Ubuntu
linux package

Commit 85d07c556216 ("USB: core: Unite old scheme and new scheme
descriptor reads") altered the way USB devices are enumerated
following detection, and in the process it messed up the
initialization of SuperSpeed (or faster) devices:

[ 31.650759] usb 2-1: new SuperSpeed Plus Gen 2x1 USB device number 2 using xhci_hcd
[ 31.663107] usb 2-1: device descriptor read/8, error -71
[ 31.952697] usb 2-1: new SuperSpeed Plus Gen 2x1 USB device number 3 using xhci_hcd
[ 31.965122] usb 2-1: device descriptor read/8, error -71
[ 32.080991] usb usb2-port1: attempt power cycle
...

The problem was caused by the commit forgetting that in SuperSpeed or
faster devices, the device descriptor uses a logarithmic encoding of
the bMaxPacketSize0 value. (For some reason I thought the 255 case in
the switch statement was meant for these devices, but it isn't -- it
was meant for Wireless USB and is no longer needed.)

We can fix the oversight by testing for buf->bMaxPacketSize0 = 9
(meaning 512, the actual maxpacket size for ep0 on all SuperSpeed
devices) and straightening out the logic that checks and adjusts our
initial guesses of the maxpacket value.

Reported-and-tested-by: Thinh Nguyen <email address hidden>
Closes: https://<email address hidden>/
Signed-off-by: Alan Stern <email address hidden>
Fixes: 85d07c556216 ("USB: core: Unite old scheme and new scheme descriptor reads")
Link: https://<email address hidden>
Signed-off-by: Greg Kroah-Hartman <email address hidden>

(cherry picked from commit 59cf445754566984fd55af19ba7146c76e6627bc)
Signed-off-by: Kai-Heng Feng <email address hidden>
Acked-by: Stefan Bader <email address hidden>
Acked-by: Roxana Nicolescu <email address hidden>
Signed-off-by: Stefan Bader <email address hidden>

6ae0f00... by Stefan Bader on 2023-11-14

UBUNTU: Start new release

Ignore: yes
Signed-off-by: Stefan Bader <email address hidden>

9250ebb... by Stefan Bader on 2023-10-30

UBUNTU: Ubuntu-5.15.0-90.100

Signed-off-by: Stefan Bader <email address hidden>

46f2608... by Stefan Bader on 2023-10-30

UBUNTU: link-to-tracker: update tracking bug

BugLink: https://bugs.launchpad.net/bugs/2041603
Properties: no-test-build
Signed-off-by: Stefan Bader <email address hidden>

a53e432... by Christopher Bednarz <email address hidden> on 2023-10-28

RDMA/irdma: Prevent zero-length STAG registration

Currently irdma allows zero-length STAGs to be programmed in HW during
the kernel mode fast register flow. Zero-length MR or STAG registration
disable HW memory length checks.

Improve gaps in bounds checking in irdma by preventing zero-length STAG or
MR registrations except if the IB_PD_UNSAFE_GLOBAL_RKEY is set.

This addresses the disclosure CVE-2023-25775.

Fixes: b48c24c2d710 ("RDMA/irdma: Implement device supported verb APIs")
Signed-off-by: Christopher Bednarz <email address hidden>
Signed-off-by: Shiraz Saleem <email address hidden>
Link: https://<email address hidden>
Signed-off-by: Leon Romanovsky <email address hidden>

CVE-2023-25775
(cherry picked from commit bb6d73d9add68ad270888db327514384dfa44958)
Signed-off-by: Cengiz Can <email address hidden>
Acked-by: Stefan Bader <email address hidden>
Acked-by: Roxana Nicolescu <email address hidden>
Signed-off-by: Stefan Bader <email address hidden>

d4f95c0... by Shiraz Saleem <email address hidden> on 2023-10-28

RDMA/irdma: Remove excess error variables

As irdma_status_code is replaced with an int, there is no need for two
variables to hold error codes.

Remove the excess variable in functions where this occurs. Also, remove
any redundant initializations which are no longer needed.

Link: https://<email address hidden>
Signed-off-by: Shiraz Saleem <email address hidden>
Signed-off-by: Jason Gunthorpe <email address hidden>

CVE-2023-25775
(cherry picked from commit 2322d17abf0a6c90251e8c0e419620c537e2875f)
[cengizcan: prerequisite commit]
Signed-off-by: Cengiz Can <email address hidden>
Acked-by: Stefan Bader <email address hidden>
Acked-by: Roxana Nicolescu <email address hidden>
Signed-off-by: Stefan Bader <email address hidden>

82596d9... by Shiraz Saleem <email address hidden> on 2023-10-28

RDMA/irdma: Remove enum irdma_status_code

Replace use of custom irdma_status_code with linux error codes.

Remove enum irdma_status_code and header in which its defined.

Link: https://<email address hidden>
Signed-off-by: Shiraz Saleem <email address hidden>
Signed-off-by: Jason Gunthorpe <email address hidden>

CVE-2023-25775
(backported fromm commit 2c4b14ea9507106c0599349fbb8efdeb3b7aa840)
[cengizcan: prerequisite commit]
[cengizcan: adjust context of changes that happen on irdma_sc_qp_create,
irdma_sc_cq_create, irdma_sc_ceq_init and irdma_sc_ccq_init in ctrl.c]
Signed-off-by: Cengiz Can <email address hidden>
Acked-by: Stefan Bader <email address hidden>
Acked-by: Roxana Nicolescu <email address hidden>
Signed-off-by: Stefan Bader <email address hidden>

27cc04b... by Zhu Yanjun <email address hidden> on 2023-10-28

RDMA/irdma: optimize rx path by removing unnecessary copy

In the function irdma_post_recv, the function irdma_copy_sg_list is
not needed since the struct irdma_sge and ib_sge have the similar
member variables. The struct irdma_sge can be replaced with the
struct ib_sge totally.

This can increase the rx performance of irdma.

Link: https://<email address hidden>
Signed-off-by: Zhu Yanjun <email address hidden>
Reviewed-by: Shiraz Saleem <email address hidden>
Signed-off-by: Jason Gunthorpe <email address hidden>

CVE-2023-25775
(cherry picked from commit 9ed8110c9b298cf143a8abc6dab975547da72888)
[cengizcan: prerequisite commit]
Signed-off-by: Cengiz Can <email address hidden>
Acked-by: Stefan Bader <email address hidden>
Acked-by: Roxana Nicolescu <email address hidden>
Signed-off-by: Stefan Bader <email address hidden>

Ubuntulinux package

~0xff07/ubuntu/+source/linux/+git/jammy:master-prep

Branch merges

Related source package recipes

Related snap packages

Related charm recipes

Branch information

Recent commits

Ubuntu
linux package