twx-linux

TWx Linux Repository

Go to file

Qun-Wei Lin 71548fada7 mm: krealloc: Fix MTE false alarm in __do_krealloc commit 704573851b51808b45dae2d62059d1d8189138a2 upstream. This patch addresses an issue introduced by commit 1a83a716ec233 ("mm: krealloc: consider spare memory for __GFP_ZERO") which causes MTE (Memory Tagging Extension) to falsely report a slab-out-of-bounds error. The problem occurs when zeroing out spare memory in __do_krealloc. The original code only considered software-based KASAN and did not account for MTE. It does not reset the KASAN tag before calling memset, leading to a mismatch between the pointer tag and the memory tag, resulting in a false positive. Example of the error: ================================================================== swapper/0: BUG: KASAN: slab-out-of-bounds in __memset+0x84/0x188 swapper/0: Write at addr f4ffff8005f0fdf0 by task swapper/0/1 swapper/0: Pointer tag: [f4], memory tag: [fe] swapper/0: swapper/0: CPU: 4 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.12. swapper/0: Hardware name: MT6991(ENG) (DT) swapper/0: Call trace: swapper/0: dump_backtrace+0xfc/0x17c swapper/0: show_stack+0x18/0x28 swapper/0: dump_stack_lvl+0x40/0xa0 swapper/0: print_report+0x1b8/0x71c swapper/0: kasan_report+0xec/0x14c swapper/0: __do_kernel_fault+0x60/0x29c swapper/0: do_bad_area+0x30/0xdc swapper/0: do_tag_check_fault+0x20/0x34 swapper/0: do_mem_abort+0x58/0x104 swapper/0: el1_abort+0x3c/0x5c swapper/0: el1h_64_sync_handler+0x80/0xcc swapper/0: el1h_64_sync+0x68/0x6c swapper/0: __memset+0x84/0x188 swapper/0: btf_populate_kfunc_set+0x280/0x3d8 swapper/0: __register_btf_kfunc_id_set+0x43c/0x468 swapper/0: register_btf_kfunc_id_set+0x48/0x60 swapper/0: register_nf_nat_bpf+0x1c/0x40 swapper/0: nf_nat_init+0xc0/0x128 swapper/0: do_one_initcall+0x184/0x464 swapper/0: do_initcall_level+0xdc/0x1b0 swapper/0: do_initcalls+0x70/0xc0 swapper/0: do_basic_setup+0x1c/0x28 swapper/0: kernel_init_freeable+0x144/0x1b8 swapper/0: kernel_init+0x20/0x1a8 swapper/0: ret_from_fork+0x10/0x20 ================================================================== Fixes: 1a83a716ec233 ("mm: krealloc: consider spare memory for __GFP_ZERO") Signed-off-by: Qun-Wei Lin <qun-wei.lin@mediatek.com> Acked-by: David Rientjes <rientjes@google.com> Signed-off-by: Vlastimil Babka <vbabka@suse.cz> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2024-11-17 15:08:58 +01:00
arch	LoongArch: Use "Exception return address" to comment ERA	2024-11-17 15:08:58 +01:00
block	block: Fix elevator_get_default() checking for NULL q->tag_set	2024-11-17 15:08:56 +01:00
certs	certs: Reference revocation list for all keyrings	2023-08-17 20:12:41 +00:00
crypto	crypto: api - Fix liveliness check in crypto_alg_tested	2024-11-17 15:08:56 +01:00
Documentation	dt-bindings: net: xlnx,axi-ethernet: Correct phy-mode property value	2024-11-14 13:19:30 +01:00
drivers	net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition	2024-11-17 15:08:58 +01:00
fs	fs: Fix uninitialized value issue in from_kuid and from_kgid	2024-11-17 15:08:58 +01:00
include	bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx	2024-11-17 15:08:57 +01:00
init	rcu-tasks: Initialize data to eliminate RCU-tasks/do_exit() deadlocks	2024-11-08 16:28:22 +01:00
io_uring	io_uring: fix possible deadlock in io_register_iowq_max_workers()	2024-11-17 15:08:58 +01:00
ipc	sysctl: treewide: drop unused argument ctl_table_root::set_ownership(table)	2024-08-11 12:47:13 +02:00
kernel	bpf: Check validity of link->type in bpf_link_show_fdinfo()	2024-11-17 15:08:58 +01:00
lib	x86/traps: Enable UBSAN traps on x86	2024-11-08 16:28:26 +01:00
LICENSES	LICENSES: Add the copyleft-next-0.3.1 license	2022-11-08 15:44:01 +01:00
mm	mm: krealloc: Fix MTE false alarm in __do_krealloc	2024-11-17 15:08:58 +01:00
net	bpf: Fix mismatched RCU unlock flavour in bpf_out_neigh_v6	2024-11-17 15:08:57 +01:00
rust	rust: sync: require `T: Sync` for `LockedBy::access`	2024-10-10 11:57:44 +02:00
samples	samples/bpf: Fix compilation errors with cf-protection option	2024-10-04 16:29:19 +02:00
scripts	kconfig: qconf: fix buffer overflow in debug links	2024-10-10 11:58:01 +02:00
security	security/keys: fix slab-out-of-bounds in key_task_permission	2024-11-14 13:19:30 +01:00
sound	ASoC: fsl_micfil: Add sample rate constraint	2024-11-17 15:08:58 +01:00
tools	selftests/bpf: Verify that sync_linked_regs preserves subreg_def	2024-11-17 15:08:56 +01:00
usr	initramfs: Encode dependency on KBUILD_BUILD_TIMESTAMP	2023-06-06 17:54:49 +09:00
virt	KVM: Use dedicated mutex to protect kvm_usage_count to avoid deadlock	2024-10-04 16:29:47 +02:00
.clang-format	iommu: Add for_each_group_device()	2023-05-23 08:15:51 +02:00
.cocciconfig
.get_maintainer.ignore
.gitattributes	.gitattributes: set diff driver for Rust source code files	2023-05-31 17:48:25 +02:00
.gitignore	Remove *.orig pattern from .gitignore	2024-10-04 16:29:44 +02:00
.mailmap	20 hotfixes. 12 are cc:stable and the remainder address post-6.5 issues	2023-10-24 09:52:16 -10:00
.rustfmt.toml
COPYING
CREDITS	USB: Remove Wireless USB and UWB documentation	2023-08-09 14:17:32 +02:00
Kbuild	Kbuild updates for v6.1	2022-10-10 12:00:45 -07:00
Kconfig
MAINTAINERS	membarrier: riscv: Add full memory barrier in switch_mm()	2024-09-12 11:11:45 +02:00
Makefile	Linux 6.6.61	2024-11-14 13:19:41 +01:00
README

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.