user/sven/linux.git, branch v3.14.49 Linux Kernel https://git.stealer.net/cgit.cgi/user/sven/linux.git/atom?h=v3.14.49 2015-08-03T16:32:59Z Linux 3.14.49 2015-08-03T16:32:59Z Greg Kroah-Hartman gregkh@linuxfoundation.org 2015-08-03T16:32:59Z urn:sha1:6c180de4a3687a2caec109f84bed0b40d9ced28e MIPS: KVM: Do not sign extend on unsigned MMIO load 2015-08-03T16:29:59Z Nicholas Mc Guire hofrat@osadl.org 2015-05-07T12:47:50Z urn:sha1:ed84c2ed1edb60257cdd89d0725a10217561df93 commit ed9244e6c534612d2b5ae47feab2f55a0d4b4ced upstream. Fix possible unintended sign extension in unsigned MMIO loads by casting to uint16_t in the case of mmio_needed != 2. Signed-off-by: Nicholas Mc Guire <hofrat@osadl.org> Reviewed-by: James Hogan <james.hogan@imgtec.com> Tested-by: James Hogan <james.hogan@imgtec.com> Cc: Gleb Natapov <gleb@kernel.org> Cc: Paolo Bonzini <pbonzini@redhat.com> Cc: kvm@vger.kernel.org Cc: linux-mips@linux-mips.org Cc: linux-kernel@vger.kernel.org Patchwork: https://patchwork.linux-mips.org/patch/9985/ Signed-off-by: Ralf Baechle <ralf@linux-mips.org> Signed-off-by: James Hogan <james.hogan@imgtec.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> qla2xxx: Mark port lost when we receive an RSCN for it. 2015-08-03T16:29:59Z Chad Dupuis chad.dupuis@qlogic.com 2014-09-25T09:17:01Z urn:sha1:8ab76da285be1c19450b4f6a20f9a3c294888da4 commit ef86cb2059a14b4024c7320999ee58e938873032 upstream. Signed-off-by: Chad Dupuis <chad.dupuis@qlogic.com> Signed-off-by: Saurav Kashyap <saurav.kashyap@qlogic.com> Signed-off-by: Christoph Hellwig <hch@lst.de> Cc: Himanshu Madhani <himanshu.madhani@qlogic.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Fix firmware loader uevent buffer NULL pointer dereference 2015-08-03T16:29:59Z Linus Torvalds torvalds@linux-foundation.org 2015-07-09T18:20:01Z urn:sha1:4abcbd6f4f997d218ba54c4c835d9e18a72dcdfb commit 6f957724b94cb19f5c1c97efd01dd4df8ced323c upstream. The firmware class uevent function accessed the "fw_priv->buf" buffer without the proper locking and testing for NULL. This is an old bug (looks like it goes back to 2012 and commit 1244691c73b2: "firmware loader: introduce firmware_buf"), but for some reason it's triggering only now in 4.2-rc1. Shuah Khan is trying to bisect what it is that causes this to trigger more easily, but in the meantime let's just fix the bug since others are hitting it too (at least Ingo reports having seen it as well). Reported-and-tested-by: Shuah Khan <shuahkh@osg.samsung.com> Acked-by: Ming Lei <ming.lei@canonical.com> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> hpfs: hpfs_error: Remove static buffer, use vsprintf extension %pV instead 2015-08-03T16:29:59Z Joe Perches joe@perches.com 2015-03-27T03:47:10Z urn:sha1:bdf13352f0fdcb41d2132b9f41cb291b114a3939 commit a28e4b2b18ccb90df402da3f21e1a83c9d4f8ec1 upstream. Removing unnecessary static buffers is good. Use the vsprintf %pV extension instead. Signed-off-by: Joe Perches <joe@perches.com> Signed-off-by: Mikulas Patocka <mikulas@twibright.com> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> arm64: Don't report clear pmds and puds as huge 2015-08-03T16:29:59Z Christoffer Dall christoffer.dall@linaro.org 2015-07-01T12:08:31Z urn:sha1:a788e1386d8dfe9b20eb0522fffba56a145d79c7 commit fd28f5d439fca77348c129d5b73043a56f8a0296 upstream. The current pmd_huge() and pud_huge() functions simply check if the table bit is not set and reports the entries as huge in that case. This is counter-intuitive as a clear pmd/pud cannot also be a huge pmd/pud, and it is inconsistent with at least arm and x86. To prevent others from making the same mistake as me in looking at code that calls these functions and to fix an issue with KVM on arm64 that causes memory corruption due to incorrect page reference counting resulting from this mistake, let's change the behavior. Signed-off-by: Christoffer Dall <christoffer.dall@linaro.org> Reviewed-by: Steve Capper <steve.capper@linaro.org> Acked-by: Marc Zyngier <marc.zyngier@arm.com> Fixes: 084bd29810a5 ("ARM64: mm: HugeTLB support.") Signed-off-by: Catalin Marinas <catalin.marinas@arm.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> agp/intel: Fix typo in needs_ilk_vtd_wa() 2015-08-03T16:29:59Z Chris Wilson chris@chris-wilson.co.uk 2015-06-28T13:18:16Z urn:sha1:79494ffe93cadb66e6c88d7e67d5eff3699fb266 commit 8b572a4200828b4e75cc22ed2f494b58d5372d65 upstream. In needs_ilk_vtd_wa(), we pass in the GPU device but compared it against the ids for the mobile GPU and the mobile host bridge. That latter is impossible and so likely was just a typo for the desktop GPU device id (which is also buggy). Fixes commit da88a5f7f7d434e2cde1b3e19d952e6d84533662 Author: Chris Wilson <chris@chris-wilson.co.uk> Date: Wed Feb 13 09:31:53 2013 +0000 drm/i915: Disable WC PTE updates to w/a buggy IOMMU on ILK Reported-by: Ting-Wei Lan <lantw44@gmail.com> Bugzilla: https://bugs.freedesktop.org/show_bug.cgi?id=91127 References: https://bugzilla.freedesktop.org/show_bug.cgi?id=60391 Signed-off-by: Chris Wilson <chris@chris-wilson.co.uk> Cc: Daniel Vetter <daniel.vetter@ffwll.ch> Reviewed-by: Daniel Vetter <daniel.vetter@ffwll.ch> Signed-off-by: Jani Nikula <jani.nikula@intel.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> rbd: use GFP_NOIO in rbd_obj_request_create() 2015-08-03T16:29:59Z Ilya Dryomov idryomov@gmail.com 2015-06-24T14:24:33Z urn:sha1:db51d9652aad3415ca51c44c2b79c88ba78785f5 commit 5a60e87603c4c533492c515b7f62578189b03c9c upstream. rbd_obj_request_create() is called on the main I/O path, so we need to use GFP_NOIO to make sure allocation doesn't blow back on us. Not all callers need this, but I'm still hardcoding the flag inside rather than making it a parameter because a) this is going to stable, and b) those callers shouldn't really use rbd_obj_request_create() and will be fixed in the future. More memory allocation fixes will follow. Signed-off-by: Ilya Dryomov <idryomov@gmail.com> Reviewed-by: Alex Elder <elder@linaro.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 9p: don't leave a half-initialized inode sitting around 2015-08-03T16:29:59Z Al Viro viro@zeniv.linux.org.uk 2015-07-12T14:34:29Z urn:sha1:a5347e3a935573310ce420b306e86cd3c5670202 commit 0a73d0a204a4a04a1e110539c5a524ae51f91d6d upstream. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 9p: forgetting to cancel request on interrupted zero-copy RPC 2015-08-03T16:29:59Z Al Viro viro@zeniv.linux.org.uk 2015-07-04T20:04:19Z urn:sha1:360e4e9ec085f43a8e975a1810cd053952d7bfad commit a84b69cb6e0a41e86bc593904faa6def3b957343 upstream. If we'd already sent a request and decide to abort it, we *must* issue TFLUSH properly and not just blindly reuse the tag, or we'll get seriously screwed when response eventually arrives and we confuse it for response to later request that had reused the same tag. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>