linux

mirror of https://github.com/torvalds/linux.git synced 2024-12-01 00:21:32 +00:00

A mirror of the official Linux kernel repository just in case

Go to file

Vitaly Kuznetsov f1940d4e9c Drivers: hv: vmbus: Fix kernel crash upon unbinding a device from uio_hv_generic driver The following crash happens when a never-used device is unbound from uio_hv_generic driver: kernel BUG at mm/slub.c:321! invalid opcode: 0000 [#1] SMP PTI CPU: 0 PID: 4001 Comm: bash Kdump: loaded Tainted: G X --------- --- 5.14.0-0.rc2.23.el9.x86_64 #1 Hardware name: Microsoft Corporation Virtual Machine/Virtual Machine, BIOS 090008 12/07/2018 RIP: 0010:__slab_free+0x1d5/0x3d0 ... Call Trace: ? pick_next_task_fair+0x18e/0x3b0 ? __cond_resched+0x16/0x40 ? vunmap_pmd_range.isra.0+0x154/0x1c0 ? __vunmap+0x22d/0x290 ? hv_ringbuffer_cleanup+0x36/0x40 [hv_vmbus] kfree+0x331/0x380 ? hv_uio_remove+0x43/0x60 [uio_hv_generic] hv_ringbuffer_cleanup+0x36/0x40 [hv_vmbus] vmbus_free_ring+0x21/0x60 [hv_vmbus] hv_uio_remove+0x4f/0x60 [uio_hv_generic] vmbus_remove+0x23/0x30 [hv_vmbus] __device_release_driver+0x17a/0x230 device_driver_detach+0x3c/0xa0 unbind_store+0x113/0x130 ... The problem appears to be that we free 'ring_info->pkt_buffer' twice: first, when the device is unbound from in-kernel driver (netvsc in this case) and second from hv_uio_remove(). Normally, ring buffer is supposed to be re-initialized from hv_uio_open() but this happens when UIO device is being opened and this is not guaranteed to happen. Generally, it is OK to call hv_ringbuffer_cleanup() twice for the same channel (which is being handed over between in-kernel drivers and UIO) even if we didn't call hv_ringbuffer_init() in between. We, however, need to avoid kfree() call for an already freed pointer. Fixes: `adae1e931a` ("Drivers: hv: vmbus: Copy packets sent by Hyper-V out of the ring buffer") Signed-off-by: Vitaly Kuznetsov <vkuznets@redhat.com> Reviewed-by: Andrea Parri <parri.andrea@gmail.com> Reviewed-by: Michael Kelley <mikelley@microsoft.com> Link: https://lore.kernel.org/r/20210831143916.144983-1-vkuznets@redhat.com Signed-off-by: Wei Liu <wei.liu@kernel.org>		2021-09-03 11:00:06 +00:00
arch	- Prevent the amd/power module from being removed while in use	2021-08-29 10:36:32 -07:00
block	block-5.14-2021-08-27	2021-08-27 16:08:29 -07:00
certs	Kbuild updates for v5.13 (2nd)	2021-05-08 10:00:11 -07:00
crypto	crypto: drbg - select SHA512	2021-07-16 15:49:31 +08:00
Documentation	RISC-V Fixes for 5.14-rc7	2021-08-21 11:04:26 -07:00
drivers	Drivers: hv: vmbus: Fix kernel crash upon unbinding a device from uio_hv_generic driver	2021-09-03 11:00:06 +00:00
fs	Two memory management fixes for the filesystem.	2021-08-26 11:18:30 -07:00
include	Networking fixes for 5.14(-rc8?), including fixes from can and bpf.	2021-08-26 13:20:22 -07:00
init	init: Suppress wrong warning for bootconfig cmdline parameter	2021-08-12 13:35:57 -04:00
ipc	Merge branch 'akpm' (patches from Andrew)	2021-07-02 12:08:10 -07:00
kernel	- Have get_push_task() check whether current has migration disabled and	2021-08-29 10:54:14 -07:00
lib	lib: use PFN_PHYS() in devmem_is_allowed()	2021-08-13 14:09:32 -10:00
LICENSES	LICENSES/dual/CC-BY-4.0: Git rid of "smart quotes"	2021-07-15 06:31:24 -06:00
mm	mm/memory_hotplug: fix potential permanent lru cache disable	2021-08-25 12:25:12 -07:00
net	This is a one-liner fix for a serious bug that can cause the server to	2021-08-26 13:26:40 -07:00
samples	Networking fixes for 5.14-rc2, including fixes from bpf and netfilter.	2021-07-14 09:24:32 -07:00
scripts	Kbuild fixes for v5.14 (2nd)	2021-08-07 10:03:02 -07:00
security	bpf: Add lockdown check for probe_write_user helper	2021-08-10 10:10:10 +02:00
sound	another sound-fixes for 5.14-rc7	2021-08-20 12:31:10 -07:00
tools	Networking fixes for 5.14-rc7, including fixes from bpf, wireless and	2021-08-19 12:33:43 -07:00
usr	.gitignore: prefix local generated files with a slash	2021-05-02 00:43:35 +09:00
virt	KVM: Do not leak memory for duplicate debugfs directories	2021-08-04 06:02:03 -04:00
.clang-format	clang-format: Update with the latest for_each macro list	2021-05-12 23:32:39 +02:00
.cocciconfig
.get_maintainer.ignore
.gitattributes	.gitattributes: use 'dts' diff driver for dts files	2019-12-04 19:44:11 -08:00
.gitignore	.gitignore: ignore only top-level modules.builtin	2021-05-02 00:43:35 +09:00
.mailmap	m68k updates for v5.14	2021-06-28 14:01:03 -07:00
COPYING	COPYING: state that all contributions really are covered by this file	2020-02-10 13:32:20 -08:00
CREDITS	MAINTAINERS: move Murali Karicheri to credits	2021-04-29 15:47:30 -07:00
Kbuild	kbuild: rename hostprogs-y/always to hostprogs/always-y	2020-02-04 01:53:07 +09:00
Kconfig	kbuild: ensure full rebuild when the compiler is updated	2020-05-12 13:28:33 +09:00
MAINTAINERS	MAINTAINERS: exfat: update my email address	2021-08-25 12:25:12 -07:00
Makefile	Linux 5.14	2021-08-29 15:04:50 -07:00
README

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.