This is the start of the stable review cycle for the 4.14.236 release. There are 47 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Thu, 10 Jun 2021 17:59:18 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.14.236-rc1.gz or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.14.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx> Linux 4.14.236-rc1 Jan Beulich <jbeulich@xxxxxxxx> xen-pciback: redo VF placement in the virtual topology Cheng Jian <cj.chengjian@xxxxxxxxxx> sched/fair: Optimize select_idle_cpu Sean Christopherson <seanjc@xxxxxxxxxx> KVM: SVM: Truncate GPR value for DR and CR accesses in !64-bit mode Michael Chan <michael.chan@xxxxxxxxxxxx> bnxt_en: Remove the setting of dev_port. Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: No need to simulate speculative domain for immediates Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Fix mask direction swap upon off reg sign change Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Wrap aux data inside bpf_sanitize_info container Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Fix leakage of uninitialized bpf stack under speculation Alexei Starovoitov <ast@xxxxxxxxxx> selftests/bpf: make 'dubious pointer arithmetic' test useful Alexei Starovoitov <ast@xxxxxx> selftests/bpf: fix test_align Alexei Starovoitov <ast@xxxxxxxxxx> bpf/verifier: disallow pointer subtraction Alexei Starovoitov <ast@xxxxxxxxxx> bpf: do not allow root to mangle valid pointers Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Update selftests to reflect new error states Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Tighten speculative pointer arithmetic mask Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Move sanitize_val_alu out of op switch Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Refactor and streamline bounds check into helper Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Improve verifier error messages for users Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Rework ptr_limit into alu_limit and add common error path Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Ensure off_reg has no mixed signed bounds for all types Daniel Borkmann <daniel@xxxxxxxxxxxxx> bpf: Move off_reg into sanitize_ptr_alu Piotr Krysiuk <piotras@xxxxxxxxx> bpf, selftests: Fix up some test_verifier cases for unprivileged Mina Almasry <almasrymina@xxxxxxxxxx> mm, hugetlb: fix simple resv_huge_pages underflow on UFFDIO_COPY Josef Bacik <josef@xxxxxxxxxxxxxx> btrfs: fixup error handling in fixup_inode_link_counts Josef Bacik <josef@xxxxxxxxxxxxxx> btrfs: fix error handling in btrfs_del_csums Krzysztof Kozlowski <krzysztof.kozlowski@xxxxxxxxxxxxx> nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect Junxiao Bi <junxiao.bi@xxxxxxxxxx> ocfs2: fix data corruption by fallocate Mark Rutland <mark.rutland@xxxxxxx> pid: take a reference when initializing `cad_pid` Ye Bin <yebin10@xxxxxxxxxx> ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed Takashi Iwai <tiwai@xxxxxxx> ALSA: timer: Fix master timer notification Pavel Skripkin <paskripkin@xxxxxxxxx> net: caif: fix memory leak in cfusbl_device_notify Pavel Skripkin <paskripkin@xxxxxxxxx> net: caif: fix memory leak in caif_device_notify Pavel Skripkin <paskripkin@xxxxxxxxx> net: caif: add proper error handling Pavel Skripkin <paskripkin@xxxxxxxxx> net: caif: added cfserl_release function Lin Ma <linma@xxxxxxxxxx> Bluetooth: use correct lock to prevent UAF of hdev object Lin Ma <linma@xxxxxxxxxx> Bluetooth: fix the erroneous flush_work() order Wei Yongjun <weiyongjun1@xxxxxxxxxx> ieee802154: fix error return code in ieee802154_llsec_getparams() Zhen Lei <thunder.leizhen@xxxxxxxxxx> ieee802154: fix error return code in ieee802154_add_iface() Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> netfilter: nfnetlink_cthelper: hit EBUSY on updates if size mismatches Arnd Bergmann <arnd@xxxxxxxx> HID: i2c-hid: fix format string mismatch Zhen Lei <thunder.leizhen@xxxxxxxxxx> HID: pidff: fix error return code in hid_pidff_init() Julian Anastasov <ja@xxxxxx> ipvs: ignore IP_VS_SVC_F_HASHED flag when adding service Max Gurtovoy <mgurtovoy@xxxxxxxxxx> vfio/platform: fix module_put call in error flow Randy Dunlap <rdunlap@xxxxxxxxxxxxx> vfio/pci: zap_vma_ptes() needs MMU Zhen Lei <thunder.leizhen@xxxxxxxxxx> vfio/pci: Fix error return code in vfio_ecap_init() Rasmus Villemoes <linux@xxxxxxxxxxxxxxxxxx> efi: cper: fix snprintf() use in cper_dimm_err_location() Heiner Kallweit <hkallweit1@xxxxxxxxx> efi: Allow EFI_MEMORY_XP and EFI_MEMORY_RO both to be cleared Grant Grundler <grundler@xxxxxxxxxxxx> net: usb: cdc_ncm: don't spew notifications ------------- Diffstat: Makefile | 4 +- arch/x86/kvm/svm.c | 8 +- drivers/firmware/efi/cper.c | 4 +- drivers/firmware/efi/memattr.c | 5 - drivers/hid/i2c-hid/i2c-hid-core.c | 4 +- drivers/hid/usbhid/hid-pidff.c | 1 + drivers/net/ethernet/broadcom/bnxt/bnxt.c | 1 - drivers/net/usb/cdc_ncm.c | 12 +- drivers/vfio/pci/Kconfig | 1 + drivers/vfio/pci/vfio_pci_config.c | 2 +- drivers/vfio/platform/vfio_platform_common.c | 2 +- drivers/xen/xen-pciback/vpci.c | 14 +- fs/btrfs/file-item.c | 10 +- fs/btrfs/tree-log.c | 13 +- fs/ext4/extents.c | 43 ++-- fs/ocfs2/file.c | 55 +++- include/linux/bpf_verifier.h | 5 +- include/linux/usb/usbnet.h | 2 + include/net/caif/caif_dev.h | 2 +- include/net/caif/cfcnfg.h | 2 +- include/net/caif/cfserl.h | 1 + init/main.c | 2 +- kernel/bpf/verifier.c | 369 ++++++++++++++++----------- kernel/sched/fair.c | 7 +- mm/hugetlb.c | 14 +- net/bluetooth/hci_core.c | 7 +- net/bluetooth/hci_sock.c | 4 +- net/caif/caif_dev.c | 13 +- net/caif/caif_usb.c | 14 +- net/caif/cfcnfg.c | 16 +- net/caif/cfserl.c | 5 + net/ieee802154/nl-mac.c | 4 +- net/ieee802154/nl-phy.c | 4 +- net/netfilter/ipvs/ip_vs_ctl.c | 2 +- net/netfilter/nfnetlink_cthelper.c | 8 +- net/nfc/llcp_sock.c | 2 + sound/core/timer.c | 3 +- tools/testing/selftests/bpf/test_align.c | 26 +- tools/testing/selftests/bpf/test_verifier.c | 114 +++++---- 39 files changed, 501 insertions(+), 304 deletions(-)
