OpenVZ-legacy
  1. OpenVZ-legacy

linux-2.6.22-openvz

Public
AuthorCommitMessageCommit dateIssues
OpenVZ teamOpenVZ team
972b9ca5cd7linux-2.6.22-ovz003 released
Christoph LameterChristoph Lameter
331c74617f0SLUB: support slub_debug on by defaultAdd a new configuration variable CONFIG_SLUB_DEBUG_ON If set then the kernel will be booted by default with slab debugging switched on. Similar to CONFIG_SLAB_DEBUG. By default slab debugging is available but must be enabled by specifying "slub_debug" as a kernel parameter. Also add support to switch off slab debugging for a kernel that was built with CONFIG_SLUB_DEBUG_ON. This works by spec...
Alexey DobriyanAlexey Dobriyan
5b4d3cddfd0CFQ: use correct cfq_bc in cfq_del_cfqq_rr()If ->active_cfq_bc is NULL there for some reason, we won't delete cfq queue from service tree and silently return. It will also have no pending requests. Next time someone will find this queue in service tree and try to dispatch from there, BUG_ON in __cfq_dispatch_requests() will trigger. The solution is to use cfq_bc from queue itself.
Alexey DobriyanAlexey Dobriyan
f7056a16e33CFQ: use bc_findcreate_cfq_bc() in cfq_get_queue()If bc_find_cfq_bc() for whatever reason can't find cfq_bc kernel will oops later trying do dereference it while checking for async queue. Use find_create counterpart and that's what 2.6.20 did.
Denis V. LunevDenis V. Lunev
53594639dbaaddrconf_dad_failure calls addrconf_dad_stop which takes referenced addressand drops the count. So, in6_ifa_put perrformed at out: is extra. This results in message: "Freeing alive inet6 address" and not released dst entries.
Alexey DobriyanAlexey Dobriyan
7a0e7806734CFQ: use correct cfq_bc in cfq_service_tree_add()That's what 2.6.20 did. Bailout was also totally wrong -- ->active_cfq_bc is NULL at this point resulting in no queues inserted into service tree. No queues in service tree means no dispatched requests to device.
Kir KolyshkinKir Kolyshkin
ecf739f3898UBC: fix compilation on ppc64
Alexey DobriyanAlexey Dobriyan
58e1931440dMMerge 2.6.22.6 git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-2.6.22.yConflicts: Makefile block/cfq-iosched.c include/linux/netdevice.h ipc/shm.c
Greg Kroah-HartmanGreg Kroah-Hartman
14d33e7fa86Linux 2.6.22.6
Kay SieversKay Sievers
233b8a1ed2eusb: add PRODUCT, TYPE to usb-interface eventsThis fixes a regression for userspace programs that were relying on these events. Signed-off-by: Kay Sievers <kay.sievers@vrfy.org> Cc: Andreas Jellinghaus <aj@ciphirelabs.com> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Oliver NeukumOliver Neukum
852ffe0acf8USB: fix DoS in pwc USB video driverthe pwc driver has a disconnect method that waits for user space to close the device. This opens up an opportunity for a DoS attack, blocking the USB subsystem and making khubd's task busy wait in kernel space. This patch shifts freeing resources to close if an opened device is disconnected. Signed-off-by: Oliver Neukum <oneukum@suse.de> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Alan SternAlan Stern
8e62c5a4118USB: allow retry on descriptor fetch errorsThis patch (as964) was suggested by Steffen Koepf. It makes usb_get_descriptor() retry on all errors other than ETIMEDOUT, instead of only on EPIPE. This helps with some devices. Signed-off-by: Alan Stern <stern@rowland.harvard.edu> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Tejun HeoTejun Heo
cd7f435fa35PCI: disable MSI on RX790RX790 can't do MSI like its predecessors. Disable MSI on RX790. Signed-off-by: Tejun Heo <htejun@gmail.com> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Tejun HeoTejun Heo
41ef7dce027PCI: disable MSI on RD580RD580 can't do MSI like its predecessors. Disable MSI on RD580. Signed-off-by: Tejun Heo <teheo@suse.de> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Tejun HeoTejun Heo
1674e24cbb0PCI: disable MSI on RS690RS690 can't do MSI like its predecessors. Disable MSI on RS690. Signed-off-by: Tejun Heo <htejun@gmail.com> Cc: Henry Su <henry.su@amd.com> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Bernhard KaindlBernhard Kaindl
2124e377720PCI: lets kill the 'PCI hidden behind bridge' messageAdrian Bunk wrote: > Alois Nešpor wrote >> PCI: Bus #0b (-#0e) is hidden behind transparent bridge #0a (-#0b) (try 'pci=assign-busses') >> Please report the result to linux-kernel to fix this permanently" >> >> dmesg: >> "Yenta: Raising subordinate bus# of parent bus (#0a) from #0b to #0e" >> without pci=assign-busses and nothing with pci=assign-busses. > > Bernhard? Ok, lets kill the message...
Konstantin SharlaimovKonstantin Sharlaimov
19de71f9fa0PPP: Fix PPP buffer sizing.This patch addresses the issue with "osize too small" errors in mppe encryption. The patch fixes the issue with wrong output buffer size being passed to ppp decompression routine. -------------------- As pointed out by Suresh Mahalingam, the issue addressed by ppp-fix-osize-too-small-errors-when-decoding patch is not fully resolved yet. The size of allocated output buffer is correct, however ...
Ilpo JärvinenIlpo Järvinen
8385cffd223TCP: Fix TCP handling of SACK in bidirectional flows.It's possible that new SACK blocks that should trigger new LOST markings arrive with new data (which previously made is_dupack false). In addition, I think this fixes a case where we get a cumulative ACK with enough SACK blocks to trigger the fast recovery (is_dupack would be false there too). I'm not completely pleased with this solution because readability of the code is somewhat questionabl...
Ilpo JärvinenIlpo Järvinen
783366ad4b2TCP: Fix TCP rate-halving on bidirectional flows.Actually, the ratehalving seems to work too well, as cwnd is reduced on every second ACK even though the packets in flight remains unchanged. Recoveries in a bidirectional flows suffer quite badly because of this, both NewReno and SACK are affected. After this patch, rate halving is performed for ACK only if packets in flight was supposedly changed too. Signed-off-by: Ilpo Järvinen <ilpo.jarv...
David MillerDavid Miller
e061467dc5bTCP: Do not autobind ports for TCP sockets[TCP]: Invoke tcp_sendmsg() directly, do not use inet_sendmsg(). As discovered by Evegniy Polyakov, if we try to sendmsg after a connection reset, we can do incredibly stupid things. The core issue is that inet_sendmsg() tries to autobind the socket, but we should never do that for TCP. Instead we should just go straight into TCP's sendmsg() code which will do all of the necessary state and ...
David MillerDavid Miller
5299059b0c2SPARC64: Fix sparc64 PCI config accesses on sun4u[SPARC64]: Fix sun4u PCI config space accesses on sun4u. Don't provide fake PCI config space for sun4u. Also, put back the funny host controller space handling that at least Sabre needs. You have to read PCI host controller registers at their nature size otherwise you get zeros instead of correct values. Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman ...
David MillerDavid Miller
08acaae698dSPARC64: Fix sparc64 task stack traces.It didn't handle that case at all, and now dump_stack() can be implemented directly as show_stack(current, NULL) Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Herbert XuHerbert Xu
b13778e0927NET: Fix missing rcu unlock in __sock_create()[NET]: Fix unbalanced rcu_read_unlock in __sock_create The recent RCU work created an unbalanced rcu_read_unlock in __sock_create. This patch fixes that. Reported by oleg 123. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Herbert XuHerbert Xu
6ec3b79f45fSNAP: Fix SNAP protocol header accesses.The snap_rcv code reads 5 bytes so we should make sure that we have 5 bytes in the head before proceeding. Based on diagnosis and fix by Evgeniy Polyakov, reported by Alan J. Wylie. Patch also kills the skb->sk assignment before kfree_skb since it's redundant. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroa...
Chuck EbbertChuck Ebbert
8c1bc44eadcNetfilter: Missing Kbuild entry for netfilterAuthor: Chuck Ebbert <cebbert@redhat.com> Add xt_statistic.h to the list of headers to install. Apparently needed to build newer versions of iptables. Signed-off-by: Chuck Ebbert <cebbert@redhat.com> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
David MillerDavid Miller
14d5c15ac1eFix soft-fp underflow handling.The underflow exception cases were wrong. This is one weird area of ieee1754 handling in that the underflow behavior changes based upon whether underflow is enabled in the trap enable mask of the FPU control register. As a specific case the Sparc V9 manual gives us the following description: -------------------- If UFM = 0: Underflow occurs if a nonzero result is tiny and a ...
Ilpo JarvinenIlpo Jarvinen
f7d75b68abdIPv6: Invalid semicolon after if statementAuthor: Ilpo Järvinen <ilpo.jarvinen@helsinki.fi> A similar fix to netfilter from Eric Dumazet inspired me to look around a bit by using some grep/sed stuff as looking for this kind of bugs seemed easy to automate. This is one of them I found where it looks like this semicolon is not valid. Signed-off-by: Ilpo Järvinen <ilpo.jarvinen@helsinki.fi> Signed-off-by: David S. Miller <davem@davemlof...
Wei YongjunWei Yongjun
6f333f6314bIPV6: Fix kernel panic while send SCTP data with IP fragmentsIf ICMP6 message with "Packet Too Big" is received after send SCTP DATA, kernel panic will occur when SCTP DATA is send again. This is because of a bad dest address when call to skb_copy_bits(). The messages sequence is like this: Endpoint A Endpoint B <------- SCTP DATA (size=1432) ICMP6 message -------> (Packet Too Big pmtu=1280) ...
Gerrit RenkerGerrit Renker
fe1cfa1ebe5DCCP: Fix DCCP GFP_KERNEL allocation in atomic contextThis fixes the following bug reported in syslog: [ 4039.051658] BUG: sleeping function called from invalid context at /usr/src/davem-2.6/mm/slab.c:3032 [ 4039.051668] in_atomic():1, irqs_disabled():0 [ 4039.051670] INFO: lockdep is turned off. [ 4039.051674] [<c0104c0f>] show_trace_log_lvl+0x1a/0x30 [ 4039.051687] [<c0104d4d>] show_trace+0x12/0x14 [ 4039.051691] [<c0104d65>] dump_stack+0x16...
Oleg NesterovOleg Nesterov
b0f4f52ccbcsignalfd: make it group-wide, fix posix-timers schedulingWith this patch any thread can dequeue its own private signals via signalfd, even if it was created by another sub-thread. To do so, we pass "current" to dequeue_signal() if the caller is from the same thread group. This also fixes the scheduling of posix timers broken by the previous patch. If the caller doesn't belong to this thread group, we can't handle __SI_TIMER case properly anyway. Pe...
Oleg NesterovOleg Nesterov
68159e50ef1signalfd: fix interaction with posix-timersdequeue_signal: if (__SI_TIMER) { spin_unlock(&tsk->sighand->siglock); do_schedule_next_timer(info); spin_lock(&tsk->sighand->siglock); } Unless tsk == curent, this is absolutely unsafe: nothing prevents tsk from exiting. If signalfd was passed to another process, do_schedule_next_timer() is just wrong. Add yet another "tsk == current" check into dequeue_signal(). This patch fixes a...
Zachary AmsdenZachary Amsden
f24e131c7e0i386: fix lazy mode vmalloc synchronization for paravirtFound this looping Ubuntu installs with VMI. If unlucky enough to hit a vmalloc sync fault during a lazy mode operation (from an IRQ handler for a module which was not yet populated in current page directory, or from inside copy_one_pte, which touches swap_map, and hit in an unused 4M region), the required PDE update would never get flushed, causing an infinite page fault loop. This bug affec...
Jeff DikeJeff Dike
6f157f740ceuml: fix previous request size limit fixThe previous patch which limited the number of sectors in a single request to a COWed device was correct in concept, but the limit was implemented in the wrong place. By putting it in ubd_add, it covered the cases where the COWing was specified on the command line. However, when the command line only has the COW file specified, the fact that it's a COW file isn't known until it's opened, so t...
Stephen HemmingerStephen Hemminger
7405863e916sky2: don't clear phy power bitsThere are special PHY settings available on Yukon EC-U chip that should not get cleared. This should solve mysterious errors on some motherboards (like Gigabyte DS-3). Signed-off-by: Stephen Hemminger <shemminger@linux-foundation.org> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>DS-3
Herbert XuHerbert Xu
d5e756e26a2NET: Share correct feature code between bridging and bonding[NET]: Share correct feature code between bridging and bonding http://bugzilla.kernel.org/show_bug.cgi?id=8797 shows that the bonding driver may produce bogus combinations of the checksum flags and SG/TSO. For example, if you bond devices with NETIF_F_HW_CSUM and NETIF_F_IP_CSUM you'll end up with a bonding device that has neither flag set. If both have TSO then this produces an illegal comb...
Mark FashehMark Fasheh
1db5759e2d2ocfs2: Fix bad source start calculation during kernel writes[PATCH] ocfs2: Fix bad source start calculation during kernel writes For in-kernel writes ocfs2_get_write_source() should be starting the buffer at a page boundary as the math in ocfs2_map_and_write_user_data() will pad it back out to the correct write offset. Instead, we were passing the raw offset, which caused ocfs2_map_and_write_user_data() start too far into the buffer, resulting in corru...
Alexey DobriyanAlexey Dobriyan
a454ef066edTurn off dcache accounting optimizationWith SLUB, page fully filled with objects is not in needed lists, so dcache walking will find and account dentries only in partial pages.
Pavel EmelianovPavel Emelianov
2a0f8a2bc9eSLUB UBC supportPointers on the beancounters are stored in the array pointed by page's additional pointer. Accountable slubs are unmergeable.
Pavel EmelianovPavel Emelianov
cb00ea041d1When a task enters VE it doesn't become the init's children and thus zap_pid_ns_processes() may skip it during the namespace termination.These tasks are to be handled specially. However, we should distinguish entered tasks from those, that were forgotten during the namespace termination.
Pavel EmelianovPavel Emelianov
2dbad56efe7Wire up CONFIG_NO_HZ=yWe choose dummy select_nohz_load_balancer() like in UP or usual HZ case. Logic here looks strange for VCPU case and needs much more thinking. For now, just make sure timer interrupts tick way less often than 1000 Hz in default config.
OpenVZ teamOpenVZ team
23b7a99250elinux-2.6.22-ovz002 released
Alexey DobriyanAlexey Dobriyan
0983bbb5b66Export uts_sysctl_init, uts_sysctl_fini for vzmon
Pavel EmelianovPavel Emelianov
9a5ce9fc90bFix d_root_check() vs pipefs empty dentries interactionIn mainline pipe dentries were made empty "" and ->d_dname() method is called which can't tolerate NULL buffer passed to it by d_root_check() Bug #89197
Alexey DobriyanAlexey Dobriyan
ba9d3b9e3b1Register uts sysctls in VE, tooDue to main sysctl table split, uts ones were registered only on VE0.
Pavel EmelianovPavel Emelianov
c5daa276da6Zap entered into VE tasks before resetting ns reaper.Tasks that appear in VE with vzctl enter/exec do not belong to the namespace's process tree and thus init won't wait them in zap_ns_processes. This may cause a race that these tasks will die after resetting the reaper and the reparenting will oops. So kill them after the regular killer and besides kill the lost tasks. More correctly it should check for tasks that had to but were not killed by ...
Alexey DobriyanAlexey Dobriyan
9a1dca46899[PATCH] userns: don't leak root userroot user was allocated for every new user namespace but was never freed
Alexey DobriyanAlexey Dobriyan
2189c48a12cRevert "Logical refcount loop in ipc ns -> massive leakage"Fixed in mainline, commit bc56bba8f31bd99f350a5ebfd43d50f411b620c7 [PATCH] shm: make sysv ipc shared memory use stacked files
Greg Kroah-HartmanGreg Kroah-Hartman
f742d992d7aLinux 2.6.22.5
David WoodhouseDavid Woodhouse
1d8715b388cJFFS2 locking regression fix.Commit a491486a2087ac3dfc00efb4f838c8d684afaf54 introduced a locking problem in JFFS2 -- we up() the alloc_sem when we weren't previously holding it. This leads to all kinds of fun behaviour later. There was a _reason_ for the if (1 /* alternative path needs testing */ || which the above-mentioned commit removed :) Discovered and debugged by Giulio Fedel <giulio.fedel@andorsystems.com> Sign...
Chuck EbbertChuck Ebbert
dad2f19424ai386: Fix double fault handlerThe new percpu code has apparently broken the doublefault handler when CONFIG_DEBUG_SPINLOCK is set. Doublefault is handled by a hardware task, making the check SPIN_BUG_ON(lock->owner == current, lock, "recursion"); fault because it uses the FS register to access the percpu data for current, and that register is zero in the new TSS. (The trace I saw was on 2.6.20 where it was GS, but...