- Kernel - mailweb.openeuler.org

[PATCH OLK-6.6 v2 0/2] mm: Fix shmem build and numa fault counting errors
by Ze Zuo 17 Nov '25

17 Nov '25

1. Fix CONFIG_SWAP build errors introduced by ed205f43 ("mm: convert swap_cluster_readahead and swap_vma_readahead to return a folio") 2. Fix numa fault counting error introduced by 3bfa35c ("mm/numa: no task_numa_fault() call if PTE is changed") v1 -> v2: - add inline for swap_cluster_readahead. - fix some commit message for checkformat. Ze Zuo (2): mm: fix shmem build errors with CONFIG_SWAP disable mm: fix nr_pages counting for folio in task_numa_fault mm/memory.c | 4 ++-- mm/swap.h | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) -- 2.25.1

2 3

[PATCH OLK-6.6] uio_hv_generic: Let userspace take care of interrupt mask
by Xia Fukun 17 Nov '25

17 Nov '25

From: Naman Jain <namjain(a)linux.microsoft.com> stable inclusion from stable-v6.6.112 commit 2af39ab5e6dc46b835a52e80a22d0cad430985e3 category: bugfix bugzilla: https://gitee.com/src-openeuler/kernel/issues/ID3WG6 CVE: CVE-2025-40048 Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id… -------------------------------- commit b15b7d2a1b09ef5428a8db260251897405a19496 upstream. Remove the logic to set interrupt mask by default in uio_hv_generic driver as the interrupt mask value is supposed to be controlled completely by the user space. If the mask bit gets changed by the driver, concurrently with user mode operating on the ring, the mask bit may be set when it is supposed to be clear, and the user-mode driver will miss an interrupt which will cause a hang. For eg- when the driver sets inbound ring buffer interrupt mask to 1, the host does not interrupt the guest on the UIO VMBus channel. However, setting the mask does not prevent the host from putting a message in the inbound ring buffer. So let’s assume that happens, the host puts a message into the ring buffer but does not interrupt. Subsequently, the user space code in the guest sets the inbound ring buffer interrupt mask to 0, saying “Hey, I’m ready for interrupts”. User space code then calls pread() to wait for an interrupt. Then one of two things happens: * The host never sends another message. So the pread() waits forever. * The host does send another message. But because there’s already a message in the ring buffer, it doesn’t generate an interrupt. This is the correct behavior, because the host should only send an interrupt when the inbound ring buffer transitions from empty to not-empty. Adding an additional message to a ring buffer that is not empty is not supposed to generate an interrupt on the guest. Since the guest is waiting in pread() and not removing messages from the ring buffer, the pread() waits forever. This could be easily reproduced in hv_fcopy_uio_daemon if we delay setting interrupt mask to 0. Similarly if hv_uio_channel_cb() sets the interrupt_mask to 1, there’s a race condition. Once user space empties the inbound ring buffer, but before user space sets interrupt_mask to 0, the host could put another message in the ring buffer but it wouldn’t interrupt. Then the next pread() would hang. Fix these by removing all instances where interrupt_mask is changed, while keeping the one in set_event() unchanged to enable userspace control the interrupt mask by writing 0/1 to /dev/uioX. Fixes: 95096f2fbd10 ("uio-hv-generic: new userspace i/o driver for VMBus") Suggested-by: John Starks <jostarks(a)microsoft.com> Signed-off-by: Naman Jain <namjain(a)linux.microsoft.com> Cc: stable(a)vger.kernel.org Reviewed-by: Michael Kelley <mhklinux(a)outlook.com> Reviewed-by: Long Li <longli(a)microsoft.com> Reviewed-by: Tianyu Lan <tiala(a)microsoft.com> Tested-by: Tianyu Lan <tiala(a)microsoft.com> Link: https://lore.kernel.org/r/20250828044200.492030-1-namjain@linux.microsoft.c… Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Signed-off-by: Xia Fukun <xiafukun(a)huawei.com> --- drivers/uio/uio_hv_generic.c | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/drivers/uio/uio_hv_generic.c b/drivers/uio/uio_hv_generic.c index a2c7abf8c289..7301da7244e8 100644 --- a/drivers/uio/uio_hv_generic.c +++ b/drivers/uio/uio_hv_generic.c @@ -96,7 +96,6 @@ static void hv_uio_channel_cb(void *context) struct hv_device *hv_dev = chan->device_obj; struct hv_uio_private_data *pdata = hv_get_drvdata(hv_dev); - chan->inbound.ring_buffer->interrupt_mask = 1; virt_mb(); uio_event_notify(&pdata->info); @@ -173,8 +172,6 @@ hv_uio_new_channel(struct vmbus_channel *new_sc) return; } - /* Disable interrupts on sub channel */ - new_sc->inbound.ring_buffer->interrupt_mask = 1; set_channel_read_mode(new_sc, HV_CALL_ISR); ret = sysfs_create_bin_file(&new_sc->kobj, &ring_buffer_bin_attr); @@ -218,9 +215,7 @@ hv_uio_open(struct uio_info *info, struct inode *inode) ret = vmbus_connect_ring(dev->channel, hv_uio_channel_cb, dev->channel); - if (ret == 0) - dev->channel->inbound.ring_buffer->interrupt_mask = 1; - else + if (ret) atomic_dec(&pdata->refcnt); return ret; -- 2.34.1

2 1

[PATCH OLK-5.10] usb: dwc3: gadget: check that event count does not exceed event buffer length
by Xia Fukun 17 Nov '25

17 Nov '25

From: Frode Isaksen <frode(a)meta.com> stable inclusion from stable-v5.10.237 commit b43225948b231b3f331194010f84512bee4d9f59 category: bugfix bugzilla: https://gitee.com/src-openeuler/kernel/issues/IC6BOI CVE: CVE-2025-37810 Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id… -------------------------------- commit 63ccd26cd1f6600421795f6ca3e625076be06c9f upstream. The event count is read from register DWC3_GEVNTCOUNT. There is a check for the count being zero, but not for exceeding the event buffer length. Check that event count does not exceed event buffer length, avoiding an out-of-bounds access when memcpy'ing the event. Crash log: Unable to handle kernel paging request at virtual address ffffffc0129be000 pc : __memcpy+0x114/0x180 lr : dwc3_check_event_buf+0xec/0x348 x3 : 0000000000000030 x2 : 000000000000dfc4 x1 : ffffffc0129be000 x0 : ffffff87aad60080 Call trace: __memcpy+0x114/0x180 dwc3_interrupt+0x24/0x34 Signed-off-by: Frode Isaksen <frode(a)meta.com> Fixes: 72246da40f37 ("usb: Introduce DesignWare USB3 DRD Driver") Cc: stable <stable(a)kernel.org> Acked-by: Thinh Nguyen <Thinh.Nguyen(a)synopsys.com> Link: https://lore.kernel.org/r/20250403072907.448524-1-fisaksen@baylibre.com Signed-off-by: Greg Kroah-Hartman <gregkh(a)linuxfoundation.org> Signed-off-by: Xia Fukun <xiafukun(a)huawei.com> --- drivers/usb/dwc3/gadget.c | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/drivers/usb/dwc3/gadget.c b/drivers/usb/dwc3/gadget.c index 550eae39a63d..f29c6ecef044 100644 --- a/drivers/usb/dwc3/gadget.c +++ b/drivers/usb/dwc3/gadget.c @@ -3856,6 +3856,12 @@ static irqreturn_t dwc3_check_event_buf(struct dwc3_event_buffer *evt) if (!count) return IRQ_NONE; + if (count > evt->length) { + dev_err_ratelimited(dwc->dev, "invalid count(%u) > evt->length(%u)\n", + count, evt->length); + return IRQ_NONE; + } + evt->count = count; evt->flags |= DWC3_EVENT_PENDING; -- 2.34.1

2 1

[openeuler:OLK-6.6 3198/3198] mm/memory.c:2805: warning: Function parameter or member 'page_shift' not described in '__remap_pfn_range'
by kernel test robot 17 Nov '25

17 Nov '25

tree: https://gitee.com/openeuler/kernel.git OLK-6.6 head: ebdf6593446d169605a079430b44abc212c60eb6 commit: 9058fc5efa4aa44340385ca69fb4ef016931af50 [3198/3198] !18961 mm: add huge pfnmap support for remap_pfn_range() config: x86_64-allnoconfig (https://download.01.org/0day-ci/archive/20251117/202511171556.lxjrabpR-lkp@…) compiler: clang version 20.1.8 (https://github.com/llvm/llvm-project 87f0227cb60147a26a1eeb4fb06e3b505e9c7261) reproduce (this is a W=1 build): (https://download.01.org/0day-ci/archive/20251117/202511171556.lxjrabpR-lkp@…) If you fix the issue in a separate patch/commit (i.e. not just a new version of the same patch/commit), kindly add following tags | Reported-by: kernel test robot <lkp(a)intel.com> | Closes: https://lore.kernel.org/oe-kbuild-all/202511171556.lxjrabpR-lkp@intel.com/ All warnings (new ones prefixed by >>): >> mm/memory.c:2805: warning: Function parameter or member 'page_shift' not described in '__remap_pfn_range' >> mm/memory.c:2805: warning: expecting prototype for remap_pfn_range(). Prototype was for __remap_pfn_range() instead vim +2805 mm/memory.c 923e224a12462d Yin Tirui 2025-11-13 2789 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2790 /** 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2791 * remap_pfn_range - remap kernel memory to userspace 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2792 * @vma: user vma to map to 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2793 * @addr: target page aligned user address to start at 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2794 * @pfn: page frame number of kernel physical memory address 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2795 * @size: size of mapping area 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2796 * @prot: page protection flags for this mapping 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2797 * 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2798 * Note: this is only safe if the mm semaphore is held when called. 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2799 * 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2800 * Return: %0 on success, negative error code otherwise. 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2801 */ 923e224a12462d Yin Tirui 2025-11-13 2802 int __remap_pfn_range(struct vm_area_struct *vma, unsigned long addr, 923e224a12462d Yin Tirui 2025-11-13 2803 unsigned long pfn, unsigned long size, pgprot_t prot, 923e224a12462d Yin Tirui 2025-11-13 2804 unsigned int page_shift) 74ffa5a3e68504 Christoph Hellwig 2021-04-29 @2805 { 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2806 int err; 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2807 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2808 err = track_pfn_remap(vma, &prot, pfn, addr, PAGE_ALIGN(size)); 2ab640379a0ab4 venkatesh.pallipadi(a)intel.com 2008-12-18 2809 if (err) 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2810 return -EINVAL; 2ab640379a0ab4 venkatesh.pallipadi(a)intel.com 2008-12-18 2811 923e224a12462d Yin Tirui 2025-11-13 2812 err = __remap_pfn_range_notrack(vma, addr, pfn, size, prot, page_shift); 74ffa5a3e68504 Christoph Hellwig 2021-04-29 2813 if (err) 68f48381d7fdd1 Suren Baghdasaryan 2023-01-26 2814 untrack_pfn(vma, pfn, PAGE_ALIGN(size), true); ^1da177e4c3f41 Linus Torvalds 2005-04-16 2815 return err; ^1da177e4c3f41 Linus Torvalds 2005-04-16 2816 } 923e224a12462d Yin Tirui 2025-11-13 2817 :::::: The code at line 2805 was first introduced by commit :::::: 74ffa5a3e68504dd289135b1cf0422c19ffb3f2e mm: add remap_pfn_range_notrack :::::: TO: Christoph Hellwig <hch(a)lst.de> :::::: CC: Linus Torvalds <torvalds(a)linux-foundation.org> -- 0-DAY CI Kernel Test Service https://github.com/intel/lkp-tests/wiki

1 0

[PATCH OLK-6.6 0/8] xsched: XCU Partition
by Zicheng Qu 17 Nov '25

17 Nov '25

Alekseev Dmitry (2): xsched: Add XCU control group implementation and its backend in xsched CFS xsched: Add support for CFS quota for cgroups Konstantin Meskhidze (6): xsched: Add base vstream support xcu: Add base NPU driver support xsched: Introduce vstream management xsched: Add basic scheduler core support xsched: Add xsched RT class xsched: Add xsched CFS class arch/arm/include/uapi/asm/unistd.h | 1 + arch/arm64/configs/openeuler_defconfig | 1 + arch/powerpc/include/uapi/asm/unistd.h | 1 + arch/x86/configs/openeuler_defconfig | 1 + arch/x86/entry/syscalls/syscall_64.tbl | 2 +- arch/x86/include/uapi/asm/unistd.h | 1 + drivers/Makefile | 1 + drivers/xcu/Makefile | 2 + drivers/xcu/xcu_group.c | 380 ++++++++++++ include/linux/cgroup_subsys.h | 4 + include/linux/syscalls.h | 2 + include/linux/vstream.h | 91 +++ include/linux/xcu_group.h | 96 +++ include/linux/xsched.h | 514 ++++++++++++++++ include/uapi/asm-generic/unistd.h | 6 +- include/uapi/linux/xcu_vstream.h | 77 +++ init/Kconfig | 1 + kernel/Makefile | 1 + kernel/cgroup/cgroup.c | 2 +- kernel/xsched/Kconfig | 85 +++ kernel/xsched/Makefile | 7 + kernel/xsched/cfs.c | 237 ++++++++ kernel/xsched/cfs_quota.c | 98 ++++ kernel/xsched/cgroup.c | 775 +++++++++++++++++++++++++ kernel/xsched/core.c | 526 +++++++++++++++++ kernel/xsched/rt.c | 281 +++++++++ kernel/xsched/vstream.c | 674 +++++++++++++++++++++ 27 files changed, 3863 insertions(+), 4 deletions(-) create mode 100644 drivers/xcu/Makefile create mode 100644 drivers/xcu/xcu_group.c create mode 100644 include/linux/vstream.h create mode 100644 include/linux/xcu_group.h create mode 100644 include/linux/xsched.h create mode 100644 include/uapi/linux/xcu_vstream.h create mode 100644 kernel/xsched/Kconfig create mode 100644 kernel/xsched/Makefile create mode 100644 kernel/xsched/cfs.c create mode 100644 kernel/xsched/cfs_quota.c create mode 100644 kernel/xsched/cgroup.c create mode 100644 kernel/xsched/core.c create mode 100644 kernel/xsched/rt.c create mode 100644 kernel/xsched/vstream.c -- 2.34.1

2 9

[openeuler:OLK-6.6 3198/3198] mm/memory.c:2802:5: warning: no previous prototype for '__remap_pfn_range'
by kernel test robot 17 Nov '25

17 Nov '25

tree: https://gitee.com/openeuler/kernel.git OLK-6.6 head: ebdf6593446d169605a079430b44abc212c60eb6 commit: 923e224a12462d640fa37f3069c6bfafd378ac3b [3198/3198] mm: introduce remap_pfn_range_try_pmd() for PMD-level hugepage mapping config: arm64-allnoconfig (https://download.01.org/0day-ci/archive/20251117/202511171413.zOn7Hte0-lkp@…) compiler: aarch64-linux-gcc (GCC) 15.1.0 reproduce (this is a W=1 build): (https://download.01.org/0day-ci/archive/20251117/202511171413.zOn7Hte0-lkp@…) If you fix the issue in a separate patch/commit (i.e. not just a new version of the same patch/commit), kindly add following tags | Reported-by: kernel test robot <lkp(a)intel.com> | Closes: https://lore.kernel.org/oe-kbuild-all/202511171413.zOn7Hte0-lkp@intel.com/ All warnings (new ones prefixed by >>): In file included from mm/memory.c:68: include/linux/migrate.h:102:9: error: expected identifier or '(' before '{' token 102 | { return -EINVAL; } | ^ >> mm/memory.c:2802:5: warning: no previous prototype for '__remap_pfn_range' [-Wmissing-prototypes] 2802 | int __remap_pfn_range(struct vm_area_struct *vma, unsigned long addr, | ^~~~~~~~~~~~~~~~~ mm/memory.c: In function 'do_numa_page': mm/memory.c:5614:24: warning: variable 'nr_pages' set but not used [-Wunused-but-set-variable] 5614 | int flags = 0, nr_pages; | ^~~~~~~~ include/linux/migrate.h: At top level: include/linux/migrate.h:98:19: warning: 'isolate_and_migrate_folios' declared 'static' but never defined [-Wunused-function] 98 | static inline int isolate_and_migrate_folios(struct folio **folios, unsigned int nr_folios, | ^~~~~~~~~~~~~~~~~~~~~~~~~~ Kconfig warnings: (for reference only) WARNING: unmet direct dependencies detected for ARCH_SUPPORTS_SCHED_SOFT_QUOTA Depends on [n]: CGROUPS [=n] Selected by [y]: - ARM64 [=y] WARNING: unmet direct dependencies detected for HALTPOLL_CPUIDLE Depends on [n]: CPU_IDLE [=n] && ARCH_CPUIDLE_HALTPOLL [=y] && ARCH_HAS_OPTIMIZED_POLL [=y] Selected by [y]: - ARM64 [=y] vim +/__remap_pfn_range +2802 mm/memory.c 2789 2790 /** 2791 * remap_pfn_range - remap kernel memory to userspace 2792 * @vma: user vma to map to 2793 * @addr: target page aligned user address to start at 2794 * @pfn: page frame number of kernel physical memory address 2795 * @size: size of mapping area 2796 * @prot: page protection flags for this mapping 2797 * 2798 * Note: this is only safe if the mm semaphore is held when called. 2799 * 2800 * Return: %0 on success, negative error code otherwise. 2801 */ > 2802 int __remap_pfn_range(struct vm_area_struct *vma, unsigned long addr, 2803 unsigned long pfn, unsigned long size, pgprot_t prot, 2804 unsigned int page_shift) 2805 { 2806 int err; 2807 2808 err = track_pfn_remap(vma, &prot, pfn, addr, PAGE_ALIGN(size)); 2809 if (err) 2810 return -EINVAL; 2811 2812 err = __remap_pfn_range_notrack(vma, addr, pfn, size, prot, page_shift); 2813 if (err) 2814 untrack_pfn(vma, pfn, PAGE_ALIGN(size), true); 2815 return err; 2816 } 2817 -- 0-DAY CI Kernel Test Service https://github.com/intel/lkp-tests/wiki

1 0

[openeuler:OLK-6.6 3198/3198] mm/memory.c:2802:5: warning: no previous prototype for function '__remap_pfn_range'
by kernel test robot 17 Nov '25

17 Nov '25

tree: https://gitee.com/openeuler/kernel.git OLK-6.6 head: 9058fc5efa4aa44340385ca69fb4ef016931af50 commit: 923e224a12462d640fa37f3069c6bfafd378ac3b [3198/3198] mm: introduce remap_pfn_range_try_pmd() for PMD-level hugepage mapping config: x86_64-allnoconfig (https://download.01.org/0day-ci/archive/20251117/202511171230.PQsrWhhz-lkp@…) compiler: clang version 20.1.8 (https://github.com/llvm/llvm-project 87f0227cb60147a26a1eeb4fb06e3b505e9c7261) reproduce (this is a W=1 build): (https://download.01.org/0day-ci/archive/20251117/202511171230.PQsrWhhz-lkp@…) If you fix the issue in a separate patch/commit (i.e. not just a new version of the same patch/commit), kindly add following tags | Reported-by: kernel test robot <lkp(a)intel.com> | Closes: https://lore.kernel.org/oe-kbuild-all/202511171230.PQsrWhhz-lkp@intel.com/ All warnings (new ones prefixed by >>): In file included from mm/memory.c:68: include/linux/migrate.h:102:2: error: expected identifier or '(' 102 | { return -EINVAL; } | ^ >> mm/memory.c:2802:5: warning: no previous prototype for function '__remap_pfn_range' [-Wmissing-prototypes] 2802 | int __remap_pfn_range(struct vm_area_struct *vma, unsigned long addr, | ^ mm/memory.c:2802:1: note: declare 'static' if the function is not intended to be used outside of this translation unit 2802 | int __remap_pfn_range(struct vm_area_struct *vma, unsigned long addr, | ^ | static mm/memory.c:5614:17: warning: variable 'nr_pages' set but not used [-Wunused-but-set-variable] 5614 | int flags = 0, nr_pages; | ^ 2 warnings and 1 error generated. vim +/__remap_pfn_range +2802 mm/memory.c 2789 2790 /** 2791 * remap_pfn_range - remap kernel memory to userspace 2792 * @vma: user vma to map to 2793 * @addr: target page aligned user address to start at 2794 * @pfn: page frame number of kernel physical memory address 2795 * @size: size of mapping area 2796 * @prot: page protection flags for this mapping 2797 * 2798 * Note: this is only safe if the mm semaphore is held when called. 2799 * 2800 * Return: %0 on success, negative error code otherwise. 2801 */ > 2802 int __remap_pfn_range(struct vm_area_struct *vma, unsigned long addr, 2803 unsigned long pfn, unsigned long size, pgprot_t prot, 2804 unsigned int page_shift) 2805 { 2806 int err; 2807 2808 err = track_pfn_remap(vma, &prot, pfn, addr, PAGE_ALIGN(size)); 2809 if (err) 2810 return -EINVAL; 2811 2812 err = __remap_pfn_range_notrack(vma, addr, pfn, size, prot, page_shift); 2813 if (err) 2814 untrack_pfn(vma, pfn, PAGE_ALIGN(size), true); 2815 return err; 2816 } 2817 -- 0-DAY CI Kernel Test Service https://github.com/intel/lkp-tests/wiki

1 0

[PATCH OLK-6.6 v5 00/48] fuse:io_uring: support fuse over io_uring
by Long Li 17 Nov '25

17 Nov '25

v1 -> v2: Fix some build error for io_uring patchs. v2 -> v3: Modify kabi fixed patchs format v3 -> v4: Enable CONFIG_FUSE_IO_URING v4 -> v5: Fix patch commit message format Bernd Schubert (19): fuse: rename to fuse_dev_end_requests and make non-static fuse: Move fuse_get_dev to header file fuse: Move request bits fuse: Add fuse-io-uring design documentation fuse: make args->in_args[0] to be always the header fuse: {io-uring} Handle SQEs - register commands fuse: Make fuse_copy non static fuse: Add fuse-io-uring handling into fuse_copy fuse: {io-uring} Make hash-list req unique finding functions non-static fuse: Add io-uring sqe commit and fetch support fuse: {io-uring} Handle teardown of ring entries fuse: {io-uring} Make fuse_dev_queue_{interrupt,forget} non-static fuse: Allow to queue fg requests through io-uring fuse: Allow to queue bg requests through io-uring fuse: {io-uring} Prevent mount point hang on fuse-server termination fuse: block request allocation until io-uring init is complete fuse: enable fuse-over-io-uring fuse: prevent disabling io-uring on active connections fuse: {io-uring} Fix a possible req cancellation race Jens Axboe (1): io_uring: remove dead struct io_submit_state member Joanne Koong (2): fuse: fix uring race condition for null dereference of fc fuse: remove unneeded atomic set in uring creation Long Li (5): io_uring: fix kabi broken in struct io_tw_state io_uring: fix kabi broken in struct io_ring_ctx io_uring: fix kabi broken in struct io_submit_state io_uring: fix kabi broken for header file changed openeuler_defconfig: enable CONFIG_FUSE_IO_URING by default Luis Henriques (2): fuse: fix possible deadlock if rings are never initialized fuse: removed unused function fuse_uring_create() from header Ming Lei (3): io_uring: retain top 8bits of uring_cmd flags for kernel internal use io_uring: cancelable uring_cmd io_uring: kill dead code in io_req_complete_post Pavel Begunkov (16): io_uring: split out cmd api into a separate header io_uring/cmd: inline io_uring_cmd_do_in_task_lazy io_uring/cmd: expose iowq to cmds io_uring/cmd: give inline space in request to cmds io_uring/cmd: move io_uring_try_cancel_uring_cmd() io_uring/cmd: kill one issue_flags to tw conversion io_uring/cmd: fix tw <-> issue_flags conversion io_uring/cmd: document some uring_cmd related helpers io_uring: force tw ctx locking io_uring: remove struct io_tw_state::locked io_uring: refactor io_fill_cqe_req_aux io_uring: get rid of intermediate aux cqe caches io_uring: remove current check from complete_post io_uring: refactor io_req_complete_post() io_uring: clean up io_lockdep_assert_cq_locked io_uring/cmd: let cmds to know about dying task Documentation/filesystems/fuse-io-uring.rst | 99 ++ Documentation/filesystems/index.rst | 1 + MAINTAINERS | 1 + arch/arm64/configs/openeuler_defconfig | 1 + arch/x86/configs/openeuler_defconfig | 1 + drivers/block/ublk_drv.c | 2 +- drivers/nvme/host/ioctl.c | 2 +- fs/fuse/Kconfig | 12 + fs/fuse/Makefile | 1 + fs/fuse/dax.c | 11 +- fs/fuse/dev.c | 174 ++- fs/fuse/dev_uring.c | 1326 +++++++++++++++++++ fs/fuse/dev_uring_i.h | 205 +++ fs/fuse/dir.c | 32 +- fs/fuse/fuse_dev_i.h | 69 + fs/fuse/fuse_i.h | 35 +- fs/fuse/inode.c | 14 +- fs/fuse/xattr.c | 7 +- include/linux/io_uring.h | 73 +- include/linux/io_uring/cmd.h | 140 ++ include/linux/io_uring_types.h | 7 +- include/uapi/linux/fuse.h | 77 +- include/uapi/linux/io_uring.h | 5 +- io_uring/io_uring.c | 212 +-- io_uring/io_uring.h | 34 +- io_uring/net.c | 6 +- io_uring/poll.c | 3 +- io_uring/refs.h | 7 + io_uring/rw.c | 8 +- io_uring/timeout.c | 8 +- io_uring/uring_cmd.c | 114 +- io_uring/uring_cmd.h | 3 + security/selinux/hooks.c | 2 +- security/smack/smack_lsm.c | 2 +- 34 files changed, 2315 insertions(+), 379 deletions(-) create mode 100644 Documentation/filesystems/fuse-io-uring.rst create mode 100644 fs/fuse/dev_uring.c create mode 100644 fs/fuse/dev_uring_i.h create mode 100644 fs/fuse/fuse_dev_i.h create mode 100644 include/linux/io_uring/cmd.h -- 2.39.2

2 49

[PATCH OLK-6.6 0/8] xsched: XCU Partition
by Zicheng Qu 17 Nov '25

17 Nov '25

Alekseev Dmitry (2): xsched: Add XCU control group implementation and its backend in xsched CFS xsched: Add support for CFS quota for cgroups Konstantin Meskhidze (6): xsched: Add base vstream support xcu: Add base NPU driver support xsched: Introduce vstream management xsched: Add basic scheduler core support xsched: Add xsched RT class xsched: Add xsched CFS class arch/arm/include/uapi/asm/unistd.h | 1 + arch/arm64/configs/openeuler_defconfig | 1 + arch/powerpc/include/uapi/asm/unistd.h | 1 + arch/x86/configs/openeuler_defconfig | 1 + arch/x86/entry/syscalls/syscall_64.tbl | 2 +- arch/x86/include/uapi/asm/unistd.h | 1 + drivers/Makefile | 1 + drivers/xcu/Makefile | 2 + drivers/xcu/xcu_group.c | 380 ++++++++++++ include/linux/cgroup_subsys.h | 4 + include/linux/syscalls.h | 2 + include/linux/vstream.h | 91 +++ include/linux/xcu_group.h | 96 +++ include/linux/xsched.h | 514 ++++++++++++++++ include/uapi/asm-generic/unistd.h | 6 +- include/uapi/linux/xcu_vstream.h | 77 +++ init/Kconfig | 1 + kernel/Makefile | 1 + kernel/cgroup/cgroup.c | 2 +- kernel/xsched/Kconfig | 85 +++ kernel/xsched/Makefile | 6 + kernel/xsched/cfs.c | 237 ++++++++ kernel/xsched/cfs_quota.c | 98 ++++ kernel/xsched/cgroup.c | 775 +++++++++++++++++++++++++ kernel/xsched/core.c | 526 +++++++++++++++++ kernel/xsched/rt.c | 281 +++++++++ kernel/xsched/vstream.c | 673 +++++++++++++++++++++ 27 files changed, 3861 insertions(+), 4 deletions(-) create mode 100644 drivers/xcu/Makefile create mode 100644 drivers/xcu/xcu_group.c create mode 100644 include/linux/vstream.h create mode 100644 include/linux/xcu_group.h create mode 100644 include/linux/xsched.h create mode 100644 include/uapi/linux/xcu_vstream.h create mode 100644 kernel/xsched/Kconfig create mode 100644 kernel/xsched/Makefile create mode 100644 kernel/xsched/cfs.c create mode 100644 kernel/xsched/cfs_quota.c create mode 100644 kernel/xsched/cgroup.c create mode 100644 kernel/xsched/core.c create mode 100644 kernel/xsched/rt.c create mode 100644 kernel/xsched/vstream.c -- 2.34.1

2 9

[PATCH OLK-6.6 v4 00/48] fuse:io_uring: support fuse over io_uring
by Long Li 17 Nov '25

17 Nov '25

v1 -> v2: Fix some build error for io_uring patchs. v2 -> v3: Modify kabi fixed patchs format v3 -> v4: Enable CONFIG_FUSE_IO_URING Bernd Schubert (19): fuse: rename to fuse_dev_end_requests and make non-static fuse: Move fuse_get_dev to header file fuse: Move request bits fuse: Add fuse-io-uring design documentation fuse: make args->in_args[0] to be always the header fuse: {io-uring} Handle SQEs - register commands fuse: Make fuse_copy non static fuse: Add fuse-io-uring handling into fuse_copy fuse: {io-uring} Make hash-list req unique finding functions non-static fuse: Add io-uring sqe commit and fetch support fuse: {io-uring} Handle teardown of ring entries fuse: {io-uring} Make fuse_dev_queue_{interrupt,forget} non-static fuse: Allow to queue fg requests through io-uring fuse: Allow to queue bg requests through io-uring fuse: {io-uring} Prevent mount point hang on fuse-server termination fuse: block request allocation until io-uring init is complete fuse: enable fuse-over-io-uring fuse: prevent disabling io-uring on active connections fuse: {io-uring} Fix a possible req cancellation race Jens Axboe (1): io_uring: remove dead struct io_submit_state member Joanne Koong (2): fuse: fix uring race condition for null dereference of fc fuse: remove unneeded atomic set in uring creation Long Li (5): io_uring: fix kabi broken in struct io_tw_state io_uring: fix kabi broken in struct io_ring_ctx io_uring: fix kabi broken in struct io_submit_state io_uring: fix kabi broken for header file changed openeuler_defconfig: enable CONFIG_FUSE_IO_URING by default Luis Henriques (2): fuse: fix possible deadlock if rings are never initialized fuse: removed unused function fuse_uring_create() from header Ming Lei (3): io_uring: retain top 8bits of uring_cmd flags for kernel internal use io_uring: cancelable uring_cmd io_uring: kill dead code in io_req_complete_post Pavel Begunkov (16): io_uring: split out cmd api into a separate header io_uring/cmd: inline io_uring_cmd_do_in_task_lazy io_uring/cmd: expose iowq to cmds io_uring/cmd: give inline space in request to cmds io_uring/cmd: move io_uring_try_cancel_uring_cmd() io_uring/cmd: kill one issue_flags to tw conversion io_uring/cmd: fix tw <-> issue_flags conversion io_uring/cmd: document some uring_cmd related helpers io_uring: force tw ctx locking io_uring: remove struct io_tw_state::locked io_uring: refactor io_fill_cqe_req_aux io_uring: get rid of intermediate aux cqe caches io_uring: remove current check from complete_post io_uring: refactor io_req_complete_post() io_uring: clean up io_lockdep_assert_cq_locked io_uring/cmd: let cmds to know about dying task Documentation/filesystems/fuse-io-uring.rst | 99 ++ Documentation/filesystems/index.rst | 1 + MAINTAINERS | 1 + arch/arm64/configs/openeuler_defconfig | 1 + arch/x86/configs/openeuler_defconfig | 1 + drivers/block/ublk_drv.c | 2 +- drivers/nvme/host/ioctl.c | 2 +- fs/fuse/Kconfig | 12 + fs/fuse/Makefile | 1 + fs/fuse/dax.c | 11 +- fs/fuse/dev.c | 174 ++- fs/fuse/dev_uring.c | 1326 +++++++++++++++++++ fs/fuse/dev_uring_i.h | 205 +++ fs/fuse/dir.c | 32 +- fs/fuse/fuse_dev_i.h | 69 + fs/fuse/fuse_i.h | 35 +- fs/fuse/inode.c | 14 +- fs/fuse/xattr.c | 7 +- include/linux/io_uring.h | 73 +- include/linux/io_uring/cmd.h | 140 ++ include/linux/io_uring_types.h | 7 +- include/uapi/linux/fuse.h | 77 +- include/uapi/linux/io_uring.h | 5 +- io_uring/io_uring.c | 212 +-- io_uring/io_uring.h | 34 +- io_uring/net.c | 6 +- io_uring/poll.c | 3 +- io_uring/refs.h | 7 + io_uring/rw.c | 8 +- io_uring/timeout.c | 8 +- io_uring/uring_cmd.c | 114 +- io_uring/uring_cmd.h | 3 + security/selinux/hooks.c | 2 +- security/smack/smack_lsm.c | 2 +- 34 files changed, 2315 insertions(+), 379 deletions(-) create mode 100644 Documentation/filesystems/fuse-io-uring.rst create mode 100644 fs/fuse/dev_uring.c create mode 100644 fs/fuse/dev_uring_i.h create mode 100644 fs/fuse/fuse_dev_i.h create mode 100644 include/linux/io_uring/cmd.h -- 2.39.2

2 49