This is the start of the stable review cycle for the 4.4.180 release. There are 266 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Fri 17 May 2019 09:04:49 AM UTC. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.4.180-rc1.gz or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.4.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx> Linux 4.4.180-rc1 Laurentiu Tudor <laurentiu.tudor@xxxxxxx> powerpc/booke64: set RI in default MSR Dan Carpenter <dan.carpenter@xxxxxxxxxx> drivers/virt/fsl_hypervisor.c: prevent integer overflow in ioctl Dan Carpenter <dan.carpenter@xxxxxxxxxx> drivers/virt/fsl_hypervisor.c: dereferencing error pointers in ioctl Jarod Wilson <jarod@xxxxxxxxxx> bonding: fix arp_validate toggling in active-backup mode David Ahern <dsahern@xxxxxxxxx> ipv4: Fix raw socket lookup for local traffic Stephen Suryaputra <ssuryaextr@xxxxxxxxx> vrf: sit mtu should not be updated when vrf netdev is the link Hangbin Liu <liuhangbin@xxxxxxxxx> vlan: disable SIOCSHWTSTAMP in container YueHaibing <yuehaibing@xxxxxxxxxx> packet: Fix error path in packet_init Christophe Leroy <christophe.leroy@xxxxxx> net: ucc_geth - fix Oops when changing number of buffers in the ring Tobin C. Harding <tobin@xxxxxxxxxx> bridge: Fix error path for kobject_init_and_add() Breno Leitao <leitao@xxxxxxxxxx> powerpc/64s: Include cpu header Johan Hovold <johan@xxxxxxxxxx> USB: serial: fix unthrottle races Oliver Neukum <oneukum@xxxxxxxx> USB: serial: use variable for status Ben Hutchings <ben@xxxxxxxxxxxxxxx> x86/bugs: Change L1TF mitigation string to match upstream Josh Poimboeuf <jpoimboe@xxxxxxxxxx> x86/speculation/mds: Fix documentation typo Tyler Hicks <tyhicks@xxxxxxxxxxxxx> Documentation: Correct the possible MDS sysfs values speck for Pawan Gupta <speck@xxxxxxxxxxxxx> x86/mds: Add MDSUM variant to the MDS documentation Josh Poimboeuf <jpoimboe@xxxxxxxxxx> x86/speculation/mds: Add 'mitigations=' support for MDS Josh Poimboeuf <jpoimboe@xxxxxxxxxx> x86/speculation: Support 'mitigations=' cmdline option Josh Poimboeuf <jpoimboe@xxxxxxxxxx> cpu/speculation: Add 'mitigations=' cmdline option Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx> x86/speculation/mds: Print SMT vulnerable on MSBDS with mitigations off Boris Ostrovsky <boris.ostrovsky@xxxxxxxxxx> x86/speculation/mds: Fix comment Josh Poimboeuf <jpoimboe@xxxxxxxxxx> x86/speculation/mds: Add SMT warning message Josh Poimboeuf <jpoimboe@xxxxxxxxxx> x86/speculation: Move arch_smt_update() call to after mitigation decisions Andi Kleen <ak@xxxxxxxxxxxxxxx> x86/cpu/bugs: Use __initconst for 'const' init data Thomas Gleixner <tglx@xxxxxxxxxxxxx> Documentation: Add MDS vulnerability documentation Thomas Gleixner <tglx@xxxxxxxxxxxxx> Documentation: Move L1TF to separate directory Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation/mds: Add mitigation mode VMWERV Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation/mds: Add sysfs reporting for MDS Ben Hutchings <ben@xxxxxxxxxxxxxxx> x86/speculation/l1tf: Document l1tf in sysfs Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation/mds: Add mitigation control for MDS Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation/mds: Conditionally clear CPU buffers on idle entry Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation/mds: Clear CPU buffers on exit to user Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation/mds: Add mds_clear_cpu_buffers() Andi Kleen <ak@xxxxxxxxxxxxxxx> x86/kvm: Expose X86_FEATURE_MD_CLEAR to guests Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation/mds: Add BUG_MSBDS_ONLY Andi Kleen <ak@xxxxxxxxxxxxxxx> x86/speculation/mds: Add basic bug infrastructure for MDS Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Consolidate CPU whitelists Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/msr-index: Cleanup bit defines Eduardo Habkost <ehabkost@xxxxxxxxxx> kvm: x86: Report STIBP on GET_SUPPORTED_CPUID Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Provide IBPB always command line options Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Add seccomp Spectre v2 user space protection mode Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Enable prctl mode for spectre_v2_user Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Add prctl() control for indirect branch speculation Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Prevent stale SPEC_CTRL msr content Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Prepare arch_smt_update() for PRCTL mode Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Split out TIF update Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Prepare for conditional IBPB in switch_mm() Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Avoid __switch_to_xtra() calls Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/process: Consolidate and simplify switch_to_xtra() code Tim Chen <tim.c.chen@xxxxxxxxxxxxxxx> x86/speculation: Prepare for per task indirect branch speculation control Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Add command line control for indirect branch speculation Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Unify conditional spectre v2 print functions Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculataion: Mark command line parser data __initdata Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Mark string arrays const correctly Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Reorder the spec_v2 code Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Rework SMT state change Ben Hutchings <ben@xxxxxxxxxxxxxxx> sched: Add sched_smt_active() Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/Kconfig: Select SCHED_SMT if SMP enabled Tim Chen <tim.c.chen@xxxxxxxxxxxxxxx> x86/speculation: Reorganize speculation control MSRs update Thomas Gleixner <tglx@xxxxxxxxxxxxx> x86/speculation: Rename SSBD update functions Tim Chen <tim.c.chen@xxxxxxxxxxxxxxx> x86/speculation: Disable STIBP when enhanced IBRS is in use Tim Chen <tim.c.chen@xxxxxxxxxxxxxxx> x86/speculation: Move STIPB/IBPB string conditionals out of cpu_show_common() Tim Chen <tim.c.chen@xxxxxxxxxxxxxxx> x86/speculation: Remove unnecessary ret variable in cpu_show_common() Tim Chen <tim.c.chen@xxxxxxxxxxxxxxx> x86/speculation: Clean up spectre_v2_parse_cmdline() Tim Chen <tim.c.chen@xxxxxxxxxxxxxxx> x86/speculation: Update the TIF_SSBD comment Jiri Kosina <jkosina@xxxxxxx> x86/speculation: Propagate information about RSB filling mitigation to sysfs Jiri Kosina <jkosina@xxxxxxx> x86/speculation: Enable cross-hyperthread spectre v2 STIBP mitigation Jiri Kosina <jkosina@xxxxxxx> x86/speculation: Apply IBPB more strictly to avoid cross-process data leak Nadav Amit <namit@xxxxxxxxxx> x86/mm: Use WRITE_ONCE() when setting PTEs Thomas Gleixner <tglx@xxxxxxxxxxxxx> KVM: x86: SVM: Call x86_spec_ctrl_set_guest/host() with interrupts disabled Peter Zijlstra <peterz@xxxxxxxxxxxxx> x86/cpu: Sanitize FAM6_ATOM naming Filippo Sironi <sironi@xxxxxxxxx> x86/microcode: Update the new microcode revision unconditionally Prarit Bhargava <prarit@xxxxxxxxxx> x86/microcode: Make sure boot_cpu_data.microcode is up-to-date Jiang Biao <jiang.biao2@xxxxxxxxxx> x86/speculation: Remove SPECTRE_V2_IBRS in enum spectre_v2_mitigation Tom Lendacky <thomas.lendacky@xxxxxxx> x86/bugs: Fix the AMD SSBD usage of the SPEC_CTRL MSR Will Deacon <will.deacon@xxxxxxx> locking/atomics, asm-generic: Move some macros from <linux/bitops.h> to a new <linux/bits.h> file Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx> x86/bugs: Switch the selection of mitigation from CPU vendor to CPU features Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx> x86/bugs: Add AMD's SPEC_CTRL MSR usage Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx> x86/bugs: Add AMD's variant of SSB_NO Dominik Brodowski <linux@xxxxxxxxxxxxxxxxxxxx> x86/speculation: Simplify the CPU bug detection logic Sai Praneeth <sai.praneeth.prakhya@xxxxxxxxx> x86/speculation: Support Enhanced IBRS on future CPUs Ben Hutchings <ben@xxxxxxxxxxxxxxx> x86/cpufeatures: Hide AMD-specific speculation flags Tony Luck <tony.luck@xxxxxxxxx> x86/MCE: Save microcode revision in machine check records Ashok Raj <ashok.raj@xxxxxxxxx> x86/microcode/intel: Check microcode revision before updating sibling threads Matthias Kaehlcke <mka@xxxxxxxxxxxx> bitops: avoid integer overflow in GENMASK(_ULL) Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx> x86: stop exporting msr-index.h to userland Borislav Petkov <bp@xxxxxxx> x86/microcode/intel: Add a helper which gives the microcode revision Tony Luck <tony.luck@xxxxxxxxx> locking/static_keys: Provide DECLARE and well as DEFINE macros Nigel Croxon <ncroxon@xxxxxxxxxx> Don't jump to compute_result state from check_result state Alistair Strachan <astrachan@xxxxxxxxxx> x86/vdso: Pass --eh-frame-hdr to the linker Wei Yongjun <weiyongjun1@xxxxxxxxxx> cw1200: fix missing unlock on error in cw1200_hw_scan() Lucas Stach <l.stach@xxxxxxxxxxxxxx> gpu: ipu-v3: dp: fix CSC handling Po-Hsu Lin <po-hsu.lin@xxxxxxxxxxxxx> selftests/net: correct the return value for run_netsocktests Arnd Bergmann <arnd@xxxxxxxx> s390: ctcm: fix ctcm_new_device error return code Julian Anastasov <ja@xxxxxx> ipvs: do not schedule icmp errors from tunnels Dan Williams <dan.j.williams@xxxxxxxxx> init: initialize jump labels before command line option parsing Rikard Falkeborn <rikard.falkeborn@xxxxxxxxx> tools lib traceevent: Fix missing equality check for strcmp Vitaly Kuznetsov <vkuznets@xxxxxxxxxx> KVM: x86: avoid misreporting level-triggered irqs as edge-triggered in tracing Martin Schwidefsky <schwidefsky@xxxxxxxxxx> s390/3270: fix lockdep false positive on view->lock Peter Oberparleiter <oberpar@xxxxxxxxxxxxx> s390/dasd: Fix capacity calculation for large volumes Aditya Pakki <pakki001@xxxxxxx> libnvdimm/btt: Fix a kmemdup failure check Dmitry Torokhov <dmitry.torokhov@xxxxxxxxx> HID: input: add mapping for keyboard Brightness Up/Down/Toggle keys Dmitry Torokhov <dmitry.torokhov@xxxxxxxxx> HID: input: add mapping for Expose/Overview key Sven Van Asbroeck <thesven73@xxxxxxxxx> iio: adc: xilinx: fix potential use-after-free on remove Gustavo A. R. Silva <gustavo@xxxxxxxxxxxxxx> platform/x86: sony-laptop: Fix unintentional fall-through Michal Hocko <mhocko@xxxxxxxx> mm, vmstat: make quiet_vmstat lighter Francesco Ruggeri <fruggeri@xxxxxxxxxx> netfilter: compat: initialize all fields in xt_init Ben Hutchings <ben@xxxxxxxxxxxxxxx> timer/debug: Change /proc/timer_stats from 0644 to 0600 Ross Zwisler <zwisler@xxxxxxxxxxxx> ASoC: Intel: avoid Oops if DMA setup fails WANG Cong <xiyou.wangcong@xxxxxxxxx> ipv6: fix a potential deadlock in do_ipv6_setsockopt() Oliver Neukum <oneukum@xxxxxxxx> UAS: fix alignment of scatter/gather segments Marcel Holtmann <marcel@xxxxxxxxxxxx> Bluetooth: Align minimum encryption key size for LE and BR/EDR connections Young Xiao <YangX92@xxxxxxxxxxx> Bluetooth: hidp: fix buffer overflow Andrew Vasquez <andrewv@xxxxxxxxxxx> scsi: qla2xxx: Fix incorrect region-size setting in optrom SYSFS routines Thinh Nguyen <Thinh.Nguyen@xxxxxxxxxxxx> usb: dwc3: Fix default lpm_nyet_threshold value Prasad Sodagudi <psodagud@xxxxxxxxxxxxxx> genirq: Prevent use-after-free and work list corruption Joerg Roedel <jroedel@xxxxxxx> iommu/amd: Set exclusion range correctly Varun Prakash <varun@xxxxxxxxxxx> scsi: csiostor: fix missing data copy in csio_scsi_err_handler() Stephane Eranian <eranian@xxxxxxxxxx> perf/x86/intel: Fix handling of wakeup_events for multi-entry PEBS Annaliese McDermond <nh6z@xxxxxxxx> ASoC: tlv320aic32x4: Fix Common Pins Daniel Mack <daniel@xxxxxxxxxx> ASoC: cs4270: Set auto-increment bit for register writes Rander Wang <rander.wang@xxxxxxxxxxxxxxx> ASoC:soc-pcm:fix a codec fixup issue in TDM case Jason Yan <yanaijie@xxxxxxxxxx> scsi: libsas: fix a race condition when smp task timeout Jacopo Mondi <jacopo+renesas@xxxxxxxxxx> media: v4l2: i2c: ov7670: Fix PLL bypass register values Tony Luck <tony.luck@xxxxxxxxx> x86/mce: Improve error message when kernel cannot recover, p2 Ondrej Mosnacek <omosnace@xxxxxxxxxx> selinux: never allow relabeling on context mounts Anson Huang <anson.huang@xxxxxxx> Input: snvs_pwrkey - initialize necessary driver data before enabling IRQ Jeremy Fertic <jeremyfertic@xxxxxxxxx> staging: iio: adt7316: fix the dac write calculation Jeremy Fertic <jeremyfertic@xxxxxxxxx> staging: iio: adt7316: fix the dac read calculation Jeremy Fertic <jeremyfertic@xxxxxxxxx> staging: iio: adt7316: allow adt751x to use internal vref for all dacs Malte Leip <malte@xxxxxxxx> usb: usbip: fix isoc packet num validation in get_pipe Arnd Bergmann <arnd@xxxxxxxx> ARM: iop: don't use using 64-bit DMA masks Arnd Bergmann <arnd@xxxxxxxx> ARM: orion: don't use using 64-bit DMA masks Guenter Roeck <linux@xxxxxxxxxxxx> xsysace: Fix error handling in ace_setup Mike Kravetz <mike.kravetz@xxxxxxxxxx> hugetlbfs: fix memory leak for resv_map Yonglong Liu <liuyonglong@xxxxxxxxxx> net: hns: Fix WARNING when remove HNS driver with SMMU enabled Yonglong Liu <liuyonglong@xxxxxxxxxx> net: hns: Use NAPI_POLL_WEIGHT for hns driver Michael Kelley <mikelley@xxxxxxxxxxxxx> scsi: storvsc: Fix calculation of sub-channel count Louis Taylor <louis@xxxxxxxxxx> vfio/pci: use correct format characters Alexandre Belloni <alexandre.belloni@xxxxxxxxxxx> rtc: da9063: set uie_unsupported when relevant Al Viro <viro@xxxxxxxxxxxxxxxxxx> debugfs: fix use-after-free on symlink traversal Al Viro <viro@xxxxxxxxxxxxxxxxxx> jffs2: fix use-after-free on symlink traversal Konstantin Khorenko <khorenko@xxxxxxxxxxxxx> bonding: show full hw address in sysfs for slave entries Arvind Sankar <niveditas98@xxxxxxxxx> igb: Fix WARN_ONCE on runtime suspend Geert Uytterhoeven <geert+renesas@xxxxxxxxx> rtc: sh: Fix invalid alarm warning for non-enabled alarm He, Bo <bo.he@xxxxxxxxx> HID: debug: fix race condition with between rdesc_show() and device removal Alan Stern <stern@xxxxxxxxxxxxxxxxxxx> USB: core: Fix bug caused by duplicate interface PM usage counter Alan Stern <stern@xxxxxxxxxxxxxxxxxxx> USB: core: Fix unterminated string returned by usb_string() Alan Stern <stern@xxxxxxxxxxxxxxxxxxx> USB: w1 ds2490: Fix bug caused by improper use of altsetting array Alan Stern <stern@xxxxxxxxxxxxxxxxxxx> USB: yurex: Fix protection fault after device removal Willem de Bruijn <willemb@xxxxxxxxxx> packet: validate msg_namelen in send directly Michael Chan <michael.chan@xxxxxxxxxxxx> bnxt_en: Improve multicast address setup logic. Willem de Bruijn <willemb@xxxxxxxxxx> ipv6: invert flowlabel sharing check in process and user mode Eric Dumazet <edumazet@xxxxxxxxxx> ipv6/flowlabel: wait rcu grace period before put_pid() Shmulik Ladkani <shmulik@xxxxxxxxxxxxxxxx> ipv4: ip_do_fragment: Preserve skb_iif during fragmentation Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx> ALSA: line6: use dynamic buffers Alex Williamson <alex.williamson@xxxxxxxxxx> vfio/type1: Limit DMA mappings per container Changbin Du <changbin.du@xxxxxxxxx> kconfig/[mn]conf: handle backspace (^H) key raymond pang <raymondpangxd@xxxxxxxxx> libata: fix using DMA buffers on stack Steffen Maier <maier@xxxxxxxxxxxxx> scsi: zfcp: reduce flood of fcrscn1 trace records on multi-element RSCN Al Viro <viro@xxxxxxxxxxxxxxxxxx> ceph: fix use-after-free on symlink traversal Mukesh Ojha <mojha@xxxxxxxxxxxxxx> usb: u132-hcd: fix resource leak Kangjie Lu <kjlu@xxxxxxx> scsi: qla4xxx: fix a potential NULL pointer dereference Wen Yang <wen.yang99@xxxxxxxxxx> net: ethernet: ti: fix possible object reference leak Wen Yang <wen.yang99@xxxxxxxxxx> net: ibm: fix possible object reference leak Wen Yang <wen.yang99@xxxxxxxxxx> net: xilinx: fix possible object reference leak Lukas Wunner <lukas@xxxxxxxxx> net: ks8851: Set initial carrier state to down Lukas Wunner <lukas@xxxxxxxxx> net: ks8851: Delay requesting IRQ until opened Lukas Wunner <lukas@xxxxxxxxx> net: ks8851: Reassert reset pin if chip ID check fails Lukas Wunner <lukas@xxxxxxxxx> net: ks8851: Dequeue RX packets explicitly Marco Felsch <m.felsch@xxxxxxxxxxxxxx> ARM: dts: pfla02: increase phy reset duration Guido Kiener <guido@xxxxxxxxxxxxxxxxxx> usb: gadget: net2272: Fix net2272_dequeue() Guido Kiener <guido@xxxxxxxxxxxxxxxxxx> usb: gadget: net2280: Fix net2280_dequeue() Guido Kiener <guido@xxxxxxxxxxxxxxxxxx> usb: gadget: net2280: Fix overrun of OUT messages Mao Wenan <maowenan@xxxxxxxxxx> sc16is7xx: missing unregister/delete driver on error in sc16is7xx_init() Xin Long <lucien.xin@xxxxxxxxx> netfilter: bridge: set skb transport_header before entering NF_INET_PRE_ROUTING Aditya Pakki <pakki001@xxxxxxx> qlcnic: Avoid potential NULL pointer dereference Gustavo A. R. Silva <garsilva@xxxxxxxxxxxxxx> usbnet: ipheth: fix potential null pointer dereference in ipheth_carrier_set Alexander Kappner <agk@xxxxxxxxxxx> usbnet: ipheth: prevent TX queue timeouts when device not ready Diana Craciun <diana.craciun@xxxxxxx> Documentation: Add nospectre_v1 parameter Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Add FSL_PPC_BOOK3E as supported arch for nospectre_v2 boot arg Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Fixed warning: orphan section `__btb_flush_fixup' Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Sanitize the syscall table for NXP PowerPC 32 bit platforms Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Flush the branch predictor at each kernel entry (32 bit) Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Emulate SPRN_BUCSR register Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Flush branch predictor when entering KVM Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Enable runtime patching if nospectre_v2 boot arg is used ZhangXiaoxu <zhangxiaoxu5@xxxxxxxxxx> ipv4: set the tcp_min_rtt_wlen range from 0 to one day Vinod Koul <vkoul@xxxxxxxxxx> net: stmmac: move stmmac_check_ether_addr() to driver probe Hangbin Liu <liuhangbin@xxxxxxxxx> team: fix possible recursive locking when add slaves Eric Dumazet <edumazet@xxxxxxxxxx> ipv4: add sanity checks in ipv4_link_failure() Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx> Revert "block/loop: Use global lock for ioctl() operation." Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: reject wrong sized filters earlier Xin Long <lucien.xin@xxxxxxxxx> tipc: check link name with right length in tipc_nl_compat_link_set Xin Long <lucien.xin@xxxxxxxxx> tipc: check bearer name with right length in tipc_nl_compat_bearer_enable Florian Westphal <fw@xxxxxxxxx> netfilter: ebtables: CONFIG_COMPAT: drop a bogus WARN_ON Tetsuo Handa <penguin-kernel@xxxxxxxxxxxxxxxxxxx> NFS: Forbid setting AF_INET6 to "struct sockaddr_in"->sin_family. YueHaibing <yuehaibing@xxxxxxxxxx> fs/proc/proc_sysctl.c: Fix a NULL pointer dereference Alexander Shishkin <alexander.shishkin@xxxxxxxxxxxxxxx> intel_th: gth: Fix an off-by-one in output unassigning Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx> slip: make slhc_free() silently accept an error pointer Xin Long <lucien.xin@xxxxxxxxx> tipc: handle the err returned from cmd header function Christophe Leroy <christophe.leroy@xxxxxx> powerpc/fsl: Fix the flush of branch predictor. Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/security: Fix spectre_v2 reporting Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Update Spectre v2 reporting Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Flush the branch predictor at each kernel entry (64bit) Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Add nospectre_v2 command line argument Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Fix spectre_v2 mitigations reporting Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Add macro to flush the branch predictor Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Add infrastructure to fixup branch predictor flush Michael Neuling <mikey@xxxxxxxxxxx> powerpc: Avoid code patching freed init sections Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/powernv: Query firmware for count cache flush settings Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/pseries: Query hypervisor for count cache flush settings Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64s: Add support for software count cache flush Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64s: Add new security feature flags for count cache flush Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/asm: Add a patch_site macro & helpers for patching instructions Diana Craciun <diana.craciun@xxxxxxx> powerpc/fsl: Add barrier_nospec implementation for NXP PowerPC Book3E Diana Craciun <diana.craciun@xxxxxxx> powerpc/64: Make meltdown reporting Book3S 64 specific Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64: Call setup_barrier_nospec() from setup_arch() Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64: Add CONFIG_PPC_BARRIER_NOSPEC Diana Craciun <diana.craciun@xxxxxxx> powerpc/64: Make stf barrier PPC_BOOK3S_64 specific. Diana Craciun <diana.craciun@xxxxxxx> powerpc/64: Disable the speculation barrier from the command line Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc64s: Show ori31 availability in spectre_v1 sysfs file not v2 Michal Suchanek <msuchanek@xxxxxxx> powerpc/64s: Enhance the information in cpu_show_spectre_v1() Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc: Use barrier_nospec in copy_from_user() Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64: Use barrier_nospec in syscall entry Michal Suchanek <msuchanek@xxxxxxx> powerpc/64s: Enable barrier_nospec based on firmware settings Michal Suchanek <msuchanek@xxxxxxx> powerpc/64s: Patch barrier_nospec in modules Michal Suchanek <msuchanek@xxxxxxx> powerpc/64s: Add support for ori barrier_nospec patching Michal Suchanek <msuchanek@xxxxxxx> powerpc/64s: Add barrier_nospec Nicholas Piggin <npiggin@xxxxxxxxx> powerpc/64s: Add support for a store forwarding barrier at kernel entry/exit Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64s: Fix section mismatch warnings from setup_rfi_flush() Mauricio Faria de Oliveira <mauricfo@xxxxxxxxxxxxxxxxxx> powerpc/pseries: Restore default security feature flags on setup Mauricio Faria de Oliveira <mauricfo@xxxxxxxxxxxxxxxxxx> powerpc: Move default security feature flags Mauricio Faria de Oliveira <mauricfo@xxxxxxxxxxxxxxxxxx> powerpc/pseries: Fix clearing of security feature flags Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64s: Wire up cpu_show_spectre_v2() Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64s: Wire up cpu_show_spectre_v1() Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/pseries: Use the security flags in pseries_setup_rfi_flush() Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/powernv: Use the security flags in pnv_setup_rfi_flush() Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64s: Enhance the information in cpu_show_meltdown() Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/64s: Move cpu_show_meltdown() Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/powernv: Set or clear security feature flags Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/pseries: Set or clear security feature flags Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc: Add security feature flags for Spectre/Meltdown Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/rfi-flush: Call setup_rfi_flush() after LPM migration Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/pseries: Add new H_GET_CPU_CHARACTERISTICS flags Mauricio Faria de Oliveira <mauricfo@xxxxxxxxxxxxxxxxxx> powerpc/rfi-flush: Differentiate enabled and patched flush types Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/rfi-flush: Always enable fallback flush on pseries Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/rfi-flush: Make it possible to call setup_rfi_flush() again Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/rfi-flush: Move the logic to avoid a redo into the debugfs code Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/powernv: Support firmware disable of RFI flush Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/pseries: Support firmware disable of RFI flush Nicholas Piggin <npiggin@xxxxxxxxx> powerpc/64s: Improve RFI L1-D cache flush fallback Michael Ellerman <mpe@xxxxxxxxxxxxxx> powerpc/xmon: Add RFI flush related fields to paca dump Kai-Heng Feng <kai.heng.feng@xxxxxxxxxxxxx> USB: Consolidate LPM checks to avoid enabling LPM twice Kai-Heng Feng <kai.heng.feng@xxxxxxxxxxxxx> USB: Add new USB LPM helpers NeilBrown <neilb@xxxxxxxx> sunrpc: don't mark uninitialised items as VALID. Trond Myklebust <trondmy@xxxxxxxxx> nfsd: Don't release the callback slot unless it was actually held Yan, Zheng <zyan@xxxxxxxxxx> ceph: fix ci->i_head_snapc leak Jeff Layton <jlayton@xxxxxxxxxx> ceph: ensure d_name stability in ceph_dentry_hash() Xie XiuQi <xiexiuqi@xxxxxxxxxx> sched/numa: Fix a possible divide-by-zero Peter Zijlstra <peterz@xxxxxxxxxxxxx> trace: Fix preempt_enable_no_resched() abuse Aurelien Jarno <aurelien@xxxxxxxxxxx> MIPS: scall64-o32: Fix indirect syscall number load Frank Sorenson <sorenson@xxxxxxxxxx> cifs: do not attempt cifs operation on smb2+ rename error Paolo Bonzini <pbonzini@xxxxxxxxxx> KVM: fail KVM_SET_VCPU_EVENTS with invalid exception number Masahiro Yamada <yamada.masahiro@xxxxxxxxxxxxx> kbuild: simplify ld-option implementation ------------- Diffstat: Documentation/ABI/testing/sysfs-devices-system-cpu | 2 + Documentation/hw-vuln/mds.rst | 305 ++++++++++ Documentation/kernel-parameters.txt | 110 +++- Documentation/networking/ip-sysctl.txt | 1 + Documentation/spec_ctrl.txt | 9 + Documentation/usb/power-management.txt | 14 +- Documentation/x86/mds.rst | 225 +++++++ Makefile | 4 +- arch/arm/boot/dts/imx6qdl-phytec-pfla02.dtsi | 1 + arch/arm/mach-iop13xx/setup.c | 8 +- arch/arm/mach-iop13xx/tpmi.c | 10 +- arch/arm/plat-iop/adma.c | 6 +- arch/arm/plat-orion/common.c | 4 +- arch/mips/kernel/scall64-o32.S | 2 +- arch/powerpc/Kconfig | 7 +- arch/powerpc/include/asm/asm-prototypes.h | 21 + arch/powerpc/include/asm/barrier.h | 21 + arch/powerpc/include/asm/code-patching-asm.h | 18 + arch/powerpc/include/asm/code-patching.h | 2 + arch/powerpc/include/asm/exception-64s.h | 35 ++ arch/powerpc/include/asm/feature-fixups.h | 40 ++ arch/powerpc/include/asm/hvcall.h | 5 + arch/powerpc/include/asm/paca.h | 3 +- arch/powerpc/include/asm/ppc-opcode.h | 1 + arch/powerpc/include/asm/ppc_asm.h | 11 + arch/powerpc/include/asm/reg_booke.h | 2 +- arch/powerpc/include/asm/security_features.h | 92 +++ arch/powerpc/include/asm/setup.h | 23 +- arch/powerpc/include/asm/uaccess.h | 18 +- arch/powerpc/kernel/Makefile | 1 + arch/powerpc/kernel/asm-offsets.c | 3 +- arch/powerpc/kernel/entry_32.S | 10 + arch/powerpc/kernel/entry_64.S | 69 +++ arch/powerpc/kernel/exceptions-64e.S | 27 +- arch/powerpc/kernel/exceptions-64s.S | 98 ++-- arch/powerpc/kernel/head_booke.h | 12 + arch/powerpc/kernel/head_fsl_booke.S | 15 + arch/powerpc/kernel/module.c | 10 +- arch/powerpc/kernel/security.c | 434 ++++++++++++++ arch/powerpc/kernel/setup_32.c | 3 + arch/powerpc/kernel/setup_64.c | 51 +- arch/powerpc/kernel/vmlinux.lds.S | 33 +- arch/powerpc/kvm/bookehv_interrupts.S | 4 + arch/powerpc/kvm/e500_emulate.c | 7 + arch/powerpc/lib/code-patching.c | 29 + arch/powerpc/lib/feature-fixups.c | 218 ++++++- arch/powerpc/mm/mem.c | 2 + arch/powerpc/mm/tlb_low_64e.S | 7 + arch/powerpc/platforms/powernv/setup.c | 99 +++- arch/powerpc/platforms/pseries/mobility.c | 3 + arch/powerpc/platforms/pseries/pseries.h | 2 + arch/powerpc/platforms/pseries/setup.c | 88 ++- arch/powerpc/xmon/xmon.c | 2 + arch/x86/Kconfig | 8 +- arch/x86/entry/common.c | 3 + arch/x86/entry/vdso/Makefile | 3 +- arch/x86/include/asm/cpufeatures.h | 12 +- arch/x86/include/asm/intel-family.h | 30 +- arch/x86/include/asm/irqflags.h | 5 + arch/x86/include/asm/microcode_intel.h | 15 + arch/x86/include/asm/msr-index.h | 30 +- arch/x86/include/asm/mwait.h | 7 + arch/x86/include/asm/nospec-branch.h | 66 ++- arch/x86/include/asm/pgtable_64.h | 16 +- arch/x86/include/asm/processor.h | 7 + arch/x86/include/asm/spec-ctrl.h | 20 +- arch/x86/include/asm/switch_to.h | 3 - arch/x86/include/asm/thread_info.h | 20 +- arch/x86/include/asm/tlbflush.h | 8 +- arch/x86/include/uapi/asm/Kbuild | 1 - arch/x86/include/uapi/asm/mce.h | 4 + arch/x86/kernel/cpu/bugs.c | 643 +++++++++++++++++---- arch/x86/kernel/cpu/common.c | 140 +++-- arch/x86/kernel/cpu/intel.c | 11 +- arch/x86/kernel/cpu/mcheck/mce-severity.c | 5 + arch/x86/kernel/cpu/mcheck/mce.c | 4 +- arch/x86/kernel/cpu/microcode/amd.c | 22 +- arch/x86/kernel/cpu/microcode/intel.c | 64 +- arch/x86/kernel/cpu/perf_event_intel.c | 2 +- arch/x86/kernel/nmi.c | 4 + arch/x86/kernel/process.c | 101 +++- arch/x86/kernel/process.h | 39 ++ arch/x86/kernel/process_32.c | 9 +- arch/x86/kernel/process_64.c | 9 +- arch/x86/kernel/traps.c | 8 + arch/x86/kvm/cpuid.c | 13 +- arch/x86/kvm/cpuid.h | 2 +- arch/x86/kvm/svm.c | 10 +- arch/x86/kvm/trace.h | 4 +- arch/x86/kvm/x86.c | 4 + arch/x86/mm/kaiser.c | 4 +- arch/x86/mm/pgtable.c | 6 +- arch/x86/mm/tlb.c | 114 +++- drivers/ata/libata-zpodd.c | 34 +- drivers/base/cpu.c | 8 + drivers/block/loop.c | 42 +- drivers/block/loop.h | 1 + drivers/block/xsysace.c | 2 + drivers/gpu/ipu-v3/ipu-dp.c | 12 +- drivers/hid/hid-debug.c | 5 + drivers/hid/hid-input.c | 6 + drivers/hwtracing/intel_th/gth.c | 2 +- drivers/iio/adc/xilinx-xadc-core.c | 2 +- drivers/input/keyboard/snvs_pwrkey.c | 6 +- drivers/iommu/amd_iommu_init.c | 2 +- drivers/md/raid5.c | 19 +- drivers/media/i2c/ov7670.c | 16 +- drivers/net/bonding/bond_options.c | 7 - drivers/net/bonding/bond_sysfs_slave.c | 4 +- drivers/net/ethernet/broadcom/bnxt/bnxt.c | 9 +- drivers/net/ethernet/freescale/ucc_geth_ethtool.c | 8 +- drivers/net/ethernet/hisilicon/hns/hnae.c | 4 +- drivers/net/ethernet/hisilicon/hns/hns_enet.c | 7 +- drivers/net/ethernet/ibm/ehea/ehea_main.c | 1 + drivers/net/ethernet/intel/igb/e1000_defines.h | 2 + drivers/net/ethernet/intel/igb/igb_main.c | 57 +- drivers/net/ethernet/micrel/ks8851.c | 36 +- .../net/ethernet/qlogic/qlcnic/qlcnic_ethtool.c | 2 + drivers/net/ethernet/stmicro/stmmac/stmmac_main.c | 4 +- drivers/net/ethernet/ti/netcp_ethss.c | 8 +- drivers/net/ethernet/xilinx/xilinx_axienet_main.c | 2 + drivers/net/slip/slhc.c | 2 +- drivers/net/team/team.c | 6 + drivers/net/usb/ipheth.c | 33 +- drivers/net/wireless/cw1200/scan.c | 5 +- drivers/nvdimm/btt_devs.c | 18 +- drivers/platform/x86/sony-laptop.c | 8 +- drivers/rtc/rtc-da9063.c | 7 + drivers/rtc/rtc-sh.c | 2 +- drivers/s390/block/dasd_eckd.c | 6 +- drivers/s390/char/con3270.c | 2 +- drivers/s390/char/fs3270.c | 3 +- drivers/s390/char/raw3270.c | 3 +- drivers/s390/char/raw3270.h | 4 +- drivers/s390/char/tty3270.c | 3 +- drivers/s390/net/ctcm_main.c | 1 + drivers/s390/scsi/zfcp_fc.c | 21 +- drivers/scsi/csiostor/csio_scsi.c | 5 +- drivers/scsi/libsas/sas_expander.c | 9 +- drivers/scsi/qla2xxx/qla_attr.c | 4 +- drivers/scsi/qla4xxx/ql4_os.c | 2 + drivers/scsi/storvsc_drv.c | 13 +- drivers/staging/iio/addac/adt7316.c | 22 +- drivers/tty/serial/sc16is7xx.c | 12 +- drivers/usb/core/driver.c | 36 +- drivers/usb/core/hub.c | 16 +- drivers/usb/core/message.c | 7 +- drivers/usb/core/sysfs.c | 5 +- drivers/usb/core/usb.h | 10 +- drivers/usb/dwc3/core.c | 2 +- drivers/usb/gadget/udc/net2272.c | 1 + drivers/usb/gadget/udc/net2280.c | 8 +- drivers/usb/host/u132-hcd.c | 3 + drivers/usb/misc/yurex.c | 1 + drivers/usb/serial/generic.c | 57 +- drivers/usb/storage/realtek_cr.c | 13 +- drivers/usb/storage/uas.c | 38 +- drivers/usb/usbip/stub_rx.c | 18 +- drivers/usb/usbip/usbip_common.h | 7 + drivers/vfio/pci/vfio_pci.c | 4 +- drivers/vfio/vfio_iommu_type1.c | 14 + drivers/virt/fsl_hypervisor.c | 29 +- drivers/w1/masters/ds2490.c | 6 +- fs/ceph/dir.c | 6 +- fs/ceph/inode.c | 2 +- fs/ceph/mds_client.c | 9 + fs/ceph/snap.c | 7 +- fs/cifs/inode.c | 4 + fs/debugfs/inode.c | 13 +- fs/hugetlbfs/inode.c | 20 +- fs/jffs2/readinode.c | 5 - fs/jffs2/super.c | 5 +- fs/nfs/super.c | 3 +- fs/nfsd/nfs4callback.c | 8 +- fs/nfsd/state.h | 1 + fs/proc/proc_sysctl.c | 6 +- include/linux/bitops.h | 21 +- include/linux/bits.h | 26 + include/linux/cpu.h | 19 + include/linux/jump_label.h | 6 + include/linux/ptrace.h | 21 +- include/linux/sched.h | 9 + include/linux/sched/smt.h | 20 + include/linux/usb.h | 2 - include/net/addrconf.h | 1 + include/net/bluetooth/hci_core.h | 3 + include/uapi/linux/prctl.h | 1 + init/main.c | 4 +- kernel/cpu.c | 23 +- kernel/irq/manage.c | 4 +- kernel/ptrace.c | 10 + kernel/sched/core.c | 24 + kernel/sched/fair.c | 4 + kernel/sched/sched.h | 1 + kernel/time/timer_stats.c | 2 +- kernel/trace/ring_buffer.c | 2 +- mm/vmstat.c | 68 ++- net/8021q/vlan_dev.c | 4 +- net/bluetooth/hci_conn.c | 8 + net/bluetooth/hidp/sock.c | 1 + net/bridge/br_if.c | 13 +- net/bridge/br_netfilter_hooks.c | 1 + net/bridge/br_netfilter_ipv6.c | 2 + net/bridge/netfilter/ebtables.c | 3 +- net/core/filter.c | 23 +- net/ipv4/ip_output.c | 1 + net/ipv4/raw.c | 4 +- net/ipv4/route.c | 32 +- net/ipv4/sysctl_net_ipv4.c | 5 +- net/ipv6/ip6_flowlabel.c | 22 +- net/ipv6/ipv6_sockglue.c | 3 +- net/ipv6/mcast.c | 17 +- net/ipv6/sit.c | 2 +- net/netfilter/ipvs/ip_vs_core.c | 2 +- net/netfilter/x_tables.c | 2 +- net/packet/af_packet.c | 48 +- net/sunrpc/cache.c | 3 + net/tipc/netlink_compat.c | 24 +- scripts/Kbuild.include | 4 +- scripts/kconfig/lxdialog/inputbox.c | 3 +- scripts/kconfig/nconf.c | 2 +- scripts/kconfig/nconf.gui.c | 3 +- security/selinux/hooks.c | 40 +- sound/soc/codecs/cs4270.c | 1 + sound/soc/codecs/tlv320aic32x4.c | 2 + sound/soc/intel/common/sst-dsp.c | 8 +- sound/soc/soc-pcm.c | 7 +- sound/usb/line6/driver.c | 60 +- sound/usb/line6/toneport.c | 24 +- tools/lib/traceevent/event-parse.c | 2 +- tools/power/x86/turbostat/Makefile | 2 +- tools/testing/selftests/net/run_netsocktests | 2 +- 232 files changed, 4217 insertions(+), 1000 deletions(-)
