[PATCH 4.9 27/66] mm: fix 100% CPU kswapd busyloop on unreclaimable nodes

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Johannes Weiner commit c73322d098e4b6f5f0f0fa1330bf57e218775539 upstream. Patch series "mm: kswapd spinning on unreclaimable nodes - fixes and cleanups". Jia reported a scenario in which the k

[PATCH 4.9 06/66] usbip: Fix potential format overflow in userspace tools

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Jonathan Dieter commit e5dfa3f902b9a642ae8c6997d57d7c41e384a90b upstream. The usbip userspace tools call sprintf()/snprintf() and don't check for the return value which can lead the paths to ov

[PATCH 4.14 29/71] lan78xx: Fix failure in USB Full Speed

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Yuiko Oshino [ Upstream commit a5b1379afbfabf91e3a689e82ac619a7157336b3 ] Fix initialize the uninitialized tx_qlen to an appropriate value when USB Full Speed is used. Fixes: 55d7de9de6c3 ("

[PATCH for 4.16 v3 07/11] x86: Implement sync_core_before_usermode

Ensure that a core serializing instruction is issued before returning to user-mode. x86 implements return to user-space through sysexit, sysrel, and sysretq, which are not core serializing. Signed-off-by: Mathieu Desnoyers Acked-by: Peter Zijlstra (Intel) CC: Thomas Gleixner CC: Andy Lutomirski

[PATCH for 4.16 00/11] membarrier updates for 4.16

Hi Ingo, Peter, Thomas, Here is the updated membarrier patch series following Acked-by from Peter. It would be appreciated of those can go through the scheduler tree for the 4.16 merge window. Highlights: "powerpc: membarrier: Skip memory barrier in switch_mm()" takes care of a TODO that was le

[PATCH for 4.16 v7 02/11] powerpc: membarrier: Skip memory barrier in switch_mm()

Allow PowerPC to skip the full memory barrier in switch_mm(), and only issue the barrier when scheduling into a task belonging to a process that has registered to use expedited private. Threads targeting the same VM but which belong to different thread groups is a tricky case. It has a few consequ

[PATCH for 4.16 11/11] membarrier: selftest: Test private expedited sync core cmd

Test the new MEMBARRIER_CMD_PRIVATE_EXPEDITED_SYNC_CORE and MEMBARRIER_CMD_REGISTER_PRIVATE_EXPEDITED_SYNC_CORE commands. Signed-off-by: Mathieu Desnoyers Acked-by: Shuah Khan Acked-by: Peter Zijlstra (Intel) CC: Greg Kroah-Hartman CC: Paul E. McKenney CC: Boqun Feng CC: Andrew Hunter CC: M

[PATCH] ACPI / processor_idle: Set default C1 state description

From: Yazen Ghannam The acpi_idle driver will default to ACPI_CSTATE_HALT for C1 if a _CST object for C1 is not defined. However, the description will not be set, so users will see "" when reading the description from sysfs. Set the C1 state description when defaulting to ACPI_CSTATE_HALT. Sign

[PATCH for 4.16 v4 09/11] membarrier: x86: Provide core serializing command

There are two places where core serialization is needed by membarrier: 1) When returning from the membarrier IPI, 2) After scheduler updates curr to a thread with a different mm, before going back to user-space, since the curr->mm is used by membarrier to check whether it needs to send an IP

[PATCH for 4.16 v3 08/11] membarrier: Provide core serializing command

Provide core serializing membarrier command to support memory reclaim by JIT. Each architecture needs to explicitly opt into that support by documenting in their architecture code how they provide the core serializing instructions required when returning from the membarrier IPI, and after the sche

[PATCH for 4.16 10/11] membarrier: arm64: Provide core serializing command

Signed-off-by: Mathieu Desnoyers Acked-by: Peter Zijlstra (Intel) CC: Andy Lutomirski CC: Paul E. McKenney CC: Boqun Feng CC: Andrew Hunter CC: Maged Michael CC: Avi Kivity CC: Benjamin Herrenschmidt CC: Paul Mackerras CC: Michael Ellerman CC: Dave Watson CC: Thomas Gleixner CC: Ingo M

[PATCH for 4.16 v5 03/11] membarrier: Document scheduler barrier requirements

Document the membarrier requirement on having a full memory barrier in __schedule() after coming from user-space, before storing to rq->curr. It is provided by smp_mb__after_spinlock() in __schedule(). Document that membarrier requires a full barrier on transition from kernel thread to userspace t

[PATCH for 4.16 v2 05/11] membarrier: selftest: Test global expedited cmd

Test the new MEMBARRIER_CMD_GLOBAL_EXPEDITED and MEMBARRIER_CMD_REGISTER_GLOBAL_EXPEDITED commands. Adapt to the MEMBARRIER_CMD_SHARED -> MEMBARRIER_CMD_GLOBAL rename. Signed-off-by: Mathieu Desnoyers Acked-by: Shuah Khan Acked-by: Peter Zijlstra (Intel) CC: Greg Kroah-Hartman CC: Paul E. McK

[PATCH for 4.16 v3 04/11] membarrier: provide GLOBAL_EXPEDITED command

Allow expedited membarrier to be used for data shared between processes through shared memory. Processes wishing to receive the membarriers register with MEMBARRIER_CMD_REGISTER_GLOBAL_EXPEDITED. Those which want to issue membarrier invoke MEMBARRIER_CMD_GLOBAL_EXPEDITED. This allows extremely si

[PATCH for 4.16 v2 01/11] membarrier: selftest: Test private expedited cmd

Test the new MEMBARRIER_CMD_PRIVATE_EXPEDITED and MEMBARRIER_CMD_REGISTER_PRIVATE_EXPEDITED commands. Add checks expecting specific error values on system calls expected to fail. Signed-off-by: Mathieu Desnoyers Acked-by: Shuah Khan Acked-by: Greg Kroah-Hartman Acked-by: Peter Zijlstra (Intel)

[PATCH for 4.16 v2 06/11] Introduce sync_core_before_usermode

Introduce an architecture function that ensures the current CPU issues a core serializing instruction before returning to usermode. This is needed for the membarrier "sync_core" command. Architectures defining the sync_core_before_usermode() static inline need to select ARCH_HAS_SYNC_CORE_BEFORE_

Re: [PATCH v3 bpf] bpf: introduce BPF_JIT_ALWAYS_ON config

On 01/29/2018 06:36 PM, Greg KH wrote: > On Mon, Jan 29, 2018 at 04:36:35PM +0100, Daniel Borkmann wrote: >> On 01/29/2018 12:40 AM, Daniel Borkmann wrote: >>> On 01/28/2018 03:45 PM, Greg KH wrote: On Wed, Jan 24, 2018 at 11:10:50AM +0100, Daniel Borkmann wrote: > On 01/24/2018 11:07 AM,

Re: [PATCH v3 bpf] bpf: introduce BPF_JIT_ALWAYS_ON config

On Mon, Jan 29, 2018 at 04:36:35PM +0100, Daniel Borkmann wrote: > On 01/29/2018 12:40 AM, Daniel Borkmann wrote: > > On 01/28/2018 03:45 PM, Greg KH wrote: > >> On Wed, Jan 24, 2018 at 11:10:50AM +0100, Daniel Borkmann wrote: > >>> On 01/24/2018 11:07 AM, David Woodhouse wrote: > On Tue, 2018

[PATCH 4.9 61/66] bpf: introduce BPF_JIT_ALWAYS_ON config

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Alexei Starovoitov [ upstream commit 290af86629b25ffd1ed6232c4e9107da031705cb ] The BPF interpreter has been used as part of the spectre 2 attack CVE-2017-5715. A quote from goolge project zer

[PATCH 4.14 35/71] pppoe: take ->needed_headroom of lower device into account on xmit

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Guillaume Nault [ Upstream commit 02612bb05e51df8489db5e94d0cf8d1c81f87b0c ] In pppoe_sendmsg(), reserving dev->hard_header_len bytes of headroom was probably fine before the introduction of

[PATCH 4.14 49/71] sctp: reinit stream if stream outcnt has been change by sinit in sendmsg

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Xin Long [ Upstream commit 625637bf4afa45204bd87e4218645182a919485a ] After introducing sctp_stream structure, sctp uses stream->outcnt as the out stream nums instead of c.sinit_num_ostreams.

[PATCH 3.18 34/52] fs/fcntl: f_setown, avoid undefined behaviour

3.18-stable review patch. If anyone has any objections, please let me know. -- From: Jiri Slaby commit fc3dc67471461c0efcb1ed22fb7595121d65fad9 upstream. fcntl(0, F_SETOWN, 0x8000) triggers: UBSAN: Undefined behaviour in fs/fcntl.c:118:7 negation of -2147483648 cannot be r

[PATCH] Support intel-vbtn based tablet mode switch

On some laptop like the Dell Inspiron 7000 series tablet mode switch implemented in Intel ACPI, the events to enter and exit the tablet mode are 0xCC and 0xCD This initializes the tablet/laptop mode at the correct value if the system booted in tablet mode (or the vbtn module loaded with the device

[PATCH 3.18 49/52] vmxnet3: repair memory leak

3.18-stable review patch. If anyone has any objections, please let me know. -- From: Neil Horman [ Upstream commit 848b159835ddef99cc4193083f7e786c3992f580 ] with the introduction of commit b0eb57cb97e7837ebb746404c2c58c6f536f23fa, it appears that rq->buf_info is improperly h

[PATCH 4.14 22/71] drm/vc4: Fix NULL pointer dereference in vc4_save_hang_state()

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Boris Brezillon commit 17b11b76b87afe9f8be199d7a5f442497133e2b0 upstream. When saving BOs in the hang state we skip one entry of the kernel_state->bo[] array, thus leaving it to NULL. This lea

[PATCH 4.4 49/74] usb: usbip: Fix possible deadlocks reported by lockdep

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Andrew Goodbody commit 21619792d1eca7e772ca190ba68588e57f29595b upstream. Change spin_lock calls to spin_lock_irqsave to prevent attmpted recursive lock taking in interrupt context. This patch

[PATCH 4.4 44/74] reiserfs: Dont clear SGID when inheriting ACLs

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Jan Kara commit 6883cd7f68245e43e91e5ee583b7550abf14523f upstream. When new directory 'DIR1' is created in a directory 'DIR0' with SGID bit set, DIR1 is expected to have SGID bit set (and ownin

Re: [PATCH v3 06/12] dt-bindings: display: sun4i-drm: Add A83T HDMI pipeline

Hi, Dne ponedeljek, 29. januar 2018 ob 19:05:26 CET je Rob Herring napisal(a): > On Wed, Jan 17, 2018 at 09:14:15PM +0100, Jernej Skrabec wrote: > > This commit adds all necessary compatibles and descriptions needed to > > implement A83T HDMI pipeline. > > > > Mixer is already properly described,

[GIT PULL] userns fixes for 4.16-rc1

Linus, Please pull the userns-linus branch from the git tree: git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace.git userns-linus HEAD: 8b2770a4e1c7a837e1889d4f00026e999da5faa0 fix typo in assignment of fs default overflow gid Between the holidays and other distracti

[PATCH 4.9 42/66] r8169: fix memory corruption on retrieval of hardware statistics.

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Francois Romieu [ Upstream commit a78e93661c5fd30b9e1dee464b2f62f966883ef7 ] Hardware statistics retrieval hurts in tight invocation loops. Avoid extraneous write and enforce strict ordering

[PATCH 3.18 10/52] Input: twl6040-vibra - fix DT node memory management

3.18-stable review patch. If anyone has any objections, please let me know. -- From: H. Nikolaus Schaller commit c52c545ead97fcc2f4f8ea38f1ae3c23211e09a8 upstream. commit e7ec014a47e4 ("Input: twl6040-vibra - update for device tree support") made the separate vibra DT node to

[PATCH 4.14 05/71] netfilter: xt_osf: Add missing permission checks

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Kevin Cernekee commit 916a27901de01446bcf57ecca4783f6cff493309 upstream. The capability check in nfnetlink_rcv() verifies that the caller has CAP_NET_ADMIN in the namespace that "owns" the net

[PATCH 4.9 23/66] reiserfs: dont preallocate blocks for extended attributes

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Jeff Mahoney commit 54930dfeb46e978b447af0fb8ab4e181c1bf9d7a upstream. Most extended attributes will fit in a single block. More importantly, we drop the reference to the inode while holding t

[PATCH 4.4 43/74] reiserfs: dont preallocate blocks for extended attributes

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Jeff Mahoney commit 54930dfeb46e978b447af0fb8ab4e181c1bf9d7a upstream. Most extended attributes will fit in a single block. More importantly, we drop the reference to the inode while holding t

[PATCH 4.4 35/74] netfilter: restart search if moved to other chain

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Florian Westphal commit 95a8d19f28e6b29377a880c6264391a62e07fccc upstream. In case nf_conntrack_tuple_taken did not find a conflicting entry check that all entries in this hash slot were tested

[PATCH 4.9 66/66] bpf: reject stores into ctx via st and xadd

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Daniel Borkmann [ upstream commit f37a8cb84cce18762e8f86a70bd6a49a66ab964c ] Alexei found that verifier does not reject stores into context via BPF_ST instead of BPF_STX. And while looking at i

[PATCH 4.9 36/66] ipv6: ip6_make_skb() needs to clear cork.base.dst

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Eric Dumazet [ Upstream commit 95ef498d977bf44ac094778fd448b98af158a3e6 ] In my last patch, I missed fact that cork.base.dst was not initialized in ip6_make_skb() : If ip6_setup_cork() return

[PATCH 4.9 57/66] x86/microcode/intel: Extend BDW late-loading further with LLC size check

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Jia Zhang commit 7e702d17ed138cf4ae7c00e8c00681ed464587c7 upstream. Commit b94b73733171 ("x86/microcode/intel: Extend BDW late-loading with a revision check") reduced the impact of erratum BDF9

[PATCH 4.14 19/71] ARM: net: bpf: fix register saving

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Russell King commit 02088d9b392f605c892894b46aa8c83e3abd0115 upstream. When an eBPF program tail-calls another eBPF program, it enters it after the prologue to avoid having complex stack manip

Re: [PATCH v7] Support intel-vbtn based tablet mode switch

On Mon, Jan 29, 2018 at 8:35 PM, wrote: >> -Original Message- >> From: Andy Shevchenko [mailto:andy.shevche...@gmail.com] >> Sent: Monday, January 29, 2018 12:57 PM >> To: Marco Martin >> Cc: Platform Driver ; Limonciello, Mario >> ; Andy Shevchenko ; Pali >> Rohár ; Darren Hart ; Matthe

[PATCH 4.9 17/66] ipc: msg, make msgrcv work with LONG_MIN

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Jiri Slaby commit 999898355e08ae3b92dfd0a08db706e0c6703d30 upstream. When LONG_MIN is passed to msgrcv, one would expect to recieve any message. But convert_mode does *msgtyp = -*msgtyp and -L

[PATCH 4.9 52/66] gso: validate gso_type in GSO handlers

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Willem de Bruijn [ Upstream commit 121d57af308d0cf943f08f4738d24d3966c38cd9 ] Validate gso_type during segmentation as SKB_GSO_DODGY sources may pass packets where the gso_type does not match

[PATCH 4.14 56/71] tls: return -EBUSY if crypto_info is already set

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Sabrina Dubroca [ Upstream commit 877d17c79b66466942a836403773276e34fe3614 ] do_tls_setsockopt_tx returns 0 without doing anything when crypto_info is already set. Silent failure is confusing

[PATCH 4.9 13/66] mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Michal Hocko commit 561b5e0709e4a248c67d024d4d94b6e31e3edf2f upstream. Commit 1be7107fbe18 ("mm: larger stack guard gap, between vmas") has introduced a regression in some rust and Java environ

[PATCH 4.4 50/74] usbip: fix stub_rx: get_pipe() to validate endpoint number

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Shuah Khan commit 635f545a7e8be7596b9b2b6a43cab6bbd5a88e43 upstream. get_pipe() routine doesn't validate the input endpoint number and uses to reference ep_in and ep_out arrays. Invalid endpoin

Re: [GIT pull] printk updates for 4.15

Any movement on the following proposal? tglx@ do you have an update? -- Mark On 11/14/2017 02:50 PM, Thomas Gleixner wrote: On Tue, 14 Nov 2017, Linus Torvalds wrote: I'd suggest simply adding another time to the internal 'struct printk_log' (and probably just set it in "log_store()"). Doesn'

[PATCH 3.18 44/52] tcp: __tcp_hdrlen() helper

3.18-stable review patch. If anyone has any objections, please let me know. -- From: Craig Gallek commit d9b3fca27385eafe61c3ca6feab6cb1e7dc77482 upstream. tcp_hdrlen is wasteful if you already have a pointer to struct tcphdr. This splits the size calculation into a helper fun

[PATCH 4.14 20/71] ARM: net: bpf: fix LDX instructions

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Russell King commit ec19e02b343db991d2d1610c409efefebf4e2ca9 upstream. When the source and destination register are identical, our JIT does not generate correct code, which leads to kernel oop

[PATCH 4.4 57/74] hrtimer: Reset hrtimer cpu base proper on CPU hotplug

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Thomas Gleixner commit d5421ea43d30701e03cadc56a38854c36a8b4433 upstream. The hrtimer interrupt code contains a hang detection and mitigation mechanism, which prevents that a long delayed hrtim

[PATCH 4.14 08/71] Input: xpad - add support for PDP Xbox One controllers

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Mark Furneaux commit e5c9c6a885fad00aa559b49d8fc23a60e290824e upstream. Adds support for the current lineup of Xbox One controllers from PDP (Performance Designed Products). These controllers

[PATCH 4.4 65/74] net: qdisc_pkt_len_init() should be more robust

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Eric Dumazet [ Upstream commit 7c68d1a6b4db9012790af7ac0f0fdc0d2083422a ] Without proper validation of DODGY packets, we might very well feed qdisc_pkt_len_init() with invalid GSO packets. tc

[PATCH 4.9 64/66] bpf: fix divides by zero

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Eric Dumazet [ upstream commit c366287ebd698ef5e3de300d90cd62ee9ee7373e ] Divides by zero are not nice, lets avoid them if possible. Also do_div() seems not needed when dealing with 32bit oper

[PATCH 4.14 66/71] bpf: avoid false sharing of map refcount with max_entries

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Daniel Borkmann [ upstream commit be95a845cc4402272994ce290e3ad928aff06cb9 ] In addition to commit b2157399cc98 ("bpf: prevent out-of-bounds speculation") also change the layout of struct bpf_

[PATCH 4.14 00/71] 4.14.16-stable review

This is the start of the stable review cycle for the 4.14.16 release. There are 71 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Wed Jan 31 12:37:59 UTC 2018. Anything receiv

[PATCH 4.9 45/66] tipc: fix a memory leak in tipc_nl_node_get_link()

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Cong Wang [ Upstream commit 59b36613e85fb16ebf9feaf914570879cd5c2a21 ] When tipc_node_find_by_name() fails, the nlmsg is not freed. While on it, switch to a goto label to properly free it. F

[PATCH 4.4 27/74] ACPI / processor: Avoid reserving IO regions too early

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Rafael J. Wysocki commit 86314751c7945fa0c67f459beeda2e7c610ca429 upstream. Roland Dreier reports that one of his systems cannot boot because of the changes made by commit ac212b6980d8 (ACPI /

[PATCH 4.4 41/74] ext2: Dont clear SGID when inheriting ACLs

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Jan Kara commit a992f2d38e4ce17b8c7d1f7f67b2de0eebdea069 upstream. When new directory 'DIR1' is created in a directory 'DIR0' with SGID bit set, DIR1 is expected to have SGID bit set (and ownin

[PATCH 4.4 37/74] netfilter: use fwmark_reflect in nf_send_reset

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Pau Espin Pedrol commit cc31d43b4154ad5a7d8aa5543255a93b7e89edc2 upstream. Otherwise, RST packets generated by ipt_REJECT always have mark 0 when the routing is checked later in the same code p

[PATCH 3.18 27/52] netfilter: nf_ct_expect: remove the redundant slash when policy name is empty

3.18-stable review patch. If anyone has any objections, please let me know. -- From: Liping Zhang commit b173a28f62cf929324a8a6adcc45adadce311d16 upstream. The 'name' filed in struct nf_conntrack_expect_policy{} is not a pointer, so check it is NULL or not will always return t

[PATCH 4.4 71/74] net: Allow neigh contructor functions ability to modify the primary_key

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Jim Westfall [ Upstream commit 096b9854c04df86f03b38a97d40b6506e5730919 ] Use n->primary_key instead of pkey to account for the possibility that a neigh constructor function may have modified

[PATCH 4.4 31/74] netfilter: arp_tables: fix invoking 32bit "iptable -P INPUT ACCEPT" failed in 64bit kernel

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Hongxu Jia commit 17a49cd549d9dc8707dc9262210166455c612dde upstream. Since 09d9686047db ("netfilter: x_tables: do compat validation via translate_table"), it used compatr structure to assign ne

[PATCH 3.18 07/52] af_key: fix buffer overread in parse_exthdrs()

3.18-stable review patch. If anyone has any objections, please let me know. -- From: Eric Biggers commit 4e765b4972af7b07adcb1feb16e7a525ce1f6b28 upstream. If a message sent to a PF_KEY socket ended with an incomplete extension header (fewer than 4 bytes remaining), then parse

[PATCH 4.14 53/71] netlink: reset extack earlier in netlink_rcv_skb

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Xin Long [ Upstream commit cd443f1e91ca600a092e780e8250cd6a2954b763 ] Move up the extack reset/initialization in netlink_rcv_skb, so that those 'goto ack' will not skip it. Otherwise, later o

[PATCH 4.4 32/74] netfilter: nf_dup_ipv6: set again FLOWI_FLAG_KNOWN_NH at flowi6_flags

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Paolo Abeni commit 83170f3bed7ceb4f9a0ac0c4dc736afde90c upstream. With the commit 48e8aa6e3137 ("ipv6: Set FLOWI_FLAG_KNOWN_NH at flowi6_flags") ip6_pol_route() callers were asked to to set

Re: [PATCH v5 04/12] x86: introduce __uaccess_begin_nospec and ifence

On Sun, Jan 28, 2018 at 1:14 AM, Ingo Molnar wrote: > > * Dan Williams wrote: > >> --- a/arch/x86/include/asm/uaccess.h >> +++ b/arch/x86/include/asm/uaccess.h >> @@ -124,6 +124,11 @@ extern int __get_user_bad(void); >> >> #define __uaccess_begin() stac() >> #define __uaccess_end() clac() >>

[PATCH 4.14 11/71] Btrfs: fix stale entries in readdir

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Josef Bacik commit e4fd493c0541d36953f7b9d3bfced67a1321792f upstream. In fixing the readdir+pagefault deadlock I accidentally introduced a stale entry regression in readdir. If we get close t

[PATCH 4.9 00/66] 4.9.79-stable review

This is the start of the stable review cycle for the 4.9.79 release. There are 66 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Wed Jan 31 12:38:12 UTC 2018. Anything receive

[PATCH 4.14 57/71] tls: reset crypto_info when do_tls_setsockopt_tx fails

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Sabrina Dubroca [ Upstream commit 6db959c82eb039a151d95a0f8b7dea643657327a ] The current code copies directly from userspace to ctx->crypto_send, but doesn't always reinitialize it to 0 on fa

[PATCH 4.9 47/66] net: Allow neigh contructor functions ability to modify the primary_key

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Jim Westfall [ Upstream commit 096b9854c04df86f03b38a97d40b6506e5730919 ] Use n->primary_key instead of pkey to account for the possibility that a neigh constructor function may have modified

[PATCH 4.4 60/74] ipv6: fix udpv6 sendmsg crash caused by too small MTU

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Mike Maloney [ Upstream commit 749439bfac6e1a2932c582e2699f91d329658196 ] The logic in __ip6_append_data() assumes that the MTU is at least large enough for the headers. A device's MTU may be

[PATCH 4.14 58/71] net: ipv4: Make "ip route get" match iif lo rules again.

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Lorenzo Colitti [ Upstream commit 6503a30440962f1e1ccb8868816b4e18201218d4 ] Commit 3765d35ed8b9 ("net: ipv4: Convert inet_rtm_getroute to rcu versions of route lookup") broke "ip route get"

[PATCH 4.14 69/71] bpf: reject stores into ctx via st and xadd

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Daniel Borkmann [ upstream commit f37a8cb84cce18762e8f86a70bd6a49a66ab964c ] Alexei found that verifier does not reject stores into context via BPF_ST instead of BPF_STX. And while looking at

Re: [PATCH 2/2] drm: adv7511: Add support for i2c_new_secondary_device

On Mon, Jan 29, 2018 at 12:26:00PM +0200, Laurent Pinchart wrote: > Hi Kieran, > > Thank you for the patch. > > On Monday, 22 January 2018 14:50:00 EET Kieran Bingham wrote: > > The ADV7511 has four 256-byte maps that can be accessed via the main I²C > > ports. Each map has it own I²C address and

[PATCH 4.14 02/71] orangefs: initialize op on loop restart in orangefs_devreq_read

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Martin Brandenburg commit a0ec1ded22e6a6bc41981fae22406835b006a66e upstream. In orangefs_devreq_read, there is a loop which picks an op off the list of pending ops. If the loop fails to find

[PATCH 4.9 33/66] dccp: dont restart ccid2_hc_tx_rto_expire() if sk in closed state

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Alexey Kodanev [ Upstream commit dd5684ecae3bd8e44b644f50e2c12c7e57fdfef5 ] ccid2_hc_tx_rto_expire() timer callback always restarts the timer again and can run indefinitely (unless it is stopp

Re: [RFC,05/10] x86/speculation: Add basic IBRS support infrastructure

On Mon, Jan 29, 2018 at 08:17:02PM +, David Woodhouse wrote: > On Mon, 2018-01-29 at 18:14 -0200, Eduardo Habkost wrote: > > > > Sorry for being confused here, as probably the answer is buried > > on a LKML thread somewhere.  The comment explains what the code > > does, but not why.  Why exact

[PATCH 4.4 73/74] flow_dissector: properly cap thoff field

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Eric Dumazet [ Upstream commit d0c081b49137cd3200f2023c0875723be66e7ce5 ] syzbot reported yet another crash [1] that is caused by insufficient validation of DODGY packets. Two bugs are happen

[PATCH 4.4 21/74] mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Michal Hocko commit 561b5e0709e4a248c67d024d4d94b6e31e3edf2f upstream. Commit 1be7107fbe18 ("mm: larger stack guard gap, between vmas") has introduced a regression in some rust and Java environ

[PATCH 3.18 23/52] can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once

3.18-stable review patch. If anyone has any objections, please let me know. -- From: Marc Kleine-Budde commit d4689846881d160a4d12a514e991a740bcb5d65a upstream. If an invalid CANFD frame is received, from a driver or from a tun interface, a Kernel warning is generated. This p

[PATCH 4.4 22/74] hwpoison, memcg: forcibly uncharge LRU pages

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Michal Hocko commit 18365225f0440d09708ad9daade2ec11275c3df9 upstream. Laurent Dufour has noticed that hwpoinsoned pages are kept charged. In his particular case he has hit a bad_page("page st

Re: [RFC,05/10] x86/speculation: Add basic IBRS support infrastructure

On 1/29/2018 12:42 PM, Eduardo Habkost wrote: The question is how the hypervisor could tell that to the guest. If Intel doesn't give us a CPUID bit that can be used to tell that retpolines are enough, maybe we should use a hypervisor CPUID bit for that? the objective is to have retpoline be saf

Re: [PATCH v2 01/43] drm/rockchip: Get rid of unnecessary struct fields

On Fri, Jan 26, 2018 at 02:16:28PM +0100, Thierry Escande wrote: > From: Tomasz Figa > > This patch removes unused fields from vop structure. > > Signed-off-by: Tomasz Figa > Signed-off-by: Sean Paul > Signed-off-by: Thierry Escande Reviewed-by: Sean Paul > --- > drivers/gpu/drm/rockchip

Re: NFS: regression in stable kernel 4.9.78 from 4.9.75

On Mon, Jan 29, 2018 at 02:42:49PM +0100, Wolfgang Walter wrote: > Hello! > > Am Montag, 29. Januar 2018, 13:22:49 schrieb Wolfgang Walter: > > Hello, > > > > after upgrading our nfs-server from 4.9.75 to 4.9.78 group permissions stop > > working (for clients). If you need group permissions to a

[PATCH 3.18 01/52] gcov: disable for COMPILE_TEST

3.18-stable review patch. If anyone has any objections, please let me know. -- From: Arnd Bergmann commit cc622420798c4bcf093785d872525087a7798db9 upstream. Enabling gcov is counterproductive to compile testing: it significantly increases the kernel image size, compile time, a

[PATCH 4.4 59/74] ipv6: Fix getsockopt() for sockets with default IPV6_AUTOFLOWLABEL

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Ben Hutchings [ Upstream commit e9191ffb65d8e159680ce0ad2224e1acbde6985c ] Commit 513674b5a2c9 ("net: reevalulate autoflowlabel setting after sysctl setting") removed the initialisation of ipv

[PATCH 4.4 02/74] usbip: prevent vhci_hcd driver from leaking a socket pointer address

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Shuah Khan commit 2f2d0088eb93db5c649d2a5e34a3800a8a935fc5 upstream. When a client has a USB device attached over IP, the vhci_hcd driver is locally leaking a socket pointer address via the /s

[PATCH 4.9 37/66] lan78xx: Fix failure in USB Full Speed

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Yuiko Oshino [ Upstream commit a5b1379afbfabf91e3a689e82ac619a7157336b3 ] Fix initialize the uninitialized tx_qlen to an appropriate value when USB Full Speed is used. Fixes: 55d7de9de6c3 ("M

[PATCH 4.4 00/74] 4.4.114-stable review

This is the start of the stable review cycle for the 4.4.114 release. There are 74 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Wed Jan 31 12:38:21 UTC 2018. Anything receiv

[PATCH 3.18 24/52] mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack

3.18-stable review patch. If anyone has any objections, please let me know. -- From: Michal Hocko commit 561b5e0709e4a248c67d024d4d94b6e31e3edf2f upstream. Commit 1be7107fbe18 ("mm: larger stack guard gap, between vmas") has introduced a regression in some rust and Java enviro

[PATCH 4.14 50/71] netlink: extack needs to be reset each time through loop

4.14-stable review patch. If anyone has any objections, please let me know. -- From: David Ahern [ Upstream commit cbbdf8433a5f117b1a2119ea30fc651b61ef7570 ] syzbot triggered the WARN_ON in netlink_ack testing the bad_attr value. The problem is that netlink_rcv_skb loops over

[PATCH 4.14 27/71] ipv6: fix udpv6 sendmsg crash caused by too small MTU

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Mike Maloney [ Upstream commit 749439bfac6e1a2932c582e2699f91d329658196 ] The logic in __ip6_append_data() assumes that the MTU is at least large enough for the headers. A device's MTU may b

[PATCH 4.9 65/66] bpf: fix 32-bit divide by zero

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Alexei Starovoitov [ upstream commit 68fda450a7df51cff9e5a4d4a4d9d0d5f2589153 ] due to some JITs doing if (src_reg == 0) check in 64-bit mode for div/mod operations mask upper 32-bits of src re

[PATCH 4.4 63/74] net: igmp: fix source address check for IGMPv3 reports

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Felix Fietkau [ Upstream commit ad23b750933ea7bf962678972a286c78a8fa36aa ] Commit "net: igmp: Use correct source address on IGMPv3 reports" introduced a check to validate the source address of

[PATCH 4.4 66/74] pppoe: take ->needed_headroom of lower device into account on xmit

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Guillaume Nault [ Upstream commit 02612bb05e51df8489db5e94d0cf8d1c81f87b0c ] In pppoe_sendmsg(), reserving dev->hard_header_len bytes of headroom was probably fine before the introduction of -

[PATCH 3.18 32/52] reiserfs: fix race in prealloc discard

3.18-stable review patch. If anyone has any objections, please let me know. -- From: Jeff Mahoney commit 08db141b5313ac2f64b844fb5725b8d81744b417 upstream. The main loop in __discard_prealloc is protected by the reiserfs write lock which is dropped across schedules like the BK

[PATCH 4.14 32/71] net: tcp: close sock if net namespace is exiting

4.14-stable review patch. If anyone has any objections, please let me know. -- From: Dan Streetman [ Upstream commit 4ee806d51176ba7b8ff1efd81f271d7252e03a1d ] When a tcp socket is closed, if it detects that its net namespace is exiting, close immediately and do not wait for

[PATCH 4.4 19/74] mmc: sdhci-of-esdhc: add/remove some quirks according to vendor version

4.4-stable review patch. If anyone has any objections, please let me know. -- From: yangbo lu commit 1ef5e49e46b919052474d9b54a15debc79ff0133 upstream. A previous patch had removed esdhc_of_platform_init() by mistake. static void esdhc_of_platform_init(struct sdhci_host *host)

[PATCH 4.4 08/74] sched/deadline: Use the revised wakeup rule for suspending constrained dl tasks

4.4-stable review patch. If anyone has any objections, please let me know. -- From: Daniel Bristot de Oliveira commit 3effcb4247e74a51f5d8b775a1ee4abf87cc089a upstream. We have been facing some problems with self-suspending constrained deadline tasks. The main reason is that t

[PATCH 4.9 62/66] bpf: arsh is not supported in 32 bit alu thus reject it

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Daniel Borkmann [ upstream commit 7891a87efc7116590eaba57acc3c422487802c6f ] The following snippet was throwing an 'unknown opcode cc' warning in BPF interpreter: 0: (18) r0 = 0x0 2: (7b)

[PATCH 4.9 15/66] cma: fix calculation of aligned offset

4.9-stable review patch. If anyone has any objections, please let me know. -- From: Doug Berger commit e048cb32f69038aa1c8f11e5c1b331be4181659d upstream. The align_offset parameter is used by bitmap_find_next_zero_area_off() to represent the offset of map's base from the previ

<    2   3   4   5   6   7   8   9   10   11   >