linux-stable

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-09-29 05:44:11 +00:00

No description

Find a file

Hongyu Jin 8c697fbd2a erofs: fix use-after-free of on-stack io[] [ Upstream commit `60b3005011` ] The root cause is the race as follows: Thread #1 Thread #2(irq ctx) z_erofs_runqueue() struct z_erofs_decompressqueue io_A[]; submit bio A z_erofs_decompress_kickoff(,,1) z_erofs_decompressqueue_endio(bio A) z_erofs_decompress_kickoff(,,-1) spin_lock_irqsave() atomic_add_return() io_wait_event() -> pending_bios is already 0 [end of function] wake_up_locked(io_A[]) // crash Referenced backtrace in kernel 5.4: [ 10.129422] Unable to handle kernel paging request at virtual address eb0454a4 [ 10.364157] CPU: 0 PID: 709 Comm: getprop Tainted: G WC O 5.4.147-ab09225 #1 [ 11.556325] [<c01b33b8>] (__wake_up_common) from [<c01b3300>] (__wake_up_locked+0x40/0x48) [ 11.565487] [<c01b3300>] (__wake_up_locked) from [<c044c8d0>] (z_erofs_vle_unzip_kickoff+0x6c/0xc0) [ 11.575438] [<c044c8d0>] (z_erofs_vle_unzip_kickoff) from [<c044c854>] (z_erofs_vle_read_endio+0x16c/0x17c) [ 11.586082] [<c044c854>] (z_erofs_vle_read_endio) from [<c06a80e8>] (clone_endio+0xb4/0x1d0) [ 11.595428] [<c06a80e8>] (clone_endio) from [<c04a1280>] (blk_update_request+0x150/0x4dc) [ 11.604516] [<c04a1280>] (blk_update_request) from [<c06dea28>] (mmc_blk_cqe_complete_rq+0x144/0x15c) [ 11.614640] [<c06dea28>] (mmc_blk_cqe_complete_rq) from [<c04a5d90>] (blk_done_softirq+0xb0/0xcc) [ 11.624419] [<c04a5d90>] (blk_done_softirq) from [<c010242c>] (__do_softirq+0x184/0x56c) [ 11.633419] [<c010242c>] (__do_softirq) from [<c01051e8>] (irq_exit+0xd4/0x138) [ 11.641640] [<c01051e8>] (irq_exit) from [<c010c314>] (__handle_domain_irq+0x94/0xd0) [ 11.650381] [<c010c314>] (__handle_domain_irq) from [<c04fde70>] (gic_handle_irq+0x50/0xd4) [ 11.659641] [<c04fde70>] (gic_handle_irq) from [<c0101b70>] (__irq_svc+0x70/0xb0) Signed-off-by: Hongyu Jin <hongyu.jin@unisoc.com> Reviewed-by: Gao Xiang <hsiangkao@linux.alibaba.com> Reviewed-by: Chao Yu <chao@kernel.org> Link: https://lore.kernel.org/r/20220401115527.4935-1-hongyu.jin.cn@gmail.com Signed-off-by: Gao Xiang <hsiangkao@linux.alibaba.com> Signed-off-by: Sasha Levin <sashal@kernel.org>		2022-05-09 09:16:28 +02:00
arch	arch: xtensa: platforms: Fix deadlock in rs_close()	2022-05-09 09:16:27 +02:00
block	iocost: don't reset the inuse weight of under-weighted debtors	2022-05-09 09:16:16 +02:00
certs	certs: Fix build error when CONFIG_MODULE_SIG_KEY is empty	2022-01-23 00:08:44 +09:00
crypto	crypto: xts - Add softdep on ecb	2022-04-08 13:58:36 +02:00
Documentation	ext4, doc: fix incorrect h_reserved size	2022-04-27 14:41:16 +02:00
drivers	Input: cypress-sf - register a callback to disable the regulators	2022-05-09 09:16:27 +02:00
fs	erofs: fix use-after-free of on-stack io[]	2022-05-09 09:16:28 +02:00
include	Bluetooth: hci_event: Fix checking for invalid handle on error status	2022-05-09 09:16:24 +02:00
init	init/main.c: return 1 from handled __setup() functions	2022-04-13 19:27:23 +02:00
ipc	ipc/sem: do not sleep with a spin lock held	2022-02-04 09:25:05 -08:00
kernel	perf/core: Fix perf_mmap fail when CONFIG_PERF_USE_VMALLOC enabled	2022-04-27 14:41:12 +02:00
lib	hex2bin: fix access beyond string end	2022-05-09 09:16:15 +02:00
LICENSES	LICENSES/LGPL-2.1: Add LGPL-2.1-or-later as valid identifiers	2021-12-16 14:33:10 +01:00
mm	mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove()	2022-04-27 14:41:11 +02:00
net	tcp: fix F-RTO may not work correctly when receiving DSACK	2022-05-09 09:16:26 +02:00
samples	samples/bpf, xdpsock: Fix race when running for fix duration of time	2022-04-08 13:58:18 +02:00
scripts	gcc-plugins: latent_entropy: use /dev/urandom	2022-04-20 09:36:24 +02:00
security	Fix incorrect type in assignment of ipv6 port for audit	2022-04-08 13:58:37 +02:00
sound	ASoC: wm8731: Disable the regulator when probing fails	2022-05-09 09:16:27 +02:00
tools	perf arm-spe: Fix addresses of synthesized SPE events	2022-05-09 09:16:26 +02:00
usr	kbuild: remove include/linux/cyclades.h from header file check	2022-01-27 08:51:08 +01:00
virt	KVM: avoid NULL pointer dereference in kvm_dirty_ring_push	2022-04-13 19:27:41 +02:00
.clang-format	genirq/msi: Make interrupt allocation less convoluted	2021-12-16 22:22:20 +01:00
.cocciconfig
.get_maintainer.ignore	Opt out of scripts/get_maintainer.pl	2019-05-16 10:53:40 -07:00
.gitattributes	.gitattributes: use 'dts' diff driver for dts files	2019-12-04 19:44:11 -08:00
.gitignore	.gitignore: ignore only top-level modules.builtin	2021-05-02 00:43:35 +09:00
.mailmap	MAINTAINERS: Update Jisheng's email address	2022-03-08 17:30:32 +01:00
COPYING	COPYING: state that all contributions really are covered by this file	2020-02-10 13:32:20 -08:00
CREDITS	MAINTAINERS: replace a Microchip AT91 maintainer	2022-02-09 11:30:01 +01:00
Kbuild	kbuild: rename hostprogs-y/always to hostprogs/always-y	2020-02-04 01:53:07 +09:00
Kconfig	kbuild: ensure full rebuild when the compiler is updated	2020-05-12 13:28:33 +09:00
MAINTAINERS	net: dsa: realtek-smi: move to subdirectory	2022-04-08 13:58:12 +02:00
Makefile	Linux 5.17.5	2022-04-27 14:41:17 +02:00
README	Drop all 00-INDEX files from Documentation/	2018-09-09 15:08:58 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.