3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: "Eric W. Biederman"
commit 98f929b1bd4d0b7c7a77d0d9776d1b924db2e454 upstream.
Today shm_cpid and shm_lpid are remembered in the pid namespace of the
creator and the processes that last
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Nikolay Borisov
commit 1e1c50a929bc9e49bc3f9935b92450d9e69f8158 upstream.
do_chunk_alloc implements a loop checking whether there is a pending
chunk allocation and if so causes the caller do
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: "Eric W. Biederman"
commit 03f1fc09180b345582889a344b012d069b3a6dbe upstream.
Capture the pid namespace when /proc/sysvipc/msg /proc/sysvipc/shm
and /proc/sysvipc/sem are opened, and make it
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Jann Horn
commit 7e5a206ab686f098367b61aca989f5cdfa8114a3 upstream.
The old code reads the "opsize" variable from out-of-bounds memory (first
byte behind the segment) if a broken TCP segment
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Mike Kravetz
commit 5df63c2a149ae65a9ec239e7c2af44efa6f79beb upstream.
This is a fix for a regression in 32 bit kernels caused by an invalid
check for pgoff overflow in hugetlbfs mmap setup.
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Yishai Hadas
commit 18b0362e87dfa09e355093b897b9db854e360d28 upstream.
User can leave system without medium BlueFlames registers,
however the code assumed that at least one such register
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Guenter Roeck
commit dbac00f0cf634120d77edee10d25e3f6899d7636 upstream.
On Asrock Z370M Pro4, it was observed that EC access was disabled after
initially booting the system. As a result, the
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Al Viro
commit 16a34adb9392b2fe4195267475ab5b472e55292c upstream.
We want it only for the stuff created by SB_KERNMOUNT mounts, *not* for
their copies. As it is, creating a deep stack of
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Peng Hao
commit 3140c156e919b0f5fad5c5f6cf7876c39d1d4f06 upstream.
fix a "warning: no previous prototype".
Signed-off-by: Peng Hao
Signed-off-by: Paolo Bonzini
Signed-off-by: Ben Hutchings
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Theodore Ts'o
commit e40ff213898502d299351cc2fe1e350cd186f0d3 upstream.
A malicious user could force the directory pointer to be in an invalid
spot by using seekdir(2). Use the mechanism we
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Bjorn Helgaas
commit 5938628c51a711ae2169d68b2e3a4f7d93d4dbea upstream.
The PCI Power Management Spec, r1.2, sec 5.6.1, requires a 10 millisecond
delay when powering on a device, i.e.,
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Federico Cuello
commit 21493316a3c4598f308d5a9fa31cc74639c4caff upstream.
Currently it's not possible to set volume lower than 26% (it just mutes).
Also fixes this warning:
Warning!
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Eric Dumazet
commit 7f582b248d0a86bae5788c548d7bb5bca6f7691a upstream.
syzkaller found a reliable way to crash the host, hitting a BUG()
in __tcp_retransmit_skb()
Malicous MSG_FASTOPEN is
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Eric Dumazet
commit b95211e066fc3494b7c115060b2297b4ba21f025 upstream.
Use dev_valid_name() to make sure user does not provide illegal
device name.
syzbot caught the following bug :
BUG:
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Helge Deller
commit d5654e156bc4d68a87bbaa6d7e020baceddf6e68 upstream.
Make sure that the HPMC (High Priority Machine Check) handler is 16-byte
aligned and that it's length in the IVT is a
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Julian Wiedmann
commit dae55b6fef58530c13df074bcc182c096609339e upstream.
Immediate retry of EQBS after CCQ 96 means that we potentially misreport
the state of buffers inspected during the
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: "Eric W. Biederman"
commit 39a4940eaa185910bb802ca9829c12268fd2c855 upstream.
Today msg_lspid and msg_lrpid are remembered in the pid namespace of
the creator and the processes that last send
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Peter Rosin
commit 12d9bbc5a7f347eaa65ff2a9d34995cadc05eb1b upstream.
Returning -1 (-EPERM) is not appropriate here, go with -EIO.
Signed-off-by: Peter Rosin
Signed-off-by: Wolfram Sang
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Dexuan Cui
commit 5596fe34495cf0f645f417eb928ef224df3e3cb4 upstream.
for_each_cpu() unintuitively reports CPU0 as set independent of the actual
cpumask content on UP kernels. This causes an
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Joe Jin
commit 4855c92dbb7b3b85c23e88ab7ca04f99b9677b41 upstream.
When run raidconfig from Dom0 we found that the Xen DMA heap is reduced,
but Dom Heap is increased by the same size. Tracing
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Sekhar Nori
commit bb7298a7e87cf3430eb62be8746e5d7a07ca9d7c upstream.
VPIF capture driver expects card name to be set since it
uses it without checking for NULL. The commit which
introduced
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Peter Rosin
commit 35cd67a0caf767aba472452865dcb4471fcce2b1 upstream.
Returning zero is wrong in this case.
Signed-off-by: Peter Rosin
Signed-off-by: Wolfram Sang
Fixes: 174a13aa8669
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Roland Dreier
commit 84652aefb347297aa08e91e283adf7b18f77c2d5 upstream.
There are several places in the ucma ABI where userspace can pass in a
sockaddr but set the address family to AF_IB.
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Arnd Bergmann
commit a398e043637a4819a0e96467bfecaabf3224dd62 upstream.
While experimenting with older compiler versions, I ran
into a warning that no longer shows up on gcc-4.8 or newer:
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Peter Rosin
commit de9a8634f1cb4560a35696d472cc7f1383d9b866 upstream.
Returning zero is wrong in this case.
Signed-off-by: Peter Rosin
Signed-off-by: Wolfram Sang
Fixes: 1b144df1d7d6
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Linus Torvalds
commit 423913ad4ae5b3e8fb8983f70969fb522261ba26 upstream.
Commit be83bbf80682 ("mmap: introduce sane default mmap limits") was
introduced to catch problems in various ad-hoc
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Vasily Gorbik
commit 15deb080a6087b73089139569558965750e69d67 upstream.
When loadparm is set in reipl parm block, the kernel should also set
DIAG308_FLAGS_LP_VALID flag.
This fixes loadparm
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Matt Redfearn
commit daf70d89f80c6e1772233da9e020114b1254e7e0 upstream.
The __clear_user function is defined to return the number of bytes that
could not be cleared. From the underlying
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Ben Hutchings
commit 3976626ea3d2011f8fd3f3a47070a8b792018253 upstream.
Commit 62e3a3e342af changed get_pages() to initialise
msm_gem_object::pages before trying to initialise
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Mark Brown
commit d5b98eb12420ce856caaf57dc5256eedc56a3747 upstream.
When doing a bulk read from a device which lacks raw I/O support we fall
back to doing register at a time reads but we
Perf has this hack where it uses the kernel symbol map as a backup
when a symbol can't be found in the user's symbol table(s).
This causes problems because the tests driving this code path use
machine__kernel_ip(), and that is completely meaningless on Sparc. On
sparc64 the kernel and user
On 10/13/2018 04:09 PM, Paolo Bonzini wrote:
It's not clear to me why you're special casing PMIs here. The optimization
should work generically, right?
Yeah, you can even just check if the counter is in the struct
cpu_hw_events guest mask, and if so always write the counter MSR directly.
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Takashi Iwai
commit f13876e2c33a657a71bcbb10f767c0951b165020 upstream.
Since snd_pcm_ioctl_xfern_compat() has no PCM state check, it may go
further and hit the sanity check pcm_sanity_check()
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Takashi Iwai
commit 8d218dd8116695ecda7164f97631c069938aa22e upstream.
As Smatch recently suggested, a few places in OSS sequencer codes may
expand the array directly from the user-space
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: SZ Lin (林上智)
commit 9306b38e42cb266f98bff6f6f4c1c652aa79ba45 upstream.
This patch adds support for PID 0x90b2 of ublox R410M.
qmicli -d /dev/cdc-wdm0 --dms-get-manufacturer
[/dev/cdc-wdm0]
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Amir Goldstein
commit 54a307ba8d3cd00a3902337ffaae28f436eeb1a4 upstream.
When event on child inodes are sent to the parent inode mark and
parent inode mark was not marked with
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Guillaume Nault
commit 5411b6187adf62909e3b998ac782e722904c7487 upstream.
Commit 0e0c3fee3a59 ("l2tp: hold reference on tunnels printed in pppol2tp proc
file")
assumed that if
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Eric Biggers
commit 9c438d7a3a52dcc2b9ed095cb87d3a5e83cf7e60 upstream.
Adding a dns_resolver key whose payload contains a very long option name
resulted in that string being printed in full.
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Paolo Abeni
commit 4fb0534fb7bbc2346ba7d3a072b538007f4135a5 upstream.
When parsing the options provided by the user space,
team_nl_cmd_options_set() insert them in a temporary list to send
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Tony Lindgren
commit b5133e7a988b2cf8e1cd2b23231f36aff35ceffc upstream.
Commit 3ba97381343b ("net: ethernet: davinci_emac: add pm_runtime support")
added support for runtime PM, but it causes
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Takashi Iwai
commit 8a56ef4f3ffba9ebf4967b61ef600b0a7ba10f11 upstream.
Some rawmidi compat ioctls lack of the input substream checks
(although they do check only for rfile->output). This
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Shuah Khan
commit 9020a7efe537856eb3e826ebebdf38a5d07a7857 upstream.
vhci_hcd fails to do reset to put usb device and sockfd in the
module remove/stop paths. Fix the leak.
Signed-off-by:
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Joakim Tjernlund
commit 6510bbc88e3258631831ade49033537081950605 upstream.
Currently it is possible to read and/or write to suspend EB's.
Writing /dev/mtdX or /dev/mtdblockX from several
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Eric Dumazet
commit 6780db244d6b1537d139dea0ec8aad10cf9e4adb upstream.
syzbot produced a nice report [1]
Issue here is that a recvmmsg() managed to leak 8 bytes of kernel memory
to user
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Chao Yu
commit b73e52824c8920a5ff754e3c8ff68466a7dd61f9 upstream.
As the race condition on the inode cache, following scenario can appear:
[Thread a] [Thread b]
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Jimmy Assarsson
commit 6ee00865ffe4e8c8ba4a68d26db53c7ec09bbb89 upstream.
Increase rx_dropped, if alloc_can_skb() fails, not tx_dropped.
Signed-off-by: Jimmy Assarsson
Signed-off-by: Marc
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: "Steven Rostedt (VMware)"
commit dc432c3d7f9bceb3de6f5b44fb9c657c9810ed6d upstream.
The regex match function regex_match_front() in the tracing filter logic,
was fixed to test just the
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Andy King
commit 4ad9a64f53c619969dede1143d56ccda1a453c39 upstream.
We should check if the map of the table actually succeeds, and also free
resources accordingly.
Version bumped to 1.2.1.0
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: "Steven Rostedt (VMware)"
commit 45dd9b0666a162f8e4be76096716670cf1741f0e upstream.
Doing an audit of trace events, I discovered two trace events in the xen
subsystem that use a hack to
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Moshe Shemesh
commit 6ad4e91c6d796b38a7f0e724db1de28eeb122bad upstream.
Add check of coalescing parameters received through ethtool are within
range of values supported by the HW.
Driver gets
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Matthew Auld
commit 20943f984967477c906522112d2b6b5a29f94684 upstream.
Operating on a zero sized GEM userptr object will lead to explosions.
Fixes: 5cc9ed4b9a7a ("drm/i915: Introduce mapping
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Dave Airlie
commit 76ef6b28ea4f81c3d511866a9b31392caa833126 upstream.
Since we have the ttm and gem vma managers using a subset
of the file address space for objects, and these start at
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: "Maciej W. Rozycki"
commit 9a3a92ccfe3620743d4ae57c987dc8e9c5f88996 upstream.
Check the TIF_32BIT_FPREGS task setting of the tracee rather than the
tracer in determining the layout of
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Alexey Khoroshilov
commit fb5c6cfaec126d9a96b9dd471d4711bf4c737a6f upstream.
vmxnet3_set_mc() checks new_table_pa returned by dma_map_single()
with dma_mapping_error(), but even there it
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Tarick Bedeir
commit 57f6f99fdad9984801cde05c1db68fe39b474a10 upstream.
Avoid exiting the function with a lingering sysfs file (if the first
call to device_create_file() fails while the
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Hans de Goede
commit 184add2ca23ce5edcac0ab9c3b9be13f91e7b567 upstream.
Richard Jones has reported that using med_power_with_dipm on a T450s
with a Sandisk SD7UB3Q256G1001 SSD (firmware
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Russell King
commit 9954b80b8c0e8abc98e17bba0fccd9876211ceaa upstream.
platform_domain_notifier contains a variable sized array, which the
pm_clk_notify() notifier treats as a NULL terminated
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Tetsuo Handa
commit a466ef76b815b86748d9870ef2a430af7b39c710 upstream.
>From ff82bedd3e12f0d3353282054ae48c3bd8c72012 Mon Sep 17 00:00:00 2001
From: Tetsuo Handa
Date: Wed, 9 May 2018
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: "Maciej W. Rozycki"
commit 71e909c0cdad28a1df1fa14442929e68615dee45 upstream.
Correct commit 7aeb753b5353 ("MIPS: Implement task_user_regset_view.")
and expose the FIR register using the
--
Hi friend
I am a banker in ADB BANK. I want to transfer an abandoned sum of
USD15.6Million to your Bank account. 40/percent will be your share.
No risk involved but keeps it as secret. Contact me for more details.
Please reply me through my alternative email id only
The comment and the code around 2nd update_min_vruntime() are
not in agreement. From commit b60205c7c558 ("sched/fair: Fix
min_vruntime tracking"), I think that we want to update min_vruntime
when a task is sleeping/migrating. So, the check is inverted there.
Fixes: b60205c7c558 ("sched/fair: Fix
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Mathieu Desnoyers
commit d66a270be3310d7aa132fec0cea77d3d32a0ff75 upstream.
Tracepoint should only warn when a kernel API user does not respect the
required preconditions (e.g. same
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Lance Richardson
commit 988bf7243e03ef69238381594e0334a79cef74a6 upstream.
For the x32 ABI, struct timeval has two 64-bit fields. However
the kernel currently interprets the user-space values
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Eric Dumazet
commit a8d7aa17bbc970971ccdf71988ea19230ab368b1 upstream.
syzbot reported a crash in tasklet_action_common() caused by dccp.
dccp needs to make sure socket wont disappear before
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Eric Dumazet
commit bf2acc943a45d2b2e8a9f1a5ddff6b6e43cc69d9 upstream.
syzbot is able to produce a nasty WARN_ON() in tcp_verify_left_out()
with following C-repro :
socket(PF_INET,
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Takashi Iwai
commit f9d94b57e30fd1575b4935045b32d738668aa74b upstream.
As recently Smatch suggested, a couple of places in ASIHPI driver may
expand the array directly from the user-space
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Takashi Iwai
commit f5e94b4c6ebdabe0f602d796e0430180927521a0 upstream.
When get_synthdev() is called for a MIDI device, it returns the fixed
midi_synth_dev without the use refcounting. OTOH,
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Xin Long
commit 9cf2f437ca5b39828984064fad213e68fc17ef11 upstream.
The same fix in Commit dbe173079ab5 ("bridge: fix netconsole
setup over bridge") is also needed for team driver.
While at
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Xin Long
commit d625329b06e46bd20baf9ee40847d11982569204 upstream.
Since sctp ipv6 socket also supports v4 addrs, it's possible to
compare two v4 addrs in pf v6 .cmp_addr,
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Willem de Bruijn
commit a6361f0ca4b25460f2cdf3235ebe8115f622901e upstream.
Updates to the bitfields in struct packet_sock are not atomic.
Serialize these read-modify-write cycles.
Move
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Eliot Blennerhassett
commit 51e6f47dd2e3463dac6f37128fd7b7cb40c500de upstream.
Signed-off-by: Eliot Blennerhassett
Signed-off-by: Takashi Iwai
Signed-off-by: Ben Hutchings
---
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Takashi Iwai
commit f526afcd8f71945c23ce581d7864ace93de8a4f7 upstream.
As recently Smatch suggested, one place in RME9652 driver may expand
the array directly from the user-space value with
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Bharat Potnuri
commit 2df19e19ae90d94fd8724083f161f368a2797537 upstream.
When a CQ is shared by multiple QPs, c4iw_flush_hw_cq() needs to acquire
corresponding QP lock before moving the CQEs
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Alan Stern
commit fb5ee84ea72c5f1b6cabdd1c9d6e8648995ca7c6 upstream.
Some non-compliant high-speed USB devices have bulk endpoints with a
1024-byte maxpacket size. Although such endpoints
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Takashi Iwai
commit 10513142a7114d251670361ad40cba2c61403406 upstream.
As recently Smatch suggested, a couple of places in HDSP MADI driver
may expand the array directly from the user-space
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: "Michael S. Tsirkin"
commit 2855b33514d290c51d52d94e25d3ef942cd4d578 upstream.
an allocated buffer doesn't need to be tied to a vq -
only vq->vdev is ever used. Pass the function the
just
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Joakim Tjernlund
commit 7b70eb14392a7cf505f9b358d06c33b5af73d1e7 upstream.
Currently it is possible to read and/or write to suspend EB's.
Writing /dev/mtdX or /dev/mtdblockX from several
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Mike Galbraith
commit 83929cce95251cc77e5659bf493bd424ae0e7a67 upstream.
Michael Kerrisk reported:
> Regarding the previous paragraph... My tests indicate
> that writing *any* value to the
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Raju Rangoju
commit 26bff1bd74a4f7417509a83295614e9dab995b2a upstream.
The c4iw_rdev_close() logic was not releasing all the hw
resources (PBL and RQT memory) during the device removal
event
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Takashi Iwai
commit 7f054a5bee0987f1e2d4e59daea462421c76f2cb upstream.
As recently Smatch suggested, one place in OPL3 driver may expand the
array directly from the user-space value with
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Colin Ian King
commit f96416cea7bce9afe619c15e87fced70f93f9098 upstream.
In the cases where iwpm_hash_bucket is NULL and where function
get_mapinfo_hash_bucket returns NULL then the map_info
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Peter Zijlstra
commit 46b1b577229a091b137831becaa0fae8690ee15a upstream.
> arch/x86/events/intel/cstate.c:307 cstate_pmu_event_init() warn: potential
> spectre issue 'pkg_msr' (local cap)
>
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Peter Zijlstra
commit ef9ee4ad38445a30909c48998624861716f2a994 upstream.
> arch/x86/events/core.c:319 set_ext_hw_attr() warn: potential spectre issue
> 'hw_cache_event_ids[cache_type]'
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Long Li
commit 2796d303e3c5ec213c578ed3a66872205c126eb8 upstream.
The data buffer allocated on the stack can't be DMA'ed, ib_dma_map_page will
return an invalid DMA address for a buffer on
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Johan Hovold
commit 4bf01ca21e2e0e4561d1a03c48c3d740418702db upstream.
Make sure to free the rfkill device in case registration fails during
probe.
Fixes: 5e7ca3937fbe ("net: rfkill: gpio:
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Peter Zijlstra
commit 354d7793070611b4df5a79fbb0f12752d0ed0cc5 upstream.
> kernel/sched/autogroup.c:230 proc_sched_autogroup_set_nice() warn: potential
> spectre issue 'sched_prio_to_weight'
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Al Viro
commit b231509616feb911c2a7a8814d58c0014ef5b17f upstream.
Currently udf_iget() (triggered by NFS) can race with udf_new_inode()
leading to two inode structures with the same inode
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Eric Dumazet
commit 2c5d5b13c6eb79f5677e206b8aad59b3a2097f60 upstream.
syzbot loves to set very small mtu on devices, since it brings joy.
We must make llc_ui_sendmsg() fool proof.
usercopy:
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Heinrich Schuchardt
commit af6f8529098aeb0e56a68671b450cf74e7a64fcd upstream.
musb->endpoints[] has array size MUSB_C_NUM_EPS.
We must check array bounds before accessing the array and not
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Andrey Ignatov
commit 1b97013bfb11d66f041de691de6f0fec748ce016 upstream.
Fix more memory leaks in ip_cmsg_send() callers. Part of them were fixed
earlier in 919483096bfe.
* udp_sendmsg one
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Jaegeuk Kim
commit 44c16156512f33c81e382a1e1df9524e26a7026a upstream.
This patch relocates f2fs_unlock_op in every directory operations to be called
after any error was processed.
Otherwise,
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Hendrik Brueckner
commit 4bbaf2584b86b0772413edeac22ff448f36351b1 upstream.
Correct a trinity finding for the perf_event_open() system call with
a perf event attribute structure that uses a
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Julian Wiedmann
commit a936b1ef37ce1e996533878f4b23944f9444dcdf upstream.
Creating the global workqueue during driver init may fail, deal with it.
Also, destroy the created workqueue on any
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Matthew Wilcox
commit abc1be13fd113ddef5e2d807a466286b864caed3 upstream.
f2fs specifies the __GFP_ZERO flag for allocating some of its pages.
Unfortunately, the page cache also uses the
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Shuah Khan
commit 5b22f676118ff25049382041da0db8012e57c9e8 upstream.
Validate !rhport < 0 before using it to access port_status array.
Signed-off-by: Shuah Khan
Signed-off-by: Greg
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Rasmus Villemoes
commit 2c964a2f4191f2229566895f1a0e85f8339f5dd1 upstream.
The two functions alloc_tty_struct and initialize_tty_struct are
always called together. Merge them into
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Kai-Heng Feng
commit 621faf4f6a181b6e012c1d1865213f36f4159b7f upstream.
The Dell Inspiron 5775 is a Raven Ridge. The Enable Slot command timed
out when a USB device gets plugged:
[
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Jens Remus
commit fa89adba1941e4f3b213399b81732a5c12fd9131 upstream.
zfcp_erp_adapter_reopen() schedules blocking of all of the adapter's
rports via zfcp_scsi_schedule_rports_block() and
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Tejun Heo
commit 322579dcc865b94b47345ad1b6002ad167f85405 upstream.
Sandisk SSDs SD7SN6S256G and SD8SN8U256G are regularly locking up
regularly under sustained moderate load with NCQ enabled.
3.16.60-rc1 review patch. If anyone has any objections, please let me know.
--
From: Mike Frysinger
commit 65d9982d7e523a1a8e7c9af012da0d166f72fc56 upstream.
ECMA-48 [1] (aka ISO 6429) has defined SGR 21 as "doubly underlined"
since at least March 1984. The Linux kernel has
301 - 400 of 1030 matches
Mail list logo