1. 19 Sep, 2024 1 commit
  2. 18 Sep, 2024 1 commit
  3. 04 Sep, 2024 14 commits
  4. 29 Aug, 2024 11 commits
  5. 28 Aug, 2024 5 commits
    • Joanne Koong's avatar
      fuse: update stats for pages in dropped aux writeback list · f7790d67
      Joanne Koong authored
      In the case where the aux writeback list is dropped (e.g. the pages
      have been truncated or the connection is broken), the stats for
      its pages and backing device info need to be updated as well.
      
      Fixes: e2653bd5 ("fuse: fix leaked aux requests")
      Signed-off-by: default avatarJoanne Koong <joannelkoong@gmail.com>
      Reviewed-by: default avatarJosef Bacik <josef@toxicpanda.com>
      Cc: <stable@vger.kernel.org> # v5.1
      Signed-off-by: default avatarMiklos Szeredi <mszeredi@redhat.com>
      f7790d67
    • Miklos Szeredi's avatar
      fuse: clear PG_uptodate when using a stolen page · 76a51ac0
      Miklos Szeredi authored
      Originally when a stolen page was inserted into fuse's page cache by
      fuse_try_move_page(), it would be marked uptodate.  Then
      fuse_readpages_end() would call SetPageUptodate() again on the already
      uptodate page.
      
      Commit 413e8f01 ("fuse: Convert fuse_readpages_end() to use
      folio_end_read()") changed that by replacing the SetPageUptodate() +
      unlock_page() combination with folio_end_read(), which does mostly the
      same, except it sets the uptodate flag with an xor operation, which in the
      above scenario resulted in the uptodate flag being cleared, which in turn
      resulted in EIO being returned on the read.
      
      Fix by clearing PG_uptodate instead of setting it in fuse_try_move_page(),
      conforming to the expectation of folio_end_read().
      Reported-by: default avatarJürg Billeter <j@bitron.ch>
      Debugged-by: default avatarMatthew Wilcox <willy@infradead.org>
      Fixes: 413e8f01 ("fuse: Convert fuse_readpages_end() to use folio_end_read()")
      Cc: <stable@vger.kernel.org> # v6.10
      Signed-off-by: default avatarMiklos Szeredi <mszeredi@redhat.com>
      76a51ac0
    • yangyun's avatar
      fuse: fix memory leak in fuse_create_open · 3002240d
      yangyun authored
      The memory of struct fuse_file is allocated but not freed
      when get_create_ext return error.
      
      Fixes: 3e2b6fdb ("fuse: send security context of inode on file")
      Cc: stable@vger.kernel.org # v5.17
      Signed-off-by: default avataryangyun <yangyun50@huawei.com>
      Signed-off-by: default avatarMiklos Szeredi <mszeredi@redhat.com>
      3002240d
    • Joanne Koong's avatar
      fuse: check aborted connection before adding requests to pending list for resending · 97f30876
      Joanne Koong authored
      There is a race condition where inflight requests will not be aborted if
      they are in the middle of being re-sent when the connection is aborted.
      
      If fuse_resend has already moved all the requests in the fpq->processing
      lists to its private queue ("to_queue") and then the connection starts
      and finishes aborting, these requests will be added to the pending queue
      and remain on it indefinitely.
      
      Fixes: 760eac73 ("fuse: Introduce a new notification type for resend pending requests")
      Signed-off-by: default avatarJoanne Koong <joannelkoong@gmail.com>
      Reviewed-by: default avatarJosef Bacik <josef@toxicpanda.com>
      Reviewed-by: default avatarJingbo Xu <jefflexu@linux.alibaba.com>
      Cc: <stable@vger.kernel.org> # v6.9
      Signed-off-by: default avatarMiklos Szeredi <mszeredi@redhat.com>
      97f30876
    • Jann Horn's avatar
      fuse: use unsigned type for getxattr/listxattr size truncation · b1891524
      Jann Horn authored
      The existing code uses min_t(ssize_t, outarg.size, XATTR_LIST_MAX) when
      parsing the FUSE daemon's response to a zero-length getxattr/listxattr
      request.
      On 32-bit kernels, where ssize_t and outarg.size are the same size, this is
      wrong: The min_t() will pass through any size values that are negative when
      interpreted as signed.
      fuse_listxattr() will then return this userspace-supplied negative value,
      which callers will treat as an error value.
      
      This kind of bug pattern can lead to fairly bad security bugs because of
      how error codes are used in the Linux kernel. If a caller were to convert
      the numeric error into an error pointer, like so:
      
          struct foo *func(...) {
            int len = fuse_getxattr(..., NULL, 0);
            if (len < 0)
              return ERR_PTR(len);
            ...
          }
      
      then it would end up returning this userspace-supplied negative value cast
      to a pointer - but the caller of this function wouldn't recognize it as an
      error pointer (IS_ERR_VALUE() only detects values in the narrow range in
      which legitimate errno values are), and so it would just be treated as a
      kernel pointer.
      
      I think there is at least one theoretical codepath where this could happen,
      but that path would involve virtio-fs with submounts plus some weird
      SELinux configuration, so I think it's probably not a concern in practice.
      
      Cc: stable@vger.kernel.org # v4.9
      Fixes: 63401ccd ("fuse: limit xattr returned size")
      Signed-off-by: default avatarJann Horn <jannh@google.com>
      Signed-off-by: default avatarMiklos Szeredi <mszeredi@redhat.com>
      b1891524
  6. 28 Jul, 2024 8 commits
    • Linus Torvalds's avatar
      Linux 6.11-rc1 · 8400291e
      Linus Torvalds authored
      8400291e
    • Linus Torvalds's avatar
      Merge tag 'kbuild-fixes-v6.11' of... · a0c04bd5
      Linus Torvalds authored
      Merge tag 'kbuild-fixes-v6.11' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild
      
      Pull Kbuild fixes from Masahiro Yamada:
      
       - Fix RPM package build error caused by an incorrect locale setup
      
       - Mark modules.weakdep as ghost in RPM package
      
       - Fix the odd combination of -S and -c in stack protector scripts,
         which is an error with the latest Clang
      
      * tag 'kbuild-fixes-v6.11' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild:
        kbuild: Fix '-S -c' in x86 stack protector scripts
        kbuild: rpm-pkg: ghost modules.weakdep file
        kbuild: rpm-pkg: Fix C locale setup
      a0c04bd5
    • Linus Torvalds's avatar
      minmax: simplify and clarify min_t()/max_t() implementation · 017fa3e8
      Linus Torvalds authored
      This simplifies the min_t() and max_t() macros by no longer making them
      work in the context of a C constant expression.
      
      That means that you can no longer use them for static initializers or
      for array sizes in type definitions, but there were only a couple of
      such uses, and all of them were converted (famous last words) to use
      MIN_T/MAX_T instead.
      
      Cc: David Laight <David.Laight@aculab.com>
      Cc: Lorenzo Stoakes <lorenzo.stoakes@oracle.com>
      Signed-off-by: default avatarLinus Torvalds <torvalds@linux-foundation.org>
      017fa3e8
    • Linus Torvalds's avatar
      minmax: add a few more MIN_T/MAX_T users · 4477b39c
      Linus Torvalds authored
      Commit 3a7e02c0 ("minmax: avoid overly complicated constant
      expressions in VM code") added the simpler MIN_T/MAX_T macros in order
      to avoid some excessive expansion from the rather complicated regular
      min/max macros.
      
      The complexity of those macros stems from two issues:
      
       (a) trying to use them in situations that require a C constant
           expression (in static initializers and for array sizes)
      
       (b) the type sanity checking
      
      and MIN_T/MAX_T avoids both of these issues.
      
      Now, in the whole (long) discussion about all this, it was pointed out
      that the whole type sanity checking is entirely unnecessary for
      min_t/max_t which get a fixed type that the comparison is done in.
      
      But that still leaves min_t/max_t unnecessarily complicated due to
      worries about the C constant expression case.
      
      However, it turns out that there really aren't very many cases that use
      min_t/max_t for this, and we can just force-convert those.
      
      This does exactly that.
      
      Which in turn will then allow for much simpler implementations of
      min_t()/max_t().  All the usual "macros in all upper case will evaluate
      the arguments multiple times" rules apply.
      
      We should do all the same things for the regular min/max() vs MIN/MAX()
      cases, but that has the added complexity of various drivers defining
      their own local versions of MIN/MAX, so that needs another level of
      fixes first.
      
      Link: https://lore.kernel.org/all/b47fad1d0cf8449886ad148f8c013dae@AcuMS.aculab.com/
      Cc: David Laight <David.Laight@aculab.com>
      Cc: Lorenzo Stoakes <lorenzo.stoakes@oracle.com>
      Signed-off-by: default avatarLinus Torvalds <torvalds@linux-foundation.org>
      4477b39c
    • Linus Torvalds's avatar
      Merge tag 'ubifs-for-linus-6.11-rc1-take2' of... · 7e2d0ba7
      Linus Torvalds authored
      Merge tag 'ubifs-for-linus-6.11-rc1-take2' of git://git.kernel.org/pub/scm/linux/kernel/git/rw/ubifs
      
      Pull UBI and UBIFS updates from Richard Weinberger:
      
       - Many fixes for power-cut issues by Zhihao Cheng
      
       - Another ubiblock error path fix
      
       - ubiblock section mismatch fix
      
       - Misc fixes all over the place
      
      * tag 'ubifs-for-linus-6.11-rc1-take2' of git://git.kernel.org/pub/scm/linux/kernel/git/rw/ubifs:
        ubi: Fix ubi_init() ubiblock_exit() section mismatch
        ubifs: add check for crypto_shash_tfm_digest
        ubifs: Fix inconsistent inode size when powercut happens during appendant writing
        ubi: block: fix null-pointer-dereference in ubiblock_create()
        ubifs: fix kernel-doc warnings
        ubifs: correct UBIFS_DFS_DIR_LEN macro definition and improve code clarity
        mtd: ubi: Restore missing cleanup on ubi_init() failure path
        ubifs: dbg_orphan_check: Fix missed key type checking
        ubifs: Fix unattached inode when powercut happens in creating
        ubifs: Fix space leak when powercut happens in linking tmpfile
        ubifs: Move ui->data initialization after initializing security
        ubifs: Fix adding orphan entry twice for the same inode
        ubifs: Remove insert_dead_orphan from replaying orphan process
        Revert "ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path"
        ubifs: Don't add xattr inode into orphan area
        ubifs: Fix unattached xattr inode if powercut happens after deleting
        mtd: ubi: avoid expensive do_div() on 32-bit machines
        mtd: ubi: make ubi_class constant
        ubi: eba: properly rollback inside self_check_eba
      7e2d0ba7
    • Nathan Chancellor's avatar
      kbuild: Fix '-S -c' in x86 stack protector scripts · 3415b10a
      Nathan Chancellor authored
      After a recent change in clang to stop consuming all instances of '-S'
      and '-c' [1], the stack protector scripts break due to the kernel's use
      of -Werror=unused-command-line-argument to catch cases where flags are
      not being properly consumed by the compiler driver:
      
        $ echo | clang -o - -x c - -S -c -Werror=unused-command-line-argument
        clang: error: argument unused during compilation: '-c' [-Werror,-Wunused-command-line-argument]
      
      This results in CONFIG_STACKPROTECTOR getting disabled because
      CONFIG_CC_HAS_SANE_STACKPROTECTOR is no longer set.
      
      '-c' and '-S' both instruct the compiler to stop at different stages of
      the pipeline ('-S' after compiling, '-c' after assembling), so having
      them present together in the same command makes little sense. In this
      case, the test wants to stop before assembling because it is looking at
      the textual assembly output of the compiler for either '%fs' or '%gs',
      so remove '-c' from the list of arguments to resolve the error.
      
      All versions of GCC continue to work after this change, along with
      versions of clang that do or do not contain the change mentioned above.
      
      Cc: stable@vger.kernel.org
      Fixes: 4f7fd4d7 ("[PATCH] Add the -fstack-protector option to the CFLAGS")
      Fixes: 60a5317f ("x86: implement x86_32 stack protector")
      Link: https://github.com/llvm/llvm-project/commit/6461e537815f7fa68cef06842505353cf5600e9c [1]
      Signed-off-by: default avatarNathan Chancellor <nathan@kernel.org>
      Signed-off-by: default avatarMasahiro Yamada <masahiroy@kernel.org>
      3415b10a
    • Richard Weinberger's avatar
      ubi: Fix ubi_init() ubiblock_exit() section mismatch · 92a286e9
      Richard Weinberger authored
      Since ubiblock_exit() is now called from an init function,
      the __exit section no longer makes sense.
      
      Cc: Ben Hutchings <bwh@kernel.org>
      Reported-by: default avatarkernel test robot <lkp@intel.com>
      Closes: https://lore.kernel.org/oe-kbuild-all/202407131403.wZJpd8n2-lkp@intel.com/Signed-off-by: default avatarRichard Weinberger <richard@nod.at>
      Reviewed-by: default avatarZhihao Cheng <chengzhihao1@huawei.com>
      92a286e9
    • Linus Torvalds's avatar
      Merge tag 'v6.11-merge' of git://git.kernel.org/pub/scm/linux/kernel/git/lenb/linux · e172f1e9
      Linus Torvalds authored
      Pull turbostat updates from Len Brown:
      
       - Enable turbostat extensions to add both perf and PMT (Intel
         Platform Monitoring Technology) counters via the cmdline
      
       - Demonstrate PMT access with built-in support for Meteor Lake's
         Die C6 counter
      
      * tag 'v6.11-merge' of git://git.kernel.org/pub/scm/linux/kernel/git/lenb/linux:
        tools/power turbostat: version 2024.07.26
        tools/power turbostat: Include umask=%x in perf counter's config
        tools/power turbostat: Document PMT in turbostat.8
        tools/power turbostat: Add MTL's PMT DC6 builtin counter
        tools/power turbostat: Add early support for PMT counters
        tools/power turbostat: Add selftests for added perf counters
        tools/power turbostat: Add selftests for SMI, APERF and MPERF counters
        tools/power turbostat: Move verbose counter messages to level 2
        tools/power turbostat: Move debug prints from stdout to stderr
        tools/power turbostat: Fix typo in turbostat.8
        tools/power turbostat: Add perf added counter example to turbostat.8
        tools/power turbostat: Fix formatting in turbostat.8
        tools/power turbostat: Extend --add option with perf counters
        tools/power turbostat: Group SMI counter with APERF and MPERF
        tools/power turbostat: Add ZERO_ARRAY for zero initializing builtin array
        tools/power turbostat: Replace enum rapl_source and cstate_source with counter_source
        tools/power turbostat: Remove anonymous union from rapl_counter_info_t
        tools/power/turbostat: Switch to new Intel CPU model defines
      e172f1e9