Contents
Changes
- Security/mainstream fixes
- gcc4 compilation fixes
- Scheduler improvements
- Area-check patch
- Code cleanups
Configs
The same as 022stab045.1, plus:
- +CONFIG_HOTPLUG=y
- +CONFIG_PCMCIA_PROBE=y
- +CONFIG_HOTPLUG_PCI=y
- +CONFIG_HOTPLUG_PCI_COMPAQ=m
- +CONFIG_HOTPLUG_PCI_IBM=m
- +CONFIG_HOTPLUG_PCI_ACPI=m
- +CONFIG_HOTPLUG_PCI_PCIE=m
- +CONFIG_HOTPLUG_PCI_SHPC=m
- +CONFIG_FW_LOADER=y
- +CONFIG_PDC202XX_BURST=y
- +CONFIG_PDC202XX_FORCE=y
- +CONFIG_AIC79XX_ENABLE_RD_STRM=y
- +CONFIG_FUSION_LAN=m
- +CONFIG_USB=m
- +CONFIG_USB_DEVICEFS=y
- +CONFIG_USB_EHCI_HCD=m
- +CONFIG_USB_OHCI_HCD=m
- +CONFIG_USB_UHCI_HCD=m
- +CONFIG_USB_ACM=m
- +CONFIG_USB_PRINTER=m
- +CONFIG_USB_STORAGE=m
- +CONFIG_USB_STORAGE_DATAFAB=y
- +CONFIG_USB_STORAGE_FREECOM=y
- +CONFIG_USB_STORAGE_ISD200=y
- +CONFIG_USB_STORAGE_DPCM=y
- +CONFIG_USB_STORAGE_HP8200e=y
- +CONFIG_USB_STORAGE_SDDR09=y
- +CONFIG_USB_STORAGE_JUMPSHOT=y
- +CONFIG_USB_HID=m
- +CONFIG_USB_HIDINPUT=y
- +CONFIG_USB_KBD=m
- +CONFIG_USB_MOUSE=m
- +CONFIG_USB_WACOM=m
- +CONFIG_LBD=y
Driver updates
- cciss driver v2.6.8
Patches
diff-fairsched-gcc4-20051110
This patches fixes sched.c compilation with gcc4
diff-ms-gcc4-emt64-fakestack-20051107
fixes gcc4 compilation of arch/x86_64/kernel/entry.S
diff-ms-gcc4-tss-20051101
tss_struct should be declared before ref.
diff-fairsched-balance-fix-20051110
On UP machines scheduler does not perform active load balancing and sched domains manupulations.
diff-ms-gcc4-framebuf-20051103
fixing compilation issue with gcc4. http://linux.bkbits.net:8080/linux-2.6/cset@1.1982.90.1
diff-security-ptrace-thread-20051110
[Security] [BUG] trivially triggered BUG_ON() in do_notify_parent()
diff-ms-gcc4-prio-tree-20051101
Patch from mainstream, fixing compilation issue with gcc4:
[PATCH] prio-tree: remove function prototype inside function
http://linux.bkbits.net:8080/linux-2.6/cset@1.1832.54.5
diff-ms-gcc4-sendipi-20051101
Patch from mainstream, fixing compilation issue with gcc4:
send_IPI_mask_bitmask can't be inlined by gcc4
diff-ms-gcc4-mtrr-20051101
Patch from mainstream, fixing compilation issue with gcc4. http://linux.bkbits.net:8080/linux-2.6/cset@1.1803.144.88
diff-ms-gcc4-oldconfig-20051101
Patch fixing make oldconfig to not fail with gcc-3.5/gcc-4.
diff-CVE-2005-2709-sysctl-unreg
[PATCH] CVE-2005-2709 sysctl unregistration oops
You could open the /proc/sys/net/ipv4/conf/<if>/<whatever> file, then wait for interface to go away, try to grab as much memory as possible in hope to hit the (kfreed) ctl_table. Then fill it with pointers to your function. Then do read from file you've opened and if you are lucky, you'll get it called as ->proc_handler() in kernel mode. So this is at least an Oops and possibly more. It does depend on an interface going away though, so less of a security risk than it would otherwise be.
diff-ms-stopmachine-ipi-deadlock
This patch fixes deadlock of stop_machine() vs. synchronous IPI send.
The problem is that stop_machine() disables interrupts before disabling
preemption on other CPUs. So if another CPU is preempted and then calls
something like flush_tlb_all() it will deadlock with CPU doing stop_machine()
and which can't process IPI due to disabled IRQs.
I changed stop_machine() to do the same things exactly as it does on other CPUs, i.e. it should disable preemption first on _all_ CPUs including itself and only after that disable IRQs.
diff-ubc-oom-fix-20051102
- shrinked slabs counting during try_to_free_pages() (lost from 2.4);
- do not call yield() in oom_kill() if suicide hapened (lost from 2.4);
- oom_kill_counter correct calculations when task is set to be PF_MEMDIE-d oom_kill_counter must be incremented, when this task calls do_exit() - oom_kill_counter decrements. this logic was broken before;
- code cleanups.
diff-ms-pagealloc-nofail-20051108
When PF_MEMALLOC is set __alloc_pages() does it best
to allocate a page. If even this try fails it is not
good to immediately return NULL - try to wait longer.
Bug 44254.
diff-ve-ia64-fsyscalls-20051103
- fsys_getpid needs new offset for tgid;
- fsys_getppid must not be called via fsys (locking);
- fsys_set_tid_address needs new offset for pid.
diff-ve-ia64-printk-20051010
Some info-printk can be triggered by userspace process. No need to spoil main logbuf.
diff-ubc-ia64-pgfaultoom-20051108
Ported i386 page fault OOM logic to ia64
diff-ubc-emt64-pgfaultoom-20051108
Ported i386 OOM logic in page fault to x86-64.
diff-ms-amderrata-20051108
This is a merge of
http://linux.bkbits.net:8080/linux-2.6/cset@1.3845.24.52
http://linux.bkbits.net:8080/linux-2.6/cset@1.3895.1.53
http://linux.bkbits.net:8080/linux-2.6/cset@1.3974
diff-ms-emt64-iounmap-20051031
Collected ioremap fixes:
- Call change_page_attr correctly
- Fix a race during iounmap
- Handle mmio holes without mem_map correctly (needed for SRAT patch)
- Some cleanups
Plus fix of DoS (CAN-2005-3108).
This is the merge (and port) of these patches:
http://linux.bkbits.net:8080/linux-2.6/cset@428a06d1t7yny15TW1vsHxmsfP9YPg
http://linux.bkbits.net:8080/linux-2.6/cset@1.1938.500.76
diff-fairsched-sleepavg-20051107
task->sleep_avg should be updated under rq->lock.
Bug 53273.
diff-ubc-dowppage-20051107
fix of page counting on do_wp_page() error path
diff-ubc-hardsoft-cleanup-20051103
Use predefined constants for ub_memory_charge() to specify severity of charging.
diff-ms-ext3writepage-20051031
This patch fixes lost reference on ext3 current handle in ext3_journalled_writepage
diff-ms-exittimeslice-20051107
sched_exit race fix from mainstream
diff-ubc-compile-20051107
fix of ub_misc.c compilation in case CONFIG_UBC_DEBUG_KMEM is not set.
diff-ubc-resnames-20051107
Print ubc resource name, not just number in __charge_beancounter_locked() when resource is run out.
diff-ve-ia64-printk-20051103
Unaligned accesses in userspace are handled with kernel exception handler and appropriate printk() occurs. This printk must go to VE's log.
diff-ve-ip-conntrack-natmodrefs-20051031
fixed iptable_nat module reference counting
OpenVZ Bug 64.
diff-ve-ip-conntrack-modrefs-20051031
If we have custom iptables entries inside VPS, than on VPS stop related iptable_* modules counts decrements aren't performed. Fixed.
diff-ve-ia64-vpids-20051103
- sys32_ptrace searches task by pid (must by vpid);
- signal handling functions send signal by pid (must by vpid).
diff-ve-emt64-kernelthread-20051103
diff-ve-ia64-kernelthread-20051103
diff-schedule-taskstopped-20050919
Do not alow stopped tasks sleep if they have pending SIGKILL
Bug 50052.
diff-ms-setmempolicy-20051031
A kernel BUG() is triggered by a call to set_mempolicy() with a negative first argument. This is because the mode is declared as an int, and the validity check doesnt check < 0 values. Alternatively, mode could be declared as unsigned int or unsigned long.
http://linux.bkbits.net:8080/linux-2.6/cset@42eef8b09C5r6iI0LuMe5Uy3k05c5g
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3053
diff-rh-irq-stack-apic-context2
make kernel compilable without CONFIG_4KSTACKS
OpenVZ Bug 65.
diff-ia64-headers-20051101
This patch makes ia64 kernel compile.
diff-fairsched-balance-20051102
This patch adds passive/active balancing in CPU scheduler. Additionally:
- doesn't drop rq->lock in schedule_vcpu() on fast path (same VCPU)
- introduced 5ms VCPU to PCPU affinity
- fixed initialization of VCPUs and scheduler domains
diff-ms-flock-hotplug-fix-20051114
The patch below fixes an interesting oddity we're seeing with fedora core development (where we recently started using udev heavily); basically right now filelock_init() is a module_init(), eg runs late. However that breaks down because there are earlier /sbin/hotplug callouts, which with udev, do locking operations. When that happens the kernel oopses because the slabs for file locks aren't initialized yet. Solution: initialize this way early. It's only a kmem_cache_create after all, so can happen early. Signed-off-by: Andrew Morton <akpm@osdl.org> Signed-off-by: Linus Torvalds <torvalds@osdl.org>
http://linux.bkbits.net:8080/linux-2.6/cset@1.1832.6.179
Bug 54025.
diff-ve-vpid-alloc-20051118
[PATCH] vpid allocator was broken
alloc_pidmap sometimes returned 65536. I understood its logic incorreclty,
apparently pid_max does not mean a strict limit on pid value,
it just prescribes to allocate pid < pid_max, if there is at least one
free value in this range.
Plus, it was suboptimal because nr_free never reached 0, so if we have all low pids allocated, it always will scan bitmap.
diff-proc-locks-fix-20051111
unregister_sysctl_table held sysctl_lock (spinlock) and called
remove_proc_entry, which in turn tried to down_write some
semaphore...
fixes bad interaction of:
diff-CVE-2005-2709-sysctl-unreg
diff-proc-locks-20050930
diff-fairsched-gcc4-20051114
fixing compilation issue of kernel/sched.c using gcc4.
diff-ubc-ia64-include-20051111
This patch adds forgotten by Pavel ub include in arch/ia64/mm/fault.c. This issue appears after applying diff-ubc-hardsoft-cleanup-20051103 patch.
diff-ms-emt64-usercopy-20041020
[PATCH] x86_64: correct copy_user_generic return value when exception
happens
Fix a bug that arch/x86_64/lib/copy_user:copy_user_generic will return a
wrong value when exception happens.
In the case the address is not 8-byte aligned (i.e.  go into
Lbad_alignment), if exception happens in Ls11, %rdx will be wrong number of
copied bytes, then copy_user_generic returns wrong value.  It also fixed a
bug of zeroing wrong number of bytes of destination at this situation.  (In
Lzero_rest)
Signed-off-by: Yanmin Zhang <yanmin.zhang@intel.com>
Signed-off-by: Nanhai Zou <nanhai.zou@intel.com>
Signed-off-by: Gordon Jin <gordon.jin@intel.com>
Signed-off-by: Suresh Siddha <suresh.b.siddha@intel.com>
Signed-off-by: Andrew Morton <akpm@osdl.org>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>
http://linux.bkbits.net:8080/linux-2.6/cset@1.1938.185.9
Bug 54154.
diff-ve-legacyptys-20051111
fixed VPS operations when CONFIG_LEGACY_PTYS is not set
diff-ms-dethread-20051117
[PATCH] fix de_thread() vs send_group_sigqueue() race
When non-leader thread does exec, de_thread calls release_task(leader) before
calling exit_itimers(). If local timer interrupt happens in between, it can oops
in send_group_sigqueue() while taking ->sighand->siglock == NULL.
However, we can't change send_group_sigqueue() to check p->signal != NULL,
because sys_timer_create() does get_task_struct() only in SIGEV_THREAD_ID
case. So it is possible that this task_struct was already freed and we can't
trust p->signal.
This patch changes de_thread() so that leader released after exit_itimers()
call.
X-Git-Tag: v2.6.14.2
<a
href="http://www.kernel.org/git/?p=linux/kernel/git/gregkh/linux-2.6.14.y.git;a=commitdiff;h=6b85cfab9d15c70392cd79896ae1a11d88498e9f">X-Git-Url</a>
diff-vzdq-debug-20051117
print "VZDQ: unexpected creation context" debug messages only if
timeout is more than 3 seconds
Bug 49285.
diff-ubc-tcpfragment-20051111
This patch fixes incorrect UB handling in tcp_fragment.
Bug 53926.
diff-ve-sched-rr-20051115
disable SCHED_FIFO and SCHED_RR in VPS (CAP_SYS_ADMIN)
Bug 53938.
diff-ms-notifyparent-20051120
[PATCH] Don't auto-reap traced children
If a task is being traced we never auto-reap it even if it might look
like its parent doesn't care. The tracer obviously _does_ care.
X-Git-Tag: v2.6.15-rc1
<a
href="http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=7ed0175a462c4c30f6df6fac1cccac058f997739">X-Git-Url</a>
Bug 54815.
diff-ms-posix-lock-race
Fix close() vs posix lock race
A threaded app that posix-locks and closes the same file
in two threads concurrently may result in a posix lock
that was never visible to the closer, and that thus needs
cleanup on the final fput.
Handle it together with the regular flocks.
http://linux.bkbits.net:8080/linux-2.6/cset@1.1938.63.25
<a href="https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=115031">
https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=115031</a>
Bug 54772.
diff-simfs-statfs-20051123
Fixes -EIO with sim_statfs and sim_statfs64,
when quota is disabled.
OpenVZ Bug 70.
diff-ubc-hugetlb-compile-20051122
This patch fixes two typos found by a gentoo user (http://bugs.gentoo.org/show_bug.cgi?id=113214) when he tried compiling 022stab045 kernel with CONFIG_HUGETLBFS and CONFIG_HUGETLB_PAGE options turned on.
diff-ve-cmdline-20051121
There is now /proc/cmdline file inside VPS. It's empty.
Bug 54370.
diff-ve-devpts-conf-20051121
default devpts entries uid/gid are virtualized
Bug 54489.
diff-vzdq-readdir-fix-20051123
Due to wrong calculations of file position `ls /proc/vz/vzaquota` could show last entry 3 times. Found during testing of multiple quota partitions.
diff-ms-types-20051122
Adds necessary typed for aacraid and cciss drivers. Cut from diff-aacraid-addon-20051021
diff-ve-ttys-fix-20051124
fixed bug in VPS pty_driver initialization
leading to node crashes
Bug 54874.