- Linux-stable-mirror - lists.linaro.org

[Linux-stable-mirror] Patch "afs: Fix the maths in afs_fs_store_data()" has been added to the 3.18-stable tree

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled afs: Fix the maths in afs_fs_store_data() to the 3.18-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… The filename of the patch is: afs-fix-the-maths-in-afs_fs_store_data.patch and it can be found in the queue-3.18 subdirectory. If you, or anyone else, feels it should not be added to the stable tree, please let <stable(a)vger.kernel.org> … [View More]

7 years, 4 months

1
0
0 0

[Linux-stable-mirror] Patch "afs: Fix page leak in afs_write_begin()" has been added to the 3.18-stable tree

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled afs: Fix page leak in afs_write_begin() to the 3.18-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… The filename of the patch is: afs-fix-page-leak-in-afs_write_begin.patch and it can be found in the queue-3.18 subdirectory. If you, or anyone else, feels it should not be added to the stable tree, please let <stable(a)vger.kernel.org> know … [View More]about it. >From foo@baz Mon Dec 18 15:03:25 CET 2017 From: David Howells <dhowells(a)redhat.com> Date: Thu, 16 Mar 2017 16:27:48 +0000 Subject: afs: Fix page leak in afs_write_begin() From: David Howells <dhowells(a)redhat.com> [ Upstream commit 6d06b0d25209c80e99c1e89700f1e09694a3766b ] afs_write_begin() leaks a ref and a lock on a page if afs_fill_page() fails. Fix the leak by unlocking and releasing the page in the error path. Signed-off-by: David Howells <dhowells(a)redhat.com> Signed-off-by: Sasha Levin <alexander.levin(a)verizon.com> Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> --- fs/afs/write.c | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) --- a/fs/afs/write.c +++ b/fs/afs/write.c @@ -149,12 +149,12 @@ int afs_write_begin(struct file *file, s kfree(candidate); return -ENOMEM; } - *pagep = page; - /* page won't leak in error case: it eventually gets cleaned off LRU */ if (!PageUptodate(page) && len != PAGE_CACHE_SIZE) { ret = afs_fill_page(vnode, key, index << PAGE_CACHE_SHIFT, page); if (ret < 0) { + unlock_page(page); + put_page(page); kfree(candidate); _leave(" = %d [prep]", ret); return ret; @@ -162,6 +162,9 @@ int afs_write_begin(struct file *file, s SetPageUptodate(page); } + /* page won't leak in error case: it eventually gets cleaned off LRU */ + *pagep = page; + try_again: spin_lock(&vnode->writeback_lock); Patches currently in stable-queue which might be from dhowells(a)redhat.com are queue-3.18/afs-flush-outstanding-writes-when-an-fd-is-closed.patch queue-3.18/afs-fix-the-maths-in-afs_fs_store_data.patch queue-3.18/keys-don-t-permit-request_key-to-construct-a-new-keyring.patch queue-3.18/afs-populate-group-id-from-vnode-status.patch queue-3.18/afs-adjust-mode-bits-processing.patch queue-3.18/afs-fix-page-leak-in-afs_write_begin.patch queue-3.18/afs-fix-missing-put_page.patch queue-3.18/afs-populate-and-use-client-modification-time.patch queue-3.18/afs-fix-afs_kill_pages.patch queue-3.18/don-t-leak-a-key-reference-if-request_key-tries-to-use-a-revoked-keyring.patch [View Less]

7 years, 4 months

1
0
0 0

[Linux-stable-mirror] Patch "afs: Fix afs_kill_pages()" has been added to the 3.18-stable tree

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled afs: Fix afs_kill_pages() to the 3.18-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… The filename of the patch is: afs-fix-afs_kill_pages.patch and it can be found in the queue-3.18 subdirectory. If you, or anyone else, feels it should not be added to the stable tree, please let <stable(a)vger.kernel.org> know about it. >From foo@baz … [View More]Mon Dec 18 15:03:25 CET 2017 From: David Howells <dhowells(a)redhat.com> Date: Thu, 16 Mar 2017 16:27:48 +0000 Subject: afs: Fix afs_kill_pages() From: David Howells <dhowells(a)redhat.com> [ Upstream commit 7286a35e893176169b09715096a4aca557e2ccd2 ] Fix afs_kill_pages() in two ways: (1) If a writeback has been partially flushed, then if we try and kill the pages it contains, some of them may no longer be undergoing writeback and end_page_writeback() will assert. Fix this by checking to see whether the page in question is actually undergoing writeback before ending that writeback. (2) The loop that scans for pages to kill doesn't increase the first page index, and so the loop may not terminate, but it will try to process the same pages over and over again. Fix this by increasing the first page index to one after the last page we processed. Signed-off-by: David Howells <dhowells(a)redhat.com> Signed-off-by: Sasha Levin <alexander.levin(a)verizon.com> Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> --- fs/afs/write.c | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) --- a/fs/afs/write.c +++ b/fs/afs/write.c @@ -300,10 +300,14 @@ static void afs_kill_pages(struct afs_vn ASSERTCMP(pv.nr, ==, count); for (loop = 0; loop < count; loop++) { - ClearPageUptodate(pv.pages[loop]); + struct page *page = pv.pages[loop]; + ClearPageUptodate(page); if (error) - SetPageError(pv.pages[loop]); - end_page_writeback(pv.pages[loop]); + SetPageError(page); + if (PageWriteback(page)) + end_page_writeback(page); + if (page->index >= first) + first = page->index + 1; } __pagevec_release(&pv); Patches currently in stable-queue which might be from dhowells(a)redhat.com are queue-3.18/afs-flush-outstanding-writes-when-an-fd-is-closed.patch queue-3.18/afs-fix-the-maths-in-afs_fs_store_data.patch queue-3.18/keys-don-t-permit-request_key-to-construct-a-new-keyring.patch queue-3.18/afs-populate-group-id-from-vnode-status.patch queue-3.18/afs-adjust-mode-bits-processing.patch queue-3.18/afs-fix-page-leak-in-afs_write_begin.patch queue-3.18/afs-fix-missing-put_page.patch queue-3.18/afs-populate-and-use-client-modification-time.patch queue-3.18/afs-fix-afs_kill_pages.patch queue-3.18/don-t-leak-a-key-reference-if-request_key-tries-to-use-a-revoked-keyring.patch [View Less]

7 years, 4 months

1
0
0 0

[Linux-stable-mirror] Patch "afs: Fix missing put_page()" has been added to the 3.18-stable tree

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled afs: Fix missing put_page() to the 3.18-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… The filename of the patch is: afs-fix-missing-put_page.patch and it can be found in the queue-3.18 subdirectory. If you, or anyone else, feels it should not be added to the stable tree, please let <stable(a)vger.kernel.org> know about it. >From foo@… [View More]

7 years, 4 months

1
0
0 0

[Linux-stable-mirror] Patch "afs: Adjust mode bits processing" has been added to the 3.18-stable tree

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled afs: Adjust mode bits processing to the 3.18-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… The filename of the patch is: afs-adjust-mode-bits-processing.patch and it can be found in the queue-3.18 subdirectory. If you, or anyone else, feels it should not be added to the stable tree, please let <stable(a)vger.kernel.org> know about it. &… [View More]

7 years, 4 months

1
0
0 0

[Linux-stable-mirror] [GIT PULL] commits for Linux 3.18

by alexander.levin＠verizon.com

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi Greg, Pleae pull commits for Linux 3.18 . I've sent a review request for all commits over a week ago and all comments were addressed. Thanks, Sasha ===== The following changes since commit 1d2acf22c2539c568e0a4bd63bf464e10acd8070: Linux 3.18.86 (2017-12-05 11:20:47 +0100) are available in the git repository at: git://git.kernel.org/pub/scm/linux/kernel/git/sashal/linux-stable.git tags/for-greg-3.18-14122017 for you to fetch … [View More]changes up to b15af543ba146d4d241a2f754473a388952ffca2: ath9k: fix tx99 potential info leak (2017-12-14 10:27:20 -0500) - ---------------------------------------------------------------- for-greg-3.18-14122017 - ---------------------------------------------------------------- Alex Deucher (2): drm/radeon/si: add dpm quirk for Oland drm/radeon: reinstate oland workaround for sclk Alex Williamson (1): PCI: Detach driver before procfs & sysfs teardown on device remove Alexander Duyck (1): macvlan: Only deliver one copy of the frame to the macvlan interface Bart Van Assche (1): target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd() Bob Peterson (1): GFS2: Take inode off order_write list when setting jdata flag Brian Foster (1): xfs: fix log block underflow during recovery cycle verification Christophe JAILLET (2): video: fbdev: au1200fb: Release some resources if a memory allocation fails video: fbdev: au1200fb: Return an error code if a memory allocation fails Christophe Leroy (1): powerpc/ipic: Fix status get and status clear Dan Carpenter (1): scsi: bfa: integer overflow in debugfs Daniel Borkmann (1): perf symbols: Fix symbols__fixup_end heuristic for corner cases Daniel Lezcano (1): thermal/drivers/step_wise: Fix temperature regulation misbehavior David Howells (5): afs: Fix missing put_page() afs: Flush outstanding writes when an fd is closed afs: Fix the maths in afs_fs_store_data() afs: Fix page leak in afs_write_begin() afs: Fix afs_kill_pages() Dmitry Torokhov (1): Input: i8042 - add TUXEDO BU1406 (N24_25BU) to the nomux list Doug Berger (3): net: bcmgenet: correct the RBUF_OVFL_CNT and RBUF_ERR_CNT MIB values net: bcmgenet: correct MIB access of UniMAC RUNT counters net: bcmgenet: Power up the internal PHY before probing the MII Gao Feng (1): ppp: Destroy the mutex when cleanup Geert Uytterhoeven (1): fbdev: controlfb: Add missing modes to fix out of bounds access Jan Kara (2): mm: Handle 0 flags in _calc_vm_trans() macro udf: Avoid overflow when session starts at large offset Javier Martinez Canillas (1): usb: phy: isp1301: Add OF device ID table Jiang Yi (1): target/file: Do not return error for UNMAP if length is zero Johan Hovold (1): net: wimax/i2400m: fix NULL-deref at probe Kurt Garloff (1): scsi: scsi_devinfo: Add REPORTLUN2 to EMC SYMMETRIX blacklist entry Ladislav Michl (1): video: udlfb: Fix read EDID timeout Liang Chen (1): bcache: explicitly destroy mutex while exiting Linus Walleij (1): pinctrl: adi2: Fix Kconfig build problem Marc Dionne (3): afs: Populate group ID from vnode status afs: Adjust mode bits processing afs: Populate and use client modification time Markus Elfring (1): platform/x86: sony-laptop: Fix error handling in sony_nc_setup_rfkill() Matthias Kaehlcke (1): dmaengine: Fix array index out of bounds warning in __get_unmap_pool() Miaoqing Pan (1): ath9k: fix tx99 potential info leak MichaÅ‚ MirosÅ‚aw (1): clk: tegra: Fix cclk_lp divisor register Mike Christie (1): target: Use system workqueue for ALUA transitions NeilBrown (3): NFSD: fix nfsd_minorversion(.., NFSD_AVAIL) NFSD: fix nfsd_reset_versions for NFSv4. raid5: Set R5_Expanded on parity devices as well as data. Olga Kornievskaia (1): NFSv4.1 respect server's max size in CREATE_SESSION Qiang (1): PCI/PME: Handle invalid data when reading Root Status Shriya (1): powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo Stafford Horne (1): openrisc: fix issue handling 8 byte get_user calls Steven Rostedt (VMware) (1): sched/deadline: Use deadline instead of period when calculating overflow Suzuki K Poulose (1): arm-ccn: perf: Prevent module unload while PMU is in use Vlad Yasevich (1): net: Resend IGMP memberships upon peer notification. William A. Kennington III (1): powerpc/opal: Fix EBUSY bug in acquiring tokens Zygo Blaxell (1): btrfs: add missing memset while reading compressed inline extents nixiaoming (1): tty fix oops when rmmod 8250 tang.junhui (1): bcache: fix wrong cache_misses statistics tangwenji (2): iscsi-target: fix memory leak in lio_target_tiqn_addtpg() target:fix condition return in core_pr_dump_initiator_port() arch/blackfin/Kconfig | 7 ++- arch/blackfin/Kconfig.debug | 1 + arch/openrisc/include/asm/uaccess.h | 2 +- arch/powerpc/platforms/powernv/opal-async.c | 6 +- arch/powerpc/platforms/powernv/setup.c | 2 +- arch/powerpc/sysdev/ipic.c | 4 +- drivers/bus/arm-ccn.c | 1 + drivers/clk/tegra/clk-tegra30.c | 2 +- drivers/dma/dmaengine.c | 2 + drivers/gpu/drm/radeon/si_dpm.c | 10 ++++ drivers/input/serio/i8042-x86ia64io.h | 7 +++ drivers/md/bcache/request.c | 6 +- drivers/md/bcache/super.c | 6 +- drivers/md/raid5.c | 5 +- drivers/net/ethernet/broadcom/genet/bcmgenet.c | 79 ++++++++++++++++++++++---- drivers/net/ethernet/broadcom/genet/bcmgenet.h | 10 +++- drivers/net/macvlan.c | 2 +- drivers/net/ppp/ppp_generic.c | 1 + drivers/net/wimax/i2400m/usb.c | 3 + drivers/net/wireless/ath/ath9k/tx99.c | 5 ++ drivers/pci/pcie/pme.c | 5 +- drivers/pci/remove.c | 2 +- drivers/pinctrl/Kconfig | 3 +- drivers/platform/x86/sony-laptop.c | 14 +++-- drivers/scsi/bfa/bfad_debugfs.c | 5 +- drivers/scsi/scsi_devinfo.c | 2 +- drivers/target/iscsi/iscsi_target.c | 3 +- drivers/target/iscsi/iscsi_target_configfs.c | 3 +- drivers/target/target_core_alua.c | 8 +-- drivers/target/target_core_file.c | 4 ++ drivers/target/target_core_pr.c | 4 +- drivers/thermal/step_wise.c | 11 ++-- drivers/usb/phy/phy-isp1301.c | 7 +++ drivers/video/fbdev/au1200fb.c | 7 ++- drivers/video/fbdev/controlfb.h | 2 + drivers/video/fbdev/udlfb.c | 10 ++-- fs/afs/file.c | 1 + fs/afs/fsclient.c | 20 +++---- fs/afs/inode.c | 4 +- fs/afs/internal.h | 1 + fs/afs/security.c | 7 ++- fs/afs/write.c | 32 +++++++++-- fs/btrfs/inode.c | 14 +++++ fs/gfs2/file.c | 4 +- fs/nfs/nfs4client.c | 4 +- fs/nfsd/nfssvc.c | 30 +++++----- fs/proc/proc_tty.c | 3 +- fs/udf/super.c | 2 +- fs/xfs/xfs_log_recover.c | 2 +- include/linux/mman.h | 3 +- kernel/sched/deadline.c | 8 +-- net/core/dev.c | 1 + tools/perf/util/symbol.c | 2 +- 53 files changed, 282 insertions(+), 107 deletions(-) -----BEGIN PGP SIGNATURE----- iQIcBAEBCAAGBQJaMqM3AAoJEN6mb/eXdyzceNMQAIK3SrQ/pnyfmQJNq8rWjkcO ahYO2eYjmdnGZ5oP7KWF8BhI/cDRVyWfdy8UJNQxemqjqlucbDSJpFxd+1D4Hkkd xpPmdsPTrZM7KR9rDC9tRQMd4l+cY5erZEWPUbGIKLth86e3/+k+bKebEwiWKuFx cXeYLWYd+DgdNUL0t1y3UZWZZD4cF/UX+VPEr/ecMC9ONUftOSdyTNLDX8eLKnXf XPt09JVHLm51mtd6sS2UeA/sjVx9RrNshY0be0reDIJ/4bMpvVVrKTwKnosDU7v0 0ksiGWRgk/OhRYqeUWjb4SR4otNnGluDj3HBRgrzfs8LzLp/1pB52E9Xh1IuCVg+ YmDJA43G+XTnGyZfCKwZSfMhnHP2psj8eN0viQS+fpCC72G9SEGGDecxC/U9agej dJ9XonCBguHNHF7MM/gH58ZjtOONhAGnr0GlRZaYCU05HdriF408tq4uV2Gv9xT1 ctqvTW23SaWDcJ58/cAvUyU9710yOS1uftoAUG3UmG9KZM/600vtOsXIKD/1CUmG 1GeJd/bW6iBnILzRn4qAGQZyCUyD3XuLyQB5mfaVByHKdbX543iHlVu/JWvgH3cp hxLnlPClawWnYmVSQ8vqfwGnON4mfscORQeZo5QS/TQfgMPNkXAeOvWUxFzqoDEP gdzTvc+DRnMB2+EyM916 =SeOH -----END PGP SIGNATURE----- [View Less]

7 years, 4 months

2
1
0 0

[Linux-stable-mirror] [GIT PULL] commits for Linux 4.4

by alexander.levin＠verizon.com

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi Greg, Pleae pull commits for Linux 4.4 . I've sent a review request for all commits over a week ago and all comments were addressed. Thanks, Sasha ===== The following changes since commit bd379939182247ace70e425ab60b3b1352db601b: Linux 4.4.104 (2017-12-05 11:22:52 +0100) are available in the git repository at: git://git.kernel.org/pub/scm/linux/kernel/git/sashal/linux-stable.git tags/for-greg-4.4-14122017 for you to fetch … [View More]changes up to 641f751d70659f695a9cbaaa35bd3f670be7a272: ath9k: fix tx99 potential info leak (2017-12-14 10:25:31 -0500) - ---------------------------------------------------------------- for-greg-4.4-14122017 - ---------------------------------------------------------------- Alex Deucher (2): drm/radeon/si: add dpm quirk for Oland drm/radeon: reinstate oland workaround for sclk Alex Vesker (1): IB/ipoib: Grab rtnl lock on heavy flush when calling ndo_open/stop Alex Williamson (1): PCI: Detach driver before procfs & sysfs teardown on device remove Alexander Duyck (1): macvlan: Only deliver one copy of the frame to the macvlan interface Alexander Potapenko (1): net: initialize msg.msg_flags in recvfrom Alexander Shishkin (1): intel_th: pci: Add Gemini Lake support Andrea Arcangeli (2): userfaultfd: shmem: __do_fault requires VM_FAULT_NOPAGE userfaultfd: selftest: vm: allow to build in vm/ directory Bart Van Assche (2): target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd() RDMA/cma: Avoid triggering undefined behavior Bob Peterson (1): GFS2: Take inode off order_write list when setting jdata flag Brian Foster (1): xfs: fix log block underflow during recovery cycle verification Chen Zhong (1): clk: mediatek: add the option for determining PLL source clock Christoph Hellwig (1): xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real Christophe JAILLET (2): video: fbdev: au1200fb: Release some resources if a memory allocation fails video: fbdev: au1200fb: Return an error code if a memory allocation fails Christophe Leroy (1): powerpc/ipic: Fix status get and status clear Dan Carpenter (1): scsi: bfa: integer overflow in debugfs Daniel Borkmann (1): perf symbols: Fix symbols__fixup_end heuristic for corner cases Daniel Bristot de Oliveira (2): sched/deadline: Make sure the replenishment timer fires in the next period sched/deadline: Throttle a constrained deadline task activated after the deadline Daniel Drake (1): efi/esrt: Cleanup bad memory map log messages Daniel Lezcano (1): thermal/drivers/step_wise: Fix temperature regulation misbehavior David Howells (5): afs: Fix missing put_page() afs: Flush outstanding writes when an fd is closed afs: Fix the maths in afs_fs_store_data() afs: Fix page leak in afs_write_begin() afs: Fix afs_kill_pages() Dmitry Torokhov (1): Input: i8042 - add TUXEDO BU1406 (N24_25BU) to the nomux list Don Brace (2): scsi: hpsa: update check for logical volume status scsi: hpsa: limit outstanding rescans Doug Berger (5): net: bcmgenet: correct the RBUF_OVFL_CNT and RBUF_ERR_CNT MIB values net: bcmgenet: correct MIB access of UniMAC RUNT counters net: bcmgenet: reserved phy revisions must be checked first net: bcmgenet: power down internal phy if open or resume fails net: bcmgenet: Power up the internal PHY before probing the MII Florian Westphal (1): netfilter: bridge: honor frag_max_size when refragmenting Gao Feng (1): ppp: Destroy the mutex when cleanup Geert Uytterhoeven (1): fbdev: controlfb: Add missing modes to fix out of bounds access Guoqing Jiang (1): md-cluster: free md_cluster_info if node leave cluster Hiroyuki Yokoyama (1): dmaengine: rcar-dmac: use TCRB instead of TCR for residue Jack Morgenstein (1): net/mlx4_core: Avoid delays during VF driver device shutdown Jan Kara (2): mm: Handle 0 flags in _calc_vm_trans() macro udf: Avoid overflow when session starts at large offset Javier Martinez Canillas (1): usb: phy: isp1301: Add OF device ID table Jia-Ju Bai (1): vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend Jiang Yi (1): target/file: Do not return error for UNMAP if length is zero Jiri Pirko (2): mlxsw: reg: Fix SPVM max record count mlxsw: reg: Fix SPVMLR max record count Jiri Slaby (1): l2tp: cleanup l2tp_tunnel_delete calls Johan Hovold (1): net: wimax/i2400m: fix NULL-deref at probe KUWAZAWA Takuya (1): netfilter: ipvs: Fix inappropriate output of procfs Kurt Garloff (1): scsi: scsi_devinfo: Add REPORTLUN2 to EMC SYMMETRIX blacklist entry Ladislav Michl (1): video: udlfb: Fix read EDID timeout Liang Chen (1): bcache: explicitly destroy mutex while exiting Linus Walleij (1): pinctrl: adi2: Fix Kconfig build problem Marc Dionne (3): afs: Populate group ID from vnode status afs: Adjust mode bits processing afs: Populate and use client modification time Markus Elfring (1): platform/x86: sony-laptop: Fix error handling in sony_nc_setup_rfkill() Martin Wilck (2): scsi: hpsa: cleanup sas_phy structures in sysfs when unloading scsi: hpsa: destroy sas transport properties before scsi_host Matthias Kaehlcke (1): dmaengine: Fix array index out of bounds warning in __get_unmap_pool() Miaoqing Pan (1): ath9k: fix tx99 potential info leak Michael Ellerman (1): powerpc/perf/hv-24x7: Fix incorrect comparison in memord MichaÅ‚ MirosÅ‚aw (1): clk: tegra: Fix cclk_lp divisor register Mike Christie (3): target: Use system workqueue for ALUA transitions target: fix ALUA transition timeout handling target: fix race during implicit transition work flushes NeilBrown (3): NFSD: fix nfsd_minorversion(.., NFSD_AVAIL) NFSD: fix nfsd_reset_versions for NFSv4. raid5: Set R5_Expanded on parity devices as well as data. Olga Kornievskaia (1): NFSv4.1 respect server's max size in CREATE_SESSION Peter Ujfalusi (1): dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type Philipp Zabel (1): rtc: pcf8563: fix output clock rate Qiang (1): PCI/PME: Handle invalid data when reading Root Status Robert Baronescu (1): crypto: tcrypt - fix buffer lengths in test_aead_speed() Robert Stonehouse (1): sfc: don't warn on successful change of MAC Shriya (1): powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo Stafford Horne (1): openrisc: fix issue handling 8 byte get_user calls Steven Rostedt (VMware) (1): sched/deadline: Use deadline instead of period when calculating overflow Suzuki K Poulose (1): arm-ccn: perf: Prevent module unload while PMU is in use SÃ©bastien Szymanski (1): clk: imx6: refine hdmi_isfr's parent to make HDMI work on i.MX6 SoCs w/o VPU Tahsin Erdogan (1): writeback: fix memory leak in wb_queue_work() Taku Izumi (1): fjes: Fix wrong netdevice feature flags Tina Ruchandani (2): afs: Migrate vlocation fields to 64-bit afs: Prevent callback expiry timer overflow Tomi Valkeinen (1): drm/omap: fix dmabuf mmap for dma_alloc'ed buffers Vlad Yasevich (1): net: Resend IGMP memberships upon peer notification. William A. Kennington III (1): powerpc/opal: Fix EBUSY bug in acquiring tokens Zygo Blaxell (1): btrfs: add missing memset while reading compressed inline extents nixiaoming (1): tty fix oops when rmmod 8250 tang.junhui (1): bcache: fix wrong cache_misses statistics tangwenji (2): iscsi-target: fix memory leak in lio_target_tiqn_addtpg() target:fix condition return in core_pr_dump_initiator_port() weiping zhang (2): scsi: sd: change manage_start_stop to bool in sysfs interface scsi: sd: change allow_restart to bool in sysfs interface yong mao (1): mmc: mediatek: Fixed bug where clock frequency could be set wrong arch/blackfin/Kconfig | 7 +- arch/blackfin/Kconfig.debug | 1 + arch/openrisc/include/asm/uaccess.h | 2 +- arch/powerpc/perf/hv-24x7.c | 2 +- arch/powerpc/platforms/powernv/opal-async.c | 6 +- arch/powerpc/platforms/powernv/setup.c | 2 +- arch/powerpc/sysdev/ipic.c | 4 +- crypto/tcrypt.c | 6 +- drivers/bus/arm-ccn.c | 1 + drivers/clk/imx/clk-imx6q.c | 2 +- drivers/clk/mediatek/clk-mtk.h | 1 + drivers/clk/mediatek/clk-pll.c | 5 +- drivers/clk/tegra/clk-tegra30.c | 2 +- drivers/dma/dmaengine.c | 2 + drivers/dma/sh/rcar-dmac.c | 2 +- drivers/dma/ti-dma-crossbar.c | 8 +-- drivers/firmware/efi/efi.c | 1 - drivers/firmware/efi/esrt.c | 2 +- drivers/gpu/drm/omapdrm/omap_gem_dmabuf.c | 3 - drivers/gpu/drm/radeon/si_dpm.c | 10 +++ drivers/hwtracing/intel_th/pci.c | 5 ++ drivers/infiniband/core/cma.c | 11 +-- drivers/infiniband/ulp/ipoib/ipoib_ib.c | 7 +- drivers/input/serio/i8042-x86ia64io.h | 7 ++ drivers/md/bcache/request.c | 6 +- drivers/md/bcache/super.c | 6 +- drivers/md/md-cluster.c | 1 + drivers/md/raid5.c | 5 +- drivers/mmc/host/mtk-sd.c | 4 +- drivers/net/ethernet/broadcom/genet/bcmgenet.c | 95 +++++++++++++++++++++----- drivers/net/ethernet/broadcom/genet/bcmgenet.h | 10 ++- drivers/net/ethernet/mellanox/mlx4/cmd.c | 11 +++ drivers/net/ethernet/mellanox/mlx4/main.c | 11 +++ drivers/net/ethernet/mellanox/mlxsw/reg.h | 4 +- drivers/net/ethernet/sfc/ef10.c | 2 +- drivers/net/fjes/fjes_main.c | 2 +- drivers/net/macvlan.c | 2 +- drivers/net/ppp/ppp_generic.c | 1 + drivers/net/wimax/i2400m/usb.c | 3 + drivers/net/wireless/ath/ath9k/tx99.c | 5 ++ drivers/pci/pcie/pme.c | 5 +- drivers/pci/remove.c | 2 +- drivers/pinctrl/Kconfig | 3 +- drivers/platform/x86/sony-laptop.c | 14 ++-- drivers/rtc/rtc-pcf8563.c | 2 +- drivers/scsi/bfa/bfad_debugfs.c | 5 +- drivers/scsi/hpsa.c | 57 +++++++++------- drivers/scsi/hpsa.h | 1 + drivers/scsi/hpsa_cmd.h | 2 + drivers/scsi/scsi_devinfo.c | 2 +- drivers/scsi/sd.c | 12 +++- drivers/staging/vt6655/device_main.c | 3 +- drivers/target/iscsi/iscsi_target.c | 3 +- drivers/target/iscsi/iscsi_target_configfs.c | 3 +- drivers/target/target_core_alua.c | 33 +++------ drivers/target/target_core_file.c | 4 ++ drivers/target/target_core_pr.c | 4 +- drivers/thermal/step_wise.c | 11 +-- drivers/usb/phy/phy-isp1301.c | 7 ++ drivers/video/fbdev/au1200fb.c | 7 +- drivers/video/fbdev/controlfb.h | 2 + drivers/video/fbdev/udlfb.c | 10 +-- fs/afs/callback.c | 7 +- fs/afs/file.c | 1 + fs/afs/fsclient.c | 22 +++--- fs/afs/inode.c | 11 +-- fs/afs/internal.h | 12 ++-- fs/afs/security.c | 7 +- fs/afs/server.c | 6 +- fs/afs/vlocation.c | 16 +++-- fs/afs/write.c | 32 +++++++-- fs/btrfs/inode.c | 14 ++++ fs/fs-writeback.c | 35 ++++++---- fs/gfs2/file.c | 4 +- fs/nfs/nfs4client.c | 4 +- fs/nfsd/nfssvc.c | 30 ++++---- fs/proc/proc_tty.c | 3 +- fs/udf/super.c | 2 +- fs/userfaultfd.c | 2 +- fs/xfs/libxfs/xfs_bmap.c | 2 +- fs/xfs/xfs_log_recover.c | 2 +- include/linux/mlx4/device.h | 1 + include/linux/mman.h | 3 +- include/target/target_core_base.h | 2 +- kernel/sched/deadline.c | 62 +++++++++++++++-- net/bridge/br_netfilter_hooks.c | 12 ++-- net/core/dev.c | 1 + net/l2tp/l2tp_core.c | 2 +- net/l2tp/l2tp_netlink.c | 2 +- net/netfilter/ipvs/ip_vs_ctl.c | 4 ++ net/socket.c | 1 + tools/perf/util/symbol.c | 2 +- tools/testing/selftests/vm/Makefile | 4 ++ 93 files changed, 533 insertions(+), 234 deletions(-) -----BEGIN PGP SIGNATURE----- iQIcBAEBCAAGBQJaMqMuAAoJEN6mb/eXdyzcMBwP/3TUW/yQFmpqUSHHOGlLTMpW b+0/Aa+F5aYKJxLtLq8VtH7QnI81vzZfOiI3P0HAlyvx8GctaQGKlJ3nc4JEJ/OK WwswHEXP0DNdeYA0vYEyl+inzfjVAERJSXHj0r2nBaGdMpP22hGmL9+HT52uSIy9 59K+yURNkevrVTvCvuF3aCxHaULL+kb9/pHWTEGRvlHfG8W1npj1wf8mhPwt0mJ0 s9avnjGsegUZ7sCrre7dYdjTFlbjezH+5U3YrJPlxc+eYElHDHOnreFc5iuR1gO+ ahieKX01spDzRRjC3TJG3ORDa3IN4UKppAg6TgnBEy2OiFGhZC1QCgDqIag/t9Pu tMPlInkTeObyGH0yIb02I+iCONF8SyjqeWCVMzZun4a99V+siHCxKFYVfZwga4A9 PTAvH+DEJIifGkMeDAttIWx9zLq5SYQOPF7WBx/97UB8/31JZEup9QstqtC2MWJN 8QW8HLgN6UR6dPsReUdJ+eOQeFCG6+Lrt5J2JQ+LTYheJwZu39cqiBDLmimNrIkQ t+p42yPJozKKaJv+By+NGvmeug7BqK3kADEYPs7iNmqj8U+BSmnyX2zU1PichxLi sEHlo2ds7t543dy4F4n7Vg7kO2nFDYN5NhYFSunjMSAlZJED9+L1mU3AgWgPHm85 4dJEyRmojvzpGt1CN5UI =lEhB -----END PGP SIGNATURE----- [View Less]

7 years, 4 months

2
1
0 0

[Linux-stable-mirror] Patch "xfs: fix log block underflow during recovery cycle verification" has been added to the 4.4-stable tree

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled xfs: fix log block underflow during recovery cycle verification to the 4.4-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… The filename of the patch is: xfs-fix-log-block-underflow-during-recovery-cycle-verification.patch and it can be found in the queue-4.4 subdirectory. If you, or anyone else, feels it should not be added to the stable tree, … [View More]please let <stable(a)vger.kernel.org> know about it. >From foo@baz Mon Dec 18 14:47:43 CET 2017 From: Brian Foster <bfoster(a)redhat.com> Date: Thu, 26 Oct 2017 09:31:16 -0700 Subject: xfs: fix log block underflow during recovery cycle verification From: Brian Foster <bfoster(a)redhat.com> [ Upstream commit 9f2a4505800607e537e9dd9dea4f55c4b0c30c7a ] It is possible for mkfs to format very small filesystems with too small of an internal log with respect to the various minimum size and block count requirements. If this occurs when the log happens to be smaller than the scan window used for cycle verification and the scan wraps the end of the log, the start_blk calculation in xlog_find_head() underflows and leads to an attempt to scan an invalid range of log blocks. This results in log recovery failure and a failed mount. Since there may be filesystems out in the wild with this kind of geometry, we cannot simply refuse to mount. Instead, cap the scan window for cycle verification to the size of the physical log. This ensures that the cycle verification proceeds as expected when the scan wraps the end of the log. Reported-by: Zorro Lang <zlang(a)redhat.com> Signed-off-by: Brian Foster <bfoster(a)redhat.com> Reviewed-by: Darrick J. Wong <darrick.wong(a)oracle.com> Signed-off-by: Darrick J. Wong <darrick.wong(a)oracle.com> Signed-off-by: Sasha Levin <alexander.levin(a)verizon.com> Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> --- fs/xfs/xfs_log_recover.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) --- a/fs/xfs/xfs_log_recover.c +++ b/fs/xfs/xfs_log_recover.c @@ -738,7 +738,7 @@ xlog_find_head( * in the in-core log. The following number can be made tighter if * we actually look at the block size of the filesystem. */ - num_scan_bblks = XLOG_TOTAL_REC_SHIFT(log); + num_scan_bblks = min_t(int, log_bbnum, XLOG_TOTAL_REC_SHIFT(log)); if (head_blk >= num_scan_bblks) { /* * We are guaranteed that the entire check can be performed Patches currently in stable-queue which might be from bfoster(a)redhat.com are queue-4.4/xfs-fix-incorrect-extent-state-in-xfs_bmap_add_extent_unwritten_real.patch queue-4.4/xfs-fix-log-block-underflow-during-recovery-cycle-verification.patch [View Less]

7 years, 4 months

1
0
0 0

[Linux-stable-mirror] Patch "xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real" has been added to the 4.4-stable tree

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real to the 4.4-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… The filename of the patch is: xfs-fix-incorrect-extent-state-in-xfs_bmap_add_extent_unwritten_real.patch and it can be found in the queue-4.4 subdirectory. If you, or anyone else, feels it should not be added to the … [View More]

7 years, 4 months

1
0
0 0

[Linux-stable-mirror] Patch "writeback: fix memory leak in wb_queue_work()" has been added to the 4.4-stable tree

by gregkh＠linuxfoundation.org

This is a note to let you know that I've just added the patch titled writeback: fix memory leak in wb_queue_work() to the 4.4-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=sum… The filename of the patch is: writeback-fix-memory-leak-in-wb_queue_work.patch and it can be found in the queue-4.4 subdirectory. If you, or anyone else, feels it should not be added to the stable tree, please let <stable(a)vger.kernel.org&… [View More]gt; know about it. >From foo@baz Mon Dec 18 14:47:43 CET 2017 From: Tahsin Erdogan <tahsin(a)google.com> Date: Fri, 10 Mar 2017 12:09:49 -0800 Subject: writeback: fix memory leak in wb_queue_work() From: Tahsin Erdogan <tahsin(a)google.com> [ Upstream commit 4a3a485b1ed0e109718cc8c9d094fa0f552de9b2 ] When WB_registered flag is not set, wb_queue_work() skips queuing the work, but does not perform the necessary clean up. In particular, if work->auto_free is true, it should free the memory. The leak condition can be reprouced by following these steps: mount /dev/sdb /mnt/sdb /* In qemu console: device_del sdb */ umount /dev/sdb Above will result in a wb_queue_work() call on an unregistered wb and thus leak memory. Reported-by: John Sperbeck <jsperbeck(a)google.com> Signed-off-by: Tahsin Erdogan <tahsin(a)google.com> Reviewed-by: Jan Kara <jack(a)suse.cz> Signed-off-by: Jens Axboe <axboe(a)fb.com> Signed-off-by: Sasha Levin <alexander.levin(a)verizon.com> Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> --- fs/fs-writeback.c | 35 +++++++++++++++++++++-------------- 1 file changed, 21 insertions(+), 14 deletions(-) --- a/fs/fs-writeback.c +++ b/fs/fs-writeback.c @@ -173,19 +173,33 @@ static void wb_wakeup(struct bdi_writeba spin_unlock_bh(&wb->work_lock); } +static void finish_writeback_work(struct bdi_writeback *wb, + struct wb_writeback_work *work) +{ + struct wb_completion *done = work->done; + + if (work->auto_free) + kfree(work); + if (done && atomic_dec_and_test(&done->cnt)) + wake_up_all(&wb->bdi->wb_waitq); +} + static void wb_queue_work(struct bdi_writeback *wb, struct wb_writeback_work *work) { trace_writeback_queue(wb, work); - spin_lock_bh(&wb->work_lock); - if (!test_bit(WB_registered, &wb->state)) - goto out_unlock; if (work->done) atomic_inc(&work->done->cnt); - list_add_tail(&work->list, &wb->work_list); - mod_delayed_work(bdi_wq, &wb->dwork, 0); -out_unlock: + + spin_lock_bh(&wb->work_lock); + + if (test_bit(WB_registered, &wb->state)) { + list_add_tail(&work->list, &wb->work_list); + mod_delayed_work(bdi_wq, &wb->dwork, 0); + } else + finish_writeback_work(wb, work); + spin_unlock_bh(&wb->work_lock); } @@ -1839,16 +1853,9 @@ static long wb_do_writeback(struct bdi_w set_bit(WB_writeback_running, &wb->state); while ((work = get_next_work_item(wb)) != NULL) { - struct wb_completion *done = work->done; - trace_writeback_exec(wb, work); - wrote += wb_writeback(wb, work); - - if (work->auto_free) - kfree(work); - if (done && atomic_dec_and_test(&done->cnt)) - wake_up_all(&wb->bdi->wb_waitq); + finish_writeback_work(wb, work); } /* Patches currently in stable-queue which might be from tahsin(a)google.com are queue-4.4/writeback-fix-memory-leak-in-wb_queue_work.patch [View Less]

7 years, 4 months

1
0
0 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

Linux-stable-mirror