Received: by 2002:ac2:464d:0:0:0:0:0 with SMTP id s13csp2000865lfo; Sat, 28 May 2022 13:21:58 -0700 (PDT) X-Google-Smtp-Source: ABdhPJwhjZvwOUhHIzav4CIQThStL3lqTBvUL1bNdfxQJWWAYMZHSPB22epUTdkZmo7RzgVmUspZ X-Received: by 2002:a17:90a:b894:b0:1e2:d8f8:41e9 with SMTP id o20-20020a17090ab89400b001e2d8f841e9mr409375pjr.20.1653769318359; Sat, 28 May 2022 13:21:58 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1653769318; cv=none; d=google.com; s=arc-20160816; b=TBoZibxztC+Tp8EpyqfngJ3fNoegL75e3o3FqyCOMA1sQdrcoTCEXcxl+SWBLdncjH /Q2dIWkTsF/AAPxdHuAQPl1av5b6ZmY4tOpp6iOFZ02MLr3TCGkLU1Y24O3b7fDdLz6a /XwsJ+4nIH2XnV/9ssIcjtRdmkjcymzqlHFDpzqreU3LM+Pw9oauT8xYXMqXN5cjCyYo i4vBOM/BGSCtUSAm/EtaxqQXmSJoDJdKeM4Wi4ngck1UZovHIULBkFZHdtlUQP+WN3P4 aO2T5xtbzqNYkudbzMxZKNt8byPujNsGLz39u+SfDD0ziYBKfj/7opQJsN65R1E0jnHv 814w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:user-agent :mime-version:message-id:date:subject:cc:to:from:dkim-signature; bh=Kw1aORjLJS25VjSS7vg6NrLW1yZvj5bYNW4+0m9hmzw=; b=zEJxvz+jTnLZEooMzJL4MEb8juTUEjw6m25rD6E77CyI9hre8VHX2OXHZdhieKdSwN q76/sr28D8yJYHL8der5PGYAQgFx0qj5183J/CGf7rW14r4u7N4ichfxpwI+zsInm2go V4DNLs3X+w8+5nuH5nIaFNZ8JUpus85pcIiiAqIKmo2T6OVSM/z9ibyIRGjDaPGOfbEo FDPPMnDYsSd7Qerf2zTYvzYfYUxdR/lcgstcojHriP50yZIxZy0s7qzQ56kY99AyZMX7 F/SglFo+SLL6fWethB9QhyaRhRgQqvG0NoXCqaDjWI6NRPkGNeAOwbVMdWHdT/tFbjIA btSA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=qdjcS4oL; spf=softfail (google.com: domain of transitioning linux-kernel-owner@vger.kernel.org does not designate 23.128.96.19 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net. [23.128.96.19]) by mx.google.com with ESMTPS id k12-20020a170902c40c00b00153b2d16646si11364383plk.590.2022.05.28.13.21.58 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sat, 28 May 2022 13:21:58 -0700 (PDT) Received-SPF: softfail (google.com: domain of transitioning linux-kernel-owner@vger.kernel.org does not designate 23.128.96.19 as permitted sender) client-ip=23.128.96.19; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=qdjcS4oL; spf=softfail (google.com: domain of transitioning linux-kernel-owner@vger.kernel.org does not designate 23.128.96.19 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id 7B1E35A149; Sat, 28 May 2022 12:33:41 -0700 (PDT) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1350030AbiE0IwG (ORCPT + 99 others); Fri, 27 May 2022 04:52:06 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:58596 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1350007AbiE0Ivb (ORCPT ); Fri, 27 May 2022 04:51:31 -0400 Received: from sin.source.kernel.org (sin.source.kernel.org [145.40.73.55]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id AB59E4C41A; Fri, 27 May 2022 01:51:28 -0700 (PDT) Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by sin.source.kernel.org (Postfix) with ESMTPS id DC9F5CE1A01; Fri, 27 May 2022 08:51:26 +0000 (UTC) Received: by smtp.kernel.org (Postfix) with ESMTPSA id B242AC385B8; Fri, 27 May 2022 08:51:24 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1653641485; bh=xOcredF0GmNBRomd5oBuCNp3/PjU7CHBltyyu4izCoA=; h=From:To:Cc:Subject:Date:From; b=qdjcS4oLLW7DQYCtEgiTAPcB2kuvOsHYvAIaMo7fOWxSPbOoi/81mPDWecBhVmwT9 8+N10bRKku0LXkklpk07mg/8/Aohnv+z83mI9SkyC2Q6lHH+1DTHS1IfCCsV7vc1hW 6Ax6YMIZotYCNNnvYyxx8efIp8tQuUhulUMTypiM= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, torvalds@linux-foundation.org, akpm@linux-foundation.org, linux@roeck-us.net, shuah@kernel.org, patches@kernelci.org, lkft-triage@lists.linaro.org, pavel@denx.de, jonathanh@nvidia.com, f.fainelli@gmail.com, sudipm.mukherjee@gmail.com, slade@sladewatkins.com Subject: [PATCH 5.10 000/163] 5.10.119-rc1 review Date: Fri, 27 May 2022 10:48:00 +0200 Message-Id: <20220527084828.156494029@linuxfoundation.org> X-Mailer: git-send-email 2.36.1 MIME-Version: 1.0 User-Agent: quilt/0.66 X-stable: review X-Patchwork-Hint: ignore X-KernelTest-Patch: http://kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.119-rc1.gz X-KernelTest-Tree: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git X-KernelTest-Branch: linux-5.10.y X-KernelTest-Patches: git://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git X-KernelTest-Version: 5.10.119-rc1 X-KernelTest-Deadline: 2022-05-29T08:48+00:00 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-2.8 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS, MAILING_LIST_MULTI,RDNS_NONE,SPF_HELO_NONE,T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org This is the start of the stable review cycle for the 5.10.119 release. There are 163 patches in this series, all will be posted as a response to this one. If anyone has any issues with these being applied, please let me know. Responses should be made by Sun, 29 May 2022 08:46:26 +0000. Anything received after that time might be too late. The whole patch series can be found in one patch at: https://www.kernel.org/pub/linux/kernel/v5.x/stable-review/patch-5.10.119-rc1.gz or in the git tree and branch at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-5.10.y and the diffstat can be found below. thanks, greg k-h ------------- Pseudo-Shortlog of commits: Greg Kroah-Hartman Linux 5.10.119-rc1 Edward Matijevic ALSA: ctxfi: Add SB046x PCI ID Jason A. Donenfeld random: check for signals after page of pool writes Jens Axboe random: wire up fops->splice_{read,write}_iter() Jens Axboe random: convert to using fops->write_iter() Jens Axboe random: convert to using fops->read_iter() Jason A. Donenfeld random: unify batched entropy implementations Jason A. Donenfeld random: move randomize_page() into mm where it belongs Jason A. Donenfeld random: move initialization functions out of hot pages Jason A. Donenfeld random: make consistent use of buf and len Jason A. Donenfeld random: use proper return types on get_random_{int,long}_wait() Jason A. Donenfeld random: remove extern from functions in header Jason A. Donenfeld random: use static branch for crng_ready() Jason A. Donenfeld random: credit architectural init the exact amount Jason A. Donenfeld random: handle latent entropy and command line from random_init() Jason A. Donenfeld random: use proper jiffies comparison macro Jason A. Donenfeld random: remove ratelimiting for in-kernel unseeded randomness Jason A. Donenfeld random: move initialization out of reseeding hot path Jason A. Donenfeld random: avoid initializing twice in credit race Jason A. Donenfeld random: use symbolic constants for crng_init states Jason A. Donenfeld siphash: use one source of truth for siphash permutations Jason A. Donenfeld random: help compiler out with fast_mix() by using simpler arguments Jason A. Donenfeld random: do not use input pool from hard IRQs Jason A. Donenfeld random: order timer entropy functions below interrupt functions Jason A. Donenfeld random: do not pretend to handle premature next security model Jason A. Donenfeld random: use first 128 bits of input as fast init Jason A. Donenfeld random: do not use batches when !crng_ready() Jason A. Donenfeld random: insist on random_get_entropy() existing in order to simplify Jason A. Donenfeld xtensa: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld sparc: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld um: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld x86/tsc: Use fallback for random_get_entropy() instead of zero Jason A. Donenfeld nios2: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld arm: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld mips: use fallback for random_get_entropy() instead of just c0 random Jason A. Donenfeld riscv: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld m68k: use fallback for random_get_entropy() instead of zero Jason A. Donenfeld timekeeping: Add raw clock fallback for random_get_entropy() Jason A. Donenfeld powerpc: define get_cycles macro for arch-override Jason A. Donenfeld alpha: define get_cycles macro for arch-override Jason A. Donenfeld parisc: define get_cycles macro for arch-override Jason A. Donenfeld s390: define get_cycles macro for arch-override Jason A. Donenfeld ia64: define get_cycles macro for arch-override Jason A. Donenfeld init: call time_init() before rand_initialize() Jason A. Donenfeld random: fix sysctl documentation nits Jason A. Donenfeld random: document crng_fast_key_erasure() destination possibility Jason A. Donenfeld random: make random_get_entropy() return an unsigned long Jason A. Donenfeld random: allow partial reads if later user copies fail Jason A. Donenfeld random: check for signals every PAGE_SIZE chunk of /dev/[u]random Jann Horn random: check for signal_pending() outside of need_resched() check Jason A. Donenfeld random: do not allow user to keep crng key around on stack Jan Varho random: do not split fast init input in add_hwgenerator_randomness() Jason A. Donenfeld random: mix build-time latent entropy into pool at init Jason A. Donenfeld random: re-add removed comment about get_random_{u32,u64} reseeding Jason A. Donenfeld random: treat bootloader trust toggle the same way as cpu trust toggle Jason A. Donenfeld random: skip fast_init if hwrng provides large chunk of entropy Jason A. Donenfeld random: check for signal and try earlier when generating entropy Jason A. Donenfeld random: reseed more often immediately after booting Jason A. Donenfeld random: make consistent usage of crng_ready() Jason A. Donenfeld random: use SipHash as interrupt entropy accumulator Jason A. Donenfeld random: replace custom notifier chain with standard one Jason A. Donenfeld random: don't let 644 read-only sysctls be written to Jason A. Donenfeld random: give sysctl_random_min_urandom_seed a more sensible value Jason A. Donenfeld random: do crng pre-init loading in worker rather than irq Jason A. Donenfeld random: unify cycles_t and jiffies usage and types Jason A. Donenfeld random: cleanup UUID handling Jason A. Donenfeld random: only wake up writers after zap if threshold was passed Jason A. Donenfeld random: round-robin registers as ulong, not u32 Jason A. Donenfeld random: clear fast pool, crng, and batches in cpuhp bring up Jason A. Donenfeld random: pull add_hwgenerator_randomness() declaration into random.h Jason A. Donenfeld random: check for crng_init == 0 in add_device_randomness() Jason A. Donenfeld random: unify early init crng load accounting Jason A. Donenfeld random: do not take pool spinlock at boot Jason A. Donenfeld random: defer fast pool mixing to worker Jason A. Donenfeld random: rewrite header introductory comment Jason A. Donenfeld random: group sysctl functions Jason A. Donenfeld random: group userspace read/write functions Jason A. Donenfeld random: group entropy collection functions Jason A. Donenfeld random: group entropy extraction functions Jason A. Donenfeld random: group crng functions Jason A. Donenfeld random: group initialization wait functions Jason A. Donenfeld random: remove whitespace and reorder includes Jason A. Donenfeld random: remove useless header comment Jason A. Donenfeld random: introduce drain_entropy() helper to declutter crng_reseed() Jason A. Donenfeld random: deobfuscate irq u32/u64 contributions Jason A. Donenfeld random: add proper SPDX header Jason A. Donenfeld random: remove unused tracepoints Jason A. Donenfeld random: remove ifdef'd out interrupt bench Jason A. Donenfeld random: tie batched entropy generation to base_crng generation Dominik Brodowski random: fix locking for crng_init in crng_reseed() Jason A. Donenfeld random: zero buffer after reading entropy from userspace Jason A. Donenfeld random: remove outdated INT_MAX >> 6 check in urandom_read() Jason A. Donenfeld random: make more consistent use of integer types Jason A. Donenfeld random: use hash function for crng_slow_load() Jason A. Donenfeld random: use simpler fast key erasure flow on per-cpu keys Jason A. Donenfeld random: absorb fast pool into input pool after fast load Jason A. Donenfeld random: do not xor RDRAND when writing into /dev/random Jason A. Donenfeld random: ensure early RDSEED goes through mixer on init Jason A. Donenfeld random: inline leaves of rand_initialize() Jason A. Donenfeld random: get rid of secondary crngs Jason A. Donenfeld random: use RDSEED instead of RDRAND in entropy extraction Dominik Brodowski random: fix locking in crng_fast_load() Jason A. Donenfeld random: remove batched entropy locking Eric Biggers random: remove use_input_pool parameter from crng_reseed() Jason A. Donenfeld random: make credit_entropy_bits() always safe Jason A. Donenfeld random: always wake up entropy writers after extraction Jason A. Donenfeld random: use linear min-entropy accumulation crediting Jason A. Donenfeld random: simplify entropy debiting Jason A. Donenfeld random: use computational hash for entropy extraction Dominik Brodowski random: only call crng_finalize_init() for primary_crng Dominik Brodowski random: access primary_pool directly rather than through pointer Dominik Brodowski random: continually use hwgenerator randomness Jason A. Donenfeld random: simplify arithmetic function flow in account() Jason A. Donenfeld random: selectively clang-format where it makes sense Jason A. Donenfeld random: access input_pool_data directly rather than through pointer Jason A. Donenfeld random: cleanup fractional entropy shift constants Jason A. Donenfeld random: prepend remaining pool constants with POOL_ Jason A. Donenfeld random: de-duplicate INPUT_POOL constants Jason A. Donenfeld random: remove unused OUTPUT_POOL constants Jason A. Donenfeld random: rather than entropy_store abstraction, use global Jason A. Donenfeld random: remove unused extract_entropy() reserved argument Jason A. Donenfeld random: remove incomplete last_data logic Jason A. Donenfeld random: cleanup integer types Jason A. Donenfeld random: cleanup poolinfo abstraction Schspa Shi random: fix typo in comments Jann Horn random: don't reset crng_init_cnt on urandom_read() Jason A. Donenfeld random: avoid superfluous call to RDRAND in CRNG extraction Dominik Brodowski random: early initialization of ChaCha constants Jason A. Donenfeld random: use IS_ENABLED(CONFIG_NUMA) instead of ifdefs Dominik Brodowski random: harmonize "crng init done" messages Jason A. Donenfeld random: mix bootloader randomness into pool Jason A. Donenfeld random: do not re-init if crng_reseed completes before primary init Jason A. Donenfeld random: do not sign extend bytes for rotation when mixing Jason A. Donenfeld random: use BLAKE2s instead of SHA1 in extraction Sebastian Andrzej Siewior random: remove unused irq_flags argument from add_interrupt_randomness() Mark Brown random: document add_hwgenerator_randomness() with other input functions Jason A. Donenfeld lib/crypto: blake2s: avoid indirect calls to compression function for Clang CFI Jason A. Donenfeld lib/crypto: sha1: re-roll loops to reduce code size Jason A. Donenfeld lib/crypto: blake2s: move hmac construction into wireguard Jason A. Donenfeld lib/crypto: blake2s: include as built-in Eric Biggers crypto: blake2s - include instead of Eric Biggers crypto: blake2s - adjust include guard naming Eric Biggers crypto: blake2s - add comment for blake2s_state fields Eric Biggers crypto: blake2s - optimize blake2s initialization Eric Biggers crypto: blake2s - share the "shash" API boilerplate code Eric Biggers crypto: blake2s - move update and final logic to internal/blake2s.h Eric Biggers crypto: blake2s - remove unneeded includes Eric Biggers crypto: x86/blake2s - define shash_alg structs using macros Eric Biggers crypto: blake2s - define shash_alg structs using macros Herbert Xu crypto: lib/blake2s - Move selftest prototype into header file Jason A. Donenfeld MAINTAINERS: add git tree for random.c Jason A. Donenfeld MAINTAINERS: co-maintain random.c Eric Biggers random: remove dead code left over from blocking pool Ard Biesheuvel random: avoid arch_get_random_seed_long() when collecting IRQ randomness Lorenzo Pieralisi ACPI: sysfs: Fix BERT error region memory mapping Andy Shevchenko ACPI: sysfs: Make sparse happy about address space in use Hans Verkuil media: vim2m: initialize the media device earlier Sakari Ailus media: vim2m: Register video device after setting up internals Willy Tarreau secure_seq: use the 64 bits of the siphash for port offset calculation Eric Dumazet tcp: change source port randomizarion at connect() time Paolo Bonzini KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID Vitaly Kuznetsov KVM: x86: Properly handle APF vs disabled LAPIC situation Denis Efremov (Oracle) staging: rtl8723bs: prevent ->Ssid overflow in rtw_wx_set_scan() Daniel Thompson lockdown: also lock down previous kgdb use ------------- Diffstat: Documentation/admin-guide/kernel-parameters.txt | 6 + Documentation/admin-guide/sysctl/kernel.rst | 22 +- MAINTAINERS | 2 + Makefile | 4 +- arch/alpha/include/asm/timex.h | 1 + arch/arm/include/asm/timex.h | 1 + arch/ia64/include/asm/timex.h | 1 + arch/m68k/include/asm/timex.h | 2 +- arch/mips/include/asm/timex.h | 17 +- arch/nios2/include/asm/timex.h | 3 + arch/parisc/include/asm/timex.h | 3 +- arch/powerpc/include/asm/timex.h | 1 + arch/riscv/include/asm/timex.h | 2 +- arch/s390/include/asm/timex.h | 1 + arch/sparc/include/asm/timex_32.h | 4 +- arch/um/include/asm/timex.h | 9 +- arch/x86/crypto/Makefile | 4 +- arch/x86/crypto/blake2s-glue.c | 166 +- arch/x86/crypto/blake2s-shash.c | 77 + arch/x86/include/asm/timex.h | 9 + arch/x86/include/asm/tsc.h | 7 +- arch/x86/kernel/cpu/mshyperv.c | 2 +- arch/x86/kvm/lapic.c | 6 + arch/x86/kvm/mmu/mmu.c | 6 +- arch/x86/kvm/x86.c | 2 +- arch/xtensa/include/asm/timex.h | 6 +- crypto/Kconfig | 3 +- crypto/blake2s_generic.c | 158 +- crypto/drbg.c | 17 +- drivers/acpi/sysfs.c | 23 +- drivers/char/Kconfig | 3 +- drivers/char/hw_random/core.c | 1 + drivers/char/random.c | 3035 +++++++++-------------- drivers/hv/vmbus_drv.c | 2 +- drivers/media/test-drivers/vim2m.c | 22 +- drivers/net/Kconfig | 1 - drivers/net/wireguard/noise.c | 45 +- drivers/staging/rtl8723bs/os_dep/ioctl_linux.c | 6 +- include/crypto/blake2s.h | 66 +- include/crypto/chacha.h | 15 +- include/crypto/drbg.h | 2 +- include/crypto/internal/blake2s.h | 123 +- include/linux/cpuhotplug.h | 2 + include/linux/hw_random.h | 2 - include/linux/mm.h | 1 + include/linux/prandom.h | 23 +- include/linux/random.h | 100 +- include/linux/security.h | 2 + include/linux/siphash.h | 28 + include/linux/timex.h | 10 +- include/net/inet_hashtables.h | 2 +- include/net/secure_seq.h | 4 +- include/trace/events/random.h | 330 --- init/main.c | 13 +- kernel/cpu.c | 11 + kernel/debug/debug_core.c | 24 + kernel/debug/kdb/kdb_main.c | 62 +- kernel/irq/handle.c | 2 +- kernel/time/timekeeping.c | 15 + lib/Kconfig.debug | 3 +- lib/crypto/Kconfig | 23 +- lib/crypto/Makefile | 9 +- lib/crypto/blake2s-generic.c | 6 +- lib/crypto/blake2s-selftest.c | 33 +- lib/crypto/blake2s.c | 81 +- lib/random32.c | 16 +- lib/sha1.c | 95 +- lib/siphash.c | 32 +- lib/vsprintf.c | 10 +- mm/util.c | 32 + net/core/secure_seq.c | 4 +- net/ipv4/inet_hashtables.c | 28 +- net/ipv6/inet6_hashtables.c | 4 +- security/security.c | 2 + sound/pci/ctxfi/ctatc.c | 2 + sound/pci/ctxfi/cthardware.h | 3 +- 76 files changed, 1865 insertions(+), 3035 deletions(-)