linux_dsm_epyc7002

mirror of https://github.com/AuxXxilium/linux_dsm_epyc7002.git synced 2024-12-28 11:18:45 +07:00

Go to file

Thomas Gleixner e843e4f782 futex: Handle faults correctly for PI futexes commit 34b1a1ce1458f50ef27c54e28eb9b1947012907a upstream fixup_pi_state_owner() tries to ensure that the state of the rtmutex, pi_state and the user space value related to the PI futex are consistent before returning to user space. In case that the user space value update faults and the fault cannot be resolved by faulting the page in via fault_in_user_writeable() the function returns with -EFAULT and leaves the rtmutex and pi_state owner state inconsistent. A subsequent futex_unlock_pi() operates on the inconsistent pi_state and releases the rtmutex despite not owning it which can corrupt the RB tree of the rtmutex and cause a subsequent kernel stack use after free. It was suggested to loop forever in fixup_pi_state_owner() if the fault cannot be resolved, but that results in runaway tasks which is especially undesired when the problem happens due to a programming error and not due to malice. As the user space value cannot be fixed up, the proper solution is to make the rtmutex and the pi_state consistent so both have the same owner. This leaves the user space value out of sync. Any subsequent operation on the futex will fail because the 10th rule of PI futexes (pi_state owner and user space value are consistent) has been violated. As a consequence this removes the inept attempts of 'fixing' the situation in case that the current task owns the rtmutex when returning with an unresolvable fault by unlocking the rtmutex which left pi_state::owner and rtmutex::owner out of sync in a different and only slightly less dangerous way. Fixes: `1b7558e457` ("futexes: fix fault handling in futex_lock_pi") Reported-by: gzobqq@gmail.com Signed-off-by: Thomas Gleixner <tglx@linutronix.de> Acked-by: Peter Zijlstra (Intel) <peterz@infradead.org> Cc: stable@vger.kernel.org Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2021-01-30 13:55:17 +01:00
arch	x86/sev-es: Handle string port IO to kernel memory properly	2021-01-27 11:55:28 +01:00
block	blk-mq-debugfs: Add decode for BLK_MQ_F_TAG_HCTX_SHARED	2021-01-19 18:27:29 +01:00
certs	.gitignore: add SPDX License Identifier	2020-03-25 11:50:48 +01:00
crypto	crypto: xor - Fix divide error in do_xor_speed()	2021-01-27 11:54:52 +01:00
Documentation	driver core: Fix device link device name collision	2021-01-27 11:55:18 +01:00
drivers	gpio: mvebu: fix pwm .get_state period calculation	2021-01-30 13:55:16 +01:00
fs	fs/pipe: allow sendfile() to pipe again	2021-01-27 11:55:29 +01:00
include	Commit 9bb48c82aced ("tty: implement write_iter") converted the tty layer to use write_iter. Fix the redirected_tty_write declaration also in n_tty and change the comparisons to use write_iter instead of write. also in n_tty and change the comparisons to use write_iter instead of write.	2021-01-27 11:55:30 +01:00
init	rcu-tasks: Move RCU-tasks initialization to before early_initcall()	2021-01-19 18:27:28 +01:00
ipc	ipc: adjust proc_ipc_sem_dointvec definition to match prototype	2020-09-05 12:14:29 -07:00
kernel	futex: Handle faults correctly for PI futexes	2021-01-30 13:55:17 +01:00
lib	iov_iter: fix the uaccess area in copy_compat_iovec_from_user	2021-01-27 11:55:09 +01:00
LICENSES	LICENSES/deprecated: add Zlib license text	2020-09-16 14:33:49 +02:00
mm	Revert "mm/slub: fix a memory leak in sysfs_slab_add()"	2021-01-30 13:55:16 +01:00
net	tcp: Fix potential use-after-free due to double kfree()	2021-01-27 11:55:28 +01:00
samples	samples/bpf: Fix possible hang in xdpsock with multiple threads	2020-12-30 11:53:49 +01:00
scripts	Revert "kconfig: remove 'kvmconfig' and 'xenconfig' shorthands"	2021-01-23 16:03:57 +01:00
security	dump_common_audit_data(): fix racy accesses to ->d_name	2021-01-19 18:27:29 +01:00
sound	ASoC: SOF: Intel: hda: Avoid checking jack on system suspend	2021-01-27 11:55:28 +01:00
tools	selftests/powerpc: Fix exit status of pkey tests	2021-01-27 11:55:21 +01:00
usr	Merge branch 'work.fdpic' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2020-08-07 13:29:39 -07:00
virt	kvm: check tlbs_dirty directly	2021-01-12 20:18:22 +01:00
.clang-format	RDMA 5.10 pull request	2020-10-17 11:18:18 -07:00
.cocciconfig	scripts: add Linux .cocciconfig for coccinelle	2016-07-22 12:13:39 +02:00
.get_maintainer.ignore	Opt out of scripts/get_maintainer.pl	2019-05-16 10:53:40 -07:00
.gitattributes	.gitattributes: use 'dts' diff driver for dts files	2019-12-04 19:44:11 -08:00
.gitignore	.gitignore: docs: ignore sphinx_*/ directories	2020-09-10 10:44:31 -06:00
.mailmap	mailmap: add two more addresses of Uwe Kleine-König	2020-12-06 10:19:07 -08:00
COPYING	COPYING: state that all contributions really are covered by this file	2020-02-10 13:32:20 -08:00
CREDITS	MAINTAINERS: Move Jason Cooper to CREDITS	2020-11-30 10:20:34 +01:00
Kbuild	kbuild: rename hostprogs-y/always to hostprogs/always-y	2020-02-04 01:53:07 +09:00
Kconfig	kbuild: ensure full rebuild when the compiler is updated	2020-05-12 13:28:33 +09:00
MAINTAINERS	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2020-12-10 15:30:13 -08:00
Makefile	Linux 5.10.11	2021-01-27 11:55:30 +01:00
README	Drop all 00-INDEX files from Documentation/	2018-09-09 15:08:58 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.