-
Tue Oct 18 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.518.4.1.el7uek]
- Revert "xfs: don't use delalloc extents for COW on files with extsize hints" (Saeed Mirzamohammadi) [Orabug: 34716022]
-
Thu Sep 29 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.518.4.el7uek]
- xfs: avoid race between writeback and data/cow fork changes (Wengang Wang) [Orabug: 34508036]
-
Fri Sep 23 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.518.3.el7uek]
- KVM: SVM: Clear the CR4 register on reset (Babu Moger) [Orabug: 34617675]
-
Fri Sep 16 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.518.2.el7uek]
- af_key: Do not call xfrm_probe_algs in parallel (Herbert Xu) [Orabug: 34566753] {CVE-2022-3028}
- l2tp: fix tunnel lookup use-after-free race (James Chapman) [Orabug: 32504113]
-
Fri Sep 09 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.518.1.el7uek]
- xfs: fix out of bound access (Junxiao Bi) [Orabug: 33089469] [Orabug: 34535011]
- KVM: x86: use raw clock values consistently (Paolo Bonzini) [Orabug: 34362737]
- KVM: x86: reorganize pvclock_gtod_data members (Paolo Bonzini) [Orabug: 34362737]
- KVM: x86: switch KVMCLOCK base to monotonic raw clock (Marcelo Tosatti) [Orabug: 34362737]
- netfilter: ebtables: reject blobs that don't provide all entry points (Florian Westphal) [Orabug: 32176166]
- sysfs: turn WARN() into pr_warn() (Greg Kroah-Hartman) [Orabug: 32176118]
-
Fri Sep 02 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.518.0.el7uek]
- lockdown: also lock down previous kgdb use (Daniel Thompson) [Orabug: 34543517] {CVE-2022-21499}
- Revert "debug: Lock down kgdb" (Alok Tiwari) [Orabug: 34543517]
- vmcoreinfo: add kallsyms_num_syms symbol (Stephen Brennan) [Orabug: 34475880]
- vmcoreinfo: include kallsyms symbols (Stephen Brennan) [Orabug: 34475880]
- kallsyms: move declarations to internal header (Stephen Brennan) [Orabug: 34475880]
- mpt3sas: avoid SOFT_RESET on shutdown (John Donnelly) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Update driver version to 39.100.00.00 (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Use firmware recommended queue depth (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Transition IOC to Ready state during shutdown (Sreekanth Reddy) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix fall-through warnings for Clang (Gustavo A. R. Silva) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Handle firmware faults during first half of IOC init (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix deadlock while cancelling the running firmware event (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Documentation cleanup (Randy Dunlap) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix timeouts observed while reenabling IRQ (Sreekanth Reddy) [Orabug: 34408138]
- scsi: mpt3sas: Fix two kernel-doc headers (Bart Van Assche) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix out-of-bounds warnings in _ctl_addnl_diag_query (Gustavo A. R. Silva) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix endianness for ActiveCablePowerRequirement (Sreekanth Reddy) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Only one vSES is present even when IOC has multi vSES (Sreekanth Reddy) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix a typo (Bhaskar Chowdhury) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix a few kernel-doc issues (Lee Jones) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Force reply post buffer allocations to be within same 4 GB region (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Force reply buffer allocations to be within same 4 GB region (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Force sense buffer allocations to be within same 4 GB region (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Force chain buffer allocations to be within same 4 GB region (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Force PCIe scatterlist allocations to be within same 4 GB region (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Replace unnecessary dynamic allocation with a static one (Gustavo A. R. Silva) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Do not use GFP_KERNEL in atomic context (Christophe JAILLET) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix some kernel-doc misnaming issues (Lee Jones) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix a couple of misdocumented functions/params (Lee Jones) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix a bunch of potential naming doc-rot (Lee Jones) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Move a little data from the stack onto the heap (Lee Jones) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix misspelling of _base_put_smid_default_atomic() (Lee Jones) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Additional diagnostic buffer query interface (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix ReplyPostFree pool allocation (Sreekanth Reddy) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Simplify bool comparison (YANG LI) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Fix spelling mistake in Kconfig "compatiblity" -> "compatibility" (Suganath Prabu S) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Signedness bug in _base_get_diag_triggers() (Dan Carpenter) [Orabug: 33666018] [Orabug: 34408138]
- scsi: mpt3sas: Block PCI config access from userspace during reset (Sreekanth Reddy) [Orabug: 34408138]
- Linux 4.14.290 (Greg Kroah-Hartman)
- PCI: hv: Fix interrupt mapping for multi-MSI (Jeffrey Hugo)
- PCI: hv: Reuse existing IRTE allocation in compose_msi_msg() (Jeffrey Hugo)
- PCI: hv: Fix hv_arch_irq_unmask() for multi-MSI (Jeffrey Hugo)
- PCI: hv: Fix multi-MSI to allow more than one MSI vector (Jeffrey Hugo)
- net: usb: ax88179_178a needs FLAG_SEND_ZLP (Jose Alonso)
- tty: use new tty_insert_flip_string_and_push_buffer() in pty_write() (Jiri Slaby)
- tty: extract tty_flip_buffer_commit() from tty_flip_buffer_push() (Jiri Slaby)
- tty: drop tty_schedule_flip() (Jiri Slaby)
- tty: the rest, stop using tty_schedule_flip() (Jiri Slaby)
- tty: drivers/tty/, stop using tty_schedule_flip() (Jiri Slaby)
- Bluetooth: Fix bt_skb_sendmmsg not allocating partial chunks (Luiz Augusto von Dentz)
- Bluetooth: SCO: Fix sco_send_frame returning skb->len (Luiz Augusto von Dentz)
- Bluetooth: Fix passing NULL to PTR_ERR (Luiz Augusto von Dentz)
- Bluetooth: RFCOMM: Replace use of memcpy_from_msg with bt_skb_sendmmsg (Luiz Augusto von Dentz)
- Bluetooth: SCO: Replace use of memcpy_from_msg with bt_skb_sendmsg (Luiz Augusto von Dentz)
- Bluetooth: Add bt_skb_sendmmsg helper (Luiz Augusto von Dentz)
- Bluetooth: Add bt_skb_sendmsg helper (Luiz Augusto von Dentz)
- ALSA: memalloc: Align buffer allocations in page size (Takashi Iwai)
- tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator (Xiaomeng Tong)
- drm/tilcdc: Remove obsolete crtc_mode_valid() hack (Jyri Sarha)
- bpf: Make sure mac_header was set before using it (Eric Dumazet)
- mm/mempolicy: fix uninit-value in mpol_rebind_policy() (Wang Cheng)
- Revert "Revert "char/random: silence a lockdep splat with printk()"" (Jason A. Donenfeld)
- be2net: Fix buffer overflow in be_get_module_eeprom (Hristo Venev)
- tcp: Fix a data-race around sysctl_tcp_notsent_lowat. (Kuniyuki Iwashima)
- igmp: Fix a data-race around sysctl_igmp_max_memberships. (Kuniyuki Iwashima)
- igmp: Fix data-races around sysctl_igmp_llm_reports. (Kuniyuki Iwashima)
- net: stmmac: fix dma queue left shift overflow issue (Junxiao Chang)
- i2c: cadence: Change large transfer count reset logic to be unconditional (Robert Hancock)
- tcp: Fix a data-race around sysctl_tcp_probe_interval. (Kuniyuki Iwashima)
- tcp: Fix a data-race around sysctl_tcp_probe_threshold. (Kuniyuki Iwashima)
- tcp/dccp: Fix a data-race around sysctl_tcp_fwmark_accept. (Kuniyuki Iwashima)
- ip: Fix a data-race around sysctl_fwmark_reflect. (Kuniyuki Iwashima)
- perf/core: Fix data race between perf_event_set_output() and perf_mmap_close() (Peter Zijlstra)
- power/reset: arm-versatile: Fix refcount leak in versatile_reboot_probe (Miaoqian Lin)
- xfrm: xfrm_policy: fix a possible double xfrm_pols_put() in xfrm_bundle_lookup() (Hangyu Hua)
- xen/gntdev: Ignore failure to unmap INVALID_GRANT_HANDLE (Demi Marie Obenour)
- Linux 4.14.289 (Greg Kroah-Hartman)
- can: m_can: m_can_tx_handler(): fix use after free of skb (Marc Kleine-Budde)
- mm: invalidate hwpoison page cache page in fault path (Rik van Riel)
- serial: 8250: fix return error code in serial8250_request_std_resource() (Yi Yang)
- tty: serial: samsung_tty: set dma burst_size to 1 (Chanho Park)
- usb: dwc3: gadget: Fix event pending check (Thinh Nguyen)
- USB: serial: ftdi_sio: add Belimo device ids (Lucien Buchmann)
- signal handling: don't use BUG_ON() for debugging (Linus Torvalds)
- x86: Clear .brk area at early boot (Juergen Gross)
- irqchip: or1k-pic: Undefine mask_ack for level triggered hardware (Stafford Horne)
- ASoC: wm5110: Fix DRE control (Charles Keepax)
- ASoC: ops: Fix off by one in range control validation (Mark Brown)
- net: sfp: fix memory leak in sfp_probe() (Jianglei Nie)
- NFC: nxp-nci: don't print header length mismatch on i2c error (Michael Walle)
- net: tipc: fix possible refcount leak in tipc_sk_create() (Hangyu Hua)
- platform/x86: hp-wmi: Ignore Sanitization Mode event (Kai-Heng Feng)
- cpufreq: pmac32-cpufreq: Fix refcount leak bug (Liang He)
- netfilter: br_netfilter: do not skip all hooks with 0 priority (Florian Westphal)
- virtio_mmio: Restore guest page size on resume (Stephan Gerhold)
- virtio_mmio: Add missing PM calls to freeze/restore (Stephan Gerhold)
- sfc: fix kernel panic when creating VF (Íñigo Huguet)
- seg6: fix skb checksum in SRv6 End.B6 and End.B6.Encaps behaviors (Andrea Mayer)
- seg6: fix skb checksum evaluation in SRH encapsulation/insertion (Andrea Mayer)
- sfc: fix use after free when disabling sriov (Íñigo Huguet)
- ipv4: Fix data-races around sysctl_ip_dynaddr. (Kuniyuki Iwashima)
- icmp: Fix a data-race around sysctl_icmp_ratemask. (Kuniyuki Iwashima)
- icmp: Fix a data-race around sysctl_icmp_ratelimit. (Kuniyuki Iwashima)
- ARM: dts: sunxi: Fix SPI NOR campatible on Orange Pi Zero (Michal Suchanek)
- icmp: Fix data-races around sysctl. (Kuniyuki Iwashima)
- cipso: Fix data-races around sysctl. (Kuniyuki Iwashima)
- net: Fix data-races around sysctl_mem. (Kuniyuki Iwashima)
- inetpeer: Fix data-races around sysctl. (Kuniyuki Iwashima)
- ARM: 9209/1: Spectre-BHB: avoid pr_info() every time a CPU comes out of idle (Ard Biesheuvel)
- xhci: make xhci_handshake timeout for xhci_reset() adjustable (Mathias Nyman)
- xhci: bail out early if driver can't accress host in resume (Mathias Nyman)
- net: dsa: bcm_sf2: force pause link settings (Doug Berger)
- nilfs2: fix incorrect masking of permission flags for symlinks (Ryusuke Konishi)
- cgroup: Use separate src/dst nodes when preloading css_sets for migration (Tejun Heo)
- ARM: 9214/1: alignment: advance IT state after emulating Thumb instruction (Ard Biesheuvel)
- ARM: 9213/1: Print message about disabled Spectre workarounds only once (Dmitry Osipenko)
- net: sock: tracing: Fix sock_exceed_buf_limit not to dereference stale pointer (Steven Rostedt (Google))
- xen/netback: avoid entering xenvif_rx_next_skb() with an empty rx queue (Juergen Gross)
- ALSA: hda/conexant: Apply quirk for another HP ProDesk 600 G3 model (Meng Tang)
- ALSA: hda - Add fixup for Dell Latitidue E5430 (Meng Tang)
-
Fri Aug 19 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.517.2.el7uek]
- kernfs: Replace global kernfs_open_file_mutex with hashed mutexes. (Imran Khan) [Orabug: 34476942]
- kernfs: Introduce interface to access global kernfs_open_file_mutex. (Imran Khan) [Orabug: 34476942]
- kernfs: make ->attr.open RCU protected. (Imran Khan) [Orabug: 34476942]
- kernfs: Rename kernfs_put_open_node to kernfs_unlink_open_file. (Imran Khan) [Orabug: 34476942]
- kernfs: Remove reference counting for kernfs_open_node. (Imran Khan) [Orabug: 34476942]
- rds/ib: handle posted ACK during connection shutdown (Rohit Nair) [Orabug: 34465810]
- rds/ib: reap tx completions during connection shutdown (Rohit Nair) [Orabug: 34465810]
- scsi: target: Fix WRITE_SAME No Data Buffer crash (Mike Christie) [Orabug: 34419972] {CVE-2022-21546}
- rds/rdma: destroy CQs during user initiated rds connection resets (Rohit Nair) [Orabug: 34414240]
- rds: copy_from_user only once per rds_sendmsg system call (Hans Westgaard Ry) [Orabug: 34510858] {CVE-2022-21385}
-
Fri Aug 12 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.517.1.el7uek]
- net_sched: cls_route: remove from list when handle is 0 (Thadeu Lima de Souza Cascardo) [Orabug: 34480752] {CVE-2022-2588}
- Restore "module, async: async_synchronize_full() on module init iff async is used" (Mridula Shastry) [Orabug: 34469834]
- net/rds: Replace #ifdef DEBUG with CONFIG_SLUB_DEBUG (Freddy Carrillo) [Orabug: 34405766]
- ext4: Move to shared i_rwsem even without dioread_nolock mount opt (Ritesh Harjani) [Orabug: 34295843]
- ext4: Start with shared i_rwsem in case of DIO instead of exclusive (Ritesh Harjani) [Orabug: 34295843]
- ext4: further refactoring bufferio and dio helper (Junxiao Bi) [Orabug: 34295843]
- ext4: refactor ext4_file_write_iter (Junxiao Bi) [Orabug: 34295843]
- xen/manage: Use orderly_reboot() to reboot (Ross Lagerwall) [Orabug: 34211118]
- xen/manage: revert "xen/manage: enable C_A_D to force reboot" (Dongli Zhang) [Orabug: 34211118]
- Linux 4.14.288 (Greg Kroah-Hartman)
- dmaengine: ti: Add missing put_device in ti_dra7_xbar_route_allocate (Miaoqian Lin)
- dmaengine: ti: Fix refcount leak in ti_dra7_xbar_route_allocate (Miaoqian Lin)
- dmaengine: at_xdma: handle errors of at_xdmac_alloc_desc() correctly (Michael Walle)
- ida: don't use BUG_ON() for debugging (Linus Torvalds)
- i2c: cadence: Unregister the clk notifier in error path (Satish Nagireddy)
- pinctrl: sunxi: a83t: Fix NAND function name for some pins (Samuel Holland)
- xfs: remove incorrect ASSERT in xfs_rename (Eric Sandeen)
- powerpc/powernv: delay rng platform device creation until later in boot (Jason A. Donenfeld)
- video: of_display_timing.h: include errno.h (Hsin-Yi Wang)
- fbcon: Disallow setting font bigger than screen size (Helge Deller)
- iommu/vt-d: Fix PCI bus rescan device hot add (Yian Chen)
- net: rose: fix UAF bug caused by rose_t0timer_expiry (Duoming Zhou)
- usbnet: fix memory leak in error case (Oliver Neukum)
- can: gs_usb: gs_usb_open/close(): fix memory leak (Rhett Aultman)
- can: grcan: grcan_probe(): remove extra of_node_get() (Liang He)
- mm/slub: add missing TID updates on slab deactivation (Jann Horn)
- esp: limit skb_page_frag_refill use to a single page (Sabrina Dubroca)
- Linux 4.14.287 (Greg Kroah-Hartman)
- xen/gntdev: Avoid blocking in unmap_grant_pages() (Demi Marie Obenour)
- net: usb: qmi_wwan: add Telit 0x1070 composition (Daniele Palmas)
- net: usb: qmi_wwan: add Telit 0x1060 composition (Carlo Lobrano)
- xen/arm: Fix race in RB-tree based P2M accounting (Oleksandr Tyshchenko)
- net: Rename and export copy_skb_header (Ilya Lesokhin)
- ipv6/sit: fix ipip6_tunnel_get_prl return value (katrinzhou)
- sit: use min (kernel test robot)
- hwmon: (ibmaem) don't call platform_device_del() if platform_device_add() fails (Yang Yingliang)
- NFC: nxp-nci: Don't issue a zero length i2c_master_read() (Michael Walle)
- nfc: nfcmrvl: Fix irq_of_parse_and_map() return value (Krzysztof Kozlowski)
- net: bonding: fix use-after-free after 802.3ad slave unbind (Yevhen Orlov)
- net: bonding: fix possible NULL deref in rlb code (Eric Dumazet)
- netfilter: nft_dynset: restore set element counter when failing to update (Pablo Neira Ayuso)
- caif_virtio: fix race between virtio_device_ready() and ndo_open() (Jason Wang)
- net: ipv6: unexport __init-annotated seg6_hmac_net_init() (YueHaibing)
- usbnet: fix memory allocation in helpers (Oliver Neukum)
- RDMA/qedr: Fix reporting QP timeout attribute (Kamal Heib)
- net: usb: ax88179_178a: Fix packet receiving (Jose Alonso)
- net: rose: fix UAF bugs caused by timer handler (Duoming Zhou)
- SUNRPC: Fix READ_PLUS crasher (Chuck Lever)
- s390/archrandom: simplify back to earlier design and initialize earlier (Jason A. Donenfeld)
- dm raid: fix KASAN warning in raid5_add_disks (Mikulas Patocka)
- dm raid: fix accesses beyond end of raid member array (Heinz Mauelshagen)
- nvdimm: Fix badblocks clear off-by-one error (Chris Ye)
- Linux 4.14.286 (Greg Kroah-Hartman)
- swiotlb: skip swiotlb_bounce when orig_addr is zero (Liu Shixin)
- kexec_file: drop weak attribute from arch_kexec_apply_relocations[_add] (Naveen N. Rao)
- fdt: Update CRC check for rng-seed (Hsin-Yi Wang)
- xen: unexport __init-annotated xen_xlate_map_ballooned_pages() (Masahiro Yamada)
- drm: remove drm_fb_helper_modinit (Christoph Hellwig)
- powerpc/pseries: wire up rng during setup_arch() (Jason A. Donenfeld)
- modpost: fix section mismatch check for exported init/exit sections (Masahiro Yamada)
- ARM: cns3xxx: Fix refcount leak in cns3xxx_init (Miaoqian Lin)
- ARM: Fix refcount leak in axxia_boot_secondary (Miaoqian Lin)
- ARM: exynos: Fix refcount leak in exynos_map_pmu (Miaoqian Lin)
- ARM: dts: imx6qdl: correct PU regulator ramp delay (Lucas Stach)
- powerpc/powernv: wire up rng during setup_arch (Jason A. Donenfeld)
- powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address (Andrew Donnellan)
- powerpc: Enable execve syscall exit tracepoint (Naveen N. Rao)
- xtensa: Fix refcount leak bug in time.c (Liang He)
- xtensa: xtfpga: Fix refcount leak bug in setup (Liang He)
- iio: adc: axp288: Override TS pin bias current for some models (Hans de Goede)
- iio: trigger: sysfs: fix use-after-free on remove (Vincent Whitchurch)
- iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up() (Zheyu Ma)
- iio: accel: mma8452: ignore the return value of reset operation (Haibo Chen)
- iio:accel:bma180: rearrange iio trigger get and register (Dmitry Rokosov)
- usb: chipidea: udc: check request status before setting device address (Xu Yang)
- iio: adc: vf610: fix conversion mode sysfs node name (Baruch Siach)
- igb: Make DMA faster when CPU is active on the PCIe link (Kai-Heng Feng)
- MIPS: Remove repetitive increase irq_err_count (huhai)
- x86/xen: Remove undefined behavior in setup_features() (Julien Grall)
- bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers (Jay Vosburgh)
- USB: serial: option: add Quectel RM500K module support (Macpaul Lin)
- USB: serial: option: add Quectel EM05-G modem (Yonglin Tan)
- USB: serial: option: add Telit LE910Cx 0x1250 composition (Carlo Lobrano)
- random: quiet urandom warning ratelimit suppression message (Jason A. Donenfeld)
- dm era: commit metadata in postsuspend after worker stops (Nikos Tsironis)
- ata: libata: add qc->flags in ata_qc_complete_template tracepoint (Edward Wu)
- random: schedule mix_interrupt_randomness() less often (Jason A. Donenfeld)
- vt: drop old FONT ioctls (Jiri Slaby)
- Linux 4.14.285 (Greg Kroah-Hartman)
- tcp: drop the hash_32() part from the index calculation (Willy Tarreau)
- tcp: increase source port perturb table to 2^16 (Willy Tarreau) [Orabug: 34247937] {CVE-2022-32296}
- tcp: dynamically allocate the perturb table used by source ports (Willy Tarreau)
- tcp: add small random increments to the source port (Willy Tarreau)
- tcp: use different parts of the port_offset for index and offset (Willy Tarreau)
- tcp: add some entropy in __inet_hash_connect() (Eric Dumazet)
- xprtrdma: fix incorrect header size calculations (Colin Ian King)
- usb: gadget: u_ether: fix regression in setting fixed MAC address (Marian Postevca)
- s390/mm: use non-quiescing sske for KVM switch to keyed guest (Christian Borntraeger)
- virtio-pci: Remove wrong address verification in vp_del_vqs() (Murilo Opsfelder Araujo)
- ext4: add reserved GDT blocks check (Zhang Yi)
- ext4: make variable "count" signed (Ding Xiang)
- ext4: fix bug_on ext4_mb_use_inode_pa (Baokun Li)
- serial: 8250: Store to lsr_save_flags after lsr read (Ilpo Järvinen)
- usb: gadget: lpc32xx_udc: Fix refcount leak in lpc32xx_udc_probe (Miaoqian Lin)
- usb: dwc2: Fix memory leak in dwc2_hcd_init (Miaoqian Lin)
- USB: serial: io_ti: add Agilent E5805A support (Robert Eckelmann)
- USB: serial: option: add support for Cinterion MV31 with new baseline (Slark Xiao)
- comedi: vmk80xx: fix expression for tx buffer size (Ian Abbott)
- irqchip/gic/realview: Fix refcount leak in realview_gic_of_init (Miaoqian Lin)
- certs/blacklist_hashes.c: fix const confusion in certs blacklist (Masahiro Yamada)
- arm64: ftrace: fix branch range checks (Mark Rutland)
- net: bgmac: Fix an erroneous kfree() in bgmac_remove() (Christophe JAILLET)
- misc: atmel-ssc: Fix IRQ check in ssc_probe (Miaoqian Lin)
- tty: goldfish: Fix free_irq() on remove (Vincent Whitchurch)
- i40e: Fix call trace in setup_tx_descriptors (Aleksandr Loktionov)
- pNFS: Don't keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE (Trond Myklebust)
- random: credit cpu and bootloader seeds by default (Jason A. Donenfeld)
- net: ethernet: mtk_eth_soc: fix misuse of mem alloc interface netdev[napi]_alloc_frag (Chen Lin)
- ipv6: Fix signed integer overflow in l2tp_ip6_sendmsg (Wang Yufen)
- nfc: nfcmrvl: Fix memory leak in nfcmrvl_play_deferred (Xiaohui Zhang)
- virtio-mmio: fix missing put_device() when vm_cmdline_parent registration failed (chengkaitao)
- scsi: pmcraid: Fix missing resource cleanup in error case (Chengguang Xu)
- scsi: ipr: Fix missing/incorrect resource cleanup in error case (Chengguang Xu)
- scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology (James Smart)
- scsi: vmw_pvscsi: Expand vcpuHint to 16 bits (Wentao Wang)
- ASoC: wm8962: Fix suspend while playing music (Adam Ford)
- ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() (Sergey Shtylyov)
- ASoC: cs42l56: Correct typo in minimum level for SX volume controls (Charles Keepax)
- ASoC: cs42l52: Correct TLV for Bypass Volume (Charles Keepax)
- ASoC: cs53l30: Correct number of volume levels on SX controls (Charles Keepax)
- ASoC: cs42l52: Fix TLV scales for mixer controls (Charles Keepax)
- random: account for arch randomness in bits (Jason A. Donenfeld)
- random: mark bootloader randomness code as __init (Jason A. Donenfeld)
- random: avoid checking crng_ready() twice in random_init() (Jason A. Donenfeld)
- crypto: drbg - make reseeding from get_random_bytes() synchronous (Nicolai Stange)
- crypto: drbg - always try to free Jitter RNG instance (Stephan Müller)
- crypto: drbg - move dynamic ->reseed_threshold adjustments to __drbg_seed() (Nicolai Stange)
- crypto: drbg - track whether DRBG was seeded with !rng_is_initialized() (Nicolai Stange)
- crypto: drbg - prepare for more fine-grained tracking of seeding state (Nicolai Stange)
- crypto: drbg - always seeded with SP800-90B compliant noise source (Stephan Müller)
- crypto: drbg - add FIPS 140-2 CTRNG for noise source (Stephan Mueller)
- Revert "random: use static branch for crng_ready()" (Jason A. Donenfeld)
- random: check for signals after page of pool writes (Jason A. Donenfeld)
- random: wire up fops->splice_{read,write}_iter() (Jens Axboe)
- random: convert to using fops->write_iter() (Jens Axboe)
- random: move randomize_page() into mm where it belongs (Jason A. Donenfeld)
- random: move initialization functions out of hot pages (Jason A. Donenfeld)
- random: use proper jiffies comparison macro (Jason A. Donenfeld)
- random: use symbolic constants for crng_init states (Jason A. Donenfeld)
- siphash: use one source of truth for siphash permutations (Jason A. Donenfeld)
- random: help compiler out with fast_mix() by using simpler arguments (Jason A. Donenfeld)
- random: do not use input pool from hard IRQs (Saeed Mirzamohammadi)
- random: order timer entropy functions below interrupt functions (Jason A. Donenfeld)
- random: do not pretend to handle premature next security model (Jason A. Donenfeld)
- random: do not use batches when !crng_ready() (Jason A. Donenfeld)
- random: insist on random_get_entropy() existing in order to simplify (Jason A. Donenfeld)
- xtensa: use fallback for random_get_entropy() instead of zero (Jason A. Donenfeld)
- sparc: use fallback for random_get_entropy() instead of zero (Jason A. Donenfeld)
- um: use fallback for random_get_entropy() instead of zero (Jason A. Donenfeld)
- x86/tsc: Use fallback for random_get_entropy() instead of zero (Jason A. Donenfeld)
- nios2: use fallback for random_get_entropy() instead of zero (Jason A. Donenfeld)
- arm: use fallback for random_get_entropy() instead of zero (Jason A. Donenfeld)
- mips: use fallback for random_get_entropy() instead of just c0 random (Jason A. Donenfeld)
- m68k: use fallback for random_get_entropy() instead of zero (Jason A. Donenfeld)
- timekeeping: Add raw clock fallback for random_get_entropy() (Jason A. Donenfeld)
- powerpc: define get_cycles macro for arch-override (Jason A. Donenfeld)
- alpha: define get_cycles macro for arch-override (Jason A. Donenfeld)
- parisc: define get_cycles macro for arch-override (Jason A. Donenfeld)
- s390: define get_cycles macro for arch-override (Jason A. Donenfeld)
- ia64: define get_cycles macro for arch-override (Jason A. Donenfeld)
- init: call time_init() before rand_initialize() (Jason A. Donenfeld)
- random: fix sysctl documentation nits (Jason A. Donenfeld)
- random: document crng_fast_key_erasure() destination possibility (Jason A. Donenfeld)
- random: make random_get_entropy() return an unsigned long (Jason A. Donenfeld)
- random: check for signals every PAGE_SIZE chunk of /dev/[u]random (Jason A. Donenfeld)
- random: check for signal_pending() outside of need_resched() check (Jann Horn)
- random: do not allow user to keep crng key around on stack (Jason A. Donenfeld)
- random: do not split fast init input in add_hwgenerator_randomness() (Jan Varho)
- random: mix build-time latent entropy into pool at init (Jason A. Donenfeld)
- random: re-add removed comment about get_random_{u32,u64} reseeding (Jason A. Donenfeld)
- random: treat bootloader trust toggle the same way as cpu trust toggle (Jason A. Donenfeld)
- random: skip fast_init if hwrng provides large chunk of entropy (Jason A. Donenfeld)
- random: check for signal and try earlier when generating entropy (Jason A. Donenfeld)
- random: reseed more often immediately after booting (Jason A. Donenfeld)
- random: make consistent usage of crng_ready() (Jason A. Donenfeld)
- random: use SipHash as interrupt entropy accumulator (Jason A. Donenfeld)
- random: replace custom notifier chain with standard one (Jason A. Donenfeld)
- random: don't let 644 read-only sysctls be written to (Jason A. Donenfeld)
- random: give sysctl_random_min_urandom_seed a more sensible value (Jason A. Donenfeld)
- random: do crng pre-init loading in worker rather than irq (Jason A. Donenfeld)
- random: unify cycles_t and jiffies usage and types (Jason A. Donenfeld)
- random: cleanup UUID handling (Jason A. Donenfeld)
- random: only wake up writers after zap if threshold was passed (Jason A. Donenfeld)
- random: round-robin registers as ulong, not u32 (Jason A. Donenfeld)
- random: pull add_hwgenerator_randomness() declaration into random.h (Jason A. Donenfeld)
- random: check for crng_init == 0 in add_device_randomness() (Jason A. Donenfeld)
- random: unify early init crng load accounting (Jason A. Donenfeld)
- random: do not take pool spinlock at boot (Jason A. Donenfeld)
- random: defer fast pool mixing to worker (Jason A. Donenfeld)
- random: rewrite header introductory comment (Jason A. Donenfeld)
- random: group sysctl functions (Jason A. Donenfeld)
- random: group userspace read/write functions (Jason A. Donenfeld)
- random: group entropy collection functions (Jason A. Donenfeld)
- random: group entropy extraction functions (Jason A. Donenfeld)
- random: remove useless header comment (Jason A. Donenfeld)
- random: introduce drain_entropy() helper to declutter crng_reseed() (Jason A. Donenfeld)
- random: deobfuscate irq u32/u64 contributions (Jason A. Donenfeld)
- random: add proper SPDX header (Jason A. Donenfeld)
- random: remove unused tracepoints (Jason A. Donenfeld)
- random: remove ifdef'd out interrupt bench (Jason A. Donenfeld)
- random: tie batched entropy generation to base_crng generation (Jason A. Donenfeld)
- random: zero buffer after reading entropy from userspace (Jason A. Donenfeld)
- random: remove outdated INT_MAX >> 6 check in urandom_read() (Jason A. Donenfeld)
- random: use hash function for crng_slow_load() (Jason A. Donenfeld)
- random: absorb fast pool into input pool after fast load (Jason A. Donenfeld)
- random: do not xor RDRAND when writing into /dev/random (Jason A. Donenfeld)
- random: ensure early RDSEED goes through mixer on init (Jason A. Donenfeld)
- random: inline leaves of rand_initialize() (Jason A. Donenfeld)
- random: use RDSEED instead of RDRAND in entropy extraction (Jason A. Donenfeld)
- random: fix locking in crng_fast_load() (Dominik Brodowski)
- random: remove batched entropy locking (Jason A. Donenfeld)
- random: remove use_input_pool parameter from crng_reseed() (Eric Biggers)
- random: make credit_entropy_bits() always safe (Jason A. Donenfeld)
- random: always wake up entropy writers after extraction (Jason A. Donenfeld)
- random: use linear min-entropy accumulation crediting (Jason A. Donenfeld)
- random: simplify entropy debiting (Jason A. Donenfeld)
- random: use computational hash for entropy extraction (Jason A. Donenfeld)
- random: only call crng_finalize_init() for primary_crng (Dominik Brodowski)
- random: access primary_pool directly rather than through pointer (Dominik Brodowski)
- random: continually use hwgenerator randomness (Dominik Brodowski)
- random: simplify arithmetic function flow in account() (Jason A. Donenfeld)
- random: access input_pool_data directly rather than through pointer (Jason A. Donenfeld)
- random: cleanup fractional entropy shift constants (Jason A. Donenfeld)
- random: prepend remaining pool constants with POOL_ (Jason A. Donenfeld)
- random: de-duplicate INPUT_POOL constants (Jason A. Donenfeld)
- random: remove unused OUTPUT_POOL constants (Jason A. Donenfeld)
- random: rather than entropy_store abstraction, use global (Jason A. Donenfeld)
- random: try to actively add entropy rather than passively wait for it (Linus Torvalds)
- random: remove unused extract_entropy() reserved argument (Jason A. Donenfeld)
- random: remove incomplete last_data logic (Jason A. Donenfeld)
- random: cleanup integer types (Jason A. Donenfeld)
- crypto: chacha20 - Fix chacha20_block() keystream alignment (again) (Eric Biggers)
- random: cleanup poolinfo abstraction (Jason A. Donenfeld)
- random: fix typo in comments (Schspa Shi)
- random: don't reset crng_init_cnt on urandom_read() (Jann Horn)
- random: avoid superfluous call to RDRAND in CRNG extraction (Jason A. Donenfeld)
- random: early initialization of ChaCha constants (Dominik Brodowski)
- random: initialize ChaCha20 constants with correct endianness (Eric Biggers)
- random: use IS_ENABLED(CONFIG_NUMA) instead of ifdefs (Jason A. Donenfeld)
- random: harmonize "crng init done" messages (Dominik Brodowski)
- random: mix bootloader randomness into pool (Jason A. Donenfeld)
- random: do not re-init if crng_reseed completes before primary init (Jason A. Donenfeld)
- random: do not sign extend bytes for rotation when mixing (Jason A. Donenfeld)
- random: use BLAKE2s instead of SHA1 in extraction (Jason A. Donenfeld)
- random: remove unused irq_flags argument from add_interrupt_randomness() (Saeed Mirzamohammadi)
- random: document add_hwgenerator_randomness() with other input functions (Mark Brown)
- crypto: blake2s - adjust include guard naming (Eric Biggers)
- crypto: blake2s - include <linux/bug.h> instead of <asm/bug.h> (Eric Biggers)
- MAINTAINERS: co-maintain random.c (Jason A. Donenfeld)
- random: remove dead code left over from blocking pool (Eric Biggers)
- random: avoid arch_get_random_seed_long() when collecting IRQ randomness (Ard Biesheuvel)
- random: add arch_get_random_*long_early() (Mark Rutland)
- powerpc: Use bool in archrandom.h (Richard Henderson)
- linux/random.h: Mark CONFIG_ARCH_RANDOM functions __must_check (Richard Henderson)
- linux/random.h: Use false with bool (Richard Henderson)
- linux/random.h: Remove arch_has_random, arch_has_random_seed (Richard Henderson)
- s390: Remove arch_has_random, arch_has_random_seed (Richard Henderson)
- powerpc: Remove arch_has_random, arch_has_random_seed (Richard Henderson)
- x86: Remove arch_has_random, arch_has_random_seed (Richard Henderson)
- random: avoid warnings for !CONFIG_NUMA builds (Mark Rutland)
- random: split primary/secondary crng init paths (Mark Rutland)
- random: remove some dead code of poolinfo (Yangtao Li)
- random: fix typo in add_timer_randomness() (Yangtao Li)
- random: Add and use pr_fmt() (Yangtao Li)
- random: convert to ENTROPY_BITS for better code readability (Yangtao Li)
- random: remove unnecessary unlikely() (Yangtao Li)
- random: remove kernel.random.read_wakeup_threshold (Andy Lutomirski)
- random: delete code to pull data into pools (Andy Lutomirski)
- random: remove the blocking pool (Andy Lutomirski)
- random: fix crash on multiple early calls to add_bootloader_randomness() (Dominik Brodowski)
- char/random: silence a lockdep splat with printk() (Sergey Senozhatsky)
- random: make /dev/random be almost like /dev/urandom (Andy Lutomirski)
- random: ignore GRND_RANDOM in getentropy(2) (Andy Lutomirski)
- random: add GRND_INSECURE to return best-effort non-cryptographic bytes (Andy Lutomirski)
- random: Add a urandom_read_nowait() for random APIs that don't warn (Andy Lutomirski)
- random: Don't wake crng_init_wait when crng_init == 1 (Andy Lutomirski)
- lib/crypto: sha1: re-roll loops to reduce code size (Jason A. Donenfeld)
- lib/crypto: blake2s: move hmac construction into wireguard (Jason A. Donenfeld)
- crypto: blake2s - generic C library implementation and selftest (Jason A. Donenfeld)
- crypto: Deduplicate le32_to_cpu_array() and cpu_to_le32_array() (Andy Shevchenko)
- Revert "hwrng: core - Freeze khwrng thread during suspend" (Herbert Xu)
- char/random: Add a newline at the end of the file (Borislav Petkov)
- random: Use wait_event_freezable() in add_hwgenerator_randomness() (Stephen Boyd)
- fdt: add support for rng-seed (Hsin-Yi Wang)
- random: Support freezable kthreads in add_hwgenerator_randomness() (Stephen Boyd)
- random: fix soft lockup when trying to read from an uninitialized blocking pool (Theodore Ts'o)
- latent_entropy: avoid build error when plugin cflags are not set (Vasily Gorbik)
- random: document get_random_int() family (George Spelvin)
- random: move rand_initialize() earlier (Kees Cook)
- random: only read from /dev/random after its pool has received 128 bits (Theodore Ts'o)
- drivers/char/random.c: make primary_crng static (Rasmus Villemoes)
- drivers/char/random.c: remove unused stuct poolinfo::poolbits (Rasmus Villemoes)
- drivers/char/random.c: constify poolinfo_table (Rasmus Villemoes)
- random: make CPU trust a boot parameter (Kees Cook)
- random: Make crng state queryable (Jason A. Donenfeld)
- random: remove preempt disabled region (Ingo Molnar)
- random: add a config option to trust the CPU's hwrng (Theodore Ts'o)
- random: Return nbytes filled from hw RNG (Tobin C. Harding)
- random: Fix whitespace pre random-bytes work (Tobin C. Harding)
- drivers/char/random.c: remove unused dont_count_entropy (Rasmus Villemoes)
- random: optimize add_interrupt_randomness (Andi Kleen)
- random: always fill buffer in get_random_bytes_wait (Jason A. Donenfeld)
- crypto: chacha20 - Fix keystream alignment for chacha20_block() (Eric Biggers)
- 9p: missing chunk of "fs/9p: Don't update file type when updating file attributes" (Al Viro)
-
Fri Aug 05 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.517.0.el7uek]
- mpt3sas: Fix panic observed while accessing the hw ctx queue (Gulam Mohamed) [Orabug: 34446738]
- driver: marvell: mmc: Add new bus modes overrides from DT (Wojciech Bartczak) [Orabug: 34440004]
- octeontx2: mmc: Adds mechanism to modify all MMC bus modes timings (Wojciech Bartczak) [Orabug: 34440004]
- rds/rdma: correctly assign the dest qp num in rds ib connection (Rohit Nair) [Orabug: 34429478]
- Revert "uek-rpm: Enable config CONFIG_SCSI_MQ_DEFAULT" (Gulam Mohamed) [Orabug: 34419153]
- net/rds : Adding support to print SCQ and RCQ completion vectors in rds-info. (Anand Khoje) [Orabug: 34398210]
- IB/mlx5: Disable BME for unbound devices too (Håkon Bugge) [Orabug: 34395378]
- net/mlx5: Rearm the FW tracer after each tracer event (Feras Daoud) [Orabug: 34387281]
- net/mlx5: FW tracer, Add debug prints (Saeed Mahameed) [Orabug: 34387281]
- perf script: Fix crash because of missing evsel->priv (Ravi Bangoria) [Orabug: 34382257]
- net/rds: Fix a NULL dereference in rds_tcp_accept_one() (Harshit Mogalapalli) [Orabug: 34371946]
- ocfs2: kill EBUSY from dlmfs_evict_inode (Junxiao Bi) [Orabug: 34364338]
- ocfs2: dlmfs: don't clear USER_LOCK_ATTACHED when destroying lock (Junxiao Bi) [Orabug: 34364338]
- rds: ib: Qualify RNR Retry Timer check with firmware version (Freddy Carrillo) [Orabug: 33665743]
-
Fri Jul 08 2022 Saeed Mirzamohammadi <saeed.mirzamohammadi@oracle.com> [4.14.35-2047.516.1.el7uek]
- KVM: x86: Avoid theoretical NULL pointer dereference in kvm_irq_delivery_to_apic_fast() (Vitaly Kuznetsov) [Orabug: 34323860] {CVE-2022-2153}
- KVM: x86: Check lapic_in_kernel() before attempting to set a SynIC irq (Vitaly Kuznetsov) [Orabug: 34323860] {CVE-2022-2153}
- KVM: Add infrastructure and macro to mark VM as bugged (Sean Christopherson) [Orabug: 34323860] {CVE-2022-2153}
- xfs: don't use delalloc extents for COW on files with extsize hints (Christoph Hellwig) [Orabug: 34180868]