This is the start of the stable review cycle for the 5.15.44 release. There are 145 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Sun, 29 May 2022 08:46:32 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.15.44-rc1.gz or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.15.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx> Linux 5.15.44-rc1 Edward Matijevic <motolav@xxxxxxxxx> ALSA: ctxfi: Add SB046x PCI ID Jason A. Donenfeld <Jason@xxxxxxxxx> random: check for signals after page of pool writes Jens Axboe <axboe@xxxxxxxxx> random: wire up fops->splice_{read,write}_iter() Jens Axboe <axboe@xxxxxxxxx> random: convert to using fops->write_iter() Jens Axboe <axboe@xxxxxxxxx> random: convert to using fops->read_iter() Jason A. Donenfeld <Jason@xxxxxxxxx> random: unify batched entropy implementations Jason A. Donenfeld <Jason@xxxxxxxxx> random: move randomize_page() into mm where it belongs Jason A. Donenfeld <Jason@xxxxxxxxx> random: move initialization functions out of hot pages Jason A. Donenfeld <Jason@xxxxxxxxx> random: make consistent use of buf and len Jason A. Donenfeld <Jason@xxxxxxxxx> random: use proper return types on get_random_{int,long}_wait() Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove extern from functions in header Jason A. Donenfeld <Jason@xxxxxxxxx> random: use static branch for crng_ready() Jason A. Donenfeld <Jason@xxxxxxxxx> random: credit architectural init the exact amount Jason A. Donenfeld <Jason@xxxxxxxxx> random: handle latent entropy and command line from random_init() Jason A. Donenfeld <Jason@xxxxxxxxx> random: use proper jiffies comparison macro Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove ratelimiting for in-kernel unseeded randomness Jason A. Donenfeld <Jason@xxxxxxxxx> random: move initialization out of reseeding hot path Jason A. Donenfeld <Jason@xxxxxxxxx> random: avoid initializing twice in credit race Jason A. Donenfeld <Jason@xxxxxxxxx> random: use symbolic constants for crng_init states Jason A. Donenfeld <Jason@xxxxxxxxx> siphash: use one source of truth for siphash permutations Jason A. Donenfeld <Jason@xxxxxxxxx> random: help compiler out with fast_mix() by using simpler arguments Jason A. Donenfeld <Jason@xxxxxxxxx> random: do not use input pool from hard IRQs Jason A. Donenfeld <Jason@xxxxxxxxx> random: order timer entropy functions below interrupt functions Jason A. Donenfeld <Jason@xxxxxxxxx> random: do not pretend to handle premature next security model Jason A. Donenfeld <Jason@xxxxxxxxx> random: use first 128 bits of input as fast init Jason A. Donenfeld <Jason@xxxxxxxxx> random: do not use batches when !crng_ready() Jason A. Donenfeld <Jason@xxxxxxxxx> random: insist on random_get_entropy() existing in order to simplify Jason A. Donenfeld <Jason@xxxxxxxxx> xtensa: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld <Jason@xxxxxxxxx> sparc: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld <Jason@xxxxxxxxx> um: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld <Jason@xxxxxxxxx> x86/tsc: Use fallback for random_get_entropy() instead of zero Jason A. Donenfeld <Jason@xxxxxxxxx> nios2: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld <Jason@xxxxxxxxx> arm: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld <Jason@xxxxxxxxx> mips: use fallback for random_get_entropy() instead of just c0 random Jason A. Donenfeld <Jason@xxxxxxxxx> riscv: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld <Jason@xxxxxxxxx> m68k: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld <Jason@xxxxxxxxx> timekeeping: Add raw clock fallback for random_get_entropy() Jason A. Donenfeld <Jason@xxxxxxxxx> powerpc: define get_cycles macro for arch-override Jason A. Donenfeld <Jason@xxxxxxxxx> alpha: define get_cycles macro for arch-override Jason A. Donenfeld <Jason@xxxxxxxxx> parisc: define get_cycles macro for arch-override Jason A. Donenfeld <Jason@xxxxxxxxx> s390: define get_cycles macro for arch-override Jason A. Donenfeld <Jason@xxxxxxxxx> ia64: define get_cycles macro for arch-override Jason A. Donenfeld <Jason@xxxxxxxxx> init: call time_init() before rand_initialize() Jason A. Donenfeld <Jason@xxxxxxxxx> random: fix sysctl documentation nits Jason A. Donenfeld <Jason@xxxxxxxxx> random: document crng_fast_key_erasure() destination possibility Jason A. Donenfeld <Jason@xxxxxxxxx> random: make random_get_entropy() return an unsigned long Jason A. Donenfeld <Jason@xxxxxxxxx> random: allow partial reads if later user copies fail Jason A. Donenfeld <Jason@xxxxxxxxx> random: check for signals every PAGE_SIZE chunk of /dev/[u]random Jann Horn <jannh@xxxxxxxxxx> random: check for signal_pending() outside of need_resched() check Jason A. Donenfeld <Jason@xxxxxxxxx> random: do not allow user to keep crng key around on stack Jan Varho <jan.varho@xxxxxxxxx> random: do not split fast init input in add_hwgenerator_randomness() Jason A. Donenfeld <Jason@xxxxxxxxx> random: mix build-time latent entropy into pool at init Jason A. Donenfeld <Jason@xxxxxxxxx> random: re-add removed comment about get_random_{u32,u64} reseeding Jason A. Donenfeld <Jason@xxxxxxxxx> random: treat bootloader trust toggle the same way as cpu trust toggle Jason A. Donenfeld <Jason@xxxxxxxxx> random: skip fast_init if hwrng provides large chunk of entropy Jason A. Donenfeld <Jason@xxxxxxxxx> random: check for signal and try earlier when generating entropy Jason A. Donenfeld <Jason@xxxxxxxxx> random: reseed more often immediately after booting Jason A. Donenfeld <Jason@xxxxxxxxx> random: make consistent usage of crng_ready() Jason A. Donenfeld <Jason@xxxxxxxxx> random: use SipHash as interrupt entropy accumulator Jason A. Donenfeld <Jason@xxxxxxxxx> random: replace custom notifier chain with standard one Jason A. Donenfeld <Jason@xxxxxxxxx> random: don't let 644 read-only sysctls be written to Jason A. Donenfeld <Jason@xxxxxxxxx> random: give sysctl_random_min_urandom_seed a more sensible value Jason A. Donenfeld <Jason@xxxxxxxxx> random: do crng pre-init loading in worker rather than irq Jason A. Donenfeld <Jason@xxxxxxxxx> random: unify cycles_t and jiffies usage and types Jason A. Donenfeld <Jason@xxxxxxxxx> random: cleanup UUID handling Jason A. Donenfeld <Jason@xxxxxxxxx> random: only wake up writers after zap if threshold was passed Jason A. Donenfeld <Jason@xxxxxxxxx> random: round-robin registers as ulong, not u32 Jason A. Donenfeld <Jason@xxxxxxxxx> random: clear fast pool, crng, and batches in cpuhp bring up Jason A. Donenfeld <Jason@xxxxxxxxx> random: pull add_hwgenerator_randomness() declaration into random.h Jason A. Donenfeld <Jason@xxxxxxxxx> random: check for crng_init == 0 in add_device_randomness() Jason A. Donenfeld <Jason@xxxxxxxxx> random: unify early init crng load accounting Jason A. Donenfeld <Jason@xxxxxxxxx> random: do not take pool spinlock at boot Jason A. Donenfeld <Jason@xxxxxxxxx> random: defer fast pool mixing to worker Jason A. Donenfeld <Jason@xxxxxxxxx> random: rewrite header introductory comment Jason A. Donenfeld <Jason@xxxxxxxxx> random: group sysctl functions Jason A. Donenfeld <Jason@xxxxxxxxx> random: group userspace read/write functions Jason A. Donenfeld <Jason@xxxxxxxxx> random: group entropy collection functions Jason A. Donenfeld <Jason@xxxxxxxxx> random: group entropy extraction functions Jason A. Donenfeld <Jason@xxxxxxxxx> random: group crng functions Jason A. Donenfeld <Jason@xxxxxxxxx> random: group initialization wait functions Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove whitespace and reorder includes Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove useless header comment Jason A. Donenfeld <Jason@xxxxxxxxx> random: introduce drain_entropy() helper to declutter crng_reseed() Jason A. Donenfeld <Jason@xxxxxxxxx> random: deobfuscate irq u32/u64 contributions Jason A. Donenfeld <Jason@xxxxxxxxx> random: add proper SPDX header Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove unused tracepoints Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove ifdef'd out interrupt bench Jason A. Donenfeld <Jason@xxxxxxxxx> random: tie batched entropy generation to base_crng generation Dominik Brodowski <linux@xxxxxxxxxxxxxxxxxxxx> random: fix locking for crng_init in crng_reseed() Jason A. Donenfeld <Jason@xxxxxxxxx> random: zero buffer after reading entropy from userspace Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove outdated INT_MAX >> 6 check in urandom_read() Jason A. Donenfeld <Jason@xxxxxxxxx> random: make more consistent use of integer types Jason A. Donenfeld <Jason@xxxxxxxxx> random: use hash function for crng_slow_load() Jason A. Donenfeld <Jason@xxxxxxxxx> random: use simpler fast key erasure flow on per-cpu keys Jason A. Donenfeld <Jason@xxxxxxxxx> random: absorb fast pool into input pool after fast load Jason A. Donenfeld <Jason@xxxxxxxxx> random: do not xor RDRAND when writing into /dev/random Jason A. Donenfeld <Jason@xxxxxxxxx> random: ensure early RDSEED goes through mixer on init Jason A. Donenfeld <Jason@xxxxxxxxx> random: inline leaves of rand_initialize() Jason A. Donenfeld <Jason@xxxxxxxxx> random: get rid of secondary crngs Jason A. Donenfeld <Jason@xxxxxxxxx> random: use RDSEED instead of RDRAND in entropy extraction Dominik Brodowski <linux@xxxxxxxxxxxxxxxxxxxx> random: fix locking in crng_fast_load() Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove batched entropy locking Eric Biggers <ebiggers@xxxxxxxxxx> random: remove use_input_pool parameter from crng_reseed() Jason A. Donenfeld <Jason@xxxxxxxxx> random: make credit_entropy_bits() always safe Jason A. Donenfeld <Jason@xxxxxxxxx> random: always wake up entropy writers after extraction Jason A. Donenfeld <Jason@xxxxxxxxx> random: use linear min-entropy accumulation crediting Jason A. Donenfeld <Jason@xxxxxxxxx> random: simplify entropy debiting Jason A. Donenfeld <Jason@xxxxxxxxx> random: use computational hash for entropy extraction Dominik Brodowski <linux@xxxxxxxxxxxxxxxxxxxx> random: only call crng_finalize_init() for primary_crng Dominik Brodowski <linux@xxxxxxxxxxxxxxxxxxxx> random: access primary_pool directly rather than through pointer Dominik Brodowski <linux@xxxxxxxxxxxxxxxxxxxx> random: continually use hwgenerator randomness Jason A. Donenfeld <Jason@xxxxxxxxx> random: simplify arithmetic function flow in account() Jason A. Donenfeld <Jason@xxxxxxxxx> random: selectively clang-format where it makes sense Jason A. Donenfeld <Jason@xxxxxxxxx> random: access input_pool_data directly rather than through pointer Jason A. Donenfeld <Jason@xxxxxxxxx> random: cleanup fractional entropy shift constants Jason A. Donenfeld <Jason@xxxxxxxxx> random: prepend remaining pool constants with POOL_ Jason A. Donenfeld <Jason@xxxxxxxxx> random: de-duplicate INPUT_POOL constants Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove unused OUTPUT_POOL constants Jason A. Donenfeld <Jason@xxxxxxxxx> random: rather than entropy_store abstraction, use global Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove unused extract_entropy() reserved argument Jason A. Donenfeld <Jason@xxxxxxxxx> random: remove incomplete last_data logic Jason A. Donenfeld <Jason@xxxxxxxxx> random: cleanup integer types Jason A. Donenfeld <Jason@xxxxxxxxx> random: cleanup poolinfo abstraction Schspa Shi <schspa@xxxxxxxxx> random: fix typo in comments Jann Horn <jannh@xxxxxxxxxx> random: don't reset crng_init_cnt on urandom_read() Jason A. Donenfeld <Jason@xxxxxxxxx> random: avoid superfluous call to RDRAND in CRNG extraction Dominik Brodowski <linux@xxxxxxxxxxxxxxxxxxxx> random: early initialization of ChaCha constants Jason A. Donenfeld <Jason@xxxxxxxxx> random: use IS_ENABLED(CONFIG_NUMA) instead of ifdefs Dominik Brodowski <linux@xxxxxxxxxxxxxxxxxxxx> random: harmonize "crng init done" messages Jason A. Donenfeld <Jason@xxxxxxxxx> random: mix bootloader randomness into pool Jason A. Donenfeld <Jason@xxxxxxxxx> random: do not re-init if crng_reseed completes before primary init Jason A. Donenfeld <Jason@xxxxxxxxx> random: do not sign extend bytes for rotation when mixing Jason A. Donenfeld <Jason@xxxxxxxxx> random: use BLAKE2s instead of SHA1 in extraction Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx> random: remove unused irq_flags argument from add_interrupt_randomness() Mark Brown <broonie@xxxxxxxxxx> random: document add_hwgenerator_randomness() with other input functions Jason A. Donenfeld <Jason@xxxxxxxxx> lib/crypto: blake2s: avoid indirect calls to compression function for Clang CFI Jason A. Donenfeld <Jason@xxxxxxxxx> lib/crypto: sha1: re-roll loops to reduce code size Jason A. Donenfeld <Jason@xxxxxxxxx> lib/crypto: blake2s: move hmac construction into wireguard Jason A. Donenfeld <Jason@xxxxxxxxx> lib/crypto: blake2s: include as built-in Jason A. Donenfeld <Jason@xxxxxxxxx> MAINTAINERS: add git tree for random.c Jason A. Donenfeld <Jason@xxxxxxxxx> MAINTAINERS: co-maintain random.c Lorenzo Pieralisi <lorenzo.pieralisi@xxxxxxx> ACPI: sysfs: Fix BERT error region memory mapping Magnus Karlsson <magnus.karlsson@xxxxxxxxx> ice: fix crash at allocation failure Paolo Bonzini <pbonzini@xxxxxxxxxx> KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID Basavaraj Natikar <Basavaraj.Natikar@xxxxxxx> HID: amd_sfh: Add support for sensor discovery ------------- Diffstat: Documentation/admin-guide/kernel-parameters.txt | 6 + Documentation/admin-guide/sysctl/kernel.rst | 22 +- MAINTAINERS | 2 + Makefile | 4 +- arch/alpha/include/asm/timex.h | 1 + arch/arm/crypto/Makefile | 4 +- arch/arm/crypto/blake2s-core.S | 8 +- arch/arm/crypto/blake2s-glue.c | 73 +- arch/arm/crypto/blake2s-shash.c | 75 + arch/arm/include/asm/timex.h | 1 + arch/ia64/include/asm/timex.h | 1 + arch/m68k/include/asm/timex.h | 2 +- arch/mips/include/asm/timex.h | 17 +- arch/nios2/include/asm/timex.h | 3 + arch/parisc/include/asm/timex.h | 3 +- arch/powerpc/include/asm/timex.h | 1 + arch/riscv/include/asm/timex.h | 2 +- arch/s390/include/asm/timex.h | 1 + arch/sparc/include/asm/timex_32.h | 4 +- arch/um/include/asm/timex.h | 9 +- arch/x86/crypto/Makefile | 4 +- arch/x86/crypto/blake2s-glue.c | 68 +- arch/x86/crypto/blake2s-shash.c | 77 + arch/x86/include/asm/timex.h | 9 + arch/x86/include/asm/tsc.h | 7 +- arch/x86/kernel/cpu/mshyperv.c | 2 +- arch/x86/kvm/mmu/mmu.c | 6 +- arch/xtensa/include/asm/timex.h | 6 +- crypto/Kconfig | 3 +- crypto/blake2s_generic.c | 4 +- crypto/drbg.c | 17 +- drivers/acpi/sysfs.c | 25 +- drivers/char/Kconfig | 3 +- drivers/char/hw_random/core.c | 1 + drivers/char/random.c | 3011 +++++++++-------------- drivers/hid/amd-sfh-hid/amd_sfh_client.c | 11 + drivers/hid/amd-sfh-hid/amd_sfh_pcie.c | 7 + drivers/hid/amd-sfh-hid/amd_sfh_pcie.h | 4 + drivers/hv/vmbus_drv.c | 2 +- drivers/net/Kconfig | 1 - drivers/net/ethernet/intel/ice/ice_xsk.c | 2 +- drivers/net/wireguard/noise.c | 45 +- include/crypto/blake2s.h | 3 - include/crypto/chacha.h | 15 +- include/crypto/drbg.h | 2 +- include/crypto/internal/blake2s.h | 46 +- include/linux/cpuhotplug.h | 2 + include/linux/hw_random.h | 2 - include/linux/mm.h | 1 + include/linux/prandom.h | 23 +- include/linux/random.h | 100 +- include/linux/siphash.h | 28 + include/linux/timex.h | 10 +- include/trace/events/random.h | 247 -- init/main.c | 13 +- kernel/cpu.c | 11 + kernel/irq/handle.c | 2 +- kernel/time/timekeeping.c | 15 + lib/Kconfig.debug | 3 +- lib/crypto/Kconfig | 23 +- lib/crypto/Makefile | 9 +- lib/crypto/blake2s-generic.c | 6 +- lib/crypto/blake2s-selftest.c | 31 - lib/crypto/blake2s.c | 47 +- lib/random32.c | 16 +- lib/sha1.c | 95 +- lib/siphash.c | 32 +- lib/vsprintf.c | 10 +- mm/util.c | 32 + sound/pci/ctxfi/ctatc.c | 2 + sound/pci/ctxfi/cthardware.h | 3 +- 71 files changed, 1683 insertions(+), 2700 deletions(-)
