatilepb | arm | lab-collabora | gcc-8 | versatile_defconfig | 1 qemu_i386-uefi | i386 | lab-broonie | gcc-8 | i386_defconfig | 1 r8a7795-salvator-x | arm64 | lab-baylibre | gcc-8 | defconfig | 1 Details: https://kernelci.org/test/job/stable-rc/branch/linux-4.9.y/kernel/v4.9.270-… Test: baseline Tree: stable-rc Branch: linux-4.9.y Describe: v4.9.270-6-g71bb752d4ade URL: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git SHA: 71bb752d4adee6aab235be7278a42e286cb3cd87 Test Regressions ---------------- platform | arch | lab | compiler | defconfig | regressions ---------------------+-------+---------------+----------+---------------------+------------ beaglebone-black | arm | lab-cip | gcc-8 | multi_v7_defconfig | 1 Details: https://kernelci.org/test/plan/id/60afd4e36b262d9111b3afa4 Results: 0 PASS, 1 FAIL, 0 SKIP Full config: multi_v7_defconfig Compiler: gcc-8 (arm-linux-gnueabihf-gcc (Debian 8.3.0-2) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… HTML log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.login: https://kernelci.org/test/case/id/60afd4e36b262d9111b3afa5 new failure (last pass: v4.9.270) platform | arch | lab | compiler | defconfig | regressions ---------------------+-------+---------------+----------+---------------------+------------ panda | arm | lab-collabora | gcc-8 | omap2plus_defconfig | 1 Details: https://kernelci.org/test/plan/id/60afd65f3cfc986e1ab3afb0 Results: 3 PASS, 1 FAIL, 1 SKIP Full config: omap2plus_defconfig Compiler: gcc-8 (arm-linux-gnueabihf-gcc (Debian 8.3.0-2) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… HTML log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.dmesg.emerg: https://kernelci.org/test/case/id/60afd65f3cfc986e1ab3afb7 new failure (last pass: v4.9.270) 2 lines 2021-05-27 17:26:51.275000+00:00 [ 23.761962] smsc95xx v1.0.5 2021-05-27 17:26:51.296000+00:00 kern :emerg : BUG: spinlock bad magic on CPU#0, udevd/121 2021-05-27 17:26:51.305000+00:00 kern :emerg : lock: emif_lock+0x0/0xfffff24c [emif], .magic: 00000000, .owner: <none>/-1, .owner_cpu: 0 2021-05-27 17:26:51.327000+00:00 [ 23.810424] <LAVA_SIGNAL_TESTCASE TEST_CASE_ID=emerg RESULT=fail UNITS=lines MEASUREMENT=2> platform | arch | lab | compiler | defconfig | regressions ---------------------+-------+---------------+----------+---------------------+------------ qemu_arm-versatilepb | arm | lab-broonie | gcc-8 | versatile_defconfig | 1 Details: https://kernelci.org/test/plan/id/60afd2aee02cf46d50b3afc5 Results: 0 PASS, 1 FAIL, 0 SKIP Full config: versatile_defconfig Compiler: gcc-8 (arm-linux-gnueabihf-gcc (Debian 8.3.0-2) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… HTML log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.login: https://kernelci.org/test/case/id/60afd2aee02cf46d50b3afc6 failing since 194 days (last pass: v4.9.243-17-g9c24315b745a0, first fail: v4.9.243-26-g7b603f689c1c) platform | arch | lab | compiler | defconfig | regressions ---------------------+-------+---------------+----------+---------------------+------------ qemu_arm-versatilepb | arm | lab-cip | gcc-8 | versatile_defconfig | 1 Details: https://kernelci.org/test/plan/id/60afd2937c3bfea058b3afac Results: 0 PASS, 1 FAIL, 0 SKIP Full config: versatile_defconfig Compiler: gcc-8 (arm-linux-gnueabihf-gcc (Debian 8.3.0-2) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… HTML log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.login: https://kernelci.org/test/case/id/60afd2937c3bfea058b3afad failing since 194 days (last pass: v4.9.243-17-g9c24315b745a0, first fail: v4.9.243-26-g7b603f689c1c) platform | arch | lab | compiler | defconfig | regressions ---------------------+-------+---------------+----------+---------------------+------------ qemu_arm-versatilepb | arm | lab-collabora | gcc-8 | versatile_defconfig | 1 Details: https://kernelci.org/test/plan/id/60afd2476711a07a13b3afa3 Results: 0 PASS, 1 FAIL, 0 SKIP Full config: versatile_defconfig Compiler: gcc-8 (arm-linux-gnueabihf-gcc (Debian 8.3.0-2) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… HTML log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.login: https://kernelci.org/test/case/id/60afd2476711a07a13b3afa4 failing since 194 days (last pass: v4.9.243-17-g9c24315b745a0, first fail: v4.9.243-26-g7b603f689c1c) platform | arch | lab | compiler | defconfig | regressions ---------------------+-------+---------------+----------+---------------------+------------ qemu_i386-uefi | i386 | lab-broonie | gcc-8 | i386_defconfig | 1 Details: https://kernelci.org/test/plan/id/60afd222f71cdb9b66b3afaf Results: 0 PASS, 1 FAIL, 0 SKIP Full config: i386_defconfig Compiler: gcc-8 (gcc (Debian 8.3.0-6) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… HTML log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.login: https://kernelci.org/test/case/id/60afd222f71cdb9b66b3afb0 new failure (last pass: v4.9.270) platform | arch | lab | compiler | defconfig | regressions ---------------------+-------+---------------+----------+---------------------+------------ r8a7795-salvator-x | arm64 | lab-baylibre | gcc-8 | defconfig | 1 Details: https://kernelci.org/test/plan/id/60afd520927608b5dbb3afab Results: 0 PASS, 1 FAIL, 0 SKIP Full config: defconfig Compiler: gcc-8 (aarch64-linux-gnu-gcc (Debian 8.3.0-2) 8.3.0) Plain log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… HTML log: https://storage.kernelci.org//stable-rc/linux-4.9.y/v4.9.270-6-g71bb752d4ad… Rootfs: http://storage.kernelci.org/images/rootfs/buildroot/kci-2020.05-5-g2f114cc7… * baseline.login: https://kernelci.org/test/case/id/60afd520927608b5dbb3afac failing since 190 days (last pass: v4.9.243-17-g9c24315b745a0, first fail: v4.9.243-79-gd3e70b39d31a)

3 years, 7 months

1
0
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror May 2021