-
linux (4.13.0-46.51) artful; urgency=medium
* linux: 4.13.0-46.51 -proposed tracker (LP: #1776333)
* register on binfmt_misc may overflow and crash the system (LP: #1775856)
- fs/binfmt_misc.c: do not allow offset overflow
* CVE-2018-11508
- compat: fix 4-byte infoleak via uninitialized struct field
* rfi-flush: Switch to new linear fallback flush (LP: #1744173)
- SAUCE: rfi-flush: Factor out init_fallback_flush()
- SAUCE: rfi-flush: Move rfi_flush_fallback_area to end of paca
- powerpc/64s: Improve RFI L1-D cache flush fallback
- powerpc/rfi-flush: Make it possible to call setup_rfi_flush() again
- powerpc/rfi-flush: Differentiate enabled and patched flush types
- powerpc/rfi-flush: Call setup_rfi_flush() after LPM migration
* Fix enabling bridge MMIO windows (LP: #1771344)
- powerpc/eeh: Fix enabling bridge MMIO windows
* CVE-2018-1130
- dccp: check sk for closed state in dccp_sendmsg()
* CVE-2018-7757
- scsi: libsas: fix memory leak in sas_smp_get_phy_events()
* cpum_sf: ensure sample freq is non-zero (LP: #1772593)
- s390/cpum_sf: ensure sample frequency of perf event attributes is non-zero
* wlp3s0: failed to remove key (1, ff:ff:ff:ff:ff:ff) from hardware (-22)
(LP: #1720930)
- iwlwifi: mvm: fix "failed to remove key" message
* CVE-2018-6927
- futex: Prevent overflow by strengthen input validation
* After update to 4.13-43 Intel Graphics are Laggy (LP: #1773520)
- SAUCE: Revert "drm/i915/edp: Allow alternate fixed mode for eDP if
available."
* ELANPAD ELAN0612 does not work, patch available (LP: #1773509)
- SAUCE: Input: elan_i2c - add ELAN0612 to the ACPI table
* kernel backtrace when receiving large UDP packages (LP: #1772031)
- iov_iter: fix page_copy_sane for compound pages
* FS-Cache: Assertion failed: FS-Cache: 6 == 5 is false (LP: #1774336)
- SAUCE: CacheFiles: fix a read_waiter/read_copier race
* CVE-2018-5803
- sctp: verify size of a new chunk in _sctp_make_chunk()
* enable mic-mute hotkey and led on Lenovo M820z and M920z (LP: #1774306)
- ALSA: hda/realtek - Enable mic-mute hotkey for several Lenovo AIOs
* CVE-2018-7755
- SAUCE: floppy: Do not copy a kernel pointer to user memory in FDGETPRM ioctl
* CVE-2018-5750
- ACPI: sbshc: remove raw pointer from printk() message
-- Khalid Elmously <email address hidden> Mon, 11 Jun 2018 23:25:30 +0000
-
linux (4.13.0-45.50) artful; urgency=medium
* linux: 4.13.0-45.50 -proposed tracker (LP: #1774124)
* CVE-2018-3639 (x86)
- SAUCE: Set generic SSBD feature for Intel cpus
linux (4.13.0-44.49) artful; urgency=medium
* linux: 4.13.0-44.49 -proposed tracker (LP: #1772951)
* CVE-2018-3639 (x86)
- x86/cpu: Make alternative_msr_write work for 32-bit code
- x86/cpu/AMD: Fix erratum 1076 (CPB bit)
- x86/bugs: Fix the parameters alignment and missing void
- KVM: SVM: Move spec control call after restore of GS
- x86/speculation: Use synthetic bits for IBRS/IBPB/STIBP
- x86/cpufeatures: Disentangle MSR_SPEC_CTRL enumeration from IBRS
- x86/cpufeatures: Disentangle SSBD enumeration
- x86/cpufeatures: Add FEATURE_ZEN
- x86/speculation: Handle HT correctly on AMD
- x86/bugs, KVM: Extend speculation control for VIRT_SPEC_CTRL
- x86/speculation: Add virtualized speculative store bypass disable support
- x86/speculation: Rework speculative_store_bypass_update()
- x86/bugs: Unify x86_spec_ctrl_{set_guest,restore_host}
- x86/bugs: Expose x86_spec_ctrl_base directly
- x86/bugs: Remove x86_spec_ctrl_set()
- x86/bugs: Rework spec_ctrl base and mask logic
- x86/speculation, KVM: Implement support for VIRT_SPEC_CTRL/LS_CFG
- KVM: SVM: Implement VIRT_SPEC_CTRL support for SSBD
- x86/bugs: Rename SSBD_NO to SSB_NO
- KVM: VMX: Expose SSBD properly to guests.
* [Ubuntu 16.04] kernel: fix rwlock implementation (LP: #1761674)
- SAUCE: (no-up) s390: fix rwlock implementation
* CVE-2018-7492
- rds: Fix NULL pointer dereference in __rds_rdma_map
* CVE-2018-8781
- drm: udl: Properly check framebuffer mmap offsets
* fsnotify: Fix fsnotify_mark_connector race (LP: #1765564)
- fsnotify: Fix fsnotify_mark_connector race
* Kernel panic on boot (m1.small in cn-north-1) (LP: #1771679)
- x86/xen: Reset VCPU0 info pointer after shared_info remap
* Suspend to idle: Open lid didn't resume (LP: #1771542)
- ACPI / PM: Do not reconfigure GPEs for suspend-to-idle
* CVE-2018-1092
- ext4: fail ext4_iget for root directory if unallocated
* [SRU][Artful] using vfio-pci on a combination of cn8xxx and some PCI devices
results in a kernel panic. (LP: #1770254)
- PCI: Avoid bus reset if bridge itself is broken
- PCI: Mark Cavium CN8xxx to avoid bus reset
- PCI: Avoid slot reset if bridge itself is broken
* Battery drains when laptop is off (shutdown) (LP: #1745646)
- PCI / PM: Check device_may_wakeup() in pci_enable_wake()
* perf record crash: refcount_inc assertion failed (LP: #1769027)
- perf cgroup: Fix refcount usage
- perf xyarray: Fix wrong processing when closing evsel fd
* Dell Latitude 5490/5590 BIOS update 1.1.9 causes black screen at boot
(LP: #1764194)
- drm/i915/bios: filter out invalid DDC pins from VBT child devices
* Fix an issue that some PCI devices get incorrectly suspended (LP: #1764684)
- PCI / PM: Always check PME wakeup capability for runtime wakeup support
* [SRU][Bionic/Artful] fix false positives in W+X checking (LP: #1769696)
- init: fix false positives in W+X checking
* CVE-2018-1068
- netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
* CVE-2018-8087
- mac80211_hwsim: fix possible memory leak in hwsim_new_radio_nl()
* Integrated Webcam Realtek Integrated_Webcam_HD (0bda:58f4) not working in
DELL XPS 13 9370 with firmware 1.50 (LP: #1763748)
- SAUCE: media: uvcvideo: Support realtek's UVC 1.5 device
* unregister_netdevice: waiting for eth0 to become free. Usage count = 5
(LP: #1746474)
- ipv4: convert dst_metrics.refcnt from atomic_t to refcount_t
- xfrm: reuse uncached_list to track xdsts
* Acer Swift sf314-52 power button not managed (LP: #1766054)
- SAUCE: platform/x86: acer-wmi: add another KEY_POWER keycode
* set PINCFG_HEADSET_MIC to parse_flags for Dell precision 3630 (LP: #1766398)
- ALSA: hda/realtek - set PINCFG_HEADSET_MIC to parse_flags
* Change the location for one of two front mics on a lenovo thinkcentre
machine (LP: #1766477)
- ALSA: hda/realtek - adjust the location of one mic
-- Stefan Bader <email address hidden> Mon, 28 May 2018 16:10:36 +0200
-
linux (4.13.0-44.49) artful; urgency=medium
* linux: 4.13.0-44.49 -proposed tracker (LP: #1772951)
* CVE-2018-3639 (x86)
- x86/cpu: Make alternative_msr_write work for 32-bit code
- x86/cpu/AMD: Fix erratum 1076 (CPB bit)
- x86/bugs: Fix the parameters alignment and missing void
- KVM: SVM: Move spec control call after restore of GS
- x86/speculation: Use synthetic bits for IBRS/IBPB/STIBP
- x86/cpufeatures: Disentangle MSR_SPEC_CTRL enumeration from IBRS
- x86/cpufeatures: Disentangle SSBD enumeration
- x86/cpufeatures: Add FEATURE_ZEN
- x86/speculation: Handle HT correctly on AMD
- x86/bugs, KVM: Extend speculation control for VIRT_SPEC_CTRL
- x86/speculation: Add virtualized speculative store bypass disable support
- x86/speculation: Rework speculative_store_bypass_update()
- x86/bugs: Unify x86_spec_ctrl_{set_guest,restore_host}
- x86/bugs: Expose x86_spec_ctrl_base directly
- x86/bugs: Remove x86_spec_ctrl_set()
- x86/bugs: Rework spec_ctrl base and mask logic
- x86/speculation, KVM: Implement support for VIRT_SPEC_CTRL/LS_CFG
- KVM: SVM: Implement VIRT_SPEC_CTRL support for SSBD
- x86/bugs: Rename SSBD_NO to SSB_NO
- bpf: Prevent memory disambiguation attack
- KVM: VMX: Expose SSBD properly to guests.
* [Ubuntu 16.04] kernel: fix rwlock implementation (LP: #1761674)
- SAUCE: (no-up) s390: fix rwlock implementation
* CVE-2018-7492
- rds: Fix NULL pointer dereference in __rds_rdma_map
* CVE-2018-8781
- drm: udl: Properly check framebuffer mmap offsets
* fsnotify: Fix fsnotify_mark_connector race (LP: #1765564)
- fsnotify: Fix fsnotify_mark_connector race
* Kernel panic on boot (m1.small in cn-north-1) (LP: #1771679)
- x86/xen: Reset VCPU0 info pointer after shared_info remap
* Suspend to idle: Open lid didn't resume (LP: #1771542)
- ACPI / PM: Do not reconfigure GPEs for suspend-to-idle
* CVE-2018-1092
- ext4: fail ext4_iget for root directory if unallocated
* [SRU][Artful] using vfio-pci on a combination of cn8xxx and some PCI devices
results in a kernel panic. (LP: #1770254)
- PCI: Avoid bus reset if bridge itself is broken
- PCI: Mark Cavium CN8xxx to avoid bus reset
- PCI: Avoid slot reset if bridge itself is broken
* Battery drains when laptop is off (shutdown) (LP: #1745646)
- PCI / PM: Check device_may_wakeup() in pci_enable_wake()
* perf record crash: refcount_inc assertion failed (LP: #1769027)
- perf cgroup: Fix refcount usage
- perf xyarray: Fix wrong processing when closing evsel fd
* Dell Latitude 5490/5590 BIOS update 1.1.9 causes black screen at boot
(LP: #1764194)
- drm/i915/bios: filter out invalid DDC pins from VBT child devices
* Fix an issue that some PCI devices get incorrectly suspended (LP: #1764684)
- PCI / PM: Always check PME wakeup capability for runtime wakeup support
* [SRU][Bionic/Artful] fix false positives in W+X checking (LP: #1769696)
- init: fix false positives in W+X checking
* CVE-2018-1068
- netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
* CVE-2018-8087
- mac80211_hwsim: fix possible memory leak in hwsim_new_radio_nl()
* Integrated Webcam Realtek Integrated_Webcam_HD (0bda:58f4) not working in
DELL XPS 13 9370 with firmware 1.50 (LP: #1763748)
- SAUCE: media: uvcvideo: Support realtek's UVC 1.5 device
* unregister_netdevice: waiting for eth0 to become free. Usage count = 5
(LP: #1746474)
- ipv4: convert dst_metrics.refcnt from atomic_t to refcount_t
- xfrm: reuse uncached_list to track xdsts
* Acer Swift sf314-52 power button not managed (LP: #1766054)
- SAUCE: platform/x86: acer-wmi: add another KEY_POWER keycode
* set PINCFG_HEADSET_MIC to parse_flags for Dell precision 3630 (LP: #1766398)
- ALSA: hda/realtek - set PINCFG_HEADSET_MIC to parse_flags
* Change the location for one of two front mics on a lenovo thinkcentre
machine (LP: #1766477)
- ALSA: hda/realtek - adjust the location of one mic
-- Stefan Bader <email address hidden> Thu, 24 May 2018 10:31:54 +0200
-
linux (4.13.0-43.48) artful; urgency=medium
* CVE-2018-3639 (powerpc)
- SAUCE: rfi-flush: update H_CPU_* macro names to upstream
- SAUCE: rfi-flush: update plpar_get_cpu_characteristics() signature to
upstream
- SAUCE: update pseries_setup_rfi_flush() capitalization to upstream
- powerpc/pseries: Support firmware disable of RFI flush
- powerpc/powernv: Support firmware disable of RFI flush
- powerpc/64s: Allow control of RFI flush via debugfs
- powerpc/rfi-flush: Move the logic to avoid a redo into the debugfs code
- powerpc/rfi-flush: Always enable fallback flush on pseries
- powerpc/rfi-flush: Differentiate enabled and patched flush types
- powerpc/pseries: Add new H_GET_CPU_CHARACTERISTICS flags
- powerpc: Add security feature flags for Spectre/Meltdown
- powerpc/powernv: Set or clear security feature flags
- powerpc/pseries: Set or clear security feature flags
- powerpc/powernv: Use the security flags in pnv_setup_rfi_flush()
- powerpc/pseries: Use the security flags in pseries_setup_rfi_flush()
- powerpc/pseries: Fix clearing of security feature flags
- powerpc: Move default security feature flags
- powerpc/pseries: Restore default security feature flags on setup
- powerpc/64s: Add support for a store forwarding barrier at kernel entry/exit
* CVE-2018-3639 (x86)
- SAUCE: Add X86_FEATURE_ARCH_CAPABILITIES
- SAUCE: x86: Add alternative_msr_write
- x86/nospec: Simplify alternative_msr_write()
- x86/pti: Do not enable PTI on CPUs which are not vulnerable to Meltdown
- x86/bugs: Concentrate bug detection into a separate function
- x86/bugs: Concentrate bug reporting into a separate function
- x86/msr: Add definitions for new speculation control MSRs
- x86/bugs: Read SPEC_CTRL MSR during boot and re-use reserved bits
- x86/bugs, KVM: Support the combination of guest and host IBRS
- x86/bugs: Expose /sys/../spec_store_bypass
- x86/cpufeatures: Add X86_FEATURE_RDS
- x86/bugs: Provide boot parameters for the spec_store_bypass_disable
mitigation
- x86/bugs/intel: Set proper CPU features and setup RDS
- x86/bugs: Whitelist allowed SPEC_CTRL MSR values
- x86/bugs/AMD: Add support to disable RDS on Fam[15,16,17]h if requested
- x86/KVM/VMX: Expose SPEC_CTRL Bit(2) to the guest
- x86/speculation: Create spec-ctrl.h to avoid include hell
- prctl: Add speculation control prctls
- x86/process: Allow runtime control of Speculative Store Bypass
- x86/speculation: Add prctl for Speculative Store Bypass mitigation
- nospec: Allow getting/setting on non-current task
- proc: Provide details on speculation flaw mitigations
- seccomp: Enable speculation flaw mitigations
- SAUCE: x86/bugs: Honour SPEC_CTRL default
- x86/bugs: Make boot modes __ro_after_init
- prctl: Add force disable speculation
- seccomp: Use PR_SPEC_FORCE_DISABLE
- seccomp: Add filter flag to opt-out of SSB mitigation
- seccomp: Move speculation migitation control to arch code
- x86/speculation: Make "seccomp" the default mode for Speculative Store
Bypass
- x86/bugs: Rename _RDS to _SSBD
- proc: Use underscores for SSBD in 'status'
- Documentation/spec_ctrl: Do some minor cleanups
- x86/bugs: Fix __ssb_select_mitigation() return type
- x86/bugs: Make cpu_show_common() static
* LSM Stacking prctl values should be redefined as to not collide with
upstream prctls (LP: #1769263) // CVE-2018-3639
- SAUCE: LSM stacking: adjust prctl values
linux (4.13.0-42.47) artful; urgency=medium
* linux: 4.13.0-42.47 -proposed tracker (LP: #1769993)
* arm64: fix CONFIG_DEBUG_WX address reporting (LP: #1765850)
- arm64: fix CONFIG_DEBUG_WX address reporting
* HiSilicon HNS NIC names are truncated in /proc/interrupts (LP: #1765977)
- net: hns: Avoid action name truncation
* CVE-2017-18208
- mm/madvise.c: fix madvise() infinite loop under special circumstances
* CVE-2018-8822
- staging: ncpfs: memory corruption in ncp_read_kernel()
* CVE-2017-18203
- dm: fix race between dm_get_from_kobject() and __dm_destroy()
* CVE-2017-17449
- netlink: Add netns check on taps
* CVE-2017-17975
- media: usbtv: prevent double free in error case
* [8086:3e92] display becomes blank after S3 (LP: #1763271)
- drm/i915/edp: Allow alternate fixed mode for eDP if available.
- drm/i915/dp: rename intel_dp_is_edp to intel_dp_is_port_edp
- drm/i915/dp: make is_edp non-static and rename to intel_dp_is_edp
- drm/i915/edp: Do not do link training fallback or prune modes on EDP
* sky2 gigabit ethernet driver sometimes stops working after lid-open resume
from sleep (88E8055) (LP: #1758507)
- sky2: Increase D3 delay to sky2 stops working after suspend
* perf vendor events arm64: Enable JSON events for ThunderX2 B0 (LP: #1760712)
- perf vendor events arm64: Enable JSON events for ThunderX2 B0
* No network with e1000e driver on 4.13.0-38-generic (LP: #1762693)
- e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
* /dev/ipmi enumeration flaky on Cavium Sabre nodes (LP: #1762812)
- i2c: xlp9xx: return ENXIO on slave address NACK
- i2c: xlp9xx: Handle transactions with I2C_M_RECV_LEN properly
- i2c: xlp9xx: Check for Bus state before every transfer
- i2c: xlp9xx: Handle NACK on DATA properly
* "ip a" command on a guest VM shows UNKNOWN status (LP: #1761534)
- virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS
* fix regression in mm/hotplug, allows NVIDIA driver to work (LP: #1761104)
- SAUCE: Fix revert "mm, memory_hotplug: do not associate hotadded memory to
zones until online"
* ibrs/ibpb fixes result in excessive kernel logging (LP: #1755627)
- SAUCE: remove ibrs_dump sysctl interface
-- Stefan Bader <email address hidden> Tue, 15 May 2018 07:39:26 +0200
-
linux (4.13.0-42.47) artful; urgency=medium
* linux: 4.13.0-42.47 -proposed tracker (LP: #1769993)
* arm64: fix CONFIG_DEBUG_WX address reporting (LP: #1765850)
- arm64: fix CONFIG_DEBUG_WX address reporting
* HiSilicon HNS NIC names are truncated in /proc/interrupts (LP: #1765977)
- net: hns: Avoid action name truncation
* CVE-2017-18208
- mm/madvise.c: fix madvise() infinite loop under special circumstances
* CVE-2018-8822
- staging: ncpfs: memory corruption in ncp_read_kernel()
* CVE-2017-18203
- dm: fix race between dm_get_from_kobject() and __dm_destroy()
* CVE-2017-17449
- netlink: Add netns check on taps
* CVE-2017-17975
- media: usbtv: prevent double free in error case
* [8086:3e92] display becomes blank after S3 (LP: #1763271)
- drm/i915/edp: Allow alternate fixed mode for eDP if available.
- drm/i915/dp: rename intel_dp_is_edp to intel_dp_is_port_edp
- drm/i915/dp: make is_edp non-static and rename to intel_dp_is_edp
- drm/i915/edp: Do not do link training fallback or prune modes on EDP
* sky2 gigabit ethernet driver sometimes stops working after lid-open resume
from sleep (88E8055) (LP: #1758507)
- sky2: Increase D3 delay to sky2 stops working after suspend
* perf vendor events arm64: Enable JSON events for ThunderX2 B0 (LP: #1760712)
- perf vendor events arm64: Enable JSON events for ThunderX2 B0
* No network with e1000e driver on 4.13.0-38-generic (LP: #1762693)
- e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
* /dev/ipmi enumeration flaky on Cavium Sabre nodes (LP: #1762812)
- i2c: xlp9xx: return ENXIO on slave address NACK
- i2c: xlp9xx: Handle transactions with I2C_M_RECV_LEN properly
- i2c: xlp9xx: Check for Bus state before every transfer
- i2c: xlp9xx: Handle NACK on DATA properly
* "ip a" command on a guest VM shows UNKNOWN status (LP: #1761534)
- virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS
* fix regression in mm/hotplug, allows NVIDIA driver to work (LP: #1761104)
- SAUCE: Fix revert "mm, memory_hotplug: do not associate hotadded memory to
zones until online"
* ibrs/ibpb fixes result in excessive kernel logging (LP: #1755627)
- SAUCE: remove ibrs_dump sysctl interface
-- Kleber Sacilotto de Souza <email address hidden> Mon, 07 May 2018 15:06:58 +0200
-
linux (4.13.0-41.46) artful; urgency=medium
* CVE-2018-8897
- x86/entry/64: Don't use IST entry for #BP stack
* CVE-2018-1087
- kvm/x86: fix icebp instruction handling
* CVE-2018-1000199
- perf/hwbp: Simplify the perf-hwbp code, fix documentation
-- Kleber Sacilotto de Souza <email address hidden> Wed, 02 May 2018 11:58:49 +0200
-
linux (4.13.0-40.45) artful; urgency=medium
* linux: 4.13.0-40.45 -proposed tracker (LP: #1766592)
* arm64: fix CONFIG_DEBUG_WX address reporting (LP: #1765850)
- arm64: fix CONFIG_DEBUG_WX address reporting
* HiSilicon HNS NIC names are truncated in /proc/interrupts (LP: #1765977)
- net: hns: Avoid action name truncation
* CVE-2017-18208
- mm/madvise.c: fix madvise() infinite loop under special circumstances
* CVE-2018-8822
- staging: ncpfs: memory corruption in ncp_read_kernel()
* CVE-2017-18203
- dm: fix race between dm_get_from_kobject() and __dm_destroy()
* CVE-2017-17449
- netlink: Add netns check on taps
* CVE-2017-17975
- media: usbtv: prevent double free in error case
* [8086:3e92] display becomes blank after S3 (LP: #1763271)
- drm/i915/edp: Allow alternate fixed mode for eDP if available.
- drm/i915/dp: rename intel_dp_is_edp to intel_dp_is_port_edp
- drm/i915/dp: make is_edp non-static and rename to intel_dp_is_edp
- drm/i915/edp: Do not do link training fallback or prune modes on EDP
* sky2 gigabit ethernet driver sometimes stops working after lid-open resume
from sleep (88E8055) (LP: #1758507)
- sky2: Increase D3 delay to sky2 stops working after suspend
* perf vendor events arm64: Enable JSON events for ThunderX2 B0 (LP: #1760712)
- perf vendor events arm64: Enable JSON events for ThunderX2 B0
* No network with e1000e driver on 4.13.0-38-generic (LP: #1762693)
- e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
* /dev/ipmi enumeration flaky on Cavium Sabre nodes (LP: #1762812)
- i2c: xlp9xx: return ENXIO on slave address NACK
- i2c: xlp9xx: Handle transactions with I2C_M_RECV_LEN properly
- i2c: xlp9xx: Check for Bus state before every transfer
- i2c: xlp9xx: Handle NACK on DATA properly
* "ip a" command on a guest VM shows UNKNOWN status (LP: #1761534)
- virtio-net: Fix operstate for virtio when no VIRTIO_NET_F_STATUS
* fix regression in mm/hotplug, allows NVIDIA driver to work (LP: #1761104)
- SAUCE: Fix revert "mm, memory_hotplug: do not associate hotadded memory to
zones until online"
* ibrs/ibpb fixes result in excessive kernel logging (LP: #1755627)
- SAUCE: remove ibrs_dump sysctl interface
-- Khalid Elmously <email address hidden> Wed, 25 Apr 2018 02:34:24 +0000
-
linux (4.13.0-39.44) artful; urgency=medium
* linux: 4.13.0-39.44 -proposed tracker (LP: #1761456)
* intel-microcode 3.20180312.0 causes lockup at login screen(w/ linux-
image-4.13.0-37-generic) (LP: #1759920) // CVE-2017-5715 (Spectre v2
Intel) // CVE-2017-5754
- x86/mm: Reinitialize TLB state on hotplug and resume
* intel-microcode 3.20180312.0 causes lockup at login screen(w/ linux-
image-4.13.0-37-generic) (LP: #1759920) // CVE-2017-5715 (Spectre v2 Intel)
- Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
thread"
- x86/speculation: Use Indirect Branch Prediction Barrier in context switch
* DKMS driver builds fail with: Cannot use CONFIG_STACK_VALIDATION=y, please
install libelf-dev, libelf-devel or elfutils-libelf-devel (LP: #1760876)
- [Packaging] include the retpoline extractor in the headers
* retpoline hints: primary infrastructure and initial hints (LP: #1758856)
- [Packaging] retpoline-extract: flag *0xNNN(%reg) branches
- x86/speculation, objtool: Annotate indirect calls/jumps for objtool
- x86/speculation, objtool: Annotate indirect calls/jumps for objtool on 32bit
- x86/paravirt, objtool: Annotate indirect calls
- [Packaging] retpoline -- add safe usage hint support
- [Packaging] retpoline-check -- only report additions
- [Packaging] retpoline -- widen indirect call/jmp detection
- [Packaging] retpoline -- elide %rip relative indirections
- [Packaging] retpoline -- clear hint information from packages
- KVM: x86: Make indirect calls in emulator speculation safe
- KVM: VMX: Make indirect call speculation safe
- x86/boot, objtool: Annotate indirect jump in secondary_startup_64()
- SAUCE: early/late -- annotate indirect calls in early/late initialisation
code
- SAUCE: vga_set_mode -- avoid jump tables
- [Config] retpoline -- switch to new format
- [Packaging] retpoline hints -- handle missing files when RETPOLINE not
enabled
- [Packaging] final-checks -- remove check for empty retpoline files
* retpoline: ignore %cs:0xNNN constant indirections (LP: #1752655)
- [Packaging] retpoline -- elide %cs:0xNNNN constants on i386
* zfs system process hung on container stop/delete (LP: #1754584)
- SAUCE: Fix non-prefaulted page deadlock (LP: #1754584)
* zfs-linux 0.6.5.11-1ubuntu5 ADT test failure with linux 4.15.0-1.2
(LP: #1737761)
- SAUCE: (noup) Update zfs to 0.6.5.11-1ubuntu3.2
* AT_BASE_PLATFORM in AUXV is absent on kernels available on Ubuntu 17.10
(LP: #1759312)
- powerpc/64s: Fix NULL AT_BASE_PLATFORM when using DT CPU features
* btrfs and tar sparse truncate archives (LP: #1757565)
- Btrfs: move definition of the function btrfs_find_new_delalloc_bytes
- Btrfs: fix reported number of inode blocks after buffered append writes
* efifb broken on ThunderX-based Gigabyte nodes (LP: #1758375)
- drivers/fbdev/efifb: Allow BAR to be moved instead of claiming it
* Intel i40e PF reset due to incorrect MDD detection (continues...)
(LP: #1723127)
- i40e/i40evf: Account for frags split over multiple descriptors in check
linearize
* Fix an issue that when system in S3, USB keyboard can't wake up the system.
(LP: #1759511)
- ACPI / PM: Allow deeper wakeup power states with no _SxD nor _SxW
* [8086:3e92] display becomes blank after S3 (LP: #1759188)
- drm/i915: Apply Display WA #1183 on skl, kbl, and cfl
* add audio kernel patches for Raven (LP: #1758364)
- ALSA: hda: Add Raven PCI ID
- ALSA: hda/realtek - Fix ALC700 family no sound issue
* Cpu utilization showing system time for kvm guests (performance) (sysstat)
(LP: #1755979)
- KVM: PPC: Book3S HV: Fix guest time accounting with VIRT_CPU_ACCOUNTING_GEN
* Kernel panic on a nfsroot system (LP: #1734327)
- Revert "UBUNTU: SAUCE: LSM stacking: add stacking support to apparmor
network hooks"
- Revert "UBUNTU: SAUCE: LSM stacking: LSM: Infrastructure management of the
remaining blobs"
* can't record sound via front headset port on the Dell Precision 3630
(LP: #1759088)
- ALSA: hda/realtek - Fix Dell headset Mic can't record
* speaker can't output sound anymore after system resumes from S3 on a lenovo
machine with alc257 (LP: #1758829)
- ALSA: hda/realtek - Fix speaker no sound after system resume
* hda driver initialization takes too much time on the machine with coffeelake
audio controller [8086:a348] (LP: #1758800)
- ALSA: hda - Force polling mode on CFL for fixing codec communication
* Let headset-mode initialization be called on Dell Precision 3930
(LP: #1757584)
- ALSA: hda/realtek - Add headset mode support for Dell laptop
* ubuntu_zram_smoke test will cause soft lockup on Artful ThunderX ARM64
(LP: #1755073)
- SAUCE: crypto: thunderx_zip: Fix fallout from CONFIG_VMAP_STACK
* [Hyper-V] include kvp fix for Avoid reading past allocated blocks from KVP
file (LP: #1750349)
- hv: kvp: Avoid reading past allocated blocks from KVP file
* IMA policy parsing is broken in 4.13 (LP: #1755804)
- ima/policy: fix parsing of fsuuid
* external mic not work on Dell OptiPlex 7460 AIO (LP: #1755954)
- ALSA: hda/realtek - Add headset mode support for Dell laptop
* sbsa watchdog crashes thunderx2 system (LP: #1755595)
- watchdog: sbsa: use 32-bit read for WCV
* CVE-2018-8043
- net: phy: mdio-bcm-unimac: fix potential NULL dereference in
unimac_mdio_probe()
-- Stefan Bader <email address hidden> Thu, 05 Apr 2018 14:47:00 +0200
-
linux (4.13.0-38.43) artful; urgency=medium
* linux: 4.13.0-38.43 -proposed tracker (LP: #1755762)
* Servers going OOM after updating kernel from 4.10 to 4.13 (LP: #1748408)
- i40e: Fix memory leak related filter programming status
- i40e: Add programming descriptors to cleaned_count
* [SRU] Lenovo E41 Mic mute hotkey is not responding (LP: #1753347)
- platform/x86: ideapad-laptop: Increase timeout to wait for EC answer
* fails to dump with latest kpti fixes (LP: #1750021)
- kdump: write correct address of mem_section into vmcoreinfo
* headset mic can't be detected on two Dell machines (LP: #1748807)
- ALSA: hda/realtek - Support headset mode for ALC215/ALC285/ALC289
- ALSA: hda - Fix headset mic detection problem for two Dell machines
- ALSA: hda - Fix a wrong FIXUP for alc289 on Dell machines
* CIFS SMB2/SMB3 does not work for domain based DFS (LP: #1747572)
- CIFS: make IPC a regular tcon
- CIFS: use tcon_ipc instead of use_ipc parameter of SMB2_ioctl
- CIFS: dump IPC tcon in debug proc file
* i2c-thunderx: erroneous error message "unhandled state: 0" (LP: #1754076)
- i2c: octeon: Prevent error message on bus error
* hisi_sas: Add disk LED support (LP: #1752695)
- scsi: hisi_sas: directly attached disk LED feature for v2 hw
* EDAC, sb_edac: Backport 1 patch to Ubuntu 17.10 (Fix missing DIMM sysfs
entries with KNL SNC2/SNC4 mode) (LP: #1743856)
- EDAC, sb_edac: Fix missing DIMM sysfs entries with KNL SNC2/SNC4 mode
* [regression] Colour banding and artefacts appear system-wide on an Asus
Zenbook UX303LA with Intel HD 4400 graphics (LP: #1749420)
- drm/edid: Add 6 bpc quirk for CPT panel in Asus UX303LA
* DVB Card with SAA7146 chipset not working (LP: #1742316)
- vmalloc: fix __GFP_HIGHMEM usage for vmalloc_32 on 32b systems
* [Asus UX360UA] battery status in unity-panel is not changing when battery is
being charged (LP: #1661876) // AC adapter status not detected on Asus
ZenBook UX410UAK (LP: #1745032)
- ACPI / battery: Add quirk for Asus UX360UA and UX410UAK
* ASUS UX305LA - Battery state not detected correctly (LP: #1482390)
- ACPI / battery: Add quirk for Asus GL502VSK and UX305LA
* support thunderx2 vendor pmu events (LP: #1747523)
- perf pmu: Extract function to get JSON alias map
- perf pmu: Pass pmu as a parameter to get_cpuid_str()
- perf tools arm64: Add support for get_cpuid_str function.
- perf pmu: Add helper function is_pmu_core to detect PMU CORE devices
- perf vendor events arm64: Add ThunderX2 implementation defined pmu core
events
- perf pmu: Add check for valid cpuid in perf_pmu__find_map()
* lpfc.ko module doesn't work (LP: #1746970)
- scsi: lpfc: Fix loop mode target discovery
* Ubuntu 17.10 crashes on vmalloc.c (LP: #1739498)
- powerpc/mm/book3s64: Make KERN_IO_START a variable
- powerpc/mm/slb: Move comment next to the code it's referring to
- powerpc/mm/hash64: Make vmalloc 56T on hash
* ethtool -p fails to light NIC LED on HiSilicon D05 systems (LP: #1748567)
- net: hns: add ACPI mode support for ethtool -p
* CVE-2017-17807
- KEYS: add missing permission check for request_key() destination
* [Artful SRU] Fix capsule update regression (LP: #1746019)
- efi/capsule-loader: Reinstate virtual capsule mapping
* [Artful/Bionic] [Config] enable EDAC_GHES for ARM64 (LP: #1747746)
- Ubuntu: [Config] enable EDAC_GHES for ARM64
* linux-tools: perf incorrectly linking libbfd (LP: #1748922)
- SAUCE: tools -- add ability to disable libbfd
- [Packaging] correct disablement of libbfd
* Cherry pick c96f5471ce7d for delayacct fix (LP: #1747769)
- delayacct: Account blkio completion on the correct task
* Error in CPU frequency reporting when nominal and min pstates are same
(cpufreq) (LP: #1746174)
- cpufreq: powernv: Dont assume distinct pstate values for nominal and pmin
* retpoline abi files are empty on i386 (LP: #1751021)
- [Packaging] retpoline-extract -- instantiate retpoline files for i386
- [Packaging] final-checks -- sanity checking ABI contents
- [Packaging] final-checks -- check for empty retpoline files
* [P9,Power NV][WSP][Ubuntu 1804] : "Kernel access of bad area " when grouping
different pmu events using perf fuzzer . (perf:) (LP: #1746225)
- powerpc/perf: Fix oops when grouping different pmu events
* bnx2x_attn_int_deasserted3:4323 MC assert! (LP: #1715519) //
CVE-2018-1000026
- net: create skb_gso_validate_mac_len()
- bnx2x: disable GSO where gso_size is too big for hardware
* Ubuntu16.04.03: ISAv3 initialize MMU registers before setting partition
table (LP: #1736145)
- powerpc/64s: Initialize ISAv3 MMU registers before setting partition table
* powerpc/powernv: Flush console before platform error reboot (LP: #1735159)
- powerpc/powernv: Flush console before platform error reboot
* Touchpad stops working after a few seconds in Lenovo ideapad 320
(LP: #1732056)
- pinctrl/amd: fix masking of GPIO interrupts
* [Artful][Wyse 3040] System hang when trying to enable an offlined CPU core
(LP: #1736393)
- SAUCE: drm/i915:Don't set chip specific data
- SAUCE: drm/i915: make previous commit affects Wyse 3040 only
* ppc64el: Do not call ibm,os-term on panic (LP: #1736954)
- powerpc: Do not call ppc_md.panic in fadump panic notifier
* Artful update to 4.13.16 stable release (LP: #1744213)
- tcp_nv: fix division by zero in tcpnv_acked()
- net: vrf: correct FRA_L3MDEV encode type
- tcp: do not mangle skb->cb[] in tcp_make_synack()
- net: systemport: Correct IPG length settings
- netfilter/ipvs: clear ipvs_property flag when SKB net namespace changed
- l2tp: don't use l2tp_tunnel_find() in l2tp_ip and l2tp_ip6
- bonding: discard lowest hash bit for 802.3ad layer3+4
- net: cdc_ether: fix divide by 0 on bad descriptors
- net: qmi_wwan: fix divide by 0 on bad descriptors
- qmi_wwan: Add missing skb_reset_mac_header-call
- net: usb: asix: fill null-ptr-deref in asix_suspend
- tcp: gso: avoid refcount_t warning from tcp_gso_segment()
- tcp: fix tcp_fastretrans_alert warning
- vlan: fix a use-after-free in vlan_device_event()
- net/mlx5: Cancel health poll before sending panic teardown command
- net/mlx5e: Set page to null in case dma mapping fails
- af_netlink: ensure that NLMSG_DONE never fails in dumps
- vxlan: fix the issue that neigh proxy blocks all icmpv6 packets
- net: cdc_ncm: GetNtbFormat endian fix
- fealnx: Fix building error on MIPS
- net/sctp: Always set scope_id in sctp_inet6_skb_msgname
- ima: do not update security.ima if appraisal status is not INTEGRITY_PASS
- serial: omap: Fix EFR write on RTS deassertion
- serial: 8250_fintek: Fix finding base_port with activated SuperIO
- tpm-dev-common: Reject too short writes
- rcu: Fix up pending cbs check in rcu_prepare_for_idle
- ocfs2: fix cluster hang after a node dies
- ocfs2: should wait dio before inode lock in ocfs2_setattr()
- ipmi: fix unsigned long underflow
- mm/page_alloc.c: broken deferred calculation
- mm/page_ext.c: check if page_ext is not prepared
- x86/cpu/amd: Derive L3 shared_cpu_map from cpu_llc_shared_mask
- coda: fix 'kernel memory exposure attempt' in fsync
- Linux 4.13.16
* Artful update to 4.13.15 stable release (LP: #1744212)
- media: imon: Fix null-ptr-deref in imon_probe
- media: dib0700: fix invalid dvb_detach argument
- crypto: dh - Fix double free of ctx->p
- crypto: dh - Don't permit 'p' to be 0
- crypto: dh - Don't permit 'key' or 'g' size longer than 'p'
- USB: early: Use new USB product ID and strings for DbC device
- USB: usbfs: compute urb->actual_length for isochronous
- USB: Add delay-init quirk for Corsair K70 LUX keyboards
- usb: gadget: f_fs: Fix use-after-free in ffs_free_inst
- USB: serial: metro-usb: stop I/O after failed open
- USB: serial: Change DbC debug device binding ID
- USB: serial: qcserial: add pid/vid for Sierra Wireless EM7355 fw update
- USB: serial: garmin_gps: fix I/O after failed probe and remove
- USB: serial: garmin_gps: fix memory leak on probe errors
- x86/MCE/AMD: Always give panic severity for UC errors in kernel context
- platform/x86: peaq-wmi: Add DMI check before binding to the WMI interface
- platform/x86: peaq_wmi: Fix missing terminating entry for peaq_dmi_table
- HID: cp2112: add HIDRAW dependency
- HID: wacom: generic: Recognize WACOM_HID_WD_PEN as a type of pen collection
- staging: wilc1000: Fix bssid buffer offset in Txq
- staging: ccree: fix 64 bit scatter/gather DMA ops
- staging: greybus: spilib: fix use-after-free after deregistration
- staging: vboxvideo: Fix reporting invalid suggested-offset-properties
- staging: rtl8188eu: Revert 4 commits breaking ARP
- Linux 4.13.15
* time drifting on linux-hwe kernels (LP: #1744988)
- x86/tsc: Future-proof native_calibrate_tsc()
- x86/tsc: Fix erroneous TSC rate on Skylake Xeon
- x86/tsc: Print tsc_khz, when it differs from cpu_khz
* Please backport vmd suspend/resume patches to 16.04 hwe (LP: #1745508)
- PCI: vmd: Free up IRQs on suspend path
* CVE-2017-17448
- netfilter: nfnetlink_cthelper: Add missing permission checks
* Dell XPS 13 9360 bluetooth (Atheros) won't connect after resume
(LP: #1744712)
- Bluetooth: btusb: Restore QCA Rome suspend/resume fix with a "rewritten"
version
* [SRU] TrackPoint: middle button doesn't work on TrackPoint-compatible
device. (LP: #1746002)
- Input: trackpoint - force 3 buttons if 0 button is reported
* TB16 dock ethernet corrupts data with hw checksum silently failing
(LP: #1729674)
- r8152: disable RX aggregation on Dell TB16 dock
* [Artful] Realtek ALC225: 2 secs noise when a headset plugged in
(LP: #1744058)
- Revert "UBUNTU: SAUCE: ALSA: hda/realtek - Add support headset mode for DELL
WYSE"
- SAUCE: ALSA: hda/realtek - Add support headset mode for DELL WYSE
- ALSA: hda/realtek - update ALC225 depop optimize
* [A] skb leak in vhost_net / tun / tap (LP: #1738975)
- vhost: fix skb leak in handle_rx()
- tap: free skb if flags error
- tun: free skb in early errors
* Commit d9018976cdb6 missing in Kernels <4.14.x preventing lasting fix of
Intel SPI bug on certain serial flash (LP: #1742696)
- mfd: lpc_ich: Do not touch SPI-NOR write protection bit on Haswell/Broadwell
- spi-nor: intel-spi: Fix broken software sequencing codes
* CVE-2018-5332
- RDS: Heap OOB write in rds_message_alloc_sgs()
* [A] KVM Windows BSOD on 4.13.x (LP: #1738972)
- KVM: x86: fix APIC page invalidation
* elantech touchpad of Lenovo L480/580 failed to detect hw_version
(LP: #1733605)
- Input: elantech - add new icbody type 15
* [SRU] External HDMI monitor failed to show screen on Lenovo X1 series
(LP: #1738523)
- SAUCE: drm/i915: Disable writing of TMDS_OE on Lenovo ThinkPad X1 series
* ubuntu/xr-usb-serial didn't get built in zesty and artful (LP: #1733281)
- SAUCE: make sure ubuntu/xr-usb-serial builds for x86
* Disabling zfs does not always disable module checks for the zfs modules
(LP: #1737176)
- [Packaging] disable zfs module checks when zfs is disabled
* CVE-2017-17806
- crypto: hmac - require that the underlying hash algorithm is unkeyed
* CVE-2017-17805
- crypto: salsa20 - fix blkcipher_walk API usage
* CVE-2017-16994
- mm/pagewalk.c: report holes in hugetlb ranges
* CVE-2017-17450
- netfilter: xt_osf: Add missing permission checks
* apparmor profile load in stacked policy container fails (LP: #1746463)
- SAUCE: apparmor: fix display of .ns_name for containers
* CVE-2017-15129
- net: Fix double free and memory corruption in get_net_ns_by_id()
* CVE-2018-5344
- loop: fix concurrent lo_open/lo_release
* CVE-2017-1000407
- KVM: VMX: remove I/O port 0x80 bypass on Intel hosts
* CVE-2017-0861
- ALSA: pcm: prevent UAF in snd_pcm_info
* perf stat segfaults on uncore events w/o -a (LP: #1745246)
- perf xyarray: Save max_x, max_y
- perf evsel: Fix buffer overflow while freeing events
* Support cppc-cpufreq driver on ThunderX2 systems (LP: #1745007)
- mailbox: PCC: Move the MAX_PCC_SUBSPACES definition to header file
- ACPI / CPPC: Make CPPC ACPI driver aware of PCC subspace IDs
- ACPI / CPPC: Fix KASAN global out of bounds warning
- ACPI: CPPC: remove initial assignment of pcc_ss_data
* P-state not working in kernel 4.13 (LP: #1743269)
- x86 / CPU: Avoid unnecessary IPIs in arch_freq_get_on_cpu()
- x86 / CPU: Always show current CPU frequency in /proc/cpuinfo
* Regression: KVM no longer supports Intel CPUs without Virtual NMI
(LP: #1741655)
- kvm: vmx: Reinstate support for CPUs without virtual NMI
* System hang with Linux kernel due to mainline commit 24247aeeabe
(LP: #1733662)
- x86/intel_rdt/cqm: Prevent use after free
* $(LOCAL_ENV_CC) and $(LOCAL_ENV_DISTCC_HOSTS) should be properly quoted
(LP: #1744077)
- [Debian] pass LOCAL_ENV_CC and LOCAL_ENV_DISTCC_HOSTS properly
* the wifi driver is always hard blocked on a lenovo laptop (LP: #1743672)
- ACPI: EC: Fix possible issues related to EC initialization order
* text VTs are unavailable on desktop after upgrade to Ubuntu 17.10
(LP: #1724911)
- drm/i915/fbdev: Always forward hotplug events
* Samsung SSD 960 EVO 500GB refused to change power state (LP: #1705748)
- nvme-pci: disable APST on Samsung SSD 960 EVO + ASUS PRIME B350M-A
* [0cf3:e010] QCA6174A XR failed to pair with bt 4.0 device (LP: #1741166)
- Bluetooth: btusb: Add support for 0cf3:e010
* CVE-2017-17741
- KVM: Fix stack-out-of-bounds read in write_mmio
* CVE-2018-5333
- RDS: null pointer dereference in rds_atomic_free_op
* [800 G3 SFF] [800 G3 DM]External microphone of headset(3-ring) is working,
2-ring mic not working, both not shown in sound settings (LP: #1740974)
- ALSA: hda - Add MIC_NO_PRESENCE fixup for 2 HP machines
* Two front mics can't work on a lenovo machine (LP: #1740973)
- ALSA: hda - change the location for one mic on a Lenovo machine
* No external microphone be detected via headset jack on a dell machine
(LP: #1740972)
- ALSA: hda - fix headset mic detection issue on a Dell machine
* Can't detect external headset via line-out jack on some Dell machines
(LP: #1740971)
- ALSA: hda/realtek - Fix Dell AIO LineOut issue
* Support realtek new codec alc257 in the alsa hda driver (LP: #1738911)
- ALSA: hda/realtek - New codec support for ALC257
* Add support for 16g huge pages on Ubuntu 16.04.2 PowerNV (LP: #1706247)
- powerpc/mm/hugetlb: Allow runtime allocation of 16G.
- powerpc/mm/hugetlb: Add support for reserving gigantic huge pages via kernel
command line
- mm/hugetlb: Allow arch to override and call the weak function
* the kernel is blackholing IPv6 packets to linkdown nexthops (LP: #1738219)
- ipv6: Do not consider linkdown nexthops during multipath
* e1000e in 4.4.0-97-generic breaks 82574L under heavy load. (LP: #1730550)
- e1000e: Avoid receiver overrun interrupt bursts
- e1000e: Separate signaling for link check/link up
* Ubuntu 17.10: Include patch "crypto: vmx - Use skcipher for ctr fallback"
(LP: #1732978)
- crypto: vmx - Use skcipher for ctr fallback
* QCA Rome bluetooth can not wakeup after USB runtime suspended.
(LP: #1737890)
- Bluetooth: btusb: driver to enable the usb-wakeup feature
* /dev/bcache/by-uuid links not created after reboot (LP: #1729145)
- SAUCE: (no-up) bcache: decouple emitting a cached_dev CHANGE uevent
* Some VMs fail to reboot with "watchdog: BUG: soft lockup - CPU#0 stuck for
22s! [systemd:1]" (LP: #1730717)
- SAUCE: exec: fix lockup because retry loop may never exit
* Request to backport cxlflash patches to 16.04 HWE Kernel (LP: #1730515)
- scsi: cxlflash: Use derived maximum write same length
- scsi: cxlflash: Allow cards without WWPN VPD to configure
- scsi: cxlflash: Derive pid through accessors
* vagrant artful64 box filesystem too small (LP: #1726818)
- block: factor out __blkdev_issue_zero_pages()
- block: cope with WRITE ZEROES failing in blkdev_issue_zeroout()
* Artful update to 4.13.14 stable release (LP: #1744121)
- ppp: fix race in ppp device destruction
- gso: fix payload length when gso_size is zero
- ipv4: Fix traffic triggered IPsec connections.
- ipv6: Fix traffic triggered IPsec connections.
- netlink: do not set cb_running if dump's start() errs
- net: call cgroup_sk_alloc() earlier in sk_clone_lock()
- macsec: fix memory leaks when skb_to_sgvec fails
- l2tp: check ps->sock before running pppol2tp_session_ioctl()
- netlink: fix netlink_ack() extack race
- sctp: add the missing sock_owned_by_user check in sctp_icmp_redirect
- tcp/dccp: fix ireq->opt races
- packet: avoid panic in packet_getsockopt()
- geneve: Fix function matching VNI and tunnel ID on big-endian
- net: bridge: fix returning of vlan range op errors
- soreuseport: fix initialization race
- ipv6: flowlabel: do not leave opt->tot_len with garbage
- sctp: full support for ipv6 ip_nonlocal_bind & IP_FREEBIND
- tcp/dccp: fix lockdep splat in inet_csk_route_req()
- tcp/dccp: fix other lockdep splats accessing ireq_opt
- net: dsa: check master device before put
- net/unix: don't show information about sockets from other namespaces
- tap: double-free in error path in tap_open()
- net/mlx5: Fix health work queue spin lock to IRQ safe
- net/mlx5e: Properly deal with encap flows add/del under neigh update
- ipip: only increase err_count for some certain type icmp in ipip_err
- ip6_gre: only increase err_count for some certain type icmpv6 in ip6gre_err
- ip6_gre: update dst pmtu if dev mtu has been updated by toobig in
__gre6_xmit
- tcp: refresh tp timestamp before tcp_mtu_probe()
- tap: reference to KVA of an unloaded module causes kernel panic
- sctp: reset owner sk for data chunks on out queues when migrating a sock
- net_sched: avoid matching qdisc with zero handle
- l2tp: hold tunnel in pppol2tp_connect()
- ipv6: addrconf: increment ifp refcount before ipv6_del_addr()
- tcp: fix tcp_mtu_probe() vs highest_sack
- mac80211: accept key reinstall without changing anything
- mac80211: use constant time comparison with keys
- mac80211: don't compare TKIP TX MIC key in reinstall prevention
- usb: usbtest: fix NULL pointer dereference
- Input: ims-psu - check if CDC union descriptor is sane
- EDAC, sb_edac: Don't create a second memory controller if HA1 is not present
- dmaengine: dmatest: warn user when dma test times out
- Linux 4.13.14
-- Stefan Bader <email address hidden> Wed, 14 Mar 2018 11:38:23 +0100
-
linux (4.13.0-37.42) artful; urgency=medium
* linux: 4.13.0-37.42 -proposed tracker (LP: #1751798)
* CVE-2017-5715 // CVE-2017-5753 // CVE-2017-5754
- arm64: Add ASM_BUG()
- arm64: consistently use bl for C exception entry
- arm64: move non-entry code out of .entry.text
- arm64: unwind: avoid percpu indirection for irq stack
- arm64: unwind: disregard frame.sp when validating frame pointer
- arm64: mm: Fix set_memory_valid() declaration
- arm64: Convert __inval_cache_range() to area-based
- arm64: Expose DC CVAP to userspace
- arm64: Handle trapped DC CVAP
- arm64: Implement pmem API support
- arm64: uaccess: Implement *_flushcache variants
- arm64/vdso: Support mremap() for vDSO
- arm64: unwind: reference pt_regs via embedded stack frame
- arm64: unwind: remove sp from struct stackframe
- arm64: uaccess: Add the uaccess_flushcache.c file
- arm64: fix pmem interface definition
- arm64: compat: Remove leftover variable declaration
- fork: allow arch-override of VMAP stack alignment
- arm64: kernel: remove {THREAD,IRQ_STACK}_START_SP
- arm64: factor out PAGE_* and CONT_* definitions
- arm64: clean up THREAD_* definitions
- arm64: clean up irq stack definitions
- arm64: move SEGMENT_ALIGN to <asm/memory.h>
- efi/arm64: add EFI_KIMG_ALIGN
- arm64: factor out entry stack manipulation
- arm64: assembler: allow adr_this_cpu to use the stack pointer
- arm64: use an irq stack pointer
- arm64: add basic VMAP_STACK support
- arm64: add on_accessible_stack()
- arm64: add VMAP_STACK overflow detection
- arm64: Convert pte handling from inline asm to using (cmp)xchg
- kvm: arm64: Convert kvm_set_s2pte_readonly() from inline asm to cmpxchg()
- arm64: Move PTE_RDONLY bit handling out of set_pte_at()
- arm64: Ignore hardware dirty bit updates in ptep_set_wrprotect()
- arm64: Remove the !CONFIG_ARM64_HW_AFDBM alternative code paths
- arm64: introduce separated bits for mm_context_t flags
- arm64: cleanup {COMPAT_,}SET_PERSONALITY() macro
- KVM: arm/arm64: Fix guest external abort matching
- KVM: arm/arm64: vgic: constify seq_operations and file_operations
- KVM: arm/arm64: vITS: Drop its_ite->lpi field
- KVM: arm/arm64: Extract GICv3 max APRn index calculation
- KVM: arm/arm64: Support uaccess of GICC_APRn
- arm64: Use larger stacks when KASAN is selected
- arm64: Define cputype macros for Falkor CPU
- arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm
- arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb
- x86/syscalls: Check address limit on user-mode return
- arm/syscalls: Check address limit on user-mode return
- arm64/syscalls: Check address limit on user-mode return
- Revert "arm/syscalls: Check address limit on user-mode return"
- syscalls: Use CHECK_DATA_CORRUPTION for addr_limit_user_check
- arm/syscalls: Optimize address limit check
- arm64/syscalls: Move address limit check in loop
- futex: Remove duplicated code and fix undefined behaviour
- arm64: KVM: Fix SMCCC handling of unimplemented SMC/HVC calls
- arm64: syscallno is secretly an int, make it official
- arm64: move TASK_* definitions to <asm/processor.h>
- arm64: mm: Use non-global mappings for kernel space
- arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN
- arm64: mm: Move ASID from TTBR0 to TTBR1
- arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003
- arm64: mm: Rename post_ttbr0_update_workaround
- arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN
- arm64: mm: Allocate ASIDs in pairs
- arm64: mm: Add arm64_kernel_unmapped_at_el0 helper
- arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI
- arm64: entry: Add exception trampoline page for exceptions from EL0
- arm64: mm: Map entry trampoline into trampoline and kernel page tables
- arm64: entry: Explicitly pass exception level to kernel_ventry macro
- arm64: entry: Hook up entry trampoline to exception vectors
- arm64: erratum: Work around Falkor erratum #E1003 in trampoline code
- arm64: cpu_errata: Add Kryo to Falkor 1003 errata
- arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks
- arm64: entry: Add fake CPU feature for unmapping the kernel at EL0
- arm64: kaslr: Put kernel vectors address in separate data page
- arm64: use RET instruction for exiting the trampoline
- arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0
- arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry
- arm64: Take into account ID_AA64PFR0_EL1.CSV3
- arm64: capabilities: Handle duplicate entries for a capability
- arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR
- arm64: kpti: Fix the interaction between ASID switching and software PAN
- arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs
- arm64: Turn on KPTI only on CPUs that need it
- arm64: kpti: Make use of nG dependent on arm64_kernel_unmapped_at_el0()
- arm64: mm: Permit transitioning from Global to Non-Global without BBM
- arm64: kpti: Add ->enable callback to remap swapper using nG mappings
- arm64: Force KPTI to be disabled on Cavium ThunderX
- arm64: entry: Reword comment about post_ttbr_update_workaround
- arm64: idmap: Use "awx" flags for .idmap.text .pushsection directives
- arm64: barrier: Add CSDB macros to control data-value prediction
- arm64: Implement array_index_mask_nospec()
- arm64: Make USER_DS an inclusive limit
- arm64: Use pointer masking to limit uaccess speculation
- arm64: entry: Ensure branch through syscall table is bounded under
speculation
- arm64: uaccess: Prevent speculative use of the current addr_limit
- arm64: uaccess: Don't bother eliding access_ok checks in __{get, put}_user
- arm64: uaccess: Mask __user pointers for __arch_{clear, copy_*}_user
- arm64: futex: Mask __user pointers prior to dereference
- arm64: cpufeature: __this_cpu_has_cap() shouldn't stop early
- arm64: Run enable method for errata work arounds on late CPUs
- arm64: cpufeature: Pass capability structure to ->enable callback
- drivers/firmware: Expose psci_get_version through psci_ops structure
- arm64: Move post_ttbr_update_workaround to C code
- arm64: Add skeleton to harden the branch predictor against aliasing attacks
- arm64: Move BP hardening to check_and_switch_context
- arm64: KVM: Use per-CPU vector when BP hardening is enabled
- arm64: entry: Apply BP hardening for high-priority synchronous exceptions
- arm64: entry: Apply BP hardening for suspicious interrupts from EL0
- arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75
- arm64: Implement branch predictor hardening for affected Cortex-A CPUs
- arm64: Implement branch predictor hardening for Falkor
- arm64: Branch predictor hardening for Cavium ThunderX2
- arm64: KVM: Increment PC after handling an SMC trap
- arm/arm64: KVM: Consolidate the PSCI include files
- arm/arm64: KVM: Add PSCI_VERSION helper
- arm/arm64: KVM: Add smccc accessors to PSCI code
- arm/arm64: KVM: Implement PSCI 1.0 support
- arm/arm64: KVM: Advertise SMCCC v1.1
- arm64: KVM: Make PSCI_VERSION a fast path
- arm/arm64: KVM: Turn kvm_psci_version into a static inline
- arm64: KVM: Report SMCCC_ARCH_WORKAROUND_1 BP hardening support
- arm64: KVM: Add SMCCC_ARCH_WORKAROUND_1 fast handling
- firmware/psci: Expose PSCI conduit
- firmware/psci: Expose SMCCC version through psci_ops
- arm/arm64: smccc: Make function identifiers an unsigned quantity
- arm/arm64: smccc: Implement SMCCC v1.1 inline primitive
- arm64: Add ARM_SMCCC_ARCH_WORKAROUND_1 BP hardening support
- arm64: Kill PSCI_GET_VERSION as a variant-2 workaround
- [Config] UNMAP_KERNEL_AT_EL0=y && HARDEN_BRANCH_PREDICTOR=y
- SAUCE: arm64: __idmap_cpu_set_reserved_ttbr1: fix !ARM64_PA_BITS_52 logic
- arm64: Add missing Falkor part number for branch predictor hardening
- arm64: mm: fix thinko in non-global page table attribute check
* linux-image-4.13.0-26-generic / linux-image-extra-4.13.0-26-generic fail to
boot (LP: #1742721)
- staging: sm750fb: Fix parameter mistake in poke32
-- Kleber Sacilotto de Souza <email address hidden> Wed, 07 Mar 2018 12:20:00 +0100
-
linux (4.13.0-36.40) artful; urgency=medium
* linux: 4.13.0-36.40 -proposed tracker (LP: #1750010)
* Rebuild without "CVE-2017-5754 ARM64 KPTI fixes" patch set
linux (4.13.0-35.39) artful; urgency=medium
* linux: 4.13.0-35.39 -proposed tracker (LP: #1748743)
* CVE-2017-5715 (Spectre v2 Intel)
- Revert "UBUNTU: SAUCE: turn off IBPB when full retpoline is present"
- SAUCE: turn off IBRS when full retpoline is present
- [Packaging] retpoline files must be sorted
- [Packaging] pull in retpoline files
linux (4.13.0-34.37) artful; urgency=medium
* linux: 4.13.0-34.37 -proposed tracker (LP: #1748475)
* libata: apply MAX_SEC_1024 to all LITEON EP1 series devices (LP: #1743053)
- libata: apply MAX_SEC_1024 to all LITEON EP1 series devices
* KVM patches for s390x to provide facility bits 81 (ppa15) and 82 (bpb)
(LP: #1747090)
- KVM: s390: wire up bpb feature
* artful 4.13 i386 kernels crash after memory hotplug remove (LP: #1747069)
- Revert "mm, memory_hotplug: do not associate hotadded memory to zones until
online"
* CVE-2017-5715 (Spectre v2 Intel)
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- SAUCE: turn off IBPB when full retpoline is present
* Artful 4.13 fixes for tun (LP: #1748846)
- tun: call dev_get_valid_name() before register_netdevice()
- tun: allow positive return values on dev_get_valid_name() call
- tun/tap: sanitize TUNSETSNDBUF input
* boot failure on AMD Raven + WestonXT (LP: #1742759)
- SAUCE: drm/amdgpu: add atpx quirk handling (v2)
linux (4.13.0-33.36) artful; urgency=low
* linux: 4.13.0-33.36 -proposed tracker (LP: #1746903)
[ Stefan Bader ]
* starting VMs causing retpoline4 to reboot (LP: #1747507) // CVE-2017-5715
(Spectre v2 retpoline)
- x86/retpoline: Fill RSB on context switch for affected CPUs
- x86/retpoline: Add LFENCE to the retpoline/RSB filling RSB macros
- x86/retpoline: Optimize inline assembler for vmexit_fill_RSB
- x86/retpoline: Remove the esp/rsp thunk
- x86/retpoline: Simplify vmexit_fill_RSB()
* Missing install-time driver for QLogic QED 25/40/100Gb Ethernet NIC
(LP: #1743638)
- [d-i] Add qede to nic-modules udeb
* hisi_sas: driver robustness fixes (LP: #1739807)
- scsi: hisi_sas: fix reset and port ID refresh issues
- scsi: hisi_sas: avoid potential v2 hw interrupt issue
- scsi: hisi_sas: fix v2 hw underflow residual value
- scsi: hisi_sas: add v2 hw DFX feature
- scsi: hisi_sas: add irq and tasklet cleanup in v2 hw
- scsi: hisi_sas: service interrupt ITCT_CLR interrupt in v2 hw
- scsi: hisi_sas: fix internal abort slot timeout bug
- scsi: hisi_sas: us start_phy in PHY_FUNC_LINK_RESET
- scsi: hisi_sas: fix NULL check in SMP abort task path
- scsi: hisi_sas: fix the risk of freeing slot twice
- scsi: hisi_sas: kill tasklet when destroying irq in v3 hw
- scsi: hisi_sas: complete all tasklets prior to host reset
* [Artful/Zesty] ACPI APEI error handling bug fixes (LP: #1732990)
- ACPI: APEI: fix the wrong iteration of generic error status block
- ACPI / APEI: clear error status before acknowledging the error
* [Zesty/Artful] On ARM64 PCIE physical function passthrough guest fails to
boot (LP: #1732804)
- vfio/pci: Virtualize Maximum Payload Size
- vfio/pci: Virtualize Maximum Read Request Size
* hisi_sas: Add ATA command support for SMR disks (LP: #1739891)
- scsi: hisi_sas: support zone management commands
* thunderx2: i2c driver PEC and ACPI clock fixes (LP: #1738073)
- ACPI / APD: Add clock frequency for ThunderX2 I2C controller
- i2c: xlp9xx: Get clock frequency with clk API
- i2c: xlp9xx: Handle I2C_M_RECV_LEN in msg->flags
* Falkor erratum 1041 needs workaround (LP: #1738497)
- [Config] CONFIG_QCOM_FALKOR_ERRATUM_E1041=y
- arm64: Add software workaround for Falkor erratum 1041
* ThunderX: TX failure unless checksum offload disabled (LP: #1736593)
- net: thunderx: Fix TCP/UDP checksum offload for IPv6 pkts
- net: thunderx: Fix TCP/UDP checksum offload for IPv4 pkts
* arm64/thunderx: Unhandled context faults in ACPI mode (LP: #1736774)
- PCI: Set Cavium ACS capability quirk flags to assert RR/CR/SV/UF
- PCI: Apply Cavium ThunderX ACS quirk to more Root Ports
* arm64: Unfair rwlock can stall the system (LP: #1732238)
- locking/qrwlock: Use 'struct qrwlock' instead of 'struct __qrwlock'
- locking/atomic: Add atomic_cond_read_acquire()
- locking/qrwlock: Use atomic_cond_read_acquire() when spinning in qrwlock
- locking/qrwlock, arm64: Move rwlock implementation over to qrwlocks
- locking/qrwlock: Prevent slowpath writers getting held up by fastpath
* Shutdown hang on 16.04 with iscsi targets (LP: #1569925)
- scsi: libiscsi: Allow sd_shutdown on bad transport
* bt_iter() crash due to NULL pointer (LP: #1744300)
- blk-mq-tag: check for NULL rq when iterating tags
* hisilicon hibmc regression due to ea642c3216cb ("drm/ttm: add io_mem_pfn
callback") (LP: #1738334)
- SAUCE: drm: hibmc: Initialize the hibmc_bo_driver.io_mem_pfn
* CVE-2017-5754 ARM64 KPTI fixes
- arm64: Add ASM_BUG()
- arm64: consistently use bl for C exception entry
- arm64: syscallno is secretly an int, make it official
- arm64: Abstract syscallno manipulation
- arm64: move non-entry code out of .entry.text
- arm64: unwind: avoid percpu indirection for irq stack
- arm64: unwind: disregard frame.sp when validating frame pointer
- arm64: mm: Fix set_memory_valid() declaration
- arm64: Convert __inval_cache_range() to area-based
- arm64: Expose DC CVAP to userspace
- arm64: Handle trapped DC CVAP
- arm64: Implement pmem API support
- arm64: uaccess: Implement *_flushcache variants
- arm64/vdso: Support mremap() for vDSO
- arm64: unwind: reference pt_regs via embedded stack frame
- arm64: unwind: remove sp from struct stackframe
- arm64: uaccess: Add the uaccess_flushcache.c file
- arm64: fix pmem interface definition
- arm64: compat: Remove leftover variable declaration
- fork: allow arch-override of VMAP stack alignment
- arm64: kernel: remove {THREAD,IRQ_STACK}_START_SP
- arm64: factor out PAGE_* and CONT_* definitions
- arm64: clean up THREAD_* definitions
- arm64: clean up irq stack definitions
- arm64: move SEGMENT_ALIGN to <asm/memory.h>
- efi/arm64: add EFI_KIMG_ALIGN
- arm64: factor out entry stack manipulation
- arm64: assembler: allow adr_this_cpu to use the stack pointer
- arm64: use an irq stack pointer
- arm64: add basic VMAP_STACK support
- arm64: add on_accessible_stack()
- arm64: add VMAP_STACK overflow detection
- arm64: Convert pte handling from inline asm to using (cmp)xchg
- kvm: arm64: Convert kvm_set_s2pte_readonly() from inline asm to cmpxchg()
- arm64: Move PTE_RDONLY bit handling out of set_pte_at()
- arm64: Ignore hardware dirty bit updates in ptep_set_wrprotect()
- arm64: Remove the !CONFIG_ARM64_HW_AFDBM alternative code paths
- arm64: introduce separated bits for mm_context_t flags
- arm64: cleanup {COMPAT_,}SET_PERSONALITY() macro
- KVM: arm/arm64: Fix guest external abort matching
- KVM: arm/arm64: vgic: constify seq_operations and file_operations
- KVM: arm/arm64: vITS: Drop its_ite->lpi field
- KVM: arm/arm64: Extract GICv3 max APRn index calculation
- KVM: arm/arm64: Support uaccess of GICC_APRn
- arm64: move TASK_* definitions to <asm/processor.h>
- arm64: Use larger stacks when KASAN is selected
- arm64: sysreg: Move SPE registers and PSB into common header files
- arm64: head: Init PMSCR_EL2.{PA,PCT} when entered at EL2 without VHE
- arm64: Update fault_info table with new exception types
- arm64: Use existing defines for mdscr
- arm64: Fix single stepping in kernel traps
- arm64: asm-bug: Renumber macro local labels to avoid clashes
- arm64: Implement arch-specific pte_access_permitted()
- arm64: explicitly mask all exceptions
- arm64: introduce an order for exceptions
- arm64: Move the async/fiq helpers to explicitly set process context flags
- arm64: Mask all exceptions during kernel_exit
- arm64: entry.S: Remove disable_dbg
- arm64: entry.S: convert el1_sync
- arm64: entry.S convert el0_sync
- arm64: entry.S: convert elX_irq
- arm64: entry.S: move SError handling into a C function for future expansion
- arm64: pgd: Mark pgd_cache as __ro_after_init
- arm64: cpu_ops: Add missing 'const' qualifiers
- arm64: context: Fix comments and remove pointless smp_wmb()
- arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm
- arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb
- arm64: Expose support for optional ARMv8-A features
- arm64: KVM: Hide unsupported AArch64 CPU features from guests
- arm64: mm: Use non-global mappings for kernel space
- arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN
- arm64: mm: Move ASID from TTBR0 to TTBR1
- arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003
- arm64: mm: Rename post_ttbr0_update_workaround
- arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN
- arm64: mm: Allocate ASIDs in pairs
- arm64: mm: Add arm64_kernel_unmapped_at_el0 helper
- arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI
- arm64: entry: Add exception trampoline page for exceptions from EL0
- arm64: mm: Map entry trampoline into trampoline and kernel page tables
- arm64: entry: Explicitly pass exception level to kernel_ventry macro
- arm64: entry: Hook up entry trampoline to exception vectors
- arm64: erratum: Work around Falkor erratum #E1003 in trampoline code
- arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks
- arm64: entry: Add fake CPU feature for unmapping the kernel at EL0
- arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0
- arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR
- arm64: kaslr: Put kernel vectors address in separate data page
- arm64: use RET instruction for exiting the trampoline
- arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry
- arm64: Fix the feature type for ID register fields
- arm64: Take into account ID_AA64PFR0_EL1.CSV3
- arm64: cpufeature: Pass capability structure to ->enable callback
- drivers/firmware: Expose psci_get_version through psci_ops structure
- arm64: Move post_ttbr_update_workaround to C code
- arm64: Add skeleton to harden the branch predictor against aliasing attacks
- arm64: KVM: Use per-CPU vector when BP hardening is enabled
- arm64: KVM: Make PSCI_VERSION a fast path
- arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75
- arm64: Implement branch predictor hardening for affected Cortex-A CPUs
- arm64: Define cputype macros for Falkor CPU
- arm64: Implement branch predictor hardening for Falkor
- arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs
- bpf: inline map in map lookup functions for array and htab
- bpf: perf event change needed for subsequent bpf helpers
- bpf: do not test for PCPU_MIN_UNIT_SIZE before percpu allocations
- arm64: Branch predictor hardening for Cavium ThunderX2
- arm64: capabilities: Handle duplicate entries for a capability
- arm64: kpti: Fix the interaction between ASID switching and software PAN
- SAUCE: arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17
- SAUCE: arm: Invalidate BTB on prefetch abort outside of user mapping on
Cortex A8, A9, A12 and A17
- SAUCE: arm: KVM: Invalidate BTB on guest exit
- SAUCE: arm: Add icache invalidation on switch_mm for Cortex-A15
- SAUCE: arm: Invalidate icache on prefetch abort outside of user mapping on
Cortex-A15
- SAUCE: arm: KVM: Invalidate icache on guest exit for Cortex-A15
- SAUCE: asm-generic/barrier: add generic nospec helpers
- SAUCE: Documentation: document nospec helpers
- SAUCE: arm64: implement nospec_{load,ptr}()
- SAUCE: arm: implement nospec_ptr()
- SAUCE: bpf: inhibit speculated out-of-bounds pointers
- SAUCE: arm64: Implement branch predictor hardening for Falkor
- SAUCE: arm64: Branch predictor hardening for Cavium ThunderX2
- [Config] UNMAP_KERNEL_AT_EL0=y && HARDEN_BRANCH_PREDICTOR=y
* [artful] panic in update_stack_state when reading /proc/<pid>/stack on i386
(LP: #1747263)
- x86/unwind: Fix dereference of untrusted pointer
* CVE-2017-5753 (Spectre v1 Intel)
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- SAUCE: reinstate MFENCE_RDTSC feature definition
- locking/barriers: introduce new observable speculation barrier
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- SAUCE: FIX: x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- p54: prevent speculative execution
- qla2xxx: prevent speculative execution
- cw1200: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- ipv4: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- userns: prevent speculative execution
- SAUCE: powerpc: add osb barrier
- SAUCE: s390/spinlock: add osb memory barrier
- SAUCE: claim mitigation via observable speculation barrier
* CVE-2017-5715 (Spectre v2 retpoline)
- x86/asm: Fix inline asm call constraints for Clang
- kvm: vmx: Scrub hardware GPRs at VM-exit
- sysfs/cpu: Add vulnerability folder
- x86/cpu: Implement CPU vulnerabilites sysfs functions
- x86/tboot: Unbreak tboot with PTI enabled
- objtool: Detect jumps to retpoline thunks
- objtool: Allow alternatives to be ignored
- x86/retpoline: Add initial retpoline support
- x86/spectre: Add boot time option to select Spectre v2 mitigation
- x86/retpoline/crypto: Convert crypto assembler indirect jumps
- x86/retpoline/entry: Convert entry assembler indirect jumps
- x86/retpoline/ftrace: Convert ftrace assembler indirect jumps
- x86/retpoline/hyperv: Convert assembler indirect jumps
- x86/retpoline/xen: Convert Xen hypercall indirect jumps
- x86/retpoline/checksum32: Convert assembler indirect jumps
- x86/retpoline/irq32: Convert assembler indirect jumps
- x86/retpoline: Fill return stack buffer on vmexit
- selftests/x86: Add test_vsyscall
- x86/pti: Fix !PCID and sanitize defines
- security/Kconfig: Correct the Documentation reference for PTI
- x86,perf: Disable intel_bts when PTI
- x86/retpoline: Remove compile time warning
- [Config] enable CONFIG_GENERIC_CPU_VULNERABILITIES
- [Config] enable CONFIG_RETPOLINE
- [Packaging] retpoline -- add call site validation
- [Config] disable retpoline checks for first upload
* CVE-2017-5715 (revert embargoed) // CVE-2017-5753 (revert embargoed)
- Revert "UBUNTU: SAUCE: x86/entry: Fix up retpoline assembler labels"
- Revert "kvm: vmx: Scrub hardware GPRs at VM-exit"
- Revert "Revert "x86/svm: Add code to clear registers on VM exit""
- Revert "UBUNTU: SAUCE: x86/microcode: Extend post microcode reload to
support IBPB feature -- repair missmerge"
- Revert "UBUNTU: SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit"
- Revert "s390/spinlock: add gmb memory barrier"
- Revert "powerpc: add gmb barrier"
- Revert "x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature"
- Revert "x86/svm: Add code to clear registers on VM exit"
- Revert "x86/svm: Add code to clobber the RSB on VM exit"
- Revert "KVM: x86: Add speculative control CPUID support for guests"
- Revert "x86/svm: Set IBPB when running a different VCPU"
- Revert "x86/svm: Set IBRS value on VM entry and exit"
- Revert "KVM: SVM: Do not intercept new speculative control MSRs"
- Revert "x86/microcode: Extend post microcode reload to support IBPB feature"
- Revert "x86/cpu/AMD: Add speculative control support for AMD"
- Revert "x86/entry: Use retpoline for syscall's indirect calls"
- Revert "x86/syscall: Clear unused extra registers on 32-bit compatible
syscall entrance"
- Revert "x86/syscall: Clear unused extra registers on syscall entrance"
- Revert "x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb
control"
- Revert "x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
- Revert "x86/kvm: Pad RSB on VM transition"
- Revert "x86/kvm: Toggle IBRS on VM entry and exit"
- Revert "x86/kvm: Set IBPB when switching VM"
- Revert "x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm"
- Revert "x86/entry: Stuff RSB for entry to kernel for non-SMEP platform"
- Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
thread"
- Revert "x86/mm: Set IBPB upon context switch"
- Revert "x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup"
- Revert "x86/idle: Disable IBRS entering idle and enable it on wakeup"
- Revert "x86/enter: Use IBRS on syscall and interrupts"
- Revert "x86/enter: MACROS to set/clear IBRS and set IBPB"
- Revert "x86/feature: Report presence of IBPB and IBRS control"
- Revert "x86/feature: Enable the x86 feature to control Speculation"
- Revert "udf: prevent speculative execution"
- Revert "net: mpls: prevent speculative execution"
- Revert "fs: prevent speculative execution"
- Revert "ipv6: prevent speculative execution"
- Revert "userns: prevent speculative execution"
- Revert "Thermal/int340x: prevent speculative execution"
- Revert "cw1200: prevent speculative execution"
- Revert "qla2xxx: prevent speculative execution"
- Revert "p54: prevent speculative execution"
- Revert "carl9170: prevent speculative execution"
- Revert "uvcvideo: prevent speculative execution"
- Revert "x86, bpf, jit: prevent speculative execution when JIT is enabled"
- Revert "bpf: prevent speculative execution in eBPF interpreter"
- Revert "locking/barriers: introduce new memory barrier gmb()"
* Unable to boot with i386 4.13.0-25 / 4.13.0-26 / 4.13.0-31 kernel on Xenial
/ Artful (LP: #1745118)
- x86/mm: Fix overlap of i386 CPU_ENTRY_AREA with FIX_BTMAP
* 4.13: unable to increase MTU configuration for GRE devices (LP: #1743746)
- ip_gre: remove the incorrect mtu limit for ipgre tap
* CVE-2017-17712
- net: ipv4: fix for a race condition in raw_sendmsg
* upload urgency should be medium by default (LP: #1745338)
- [Packaging] update urgency to medium by default
* CVE-2017-15115
- sctp: do not peel off an assoc from one netns to another one
* CVE-2017-8824
- dccp: CVE-2017-8824: use-after-free in DCCP code
-- Khalid Elmously <email address hidden> Fri, 16 Feb 2018 12:49:24 -0500
-
linux (4.13.0-35.39) artful; urgency=medium
* linux: 4.13.0-35.39 -proposed tracker (LP: #1748743)
* CVE-2017-5715 (Spectre v2 Intel)
- Revert "UBUNTU: SAUCE: turn off IBPB when full retpoline is present"
- SAUCE: turn off IBRS when full retpoline is present
- [Packaging] retpoline files must be sorted
- [Packaging] pull in retpoline files
linux (4.13.0-34.37) artful; urgency=medium
* linux: 4.13.0-34.37 -proposed tracker (LP: #1748475)
* libata: apply MAX_SEC_1024 to all LITEON EP1 series devices (LP: #1743053)
- libata: apply MAX_SEC_1024 to all LITEON EP1 series devices
* KVM patches for s390x to provide facility bits 81 (ppa15) and 82 (bpb)
(LP: #1747090)
- KVM: s390: wire up bpb feature
* artful 4.13 i386 kernels crash after memory hotplug remove (LP: #1747069)
- Revert "mm, memory_hotplug: do not associate hotadded memory to zones until
online"
* CVE-2017-5715 (Spectre v2 Intel)
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- SAUCE: turn off IBPB when full retpoline is present
* Artful 4.13 fixes for tun (LP: #1748846)
- tun: call dev_get_valid_name() before register_netdevice()
- tun: allow positive return values on dev_get_valid_name() call
- tun/tap: sanitize TUNSETSNDBUF input
* boot failure on AMD Raven + WestonXT (LP: #1742759)
- SAUCE: drm/amdgpu: add atpx quirk handling (v2)
linux (4.13.0-33.36) artful; urgency=low
* linux: 4.13.0-33.36 -proposed tracker (LP: #1746903)
[ Stefan Bader ]
* starting VMs causing retpoline4 to reboot (LP: #1747507) // CVE-2017-5715
(Spectre v2 retpoline)
- x86/retpoline: Fill RSB on context switch for affected CPUs
- x86/retpoline: Add LFENCE to the retpoline/RSB filling RSB macros
- x86/retpoline: Optimize inline assembler for vmexit_fill_RSB
- x86/retpoline: Remove the esp/rsp thunk
- x86/retpoline: Simplify vmexit_fill_RSB()
* Missing install-time driver for QLogic QED 25/40/100Gb Ethernet NIC
(LP: #1743638)
- [d-i] Add qede to nic-modules udeb
* hisi_sas: driver robustness fixes (LP: #1739807)
- scsi: hisi_sas: fix reset and port ID refresh issues
- scsi: hisi_sas: avoid potential v2 hw interrupt issue
- scsi: hisi_sas: fix v2 hw underflow residual value
- scsi: hisi_sas: add v2 hw DFX feature
- scsi: hisi_sas: add irq and tasklet cleanup in v2 hw
- scsi: hisi_sas: service interrupt ITCT_CLR interrupt in v2 hw
- scsi: hisi_sas: fix internal abort slot timeout bug
- scsi: hisi_sas: us start_phy in PHY_FUNC_LINK_RESET
- scsi: hisi_sas: fix NULL check in SMP abort task path
- scsi: hisi_sas: fix the risk of freeing slot twice
- scsi: hisi_sas: kill tasklet when destroying irq in v3 hw
- scsi: hisi_sas: complete all tasklets prior to host reset
* [Artful/Zesty] ACPI APEI error handling bug fixes (LP: #1732990)
- ACPI: APEI: fix the wrong iteration of generic error status block
- ACPI / APEI: clear error status before acknowledging the error
* [Zesty/Artful] On ARM64 PCIE physical function passthrough guest fails to
boot (LP: #1732804)
- vfio/pci: Virtualize Maximum Payload Size
- vfio/pci: Virtualize Maximum Read Request Size
* hisi_sas: Add ATA command support for SMR disks (LP: #1739891)
- scsi: hisi_sas: support zone management commands
* thunderx2: i2c driver PEC and ACPI clock fixes (LP: #1738073)
- ACPI / APD: Add clock frequency for ThunderX2 I2C controller
- i2c: xlp9xx: Get clock frequency with clk API
- i2c: xlp9xx: Handle I2C_M_RECV_LEN in msg->flags
* Falkor erratum 1041 needs workaround (LP: #1738497)
- [Config] CONFIG_QCOM_FALKOR_ERRATUM_E1041=y
- arm64: Add software workaround for Falkor erratum 1041
* ThunderX: TX failure unless checksum offload disabled (LP: #1736593)
- net: thunderx: Fix TCP/UDP checksum offload for IPv6 pkts
- net: thunderx: Fix TCP/UDP checksum offload for IPv4 pkts
* arm64/thunderx: Unhandled context faults in ACPI mode (LP: #1736774)
- PCI: Set Cavium ACS capability quirk flags to assert RR/CR/SV/UF
- PCI: Apply Cavium ThunderX ACS quirk to more Root Ports
* arm64: Unfair rwlock can stall the system (LP: #1732238)
- locking/qrwlock: Use 'struct qrwlock' instead of 'struct __qrwlock'
- locking/atomic: Add atomic_cond_read_acquire()
- locking/qrwlock: Use atomic_cond_read_acquire() when spinning in qrwlock
- locking/qrwlock, arm64: Move rwlock implementation over to qrwlocks
- locking/qrwlock: Prevent slowpath writers getting held up by fastpath
* Shutdown hang on 16.04 with iscsi targets (LP: #1569925)
- scsi: libiscsi: Allow sd_shutdown on bad transport
* bt_iter() crash due to NULL pointer (LP: #1744300)
- blk-mq-tag: check for NULL rq when iterating tags
* hisilicon hibmc regression due to ea642c3216cb ("drm/ttm: add io_mem_pfn
callback") (LP: #1738334)
- SAUCE: drm: hibmc: Initialize the hibmc_bo_driver.io_mem_pfn
* CVE-2017-5754 ARM64 KPTI fixes
- arm64: Add ASM_BUG()
- arm64: consistently use bl for C exception entry
- arm64: syscallno is secretly an int, make it official
- arm64: Abstract syscallno manipulation
- arm64: move non-entry code out of .entry.text
- arm64: unwind: avoid percpu indirection for irq stack
- arm64: unwind: disregard frame.sp when validating frame pointer
- arm64: mm: Fix set_memory_valid() declaration
- arm64: Convert __inval_cache_range() to area-based
- arm64: Expose DC CVAP to userspace
- arm64: Handle trapped DC CVAP
- arm64: Implement pmem API support
- arm64: uaccess: Implement *_flushcache variants
- arm64/vdso: Support mremap() for vDSO
- arm64: unwind: reference pt_regs via embedded stack frame
- arm64: unwind: remove sp from struct stackframe
- arm64: uaccess: Add the uaccess_flushcache.c file
- arm64: fix pmem interface definition
- arm64: compat: Remove leftover variable declaration
- fork: allow arch-override of VMAP stack alignment
- arm64: kernel: remove {THREAD,IRQ_STACK}_START_SP
- arm64: factor out PAGE_* and CONT_* definitions
- arm64: clean up THREAD_* definitions
- arm64: clean up irq stack definitions
- arm64: move SEGMENT_ALIGN to <asm/memory.h>
- efi/arm64: add EFI_KIMG_ALIGN
- arm64: factor out entry stack manipulation
- arm64: assembler: allow adr_this_cpu to use the stack pointer
- arm64: use an irq stack pointer
- arm64: add basic VMAP_STACK support
- arm64: add on_accessible_stack()
- arm64: add VMAP_STACK overflow detection
- arm64: Convert pte handling from inline asm to using (cmp)xchg
- kvm: arm64: Convert kvm_set_s2pte_readonly() from inline asm to cmpxchg()
- arm64: Move PTE_RDONLY bit handling out of set_pte_at()
- arm64: Ignore hardware dirty bit updates in ptep_set_wrprotect()
- arm64: Remove the !CONFIG_ARM64_HW_AFDBM alternative code paths
- arm64: introduce separated bits for mm_context_t flags
- arm64: cleanup {COMPAT_,}SET_PERSONALITY() macro
- KVM: arm/arm64: Fix guest external abort matching
- KVM: arm/arm64: vgic: constify seq_operations and file_operations
- KVM: arm/arm64: vITS: Drop its_ite->lpi field
- KVM: arm/arm64: Extract GICv3 max APRn index calculation
- KVM: arm/arm64: Support uaccess of GICC_APRn
- arm64: move TASK_* definitions to <asm/processor.h>
- arm64: Use larger stacks when KASAN is selected
- arm64: sysreg: Move SPE registers and PSB into common header files
- arm64: head: Init PMSCR_EL2.{PA,PCT} when entered at EL2 without VHE
- arm64: Update fault_info table with new exception types
- arm64: Use existing defines for mdscr
- arm64: Fix single stepping in kernel traps
- arm64: asm-bug: Renumber macro local labels to avoid clashes
- arm64: Implement arch-specific pte_access_permitted()
- arm64: explicitly mask all exceptions
- arm64: introduce an order for exceptions
- arm64: Move the async/fiq helpers to explicitly set process context flags
- arm64: Mask all exceptions during kernel_exit
- arm64: entry.S: Remove disable_dbg
- arm64: entry.S: convert el1_sync
- arm64: entry.S convert el0_sync
- arm64: entry.S: convert elX_irq
- arm64: entry.S: move SError handling into a C function for future expansion
- arm64: pgd: Mark pgd_cache as __ro_after_init
- arm64: cpu_ops: Add missing 'const' qualifiers
- arm64: context: Fix comments and remove pointless smp_wmb()
- arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm
- arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb
- arm64: Expose support for optional ARMv8-A features
- arm64: KVM: Hide unsupported AArch64 CPU features from guests
- arm64: mm: Use non-global mappings for kernel space
- arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN
- arm64: mm: Move ASID from TTBR0 to TTBR1
- arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003
- arm64: mm: Rename post_ttbr0_update_workaround
- arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN
- arm64: mm: Allocate ASIDs in pairs
- arm64: mm: Add arm64_kernel_unmapped_at_el0 helper
- arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI
- arm64: entry: Add exception trampoline page for exceptions from EL0
- arm64: mm: Map entry trampoline into trampoline and kernel page tables
- arm64: entry: Explicitly pass exception level to kernel_ventry macro
- arm64: entry: Hook up entry trampoline to exception vectors
- arm64: erratum: Work around Falkor erratum #E1003 in trampoline code
- arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks
- arm64: entry: Add fake CPU feature for unmapping the kernel at EL0
- arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0
- arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR
- arm64: kaslr: Put kernel vectors address in separate data page
- arm64: use RET instruction for exiting the trampoline
- arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry
- arm64: Fix the feature type for ID register fields
- arm64: Take into account ID_AA64PFR0_EL1.CSV3
- arm64: cpufeature: Pass capability structure to ->enable callback
- drivers/firmware: Expose psci_get_version through psci_ops structure
- arm64: Move post_ttbr_update_workaround to C code
- arm64: Add skeleton to harden the branch predictor against aliasing attacks
- arm64: KVM: Use per-CPU vector when BP hardening is enabled
- arm64: KVM: Make PSCI_VERSION a fast path
- arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75
- arm64: Implement branch predictor hardening for affected Cortex-A CPUs
- arm64: Define cputype macros for Falkor CPU
- arm64: Implement branch predictor hardening for Falkor
- arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs
- bpf: inline map in map lookup functions for array and htab
- bpf: perf event change needed for subsequent bpf helpers
- bpf: do not test for PCPU_MIN_UNIT_SIZE before percpu allocations
- arm64: Branch predictor hardening for Cavium ThunderX2
- arm64: capabilities: Handle duplicate entries for a capability
- arm64: kpti: Fix the interaction between ASID switching and software PAN
- SAUCE: arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17
- SAUCE: arm: Invalidate BTB on prefetch abort outside of user mapping on
Cortex A8, A9, A12 and A17
- SAUCE: arm: KVM: Invalidate BTB on guest exit
- SAUCE: arm: Add icache invalidation on switch_mm for Cortex-A15
- SAUCE: arm: Invalidate icache on prefetch abort outside of user mapping on
Cortex-A15
- SAUCE: arm: KVM: Invalidate icache on guest exit for Cortex-A15
- SAUCE: asm-generic/barrier: add generic nospec helpers
- SAUCE: Documentation: document nospec helpers
- SAUCE: arm64: implement nospec_{load,ptr}()
- SAUCE: arm: implement nospec_ptr()
- SAUCE: bpf: inhibit speculated out-of-bounds pointers
- SAUCE: arm64: Implement branch predictor hardening for Falkor
- SAUCE: arm64: Branch predictor hardening for Cavium ThunderX2
- [Config] UNMAP_KERNEL_AT_EL0=y && HARDEN_BRANCH_PREDICTOR=y
* [artful] panic in update_stack_state when reading /proc/<pid>/stack on i386
(LP: #1747263)
- x86/unwind: Fix dereference of untrusted pointer
* CVE-2017-5753 (Spectre v1 Intel)
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- SAUCE: reinstate MFENCE_RDTSC feature definition
- locking/barriers: introduce new observable speculation barrier
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- SAUCE: FIX: x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- p54: prevent speculative execution
- qla2xxx: prevent speculative execution
- cw1200: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- ipv4: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- userns: prevent speculative execution
- SAUCE: powerpc: add osb barrier
- SAUCE: s390/spinlock: add osb memory barrier
- SAUCE: claim mitigation via observable speculation barrier
* CVE-2017-5715 (Spectre v2 retpoline)
- x86/asm: Fix inline asm call constraints for Clang
- kvm: vmx: Scrub hardware GPRs at VM-exit
- sysfs/cpu: Add vulnerability folder
- x86/cpu: Implement CPU vulnerabilites sysfs functions
- x86/tboot: Unbreak tboot with PTI enabled
- objtool: Detect jumps to retpoline thunks
- objtool: Allow alternatives to be ignored
- x86/retpoline: Add initial retpoline support
- x86/spectre: Add boot time option to select Spectre v2 mitigation
- x86/retpoline/crypto: Convert crypto assembler indirect jumps
- x86/retpoline/entry: Convert entry assembler indirect jumps
- x86/retpoline/ftrace: Convert ftrace assembler indirect jumps
- x86/retpoline/hyperv: Convert assembler indirect jumps
- x86/retpoline/xen: Convert Xen hypercall indirect jumps
- x86/retpoline/checksum32: Convert assembler indirect jumps
- x86/retpoline/irq32: Convert assembler indirect jumps
- x86/retpoline: Fill return stack buffer on vmexit
- selftests/x86: Add test_vsyscall
- x86/pti: Fix !PCID and sanitize defines
- security/Kconfig: Correct the Documentation reference for PTI
- x86,perf: Disable intel_bts when PTI
- x86/retpoline: Remove compile time warning
- [Config] enable CONFIG_GENERIC_CPU_VULNERABILITIES
- [Config] enable CONFIG_RETPOLINE
- [Packaging] retpoline -- add call site validation
- [Config] disable retpoline checks for first upload
* CVE-2017-5715 (revert embargoed) // CVE-2017-5753 (revert embargoed)
- Revert "UBUNTU: SAUCE: x86/entry: Fix up retpoline assembler labels"
- Revert "kvm: vmx: Scrub hardware GPRs at VM-exit"
- Revert "Revert "x86/svm: Add code to clear registers on VM exit""
- Revert "UBUNTU: SAUCE: x86/microcode: Extend post microcode reload to
support IBPB feature -- repair missmerge"
- Revert "UBUNTU: SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit"
- Revert "s390/spinlock: add gmb memory barrier"
- Revert "powerpc: add gmb barrier"
- Revert "x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature"
- Revert "x86/svm: Add code to clear registers on VM exit"
- Revert "x86/svm: Add code to clobber the RSB on VM exit"
- Revert "KVM: x86: Add speculative control CPUID support for guests"
- Revert "x86/svm: Set IBPB when running a different VCPU"
- Revert "x86/svm: Set IBRS value on VM entry and exit"
- Revert "KVM: SVM: Do not intercept new speculative control MSRs"
- Revert "x86/microcode: Extend post microcode reload to support IBPB feature"
- Revert "x86/cpu/AMD: Add speculative control support for AMD"
- Revert "x86/entry: Use retpoline for syscall's indirect calls"
- Revert "x86/syscall: Clear unused extra registers on 32-bit compatible
syscall entrance"
- Revert "x86/syscall: Clear unused extra registers on syscall entrance"
- Revert "x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb
control"
- Revert "x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
- Revert "x86/kvm: Pad RSB on VM transition"
- Revert "x86/kvm: Toggle IBRS on VM entry and exit"
- Revert "x86/kvm: Set IBPB when switching VM"
- Revert "x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm"
- Revert "x86/entry: Stuff RSB for entry to kernel for non-SMEP platform"
- Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
thread"
- Revert "x86/mm: Set IBPB upon context switch"
- Revert "x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup"
- Revert "x86/idle: Disable IBRS entering idle and enable it on wakeup"
- Revert "x86/enter: Use IBRS on syscall and interrupts"
- Revert "x86/enter: MACROS to set/clear IBRS and set IBPB"
- Revert "x86/feature: Report presence of IBPB and IBRS control"
- Revert "x86/feature: Enable the x86 feature to control Speculation"
- Revert "udf: prevent speculative execution"
- Revert "net: mpls: prevent speculative execution"
- Revert "fs: prevent speculative execution"
- Revert "ipv6: prevent speculative execution"
- Revert "userns: prevent speculative execution"
- Revert "Thermal/int340x: prevent speculative execution"
- Revert "cw1200: prevent speculative execution"
- Revert "qla2xxx: prevent speculative execution"
- Revert "p54: prevent speculative execution"
- Revert "carl9170: prevent speculative execution"
- Revert "uvcvideo: prevent speculative execution"
- Revert "x86, bpf, jit: prevent speculative execution when JIT is enabled"
- Revert "bpf: prevent speculative execution in eBPF interpreter"
- Revert "locking/barriers: introduce new memory barrier gmb()"
* Unable to boot with i386 4.13.0-25 / 4.13.0-26 / 4.13.0-31 kernel on Xenial
/ Artful (LP: #1745118)
- x86/mm: Fix overlap of i386 CPU_ENTRY_AREA with FIX_BTMAP
* 4.13: unable to increase MTU configuration for GRE devices (LP: #1743746)
- ip_gre: remove the incorrect mtu limit for ipgre tap
* CVE-2017-17712
- net: ipv4: fix for a race condition in raw_sendmsg
* upload urgency should be medium by default (LP: #1745338)
- [Packaging] update urgency to medium by default
* CVE-2017-15115
- sctp: do not peel off an assoc from one netns to another one
* CVE-2017-8824
- dccp: CVE-2017-8824: use-after-free in DCCP code
-- Kleber Sacilotto de Souza <email address hidden> Mon, 12 Feb 2018 11:28:27 +0100
-
linux (4.13.0-33.36) artful; urgency=low
* linux: 4.13.0-33.36 -proposed tracker (LP: #1746903)
[ Stefan Bader ]
* starting VMs causing retpoline4 to reboot (LP: #1747507) // CVE-2017-5715
(Spectre v2 retpoline)
- x86/retpoline: Fill RSB on context switch for affected CPUs
- x86/retpoline: Add LFENCE to the retpoline/RSB filling RSB macros
- x86/retpoline: Optimize inline assembler for vmexit_fill_RSB
- x86/retpoline: Remove the esp/rsp thunk
- x86/retpoline: Simplify vmexit_fill_RSB()
* Missing install-time driver for QLogic QED 25/40/100Gb Ethernet NIC
(LP: #1743638)
- [d-i] Add qede to nic-modules udeb
* hisi_sas: driver robustness fixes (LP: #1739807)
- scsi: hisi_sas: fix reset and port ID refresh issues
- scsi: hisi_sas: avoid potential v2 hw interrupt issue
- scsi: hisi_sas: fix v2 hw underflow residual value
- scsi: hisi_sas: add v2 hw DFX feature
- scsi: hisi_sas: add irq and tasklet cleanup in v2 hw
- scsi: hisi_sas: service interrupt ITCT_CLR interrupt in v2 hw
- scsi: hisi_sas: fix internal abort slot timeout bug
- scsi: hisi_sas: us start_phy in PHY_FUNC_LINK_RESET
- scsi: hisi_sas: fix NULL check in SMP abort task path
- scsi: hisi_sas: fix the risk of freeing slot twice
- scsi: hisi_sas: kill tasklet when destroying irq in v3 hw
- scsi: hisi_sas: complete all tasklets prior to host reset
* [Artful/Zesty] ACPI APEI error handling bug fixes (LP: #1732990)
- ACPI: APEI: fix the wrong iteration of generic error status block
- ACPI / APEI: clear error status before acknowledging the error
* [Zesty/Artful] On ARM64 PCIE physical function passthrough guest fails to
boot (LP: #1732804)
- vfio/pci: Virtualize Maximum Payload Size
- vfio/pci: Virtualize Maximum Read Request Size
* hisi_sas: Add ATA command support for SMR disks (LP: #1739891)
- scsi: hisi_sas: support zone management commands
* thunderx2: i2c driver PEC and ACPI clock fixes (LP: #1738073)
- ACPI / APD: Add clock frequency for ThunderX2 I2C controller
- i2c: xlp9xx: Get clock frequency with clk API
- i2c: xlp9xx: Handle I2C_M_RECV_LEN in msg->flags
* Falkor erratum 1041 needs workaround (LP: #1738497)
- [Config] CONFIG_QCOM_FALKOR_ERRATUM_E1041=y
- arm64: Add software workaround for Falkor erratum 1041
* ThunderX: TX failure unless checksum offload disabled (LP: #1736593)
- net: thunderx: Fix TCP/UDP checksum offload for IPv6 pkts
- net: thunderx: Fix TCP/UDP checksum offload for IPv4 pkts
* arm64/thunderx: Unhandled context faults in ACPI mode (LP: #1736774)
- PCI: Set Cavium ACS capability quirk flags to assert RR/CR/SV/UF
- PCI: Apply Cavium ThunderX ACS quirk to more Root Ports
* arm64: Unfair rwlock can stall the system (LP: #1732238)
- locking/qrwlock: Use 'struct qrwlock' instead of 'struct __qrwlock'
- locking/atomic: Add atomic_cond_read_acquire()
- locking/qrwlock: Use atomic_cond_read_acquire() when spinning in qrwlock
- locking/qrwlock, arm64: Move rwlock implementation over to qrwlocks
- locking/qrwlock: Prevent slowpath writers getting held up by fastpath
* Shutdown hang on 16.04 with iscsi targets (LP: #1569925)
- scsi: libiscsi: Allow sd_shutdown on bad transport
* bt_iter() crash due to NULL pointer (LP: #1744300)
- blk-mq-tag: check for NULL rq when iterating tags
* hisilicon hibmc regression due to ea642c3216cb ("drm/ttm: add io_mem_pfn
callback") (LP: #1738334)
- SAUCE: drm: hibmc: Initialize the hibmc_bo_driver.io_mem_pfn
* CVE-2017-5754 ARM64 KPTI fixes
- arm64: Add ASM_BUG()
- arm64: consistently use bl for C exception entry
- arm64: syscallno is secretly an int, make it official
- arm64: Abstract syscallno manipulation
- arm64: move non-entry code out of .entry.text
- arm64: unwind: avoid percpu indirection for irq stack
- arm64: unwind: disregard frame.sp when validating frame pointer
- arm64: mm: Fix set_memory_valid() declaration
- arm64: Convert __inval_cache_range() to area-based
- arm64: Expose DC CVAP to userspace
- arm64: Handle trapped DC CVAP
- arm64: Implement pmem API support
- arm64: uaccess: Implement *_flushcache variants
- arm64/vdso: Support mremap() for vDSO
- arm64: unwind: reference pt_regs via embedded stack frame
- arm64: unwind: remove sp from struct stackframe
- arm64: uaccess: Add the uaccess_flushcache.c file
- arm64: fix pmem interface definition
- arm64: compat: Remove leftover variable declaration
- fork: allow arch-override of VMAP stack alignment
- arm64: kernel: remove {THREAD,IRQ_STACK}_START_SP
- arm64: factor out PAGE_* and CONT_* definitions
- arm64: clean up THREAD_* definitions
- arm64: clean up irq stack definitions
- arm64: move SEGMENT_ALIGN to <asm/memory.h>
- efi/arm64: add EFI_KIMG_ALIGN
- arm64: factor out entry stack manipulation
- arm64: assembler: allow adr_this_cpu to use the stack pointer
- arm64: use an irq stack pointer
- arm64: add basic VMAP_STACK support
- arm64: add on_accessible_stack()
- arm64: add VMAP_STACK overflow detection
- arm64: Convert pte handling from inline asm to using (cmp)xchg
- kvm: arm64: Convert kvm_set_s2pte_readonly() from inline asm to cmpxchg()
- arm64: Move PTE_RDONLY bit handling out of set_pte_at()
- arm64: Ignore hardware dirty bit updates in ptep_set_wrprotect()
- arm64: Remove the !CONFIG_ARM64_HW_AFDBM alternative code paths
- arm64: introduce separated bits for mm_context_t flags
- arm64: cleanup {COMPAT_,}SET_PERSONALITY() macro
- KVM: arm/arm64: Fix guest external abort matching
- KVM: arm/arm64: vgic: constify seq_operations and file_operations
- KVM: arm/arm64: vITS: Drop its_ite->lpi field
- KVM: arm/arm64: Extract GICv3 max APRn index calculation
- KVM: arm/arm64: Support uaccess of GICC_APRn
- arm64: move TASK_* definitions to <asm/processor.h>
- arm64: Use larger stacks when KASAN is selected
- arm64: sysreg: Move SPE registers and PSB into common header files
- arm64: head: Init PMSCR_EL2.{PA,PCT} when entered at EL2 without VHE
- arm64: Update fault_info table with new exception types
- arm64: Use existing defines for mdscr
- arm64: Fix single stepping in kernel traps
- arm64: asm-bug: Renumber macro local labels to avoid clashes
- arm64: Implement arch-specific pte_access_permitted()
- arm64: explicitly mask all exceptions
- arm64: introduce an order for exceptions
- arm64: Move the async/fiq helpers to explicitly set process context flags
- arm64: Mask all exceptions during kernel_exit
- arm64: entry.S: Remove disable_dbg
- arm64: entry.S: convert el1_sync
- arm64: entry.S convert el0_sync
- arm64: entry.S: convert elX_irq
- arm64: entry.S: move SError handling into a C function for future expansion
- arm64: pgd: Mark pgd_cache as __ro_after_init
- arm64: cpu_ops: Add missing 'const' qualifiers
- arm64: context: Fix comments and remove pointless smp_wmb()
- arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm
- arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb
- arm64: Expose support for optional ARMv8-A features
- arm64: KVM: Hide unsupported AArch64 CPU features from guests
- arm64: mm: Use non-global mappings for kernel space
- arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN
- arm64: mm: Move ASID from TTBR0 to TTBR1
- arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003
- arm64: mm: Rename post_ttbr0_update_workaround
- arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN
- arm64: mm: Allocate ASIDs in pairs
- arm64: mm: Add arm64_kernel_unmapped_at_el0 helper
- arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI
- arm64: entry: Add exception trampoline page for exceptions from EL0
- arm64: mm: Map entry trampoline into trampoline and kernel page tables
- arm64: entry: Explicitly pass exception level to kernel_ventry macro
- arm64: entry: Hook up entry trampoline to exception vectors
- arm64: erratum: Work around Falkor erratum #E1003 in trampoline code
- arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks
- arm64: entry: Add fake CPU feature for unmapping the kernel at EL0
- arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0
- arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR
- arm64: kaslr: Put kernel vectors address in separate data page
- arm64: use RET instruction for exiting the trampoline
- arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry
- arm64: Fix the feature type for ID register fields
- arm64: Take into account ID_AA64PFR0_EL1.CSV3
- arm64: cpufeature: Pass capability structure to ->enable callback
- drivers/firmware: Expose psci_get_version through psci_ops structure
- arm64: Move post_ttbr_update_workaround to C code
- arm64: Add skeleton to harden the branch predictor against aliasing attacks
- arm64: KVM: Use per-CPU vector when BP hardening is enabled
- arm64: KVM: Make PSCI_VERSION a fast path
- arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75
- arm64: Implement branch predictor hardening for affected Cortex-A CPUs
- arm64: Define cputype macros for Falkor CPU
- arm64: Implement branch predictor hardening for Falkor
- arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs
- bpf: inline map in map lookup functions for array and htab
- bpf: perf event change needed for subsequent bpf helpers
- bpf: do not test for PCPU_MIN_UNIT_SIZE before percpu allocations
- arm64: Branch predictor hardening for Cavium ThunderX2
- arm64: capabilities: Handle duplicate entries for a capability
- arm64: kpti: Fix the interaction between ASID switching and software PAN
- SAUCE: arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17
- SAUCE: arm: Invalidate BTB on prefetch abort outside of user mapping on
Cortex A8, A9, A12 and A17
- SAUCE: arm: KVM: Invalidate BTB on guest exit
- SAUCE: arm: Add icache invalidation on switch_mm for Cortex-A15
- SAUCE: arm: Invalidate icache on prefetch abort outside of user mapping on
Cortex-A15
- SAUCE: arm: KVM: Invalidate icache on guest exit for Cortex-A15
- SAUCE: asm-generic/barrier: add generic nospec helpers
- SAUCE: Documentation: document nospec helpers
- SAUCE: arm64: implement nospec_{load,ptr}()
- SAUCE: arm: implement nospec_ptr()
- SAUCE: bpf: inhibit speculated out-of-bounds pointers
- SAUCE: arm64: Implement branch predictor hardening for Falkor
- SAUCE: arm64: Branch predictor hardening for Cavium ThunderX2
- [Config] UNMAP_KERNEL_AT_EL0=y && HARDEN_BRANCH_PREDICTOR=y
* [artful] panic in update_stack_state when reading /proc/<pid>/stack on i386
(LP: #1747263)
- x86/unwind: Fix dereference of untrusted pointer
* CVE-2017-5753 (Spectre v1 Intel)
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- SAUCE: reinstate MFENCE_RDTSC feature definition
- locking/barriers: introduce new observable speculation barrier
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- SAUCE: FIX: x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- p54: prevent speculative execution
- qla2xxx: prevent speculative execution
- cw1200: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- ipv4: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- userns: prevent speculative execution
- SAUCE: powerpc: add osb barrier
- SAUCE: s390/spinlock: add osb memory barrier
- SAUCE: claim mitigation via observable speculation barrier
* CVE-2017-5715 (Spectre v2 retpoline)
- x86/asm: Fix inline asm call constraints for Clang
- kvm: vmx: Scrub hardware GPRs at VM-exit
- sysfs/cpu: Add vulnerability folder
- x86/cpu: Implement CPU vulnerabilites sysfs functions
- x86/tboot: Unbreak tboot with PTI enabled
- objtool: Detect jumps to retpoline thunks
- objtool: Allow alternatives to be ignored
- x86/retpoline: Add initial retpoline support
- x86/spectre: Add boot time option to select Spectre v2 mitigation
- x86/retpoline/crypto: Convert crypto assembler indirect jumps
- x86/retpoline/entry: Convert entry assembler indirect jumps
- x86/retpoline/ftrace: Convert ftrace assembler indirect jumps
- x86/retpoline/hyperv: Convert assembler indirect jumps
- x86/retpoline/xen: Convert Xen hypercall indirect jumps
- x86/retpoline/checksum32: Convert assembler indirect jumps
- x86/retpoline/irq32: Convert assembler indirect jumps
- x86/retpoline: Fill return stack buffer on vmexit
- selftests/x86: Add test_vsyscall
- x86/pti: Fix !PCID and sanitize defines
- security/Kconfig: Correct the Documentation reference for PTI
- x86,perf: Disable intel_bts when PTI
- x86/retpoline: Remove compile time warning
- [Config] enable CONFIG_GENERIC_CPU_VULNERABILITIES
- [Config] enable CONFIG_RETPOLINE
- [Packaging] retpoline -- add call site validation
- [Config] disable retpoline checks for first upload
* CVE-2017-5715 (revert embargoed) // CVE-2017-5753 (revert embargoed)
- Revert "UBUNTU: SAUCE: x86/entry: Fix up retpoline assembler labels"
- Revert "kvm: vmx: Scrub hardware GPRs at VM-exit"
- Revert "Revert "x86/svm: Add code to clear registers on VM exit""
- Revert "UBUNTU: SAUCE: x86/microcode: Extend post microcode reload to
support IBPB feature -- repair missmerge"
- Revert "UBUNTU: SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit"
- Revert "s390/spinlock: add gmb memory barrier"
- Revert "powerpc: add gmb barrier"
- Revert "x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature"
- Revert "x86/svm: Add code to clear registers on VM exit"
- Revert "x86/svm: Add code to clobber the RSB on VM exit"
- Revert "KVM: x86: Add speculative control CPUID support for guests"
- Revert "x86/svm: Set IBPB when running a different VCPU"
- Revert "x86/svm: Set IBRS value on VM entry and exit"
- Revert "KVM: SVM: Do not intercept new speculative control MSRs"
- Revert "x86/microcode: Extend post microcode reload to support IBPB feature"
- Revert "x86/cpu/AMD: Add speculative control support for AMD"
- Revert "x86/entry: Use retpoline for syscall's indirect calls"
- Revert "x86/syscall: Clear unused extra registers on 32-bit compatible
syscall entrance"
- Revert "x86/syscall: Clear unused extra registers on syscall entrance"
- Revert "x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb
control"
- Revert "x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
- Revert "x86/kvm: Pad RSB on VM transition"
- Revert "x86/kvm: Toggle IBRS on VM entry and exit"
- Revert "x86/kvm: Set IBPB when switching VM"
- Revert "x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm"
- Revert "x86/entry: Stuff RSB for entry to kernel for non-SMEP platform"
- Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
thread"
- Revert "x86/mm: Set IBPB upon context switch"
- Revert "x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup"
- Revert "x86/idle: Disable IBRS entering idle and enable it on wakeup"
- Revert "x86/enter: Use IBRS on syscall and interrupts"
- Revert "x86/enter: MACROS to set/clear IBRS and set IBPB"
- Revert "x86/feature: Report presence of IBPB and IBRS control"
- Revert "x86/feature: Enable the x86 feature to control Speculation"
- Revert "udf: prevent speculative execution"
- Revert "net: mpls: prevent speculative execution"
- Revert "fs: prevent speculative execution"
- Revert "ipv6: prevent speculative execution"
- Revert "userns: prevent speculative execution"
- Revert "Thermal/int340x: prevent speculative execution"
- Revert "cw1200: prevent speculative execution"
- Revert "qla2xxx: prevent speculative execution"
- Revert "p54: prevent speculative execution"
- Revert "carl9170: prevent speculative execution"
- Revert "uvcvideo: prevent speculative execution"
- Revert "x86, bpf, jit: prevent speculative execution when JIT is enabled"
- Revert "bpf: prevent speculative execution in eBPF interpreter"
- Revert "locking/barriers: introduce new memory barrier gmb()"
* Unable to boot with i386 4.13.0-25 / 4.13.0-26 / 4.13.0-31 kernel on Xenial
/ Artful (LP: #1745118)
- x86/mm: Fix overlap of i386 CPU_ENTRY_AREA with FIX_BTMAP
* 4.13: unable to increase MTU configuration for GRE devices (LP: #1743746)
- ip_gre: remove the incorrect mtu limit for ipgre tap
* CVE-2017-17712
- net: ipv4: fix for a race condition in raw_sendmsg
* upload urgency should be medium by default (LP: #1745338)
- [Packaging] update urgency to medium by default
* CVE-2017-15115
- sctp: do not peel off an assoc from one netns to another one
* CVE-2017-8824
- dccp: CVE-2017-8824: use-after-free in DCCP code
-- Khalid Elmously <email address hidden> Tue, 06 Feb 2018 13:19:16 -0500
-
linux (4.13.0-32.35) artful; urgency=low
* CVE-2017-5715 // CVE-2017-5753
- SAUCE: x86/entry: Fix up retpoline assembler labels
-- Stefan Bader <email address hidden> Tue, 23 Jan 2018 09:13:39 +0100
-
linux (4.13.0-31.34) artful; urgency=low
* linux: 4.13.0-31.34 -proposed tracker (LP: #1744294)
[ Stefan Bader ]
* CVE-2017-5715 // CVE-2017-5753
- SAUCE: s390: improve cpu alternative handling for gmb and nobp
- SAUCE: s390: print messages for gmb and nobp
- [Config] KERNEL_NOBP=y
linux (4.13.0-30.33) artful; urgency=low
* linux: 4.13.0-30.33 -proposed tracker (LP: #1743412)
* Do not duplicate changelog entries assigned to more than one bug or CVE
(LP: #1743383)
- [Packaging] git-ubuntu-log -- handle multiple bugs/cves better
* Unable to handle kernel NULL pointer dereference at isci_task_abort_task
(LP: #1726519)
- Revert "scsi: libsas: allow async aborts"
* CVE-2017-5715 // CVE-2017-5753
- SAUCE: x86/microcode: Extend post microcode reload to support IBPB feature
-- repair missmerge
- Revert "x86/svm: Add code to clear registers on VM exit"
- kvm: vmx: Scrub hardware GPRs at VM-exit
linux (4.13.0-29.32) artful; urgency=low
* linux: 4.13.0-29.32 -proposed tracker (LP: #1742722)
* CVE-2017-5754
- Revert "x86/cpu: Implement CPU vulnerabilites sysfs functions"
- Revert "sysfs/cpu: Fix typos in vulnerability documentation"
- Revert "sysfs/cpu: Add vulnerability folder"
- Revert "UBUNTU: [Config] updateconfigs to enable
GENERIC_CPU_VULNERABILITIES"
linux (4.13.0-28.31) artful; urgency=low
* CVE-2017-5753
- SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
* CVE-2017-5715
- SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
linux (4.13.0-27.30) artful; urgency=low
[ Andy Whitcroft ]
* CVE-2017-5753
- locking/barriers: introduce new memory barrier gmb()
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- p54: prevent speculative execution
- qla2xxx: prevent speculative execution
- cw1200: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- userns: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/kvm: Pad RSB on VM transition
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/syscall: Clear unused extra registers on syscall entrance
- x86/syscall: Clear unused extra registers on 32-bit compatible syscall
entrance
- x86/entry: Use retpoline for syscall's indirect calls
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- x86/svm: Add code to clobber the RSB on VM exit
- x86/svm: Add code to clear registers on VM exit
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- powerpc: add gmb barrier
- s390/spinlock: add gmb memory barrier
- x86/microcode/AMD: Add support for fam17h microcode loading
* CVE-2017-5715
- locking/barriers: introduce new memory barrier gmb()
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- p54: prevent speculative execution
- qla2xxx: prevent speculative execution
- cw1200: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- userns: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/kvm: Pad RSB on VM transition
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/syscall: Clear unused extra registers on syscall entrance
- x86/syscall: Clear unused extra registers on 32-bit compatible syscall
entrance
- x86/entry: Use retpoline for syscall's indirect calls
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- x86/svm: Add code to clobber the RSB on VM exit
- x86/svm: Add code to clear registers on VM exit
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- powerpc: add gmb barrier
- s390/spinlock: add gmb memory barrier
- x86/microcode/AMD: Add support for fam17h microcode loading
* CVE-2017-5754
- x86/pti: Enable PTI by default
- x86/pti: Make sure the user/kernel PTEs match
- x86/dumpstack: Fix partial register dumps
- x86/dumpstack: Print registers for first stack frame
- x86/process: Define cpu_tss_rw in same section as declaration
- x86/mm: Set MODULES_END to 0xffffffffff000000
- x86/mm: Map cpu_entry_area at the same place on 4/5 level
- x86/kaslr: Fix the vaddr_end mess
- x86/events/intel/ds: Use the proper cache flush method for mapping ds
buffers
- x86/tlb: Drop the _GPL from the cpu_tlbstate export
- x86/alternatives: Add missing '\n' at end of ALTERNATIVE inline asm
- x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN
- x86/pti: Unbreak EFI old_memmap
- x86/Documentation: Add PTI description
- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12]
- sysfs/cpu: Add vulnerability folder
- x86/cpu: Implement CPU vulnerabilites sysfs functions
- x86/tboot: Unbreak tboot with PTI enabled
- x86/mm/pti: Remove dead logic in pti_user_pagetable_walk*()
- x86/cpu/AMD: Make LFENCE a serializing instruction
- x86/cpu/AMD: Use LFENCE_RDTSC in preference to MFENCE_RDTSC
- sysfs/cpu: Fix typos in vulnerability documentation
- x86/alternatives: Fix optimize_nops() checking
- x86/pti: Make unpoison of pgd for trusted boot work for real
- s390: introduce CPU alternatives
- s390: add ppa to kernel entry / exit
- SAUCE: powerpc: Secure memory rfi flush
- SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
- SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
- SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
- SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
- SAUCE: rfi-flush: Implement congruence-first fallback flush
- SAUCE: rfi-flush: Make l1d_flush_type bit flags
- SAUCE: rfi-flush: Push the instruction selection down to the patching
routine
- SAUCE: rfi-flush: Expand the RFI section to two nop slots
- SAUCE: rfi-flush: Support more than one flush type at once
- SAUCE: rfi-flush: Allow HV to advertise multiple flush types
- SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
- SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
- SAUCE: rfi-flush: Rework powernv logic to be more cautious
- SAUCE: rfi-flush: Rework pseries logic to be more cautious
- SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
- SAUCE: rfi-flush: Fix the fallback flush to actually activate
- SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
- SAUCE: rfi-flush: Refactor the macros so the nops are defined once
- SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
- SAUCE: rfi-flush: Use rfi-flush in printks
- SAUCE: rfi-flush: Fallback flush add load dependency
- SAUCE: rfi-flush: Fix the 32-bit KVM build
- SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
- SAUCE: rfi-flush: Make the fallback robust against memory corruption
- [Config] Disable CONFIG_PPC_DEBUG_RFI
- [Config] updateconfigs to enable GENERIC_CPU_VULNERABILITIES
* powerpc: flush L1D on return to use (LP: #1742772)
- SAUCE: powerpc: Secure memory rfi flush
- SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
- SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
- SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
- SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
- SAUCE: rfi-flush: Implement congruence-first fallback flush
- SAUCE: rfi-flush: Make l1d_flush_type bit flags
- SAUCE: rfi-flush: Push the instruction selection down to the patching
routine
- SAUCE: rfi-flush: Expand the RFI section to two nop slots
- SAUCE: rfi-flush: Support more than one flush type at once
- SAUCE: rfi-flush: Allow HV to advertise multiple flush types
- SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
- SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
- SAUCE: rfi-flush: Rework powernv logic to be more cautious
- SAUCE: rfi-flush: Rework pseries logic to be more cautious
- SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
- SAUCE: rfi-flush: Fix the fallback flush to actually activate
- SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
- SAUCE: rfi-flush: Refactor the macros so the nops are defined once
- SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
- SAUCE: rfi-flush: Use rfi-flush in printks
- SAUCE: rfi-flush: Fallback flush add load dependency
- SAUCE: rfi-flush: Fix the 32-bit KVM build
- SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
- SAUCE: rfi-flush: Make the fallback robust against memory corruption
- [Config] Disable CONFIG_PPC_DEBUG_RFI
* s390: add ppa to kernel entry/exit (LP: #1742771)
- s390: introduce CPU alternatives
- s390: add ppa to kernel entry / exit
-- Marcelo Henrique Cerri <email address hidden> Fri, 19 Jan 2018 09:56:09 -0200
-
linux (4.13.0-30.33) artful; urgency=low
* linux: 4.13.0-30.33 -proposed tracker (LP: #1743412)
* Do not duplicate changelog entries assigned to more than one bug or CVE
(LP: #1743383)
- [Packaging] git-ubuntu-log -- handle multiple bugs/cves better
* Unable to handle kernel NULL pointer dereference at isci_task_abort_task
(LP: #1726519)
- Revert "scsi: libsas: allow async aborts"
* CVE-2017-5715 // CVE-2017-5753
- SAUCE: x86/microcode: Extend post microcode reload to support IBPB feature
-- repair missmerge
- Revert "x86/svm: Add code to clear registers on VM exit"
- kvm: vmx: Scrub hardware GPRs at VM-exit
linux (4.13.0-29.32) artful; urgency=low
* linux: 4.13.0-29.32 -proposed tracker (LP: #1742722)
* CVE-2017-5754
- Revert "x86/cpu: Implement CPU vulnerabilites sysfs functions"
- Revert "sysfs/cpu: Fix typos in vulnerability documentation"
- Revert "sysfs/cpu: Add vulnerability folder"
- Revert "UBUNTU: [Config] updateconfigs to enable
GENERIC_CPU_VULNERABILITIES"
linux (4.13.0-28.31) artful; urgency=low
* CVE-2017-5753
- SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
* CVE-2017-5715
- SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
linux (4.13.0-27.30) artful; urgency=low
[ Andy Whitcroft ]
* CVE-2017-5753
- locking/barriers: introduce new memory barrier gmb()
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- p54: prevent speculative execution
- qla2xxx: prevent speculative execution
- cw1200: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- userns: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/kvm: Pad RSB on VM transition
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/syscall: Clear unused extra registers on syscall entrance
- x86/syscall: Clear unused extra registers on 32-bit compatible syscall
entrance
- x86/entry: Use retpoline for syscall's indirect calls
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- x86/svm: Add code to clobber the RSB on VM exit
- x86/svm: Add code to clear registers on VM exit
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- powerpc: add gmb barrier
- s390/spinlock: add gmb memory barrier
- x86/microcode/AMD: Add support for fam17h microcode loading
* CVE-2017-5715
- locking/barriers: introduce new memory barrier gmb()
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- p54: prevent speculative execution
- qla2xxx: prevent speculative execution
- cw1200: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- userns: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/kvm: Pad RSB on VM transition
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/syscall: Clear unused extra registers on syscall entrance
- x86/syscall: Clear unused extra registers on 32-bit compatible syscall
entrance
- x86/entry: Use retpoline for syscall's indirect calls
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- x86/svm: Add code to clobber the RSB on VM exit
- x86/svm: Add code to clear registers on VM exit
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- powerpc: add gmb barrier
- s390/spinlock: add gmb memory barrier
- x86/microcode/AMD: Add support for fam17h microcode loading
* CVE-2017-5754
- x86/pti: Enable PTI by default
- x86/pti: Make sure the user/kernel PTEs match
- x86/dumpstack: Fix partial register dumps
- x86/dumpstack: Print registers for first stack frame
- x86/process: Define cpu_tss_rw in same section as declaration
- x86/mm: Set MODULES_END to 0xffffffffff000000
- x86/mm: Map cpu_entry_area at the same place on 4/5 level
- x86/kaslr: Fix the vaddr_end mess
- x86/events/intel/ds: Use the proper cache flush method for mapping ds
buffers
- x86/tlb: Drop the _GPL from the cpu_tlbstate export
- x86/alternatives: Add missing '\n' at end of ALTERNATIVE inline asm
- x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN
- x86/pti: Unbreak EFI old_memmap
- x86/Documentation: Add PTI description
- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12]
- sysfs/cpu: Add vulnerability folder
- x86/cpu: Implement CPU vulnerabilites sysfs functions
- x86/tboot: Unbreak tboot with PTI enabled
- x86/mm/pti: Remove dead logic in pti_user_pagetable_walk*()
- x86/cpu/AMD: Make LFENCE a serializing instruction
- x86/cpu/AMD: Use LFENCE_RDTSC in preference to MFENCE_RDTSC
- sysfs/cpu: Fix typos in vulnerability documentation
- x86/alternatives: Fix optimize_nops() checking
- x86/pti: Make unpoison of pgd for trusted boot work for real
- s390: introduce CPU alternatives
- s390: add ppa to kernel entry / exit
- SAUCE: powerpc: Secure memory rfi flush
- SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
- SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
- SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
- SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
- SAUCE: rfi-flush: Implement congruence-first fallback flush
- SAUCE: rfi-flush: Make l1d_flush_type bit flags
- SAUCE: rfi-flush: Push the instruction selection down to the patching
routine
- SAUCE: rfi-flush: Expand the RFI section to two nop slots
- SAUCE: rfi-flush: Support more than one flush type at once
- SAUCE: rfi-flush: Allow HV to advertise multiple flush types
- SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
- SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
- SAUCE: rfi-flush: Rework powernv logic to be more cautious
- SAUCE: rfi-flush: Rework pseries logic to be more cautious
- SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
- SAUCE: rfi-flush: Fix the fallback flush to actually activate
- SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
- SAUCE: rfi-flush: Refactor the macros so the nops are defined once
- SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
- SAUCE: rfi-flush: Use rfi-flush in printks
- SAUCE: rfi-flush: Fallback flush add load dependency
- SAUCE: rfi-flush: Fix the 32-bit KVM build
- SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
- SAUCE: rfi-flush: Make the fallback robust against memory corruption
- [Config] Disable CONFIG_PPC_DEBUG_RFI
- [Config] updateconfigs to enable GENERIC_CPU_VULNERABILITIES
* powerpc: flush L1D on return to use (LP: #1742772)
- SAUCE: powerpc: Secure memory rfi flush
- SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
- SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
- SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
- SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
- SAUCE: rfi-flush: Implement congruence-first fallback flush
- SAUCE: rfi-flush: Make l1d_flush_type bit flags
- SAUCE: rfi-flush: Push the instruction selection down to the patching
routine
- SAUCE: rfi-flush: Expand the RFI section to two nop slots
- SAUCE: rfi-flush: Support more than one flush type at once
- SAUCE: rfi-flush: Allow HV to advertise multiple flush types
- SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
- SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
- SAUCE: rfi-flush: Rework powernv logic to be more cautious
- SAUCE: rfi-flush: Rework pseries logic to be more cautious
- SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
- SAUCE: rfi-flush: Fix the fallback flush to actually activate
- SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
- SAUCE: rfi-flush: Refactor the macros so the nops are defined once
- SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
- SAUCE: rfi-flush: Use rfi-flush in printks
- SAUCE: rfi-flush: Fallback flush add load dependency
- SAUCE: rfi-flush: Fix the 32-bit KVM build
- SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
- SAUCE: rfi-flush: Make the fallback robust against memory corruption
- [Config] Disable CONFIG_PPC_DEBUG_RFI
* s390: add ppa to kernel entry/exit (LP: #1742771)
- s390: introduce CPU alternatives
- s390: add ppa to kernel entry / exit
-- Marcelo Henrique Cerri <email address hidden> Mon, 15 Jan 2018 16:46:07 -0200
-
linux (4.13.0-29.32) artful; urgency=low
* linux: 4.13.0-29.32 -proposed tracker (LP: #1742722)
* CVE-2017-5754
- Revert "x86/cpu: Implement CPU vulnerabilites sysfs functions"
- Revert "sysfs/cpu: Fix typos in vulnerability documentation"
- Revert "sysfs/cpu: Add vulnerability folder"
- Revert "UBUNTU: [Config] updateconfigs to enable
GENERIC_CPU_VULNERABILITIES"
linux (4.13.0-28.31) artful; urgency=low
* CVE-2017-5753
- SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
* CVE-2017-5715
- SAUCE: x86/kvm: Fix stuff_RSB() for 32-bit
linux (4.13.0-27.30) artful; urgency=low
[ Andy Whitcroft ]
* CVE-2017-5753
- locking/barriers: introduce new memory barrier gmb()
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- p54: prevent speculative execution
- qla2xxx: prevent speculative execution
- cw1200: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- userns: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/kvm: Pad RSB on VM transition
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/syscall: Clear unused extra registers on syscall entrance
- x86/syscall: Clear unused extra registers on 32-bit compatible syscall
entrance
- x86/entry: Use retpoline for syscall's indirect calls
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- x86/svm: Add code to clobber the RSB on VM exit
- x86/svm: Add code to clear registers on VM exit
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- powerpc: add gmb barrier
- s390/spinlock: add gmb memory barrier
- x86/microcode/AMD: Add support for fam17h microcode loading
* CVE-2017-5715
- locking/barriers: introduce new memory barrier gmb()
- bpf: prevent speculative execution in eBPF interpreter
- x86, bpf, jit: prevent speculative execution when JIT is enabled
- uvcvideo: prevent speculative execution
- carl9170: prevent speculative execution
- p54: prevent speculative execution
- qla2xxx: prevent speculative execution
- cw1200: prevent speculative execution
- Thermal/int340x: prevent speculative execution
- userns: prevent speculative execution
- ipv6: prevent speculative execution
- fs: prevent speculative execution
- net: mpls: prevent speculative execution
- udf: prevent speculative execution
- x86/feature: Enable the x86 feature to control Speculation
- x86/feature: Report presence of IBPB and IBRS control
- x86/enter: MACROS to set/clear IBRS and set IBPB
- x86/enter: Use IBRS on syscall and interrupts
- x86/idle: Disable IBRS entering idle and enable it on wakeup
- x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
- x86/mm: Set IBPB upon context switch
- x86/mm: Only set IBPB when the new thread cannot ptrace current thread
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
- x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
- x86/kvm: Set IBPB when switching VM
- x86/kvm: Toggle IBRS on VM entry and exit
- x86/kvm: Pad RSB on VM transition
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
- x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
- x86/syscall: Clear unused extra registers on syscall entrance
- x86/syscall: Clear unused extra registers on 32-bit compatible syscall
entrance
- x86/entry: Use retpoline for syscall's indirect calls
- x86/cpu/AMD: Add speculative control support for AMD
- x86/microcode: Extend post microcode reload to support IBPB feature
- KVM: SVM: Do not intercept new speculative control MSRs
- x86/svm: Set IBRS value on VM entry and exit
- x86/svm: Set IBPB when running a different VCPU
- KVM: x86: Add speculative control CPUID support for guests
- x86/svm: Add code to clobber the RSB on VM exit
- x86/svm: Add code to clear registers on VM exit
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
- powerpc: add gmb barrier
- s390/spinlock: add gmb memory barrier
- x86/microcode/AMD: Add support for fam17h microcode loading
* CVE-2017-5754
- x86/pti: Enable PTI by default
- x86/pti: Make sure the user/kernel PTEs match
- x86/dumpstack: Fix partial register dumps
- x86/dumpstack: Print registers for first stack frame
- x86/process: Define cpu_tss_rw in same section as declaration
- x86/mm: Set MODULES_END to 0xffffffffff000000
- x86/mm: Map cpu_entry_area at the same place on 4/5 level
- x86/kaslr: Fix the vaddr_end mess
- x86/events/intel/ds: Use the proper cache flush method for mapping ds
buffers
- x86/tlb: Drop the _GPL from the cpu_tlbstate export
- x86/alternatives: Add missing '\n' at end of ALTERNATIVE inline asm
- x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN
- x86/pti: Unbreak EFI old_memmap
- x86/Documentation: Add PTI description
- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12]
- sysfs/cpu: Add vulnerability folder
- x86/cpu: Implement CPU vulnerabilites sysfs functions
- x86/tboot: Unbreak tboot with PTI enabled
- x86/mm/pti: Remove dead logic in pti_user_pagetable_walk*()
- x86/cpu/AMD: Make LFENCE a serializing instruction
- x86/cpu/AMD: Use LFENCE_RDTSC in preference to MFENCE_RDTSC
- sysfs/cpu: Fix typos in vulnerability documentation
- x86/alternatives: Fix optimize_nops() checking
- x86/pti: Make unpoison of pgd for trusted boot work for real
- s390: introduce CPU alternatives
- s390: add ppa to kernel entry / exit
- SAUCE: powerpc: Secure memory rfi flush
- SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
- SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
- SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
- SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
- SAUCE: rfi-flush: Implement congruence-first fallback flush
- SAUCE: rfi-flush: Make l1d_flush_type bit flags
- SAUCE: rfi-flush: Push the instruction selection down to the patching
routine
- SAUCE: rfi-flush: Expand the RFI section to two nop slots
- SAUCE: rfi-flush: Support more than one flush type at once
- SAUCE: rfi-flush: Allow HV to advertise multiple flush types
- SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
- SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
- SAUCE: rfi-flush: Rework powernv logic to be more cautious
- SAUCE: rfi-flush: Rework pseries logic to be more cautious
- SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
- SAUCE: rfi-flush: Fix the fallback flush to actually activate
- SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
- SAUCE: rfi-flush: Refactor the macros so the nops are defined once
- SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
- SAUCE: rfi-flush: Use rfi-flush in printks
- SAUCE: rfi-flush: Fallback flush add load dependency
- SAUCE: rfi-flush: Fix the 32-bit KVM build
- SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
- SAUCE: rfi-flush: Make the fallback robust against memory corruption
- [Config] Disable CONFIG_PPC_DEBUG_RFI
- [Config] updateconfigs to enable GENERIC_CPU_VULNERABILITIES
* powerpc: flush L1D on return to use (LP: #1742772)
- SAUCE: powerpc: Secure memory rfi flush
- SAUCE: rfi-flush: Make DEBUG_RFI a CONFIG option
- SAUCE: rfi-flush: Add HRFI_TO_UNKNOWN and use it in denorm
- SAUCE: rfi-flush: kvmppc_skip_(H)interrupt returns to host kernel
- SAUCE: KVM: Revert the implementation of H_GET_CPU_CHARACTERISTICS
- SAUCE: rfi-flush: Implement congruence-first fallback flush
- SAUCE: rfi-flush: Make l1d_flush_type bit flags
- SAUCE: rfi-flush: Push the instruction selection down to the patching
routine
- SAUCE: rfi-flush: Expand the RFI section to two nop slots
- SAUCE: rfi-flush: Support more than one flush type at once
- SAUCE: rfi-flush: Allow HV to advertise multiple flush types
- SAUCE: rfi-flush: Add speculation barrier before ori 30,30,0 flush
- SAUCE: rfi-flush: Add barriers to the fallback L1D flushing
- SAUCE: rfi-flush: Rework powernv logic to be more cautious
- SAUCE: rfi-flush: Rework pseries logic to be more cautious
- SAUCE: rfi-flush: Put the fallback flushes in the real trampoline section
- SAUCE: rfi-flush: Fix the fallback flush to actually activate
- SAUCE: rfi-flush: Fix HRFI_TO_UNKNOWN
- SAUCE: rfi-flush: Refactor the macros so the nops are defined once
- SAUCE: rfi-flush: Add no_rfi_flush and nopti comandline options
- SAUCE: rfi-flush: Use rfi-flush in printks
- SAUCE: rfi-flush: Fallback flush add load dependency
- SAUCE: rfi-flush: Fix the 32-bit KVM build
- SAUCE: rfi-flush: Fix some RFI conversions in the KVM code
- SAUCE: rfi-flush: Make the fallback robust against memory corruption
- [Config] Disable CONFIG_PPC_DEBUG_RFI
* s390: add ppa to kernel entry/exit (LP: #1742771)
- s390: introduce CPU alternatives
- s390: add ppa to kernel entry / exit
-- Kleber Sacilotto de Souza <email address hidden> Fri, 12 Jan 2018 12:10:51 +0100
-
linux (4.13.0-25.29) artful; urgency=low
* linux: 4.13.0-25.29 -proposed tracker (LP: #1741955)
* CVE-2017-5754
- Revert "UBUNTU: [Config] updateconfigs to enable PTI"
- [Config] Enable PTI with UNWINDER_FRAME_POINTER
linux (4.13.0-24.28) artful; urgency=low
* linux: 4.13.0-24.28 -proposed tracker (LP: #1741745)
* CVE-2017-5754
- x86/cpu, x86/pti: Do not enable PTI on AMD processors
linux (4.13.0-23.27) artful; urgency=low
* linux: 4.13.0-23.27 -proposed tracker (LP: #1741556)
[ Kleber Sacilotto de Souza ]
* CVE-2017-5754
- x86/mm: Add the 'nopcid' boot option to turn off PCID
- x86/mm: Enable CR4.PCIDE on supported systems
- x86/mm: Document how CR4.PCIDE restore works
- x86/entry/64: Refactor IRQ stacks and make them NMI-safe
- x86/entry/64: Initialize the top of the IRQ stack before switching stacks
- x86/entry/64: Add unwind hint annotations
- xen/x86: Remove SME feature in PV guests
- x86/xen/64: Rearrange the SYSCALL entries
- irq: Make the irqentry text section unconditional
- x86/xen/64: Fix the reported SS and CS in SYSCALL
- x86/paravirt/xen: Remove xen_patch()
- x86/traps: Simplify pagefault tracing logic
- x86/idt: Unify gate_struct handling for 32/64-bit kernels
- x86/asm: Replace access to desc_struct:a/b fields
- x86/xen: Get rid of paravirt op adjust_exception_frame
- x86/paravirt: Remove no longer used paravirt functions
- x86/entry: Fix idtentry unwind hint
- x86/mm/64: Initialize CR4.PCIDE early
- objtool: Add ORC unwind table generation
- objtool, x86: Add facility for asm code to provide unwind hints
- x86/unwind: Add the ORC unwinder
- x86/kconfig: Consolidate unwinders into multiple choice selection
- objtool: Upgrade libelf-devel warning to error for CONFIG_ORC_UNWINDER
- x86/ldt/64: Refresh DS and ES when modify_ldt changes an entry
- x86/mm: Give each mm TLB flush generation a unique ID
- x86/mm: Track the TLB's tlb_gen and update the flushing algorithm
- x86/mm: Rework lazy TLB mode and TLB freshness tracking
- x86/mm: Implement PCID based optimization: try to preserve old TLB entries
using PCID
- x86/mm: Factor out CR3-building code
- x86/mm/64: Stop using CR3.PCID == 0 in ASID-aware code
- x86/mm: Flush more aggressively in lazy TLB mode
- Revert "x86/mm: Stop calling leave_mm() in idle code"
- kprobes/x86: Set up frame pointer in kprobe trampoline
- x86/tracing: Introduce a static key for exception tracing
- x86/boot: Add early cmdline parsing for options with arguments
- mm, x86/mm: Fix performance regression in get_user_pages_fast()
- x86/asm: Remove unnecessary \n\t in front of CC_SET() from asm templates
- objtool: Don't report end of section error after an empty unwind hint
- x86/head: Remove confusing comment
- x86/head: Remove unused 'bad_address' code
- x86/head: Fix head ELF function annotations
- x86/boot: Annotate verify_cpu() as a callable function
- x86/xen: Fix xen head ELF annotations
- x86/xen: Add unwind hint annotations
- x86/head: Add unwind hint annotations
- ACPI / APEI: adjust a local variable type in ghes_ioremap_pfn_irq()
- x86/unwinder: Make CONFIG_UNWINDER_ORC=y the default in the 64-bit defconfig
- x86/fpu/debug: Remove unused 'x86_fpu_state' and 'x86_fpu_deactivate_state'
tracepoints
- x86/unwind: Rename unwinder config options to 'CONFIG_UNWINDER_*'
- x86/unwind: Make CONFIG_UNWINDER_ORC=y the default in kconfig for 64-bit
- bitops: Add clear/set_bit32() to linux/bitops.h
- x86/cpuid: Add generic table for CPUID dependencies
- x86/fpu: Parse clearcpuid= as early XSAVE argument
- x86/fpu: Make XSAVE check the base CPUID features before enabling
- x86/fpu: Remove the explicit clearing of XSAVE dependent features
- x86/platform/UV: Convert timers to use timer_setup()
- objtool: Print top level commands on incorrect usage
- x86/cpuid: Prevent out of bound access in do_clear_cpu_cap()
- x86/entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt()
- mm/sparsemem: Allocate mem_section at runtime for CONFIG_SPARSEMEM_EXTREME=y
- x86/kasan: Use the same shadow offset for 4- and 5-level paging
- x86/xen: Provide pre-built page tables only for CONFIG_XEN_PV=y and
CONFIG_XEN_PVH=y
- x86/xen: Drop 5-level paging support code from the XEN_PV code
- ACPI / APEI: remove the unused dead-code for SEA/NMI notification type
- x86/asm: Don't use the confusing '.ifeq' directive
- x86/build: Beautify build log of syscall headers
- x86/mm/64: Rename the register_page_bootmem_memmap() 'size' parameter to
'nr_pages'
- x86/cpufeatures: Enable new SSE/AVX/AVX512 CPU features
- x86/mm: Relocate page fault error codes to traps.h
- x86/boot: Relocate definition of the initial state of CR0
- ptrace,x86: Make user_64bit_mode() available to 32-bit builds
- x86/entry/64: Remove the restore_c_regs_and_iret label
- x86/entry/64: Split the IRET-to-user and IRET-to-kernel paths
- x86/entry/64: Move SWAPGS into the common IRET-to-usermode path
- x86/entry/64: Simplify reg restore code in the standard IRET paths
- x86/entry/64: Shrink paranoid_exit_restore and make labels local
- x86/entry/64: Use pop instead of movq in syscall_return_via_sysret
- x86/entry/64: Merge the fast and slow SYSRET paths
- x86/entry/64: Use POP instead of MOV to restore regs on NMI return
- x86/entry/64: Remove the RESTORE_..._REGS infrastructure
- xen, x86/entry/64: Add xen NMI trap entry
- x86/entry/64: De-Xen-ify our NMI code
- x86/entry/32: Pull the MSR_IA32_SYSENTER_CS update code out of
native_load_sp0()
- x86/entry/64: Pass SP0 directly to load_sp0()
- x86/entry: Add task_top_of_stack() to find the top of a task's stack
- x86/xen/64, x86/entry/64: Clean up SP code in cpu_initialize_context()
- x86/entry/64: Stop initializing TSS.sp0 at boot
- x86/entry/64: Remove all remaining direct thread_struct::sp0 reads
- x86/entry/32: Fix cpu_current_top_of_stack initialization at boot
- x86/entry/64: Remove thread_struct::sp0
- x86/traps: Use a new on_thread_stack() helper to clean up an assertion
- x86/entry/64: Shorten TEST instructions
- x86/cpuid: Replace set/clear_bit32()
- bitops: Revert cbe96375025e ("bitops: Add clear/set_bit32() to
linux/bitops.h")
- x86/mm: Define _PAGE_TABLE using _KERNPG_TABLE
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions
- x86/cpufeatures: Fix various details in the feature definitions
- selftests/x86/protection_keys: Fix syscall NR redefinition warnings
- selftests/x86/ldt_gdt: Robustify against set_thread_area() and LAR oddities
- selftests/x86/ldt_gdt: Add infrastructure to test set_thread_area()
- selftests/x86/ldt_gdt: Run most existing LDT test cases against the GDT as
well
- selftests/x86/ldt_get: Add a few additional tests for limits
- ACPI / APEI: Replace ioremap_page_range() with fixmap
- x86/virt, x86/platform: Merge 'struct x86_hyper' into 'struct x86_platform'
and 'struct x86_init'
- x86/virt: Add enum for hypervisors to replace x86_hyper
- drivers/misc/intel/pti: Rename the header file to free up the namespace
- x86/cpufeature: Add User-Mode Instruction Prevention definitions
- x86: Make X86_BUG_FXSAVE_LEAK detectable in CPUID on AMD
- perf/x86: Enable free running PEBS for REGS_USER/INTR
- bpf: fix build issues on um due to mising bpf_perf_event.h
- locking/barriers: Add implicit smp_read_barrier_depends() to READ_ONCE()
- locking/barriers: Convert users of lockless_dereference() to READ_ONCE()
- x86/mm/kasan: Don't use vmemmap_populate() to initialize shadow
- mm/sparsemem: Fix ARM64 boot crash when CONFIG_SPARSEMEM_EXTREME=y
- objtool: Move synced files to their original relative locations
- objtool: Move kernel headers/code sync check to a script
- objtool: Fix cross-build
- tools/headers: Sync objtool UAPI header
- objtool: Fix 64-bit build on 32-bit host
- x86/decoder: Fix and update the opcodes map
- x86/decoder: Add new TEST instruction pattern
- x86/insn-eval: Add utility functions to get segment selector
- x86/entry/64/paravirt: Use paravirt-safe macro to access eflags
- x86/unwinder/orc: Dont bail on stack overflow
- x86/unwinder: Handle stack overflows more gracefully
- x86/irq: Remove an old outdated comment about context tracking races
- x86/irq/64: Print the offending IP in the stack overflow warning
- x86/entry/64: Allocate and enable the SYSENTER stack
- x86/dumpstack: Add get_stack_info() support for the SYSENTER stack
- x86/entry/gdt: Put per-CPU GDT remaps in ascending order
- x86/mm/fixmap: Generalize the GDT fixmap mechanism, introduce struct
cpu_entry_area
- x86/kasan/64: Teach KASAN about the cpu_entry_area
- x86/entry: Fix assumptions that the HW TSS is at the beginning of cpu_tss
- x86/dumpstack: Handle stack overflow on all stacks
- x86/entry: Move SYSENTER_stack to the beginning of struct tss_struct
- x86/entry: Remap the TSS into the CPU entry area
- x86/entry/64: Separate cpu_current_top_of_stack from TSS.sp0
- x86/espfix/64: Stop assuming that pt_regs is on the entry stack
- x86/entry/64: Use a per-CPU trampoline stack for IDT entries
- x86/entry/64: Return to userspace from the trampoline stack
- x86/entry/64: Create a per-CPU SYSCALL entry trampoline
- x86/entry/64: Move the IST stacks into struct cpu_entry_area
- x86/entry/64: Remove the SYSENTER stack canary
- x86/entry: Clean up the SYSENTER_stack code
- x86/entry/64: Make cpu_entry_area.tss read-only
- x86/paravirt: Dont patch flush_tlb_single
- x86/paravirt: Provide a way to check for hypervisors
- x86/cpufeatures: Make CPU bugs sticky
- x86/Kconfig: Limit NR_CPUS on 32-bit to a sane amount
- x86/mm/dump_pagetables: Check PAGE_PRESENT for real
- x86/mm/dump_pagetables: Make the address hints correct and readable
- x86/vsyscall/64: Explicitly set _PAGE_USER in the pagetable hierarchy
- x86/vsyscall/64: Warn and fail vsyscall emulation in NATIVE mode
- arch, mm: Allow arch_dup_mmap() to fail
- x86/ldt: Rework locking
- x86/ldt: Prevent LDT inheritance on exec
- x86/mm/64: Improve the memory map documentation
- x86/doc: Remove obvious weirdnesses from the x86 MM layout documentation
- x86/entry: Rename SYSENTER_stack to CPU_ENTRY_AREA_entry_stack
- x86/uv: Use the right TLB-flush API
- x86/microcode: Dont abuse the TLB-flush interface
- x86/mm: Use __flush_tlb_one() for kernel memory
- x86/mm: Remove superfluous barriers
- x86/mm: Add comments to clarify which TLB-flush functions are supposed to
flush what
- x86/mm: Move the CR3 construction functions to tlbflush.h
- x86/mm: Remove hard-coded ASID limit checks
- x86/mm: Put MMU to hardware ASID translation in one place
- x86/mm: Create asm/invpcid.h
- x86/cpu_entry_area: Move it to a separate unit
- x86/cpu_entry_area: Move it out of the fixmap
- init: Invoke init_espfix_bsp() from mm_init()
- x86/cpu_entry_area: Prevent wraparound in setup_cpu_entry_area_ptes() on
32bit
- x86/cpufeatures: Add X86_BUG_CPU_INSECURE
- x86/mm/pti: Disable global pages if PAGE_TABLE_ISOLATION=y
- x86/mm/pti: Prepare the x86/entry assembly code for entry/exit CR3 switching
- x86/mm/pti: Add infrastructure for page table isolation
- x86/pti: Add the pti= cmdline option and documentation
- x86/mm/pti: Add mapping helper functions
- x86/mm/pti: Allow NX poison to be set in p4d/pgd
- x86/mm/pti: Allocate a separate user PGD
- x86/mm/pti: Populate user PGD
- x86/mm/pti: Add functions to clone kernel PMDs
- x86/mm/pti: Force entry through trampoline when PTI active
- x86/mm/pti: Share cpu_entry_area with user space page tables
- x86/entry: Align entry text section to PMD boundary
- x86/mm/pti: Share entry text PMD
- x86/mm/pti: Map ESPFIX into user space
- x86/cpu_entry_area: Add debugstore entries to cpu_entry_area
- x86/events/intel/ds: Map debug buffers in cpu_entry_area
- x86/mm/64: Make a full PGD-entry size hole in the memory map
- x86/pti: Put the LDT in its own PGD if PTI is on
- x86/pti: Map the vsyscall page if needed
- x86/mm: Allow flushing for future ASID switches
- x86/mm: Abstract switching CR3
- x86/mm: Use/Fix PCID to optimize user/kernel switches
- x86/mm: Optimize RESTORE_CR3
- x86/mm: Use INVPCID for __native_flush_tlb_single()
- x86/mm: Clarify the whole ASID/kernel PCID/user PCID naming
- x86/dumpstack: Indicate in Oops whether PTI is configured and enabled
- x86/mm/pti: Add Kconfig
- x86/mm/dump_pagetables: Add page table directory to the debugfs VFS
hierarchy
- x86/mm/dump_pagetables: Check user space page table for WX pages
- x86/mm/dump_pagetables: Allow dumping current pagetables
- x86/ldt: Make the LDT mapping RO
- x86/smpboot: Remove stale TLB flush invocations
- x86/mm: Remove preempt_disable/enable() from __native_flush_tlb()
- x86/ldt: Plug memory leak in error path
- x86/ldt: Make LDT pgtable free conditional
- [Config] updateconfigs to enable PTI
- kvm: x86: fix RSM when PCID is non-zero
- x86/pti: Switch to kernel CR3 at early in entry_SYSCALL_compat()
- SAUCE: only attempt to use PCID in 64 bit builds
- SAUCE: BODGE: temporarily disable some kprobe trace points which are
cratering
- s390/mm: use generic mm_hooks
- objtool: use sh to invoke sync-check.sh in the Makefile
* CVE-2017-17862
- bpf: fix branch pruning logic
* CVE-2017-17864
- SAUCE: bpf/verifier: Fix states_equal() comparison of pointer and UNKNOWN
* CVE-2017-16995
- bpf: fix incorrect sign extension in check_alu_op()
* CVE-2017-17863
- SAUCE: bpf: reject out-of-bounds stack pointer calculation
-- Marcelo Henrique Cerri <email address hidden> Mon, 08 Jan 2018 17:13:57 -0200
-
linux (4.13.0-24.28) artful; urgency=low
* linux: 4.13.0-24.28 -proposed tracker (LP: #1741745)
* CVE-2017-5754
- x86/cpu, x86/pti: Do not enable PTI on AMD processors
linux (4.13.0-23.27) artful; urgency=low
* linux: 4.13.0-23.27 -proposed tracker (LP: #1741556)
[ Kleber Sacilotto de Souza ]
* CVE-2017-5754
- x86/mm: Add the 'nopcid' boot option to turn off PCID
- x86/mm: Enable CR4.PCIDE on supported systems
- x86/mm: Document how CR4.PCIDE restore works
- x86/entry/64: Refactor IRQ stacks and make them NMI-safe
- x86/entry/64: Initialize the top of the IRQ stack before switching stacks
- x86/entry/64: Add unwind hint annotations
- xen/x86: Remove SME feature in PV guests
- x86/xen/64: Rearrange the SYSCALL entries
- irq: Make the irqentry text section unconditional
- x86/xen/64: Fix the reported SS and CS in SYSCALL
- x86/paravirt/xen: Remove xen_patch()
- x86/traps: Simplify pagefault tracing logic
- x86/idt: Unify gate_struct handling for 32/64-bit kernels
- x86/asm: Replace access to desc_struct:a/b fields
- x86/xen: Get rid of paravirt op adjust_exception_frame
- x86/paravirt: Remove no longer used paravirt functions
- x86/entry: Fix idtentry unwind hint
- x86/mm/64: Initialize CR4.PCIDE early
- objtool: Add ORC unwind table generation
- objtool, x86: Add facility for asm code to provide unwind hints
- x86/unwind: Add the ORC unwinder
- x86/kconfig: Consolidate unwinders into multiple choice selection
- objtool: Upgrade libelf-devel warning to error for CONFIG_ORC_UNWINDER
- x86/ldt/64: Refresh DS and ES when modify_ldt changes an entry
- x86/mm: Give each mm TLB flush generation a unique ID
- x86/mm: Track the TLB's tlb_gen and update the flushing algorithm
- x86/mm: Rework lazy TLB mode and TLB freshness tracking
- x86/mm: Implement PCID based optimization: try to preserve old TLB entries
using PCID
- x86/mm: Factor out CR3-building code
- x86/mm/64: Stop using CR3.PCID == 0 in ASID-aware code
- x86/mm: Flush more aggressively in lazy TLB mode
- Revert "x86/mm: Stop calling leave_mm() in idle code"
- kprobes/x86: Set up frame pointer in kprobe trampoline
- x86/tracing: Introduce a static key for exception tracing
- x86/boot: Add early cmdline parsing for options with arguments
- mm, x86/mm: Fix performance regression in get_user_pages_fast()
- x86/asm: Remove unnecessary \n\t in front of CC_SET() from asm templates
- objtool: Don't report end of section error after an empty unwind hint
- x86/head: Remove confusing comment
- x86/head: Remove unused 'bad_address' code
- x86/head: Fix head ELF function annotations
- x86/boot: Annotate verify_cpu() as a callable function
- x86/xen: Fix xen head ELF annotations
- x86/xen: Add unwind hint annotations
- x86/head: Add unwind hint annotations
- ACPI / APEI: adjust a local variable type in ghes_ioremap_pfn_irq()
- x86/unwinder: Make CONFIG_UNWINDER_ORC=y the default in the 64-bit defconfig
- x86/fpu/debug: Remove unused 'x86_fpu_state' and 'x86_fpu_deactivate_state'
tracepoints
- x86/unwind: Rename unwinder config options to 'CONFIG_UNWINDER_*'
- x86/unwind: Make CONFIG_UNWINDER_ORC=y the default in kconfig for 64-bit
- bitops: Add clear/set_bit32() to linux/bitops.h
- x86/cpuid: Add generic table for CPUID dependencies
- x86/fpu: Parse clearcpuid= as early XSAVE argument
- x86/fpu: Make XSAVE check the base CPUID features before enabling
- x86/fpu: Remove the explicit clearing of XSAVE dependent features
- x86/platform/UV: Convert timers to use timer_setup()
- objtool: Print top level commands on incorrect usage
- x86/cpuid: Prevent out of bound access in do_clear_cpu_cap()
- x86/entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt()
- mm/sparsemem: Allocate mem_section at runtime for CONFIG_SPARSEMEM_EXTREME=y
- x86/kasan: Use the same shadow offset for 4- and 5-level paging
- x86/xen: Provide pre-built page tables only for CONFIG_XEN_PV=y and
CONFIG_XEN_PVH=y
- x86/xen: Drop 5-level paging support code from the XEN_PV code
- ACPI / APEI: remove the unused dead-code for SEA/NMI notification type
- x86/asm: Don't use the confusing '.ifeq' directive
- x86/build: Beautify build log of syscall headers
- x86/mm/64: Rename the register_page_bootmem_memmap() 'size' parameter to
'nr_pages'
- x86/cpufeatures: Enable new SSE/AVX/AVX512 CPU features
- x86/mm: Relocate page fault error codes to traps.h
- x86/boot: Relocate definition of the initial state of CR0
- ptrace,x86: Make user_64bit_mode() available to 32-bit builds
- x86/entry/64: Remove the restore_c_regs_and_iret label
- x86/entry/64: Split the IRET-to-user and IRET-to-kernel paths
- x86/entry/64: Move SWAPGS into the common IRET-to-usermode path
- x86/entry/64: Simplify reg restore code in the standard IRET paths
- x86/entry/64: Shrink paranoid_exit_restore and make labels local
- x86/entry/64: Use pop instead of movq in syscall_return_via_sysret
- x86/entry/64: Merge the fast and slow SYSRET paths
- x86/entry/64: Use POP instead of MOV to restore regs on NMI return
- x86/entry/64: Remove the RESTORE_..._REGS infrastructure
- xen, x86/entry/64: Add xen NMI trap entry
- x86/entry/64: De-Xen-ify our NMI code
- x86/entry/32: Pull the MSR_IA32_SYSENTER_CS update code out of
native_load_sp0()
- x86/entry/64: Pass SP0 directly to load_sp0()
- x86/entry: Add task_top_of_stack() to find the top of a task's stack
- x86/xen/64, x86/entry/64: Clean up SP code in cpu_initialize_context()
- x86/entry/64: Stop initializing TSS.sp0 at boot
- x86/entry/64: Remove all remaining direct thread_struct::sp0 reads
- x86/entry/32: Fix cpu_current_top_of_stack initialization at boot
- x86/entry/64: Remove thread_struct::sp0
- x86/traps: Use a new on_thread_stack() helper to clean up an assertion
- x86/entry/64: Shorten TEST instructions
- x86/cpuid: Replace set/clear_bit32()
- bitops: Revert cbe96375025e ("bitops: Add clear/set_bit32() to
linux/bitops.h")
- x86/mm: Define _PAGE_TABLE using _KERNPG_TABLE
- x86/cpufeatures: Re-tabulate the X86_FEATURE definitions
- x86/cpufeatures: Fix various details in the feature definitions
- selftests/x86/protection_keys: Fix syscall NR redefinition warnings
- selftests/x86/ldt_gdt: Robustify against set_thread_area() and LAR oddities
- selftests/x86/ldt_gdt: Add infrastructure to test set_thread_area()
- selftests/x86/ldt_gdt: Run most existing LDT test cases against the GDT as
well
- selftests/x86/ldt_get: Add a few additional tests for limits
- ACPI / APEI: Replace ioremap_page_range() with fixmap
- x86/virt, x86/platform: Merge 'struct x86_hyper' into 'struct x86_platform'
and 'struct x86_init'
- x86/virt: Add enum for hypervisors to replace x86_hyper
- drivers/misc/intel/pti: Rename the header file to free up the namespace
- x86/cpufeature: Add User-Mode Instruction Prevention definitions
- x86: Make X86_BUG_FXSAVE_LEAK detectable in CPUID on AMD
- perf/x86: Enable free running PEBS for REGS_USER/INTR
- bpf: fix build issues on um due to mising bpf_perf_event.h
- locking/barriers: Add implicit smp_read_barrier_depends() to READ_ONCE()
- locking/barriers: Convert users of lockless_dereference() to READ_ONCE()
- x86/mm/kasan: Don't use vmemmap_populate() to initialize shadow
- mm/sparsemem: Fix ARM64 boot crash when CONFIG_SPARSEMEM_EXTREME=y
- objtool: Move synced files to their original relative locations
- objtool: Move kernel headers/code sync check to a script
- objtool: Fix cross-build
- tools/headers: Sync objtool UAPI header
- objtool: Fix 64-bit build on 32-bit host
- x86/decoder: Fix and update the opcodes map
- x86/decoder: Add new TEST instruction pattern
- x86/insn-eval: Add utility functions to get segment selector
- x86/entry/64/paravirt: Use paravirt-safe macro to access eflags
- x86/unwinder/orc: Dont bail on stack overflow
- x86/unwinder: Handle stack overflows more gracefully
- x86/irq: Remove an old outdated comment about context tracking races
- x86/irq/64: Print the offending IP in the stack overflow warning
- x86/entry/64: Allocate and enable the SYSENTER stack
- x86/dumpstack: Add get_stack_info() support for the SYSENTER stack
- x86/entry/gdt: Put per-CPU GDT remaps in ascending order
- x86/mm/fixmap: Generalize the GDT fixmap mechanism, introduce struct
cpu_entry_area
- x86/kasan/64: Teach KASAN about the cpu_entry_area
- x86/entry: Fix assumptions that the HW TSS is at the beginning of cpu_tss
- x86/dumpstack: Handle stack overflow on all stacks
- x86/entry: Move SYSENTER_stack to the beginning of struct tss_struct
- x86/entry: Remap the TSS into the CPU entry area
- x86/entry/64: Separate cpu_current_top_of_stack from TSS.sp0
- x86/espfix/64: Stop assuming that pt_regs is on the entry stack
- x86/entry/64: Use a per-CPU trampoline stack for IDT entries
- x86/entry/64: Return to userspace from the trampoline stack
- x86/entry/64: Create a per-CPU SYSCALL entry trampoline
- x86/entry/64: Move the IST stacks into struct cpu_entry_area
- x86/entry/64: Remove the SYSENTER stack canary
- x86/entry: Clean up the SYSENTER_stack code
- x86/entry/64: Make cpu_entry_area.tss read-only
- x86/paravirt: Dont patch flush_tlb_single
- x86/paravirt: Provide a way to check for hypervisors
- x86/cpufeatures: Make CPU bugs sticky
- x86/Kconfig: Limit NR_CPUS on 32-bit to a sane amount
- x86/mm/dump_pagetables: Check PAGE_PRESENT for real
- x86/mm/dump_pagetables: Make the address hints correct and readable
- x86/vsyscall/64: Explicitly set _PAGE_USER in the pagetable hierarchy
- x86/vsyscall/64: Warn and fail vsyscall emulation in NATIVE mode
- arch, mm: Allow arch_dup_mmap() to fail
- x86/ldt: Rework locking
- x86/ldt: Prevent LDT inheritance on exec
- x86/mm/64: Improve the memory map documentation
- x86/doc: Remove obvious weirdnesses from the x86 MM layout documentation
- x86/entry: Rename SYSENTER_stack to CPU_ENTRY_AREA_entry_stack
- x86/uv: Use the right TLB-flush API
- x86/microcode: Dont abuse the TLB-flush interface
- x86/mm: Use __flush_tlb_one() for kernel memory
- x86/mm: Remove superfluous barriers
- x86/mm: Add comments to clarify which TLB-flush functions are supposed to
flush what
- x86/mm: Move the CR3 construction functions to tlbflush.h
- x86/mm: Remove hard-coded ASID limit checks
- x86/mm: Put MMU to hardware ASID translation in one place
- x86/mm: Create asm/invpcid.h
- x86/cpu_entry_area: Move it to a separate unit
- x86/cpu_entry_area: Move it out of the fixmap
- init: Invoke init_espfix_bsp() from mm_init()
- x86/cpu_entry_area: Prevent wraparound in setup_cpu_entry_area_ptes() on
32bit
- x86/cpufeatures: Add X86_BUG_CPU_INSECURE
- x86/mm/pti: Disable global pages if PAGE_TABLE_ISOLATION=y
- x86/mm/pti: Prepare the x86/entry assembly code for entry/exit CR3 switching
- x86/mm/pti: Add infrastructure for page table isolation
- x86/pti: Add the pti= cmdline option and documentation
- x86/mm/pti: Add mapping helper functions
- x86/mm/pti: Allow NX poison to be set in p4d/pgd
- x86/mm/pti: Allocate a separate user PGD
- x86/mm/pti: Populate user PGD
- x86/mm/pti: Add functions to clone kernel PMDs
- x86/mm/pti: Force entry through trampoline when PTI active
- x86/mm/pti: Share cpu_entry_area with user space page tables
- x86/entry: Align entry text section to PMD boundary
- x86/mm/pti: Share entry text PMD
- x86/mm/pti: Map ESPFIX into user space
- x86/cpu_entry_area: Add debugstore entries to cpu_entry_area
- x86/events/intel/ds: Map debug buffers in cpu_entry_area
- x86/mm/64: Make a full PGD-entry size hole in the memory map
- x86/pti: Put the LDT in its own PGD if PTI is on
- x86/pti: Map the vsyscall page if needed
- x86/mm: Allow flushing for future ASID switches
- x86/mm: Abstract switching CR3
- x86/mm: Use/Fix PCID to optimize user/kernel switches
- x86/mm: Optimize RESTORE_CR3
- x86/mm: Use INVPCID for __native_flush_tlb_single()
- x86/mm: Clarify the whole ASID/kernel PCID/user PCID naming
- x86/dumpstack: Indicate in Oops whether PTI is configured and enabled
- x86/mm/pti: Add Kconfig
- x86/mm/dump_pagetables: Add page table directory to the debugfs VFS
hierarchy
- x86/mm/dump_pagetables: Check user space page table for WX pages
- x86/mm/dump_pagetables: Allow dumping current pagetables
- x86/ldt: Make the LDT mapping RO
- x86/smpboot: Remove stale TLB flush invocations
- x86/mm: Remove preempt_disable/enable() from __native_flush_tlb()
- x86/ldt: Plug memory leak in error path
- x86/ldt: Make LDT pgtable free conditional
- [Config] updateconfigs to enable PTI
- kvm: x86: fix RSM when PCID is non-zero
- x86/pti: Switch to kernel CR3 at early in entry_SYSCALL_compat()
- SAUCE: only attempt to use PCID in 64 bit builds
- SAUCE: BODGE: temporarily disable some kprobe trace points which are
cratering
- s390/mm: use generic mm_hooks
- objtool: use sh to invoke sync-check.sh in the Makefile
* CVE-2017-17862
- bpf: fix branch pruning logic
* CVE-2017-17864
- SAUCE: bpf/verifier: Fix states_equal() comparison of pointer and UNKNOWN
* CVE-2017-16995
- bpf: fix incorrect sign extension in check_alu_op()
* CVE-2017-17863
- SAUCE: bpf: reject out-of-bounds stack pointer calculation
-- Marcelo Henrique Cerri <email address hidden> Sun, 07 Jan 2018 11:49:34 -0200
-
linux (4.13.0-22.25) artful; urgency=low
* linux: 4.13.0-22.25 -proposed tracker (LP: #1738791)
* CVE-2017-15115
- sctp: do not peel off an assoc from one netns to another one
* CVE-2017-8824
- dccp: CVE-2017-8824: use-after-free in DCCP code
-- Thadeu Lima de Souza Cascardo <email address hidden> Tue, 19 Dec 2017 08:05:53 -0200
-
linux (4.13.0-21.24) artful; urgency=low
* linux: 4.13.0-21.24 -proposed tracker (LP: #1738823)
* Ubuntu 17.10 corrupting BIOS - many LENOVO laptops models (LP: #1734147)
- [Config] CONFIG_SPI_INTEL_SPI_PLATFORM=n
-- Thadeu Lima de Souza Cascardo <email address hidden> Mon, 18 Dec 2017 14:13:33 -0200
-
linux (4.13.0-19.22) artful; urgency=low
* linux: 4.13.0-19.22 -proposed tracker (LP: #1736118)
* CVE-2017-1000405
- mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d()
linux (4.13.0-18.21) artful; urgency=low
* linux: 4.13.0-18.21 -proposed tracker (LP: #1733530)
* NVMe timeout is too short (LP: #1729119)
- nvme: update timeout module parameter type
* CPU call trace on AMD Raven Ridge after S3 (LP: #1732894)
- x86/mce/AMD: Allow any CPU to initialize the smca_banks array
* Set PANIC_TIMEOUT=10 on Power Systems (LP: #1730660)
- [Config]: Set PANIC_TIMEOUT=10 on ppc64el
* Cannot pair BLE remote devices when using combo BT SoC (LP: #1731467)
- Bluetooth: increase timeout for le auto connections
* enable CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH easily confuse users
(LP: #1732627)
- [Config] CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH=n
* Plantronics P610 does not support sample rate reading (LP: #1719853)
- ALSA: usb-audio: Add sample rate quirk for Plantronics P610
* Allow drivers to use Relaxed Ordering on capable root ports (LP: #1721365)
- Revert commit 1a8b6d76dc5b ("net:add one common config...")
- net: ixgbe: Use new PCI_DEV_FLAGS_NO_RELAXED_ORDERING flag
* support GICv3 ITS save/restore & migration (LP: #1710019)
- KVM: arm/arm64: vgic-its: Fix return value for device table restore
* Device hotplugging with MPT SAS cannot work for VMWare ESXi (LP: #1730852)
- scsi: mptsas: Fixup device hotplug for VMWare ESXi
* Artful update to 4.13.13 stable release (LP: #1732726)
- netfilter: nat: Revert "netfilter: nat: convert nat bysrc hash to
rhashtable"
- netfilter: nft_set_hash: disable fast_ops for 2-len keys
- workqueue: Fix NULL pointer dereference
- crypto: ccm - preserve the IV buffer
- crypto: x86/sha1-mb - fix panic due to unaligned access
- crypto: x86/sha256-mb - fix panic due to unaligned access
- KEYS: fix NULL pointer dereference during ASN.1 parsing [ver #2]
- ACPI / PM: Blacklist Low Power S0 Idle _DSM for Dell XPS13 9360
- ARM: 8720/1: ensure dump_instr() checks addr_limit
- ALSA: timer: Limit max instances per timer
- ALSA: usb-audio: support new Amanero Combo384 firmware version
- ALSA: hda - fix headset mic problem for Dell machines with alc274
- ALSA: seq: Fix OSS sysex delivery in OSS emulation
- ALSA: seq: Avoid invalid lockdep class warning
- MIPS: Fix CM region target definitions
- MIPS: BMIPS: Fix missing cbr address
- MIPS: AR7: Defer registration of GPIO
- MIPS: AR7: Ensure that serial ports are properly set up
- KVM: PPC: Book3S HV: Fix exclusion between HPT resizing and other HPT
updates
- Input: elan_i2c - add ELAN060C to the ACPI table
- rbd: use GFP_NOIO for parent stat and data requests
- drm/vmwgfx: Fix Ubuntu 17.10 Wayland black screen issue
- Revert "x86: CPU: Fix up "cpu MHz" in /proc/cpuinfo"
- can: sun4i: handle overrun in RX FIFO
- can: peak: Add support for new PCIe/M2 CAN FD interfaces
- can: ifi: Fix transmitter delay calculation
- can: c_can: don't indicate triple sampling support for D_CAN
- x86/debug: Handle warnings before the notifier chain, to fix KGDB crash
- x86/smpboot: Make optimization of delay calibration work correctly
- x86/oprofile/ppro: Do not use __this_cpu*() in preemptible context
- Linux 4.13.13
* ELANTECH Touchpad is not detected in 'Lenovo Ideapad 320 14AST' after fresh
install (LP: #1727544)
- Input: elan_i2c - add ELAN060C to the ACPI table
* Power8 Nest PMU Instrumentation support (LP: #1481347)
- powerpc/powernv: Add IMC OPAL APIs
- powerpc/powernv: Detect and create IMC device
- powerpc/perf: Add nest IMC PMU support
- powerpc/perf: Add core IMC PMU support
- powerpc/perf: Add thread IMC PMU support
- powerpc/perf: Fix double unlock in imc_common_cpuhp_mem_free()
- powerpc/perf/imc: Fix nest events on muti socket system
- powerpc/powernv: Fix build error in opal-imc.c when NUMA=n
- powerpc/perf: Fix usage of nest_imc_refc
- powerpc/perf: Fix for core/nest imc call trace on cpuhotplug
- powerpc/perf: Add ___GFP_NOWARN flag to alloc_pages_node()
- powerpc/perf: Fix IMC initialization crash
* Artful update to 4.13.12 stable release (LP: #1731971)
- ALSA: timer: Add missing mutex lock for compat ioctls
- ALSA: seq: Fix nested rwsem annotation for lockdep splat
- cifs: check MaxPathNameComponentLength != 0 before using it
- KEYS: return full count in keyring_read() if buffer is too small
- KEYS: trusted: fix writing past end of buffer in trusted_read()
- KEYS: fix out-of-bounds read during ASN.1 parsing
- ASoC: adau17x1: Workaround for noise bug in ADC
- virtio_blk: Fix an SG_IO regression
- arm64: ensure __dump_instr() checks addr_limit
- KVM: arm64: its: Fix missing dynamic allocation check in scan_its_table
- arm/arm64: KVM: set right LR register value for 32 bit guest when inject
abort
- arm/arm64: kvm: Disable branch profiling in HYP code
- ARM: dts: mvebu: pl310-cache disable double-linefill
- ARM: 8715/1: add a private asm/unaligned.h
- drm/amdgpu: return -ENOENT from uvd 6.0 early init for harvesting
- drm/amdgpu: allow harvesting check for Polaris VCE
- userfaultfd: hugetlbfs: prevent UFFDIO_COPY to fill beyond the end of i_size
- ocfs2: fstrim: Fix start offset of first cluster group during fstrim
- fs/hugetlbfs/inode.c: fix hwpoison reserve accounting
- mm, swap: fix race between swap count continuation operations
- drm/i915: Do not rely on wm preservation for ILK watermarks
- drm/i915/edp: read edp display control registers unconditionally
- Revert "powerpc64/elfv1: Only dereference function descriptor for non-text
symbols"
- MIPS: bpf: Fix a typo in build_one_insn()
- MIPS: smp-cmp: Use right include for task_struct
- MIPS: microMIPS: Fix incorrect mask in insn_table_MM
- MIPS: SMP: Fix deadlock & online race
- Revert "x86: do not use cpufreq_quick_get() for /proc/cpuinfo "cpu MHz""
- x86: CPU: Fix up "cpu MHz" in /proc/cpuinfo
- powerpc/kprobes: Dereference function pointers only if the address does not
belong to kernel text
- futex: Fix more put_pi_state() vs. exit_pi_state_list() races
- perf/cgroup: Fix perf cgroup hierarchy support
- x86/mcelog: Get rid of RCU remnants
- irqchip/irq-mvebu-gicp: Add missing spin_lock init
- Linux 4.13.12
* Artful update to 4.13.11 stable release (LP: #1731961)
- workqueue: replace pool->manager_arb mutex with a flag
- nvme-fc: fix iowait hang
- ALSA: hda/realtek - Add support for ALC236/ALC3204
- ALSA: hda - fix headset mic problem for Dell machines with alc236
- ceph: unlock dangling spinlock in try_flush_caps()
- Fix tracing sample code warning.
- KVM: PPC: Fix oops when checking KVM_CAP_PPC_HTM
- KVM: PPC: Book3S HV: POWER9 more doorbell fixes
- KVM: PPC: Book3S: Protect kvmppc_gpa_to_ua() with SRCU
- s390/kvm: fix detection of guest machine checks
- nbd: handle interrupted sendmsg with a sndtimeo set
- spi: uapi: spidev: add missing ioctl header
- spi: a3700: Return correct value on timeout detection
- spi: bcm-qspi: Fix use after free in bcm_qspi_probe() in error path
- spi: armada-3700: Fix failing commands with quad-SPI
- ovl: add NULL check in ovl_alloc_inode
- ovl: fix EIO from lookup of non-indexed upper
- ovl: handle ENOENT on index lookup
- ovl: do not cleanup unsupported index entries
- fuse: fix READDIRPLUS skipping an entry
- xen/gntdev: avoid out of bounds access in case of partial gntdev_mmap()
- xen: fix booting ballooned down hvm guest
- cifs: Select all required crypto modules
- CIFS: Fix NULL pointer deref on SMB2_tcon() failure
- Input: elan_i2c - add ELAN0611 to the ACPI table
- Input: gtco - fix potential out-of-bound access
- Fix encryption labels and lengths for SMB3.1.1
- SMB3: Validate negotiate request must always be signed
- assoc_array: Fix a buggy node-splitting case
- scsi: zfcp: fix erp_action use-before-initialize in REC action trace
- scsi: aacraid: Fix controller initialization failure
- scsi: qla2xxx: Initialize Work element before requesting IRQs
- scsi: sg: Re-fix off by one in sg_fill_request_table()
- x86/cpu/AMD: Apply the Erratum 688 fix when the BIOS doesn't
- drm/amd/powerplay: fix uninitialized variable
- drm/i915/perf: fix perf enable/disable ioctls with 32bits userspace
- can: sun4i: fix loopback mode
- can: kvaser_usb: Correct return value in printout
- can: kvaser_usb: Ignore CMD_FLUSH_QUEUE_REPLY messages
- cfg80211: fix connect/disconnect edge cases
- ipsec: Fix aborted xfrm policy dump crash
- regulator: fan53555: fix I2C device ids
- powerpc/xive: Fix the size of the cpumask used in xive_find_target_in_mask()
- Linux 4.13.11
* Touchpad not detected - Lenovo ideapad 320-15IKB (LP: #1723736)
- Input: elan_i2c - add ELAN0611 to the ACPI table
* Artful update to 4.13.10 stable release (LP: #1731951)
- staging: bcm2835-audio: Fix memory corruption
- USB: devio: Revert "USB: devio: Don't corrupt user memory"
- USB: core: fix out-of-bounds access bug in usb_get_bos_descriptor()
- USB: serial: metro-usb: add MS7820 device id
- usb: cdc_acm: Add quirk for Elatec TWN3
- usb: quirks: add quirk for WORLDE MINI MIDI keyboard
- usb: hub: Allow reset retry for USB2 devices on connect bounce
- ALSA: usb-audio: Add native DSD support for Pro-Ject Pre Box S2 Digital
- can: gs_usb: fix busy loop if no more TX context is available
- scsi: qla2xxx: Fix uninitialized work element
- nbd: don't set the device size until we're connected
- s390/cputime: fix guest/irq/softirq times after CPU hotplug
- parisc: Fix double-word compare and exchange in LWS code on 32-bit kernels
- parisc: Fix detection of nonsynchronous cr16 cycle counters
- iio: dummy: events: Add missing break
- usb: musb: sunxi: Explicitly release USB PHY on exit
- USB: musb: fix session-bit runtime-PM quirk
- USB: musb: fix late external abort on suspend
- usb: musb: musb_cppi41: Fix the address of teardown and autoreq registers
- usb: musb: musb_cppi41: Fix cppi41_set_dma_mode() for DA8xx
- usb: musb: musb_cppi41: Configure the number of channels for DA8xx
- usb: musb: Check for host-mode using is_host_active() on reset interrupt
- xhci: Identify USB 3.1 capable hosts by their port protocol capability
- xhci: Cleanup current_cmd in xhci_cleanup_command_queue()
- usb: xhci: Reset halted endpoint if trb is noop
- usb: xhci: Handle error condition in xhci_stop_device()
- can: esd_usb2: Fix can_dlc value for received RTR, frames
- can: af_can: can_pernet_init(): add missing error handling for kzalloc
returning NULL
- can: flexcan: fix state transition regression
- can: flexcan: rename legacy error state quirk
- can: flexcan: implement error passive state quirk
- can: flexcan: fix i.MX6 state transition issue
- can: flexcan: fix i.MX28 state transition issue
- can: flexcan: fix p1010 state transition issue
- KEYS: encrypted: fix dereference of NULL user_key_payload
- mmc: sdhci-pci: Fix default d3_retune for Intel host controllers
- drm/i915: Use bdw_ddi_translations_fdi for Broadwell
- drm/nouveau/kms/nv50: fix oops during DP IRQ handling on non-MST boards
- drm/nouveau/bsp/g92: disable by default
- drm/nouveau/mmu: flush tlbs before deleting page tables
- media: s5p-cec: add NACK detection support
- media: cec: Respond to unregistered initiators, when applicable
- media: dvb: i2c transfers over usb cannot be done from stack
- tracing/samples: Fix creation and deletion of simple_thread_fn creation
- ALSA: seq: Enable 'use' locking in all configurations
- ALSA: hda: Remove superfluous '-' added by printk conversion
- ALSA: hda: Abort capability probe at invalid register read
- i2c: ismt: Separate I2C block read from SMBus block read
- i2c: piix4: Fix SMBus port selection for AMD Family 17h chips
- Revert "tools/power turbostat: stop migrating, unless '-m'"
- Input: stmfts - fix setting ABS_MT_POSITION_* maximum size
- brcmfmac: Add check for short event packets
- brcmsmac: make some local variables 'static const' to reduce stack size
- ARM: dts: sun6i: Fix endpoint IDs in second display pipeline
- bus: mbus: fix window size calculation for 4GB windows
- clockevents/drivers/cs5535: Improve resilience to spurious interrupts
- rtlwifi: rtl8821ae: Fix connection lost problem
- x86/microcode/intel: Disable late loading on model 79
- lib/digsig: fix dereference of NULL user_key_payload
- fscrypt: fix dereference of NULL user_key_payload
- ecryptfs: fix dereference of NULL user_key_payload
- KEYS: Fix race between updating and finding a negative key
- FS-Cache: fix dereference of NULL user_key_payload
- KEYS: don't let add_key() update an uninstantiated key
- pkcs7: Prevent NULL pointer dereference, since sinfo is not always set.
- arm64: dts: rockchip: correct vqmmc voltage for rk3399 platforms
- ALSA: hda - Fix incorrect TLV callback check introduced during set_fs()
removal
- iomap_dio_rw: Allocate AIO completion queue before submitting dio
- xfs: don't unconditionally clear the reflink flag on zero-block files
- xfs: evict CoW fork extents when performing finsert/fcollapse
- fs/xfs: Use %pS printk format for direct addresses
- xfs: report zeroed or not correctly in xfs_zero_range()
- xfs: update i_size after unwritten conversion in dio completion
- xfs: perag initialization should only touch m_ag_max_usable for AG 0
- xfs: Capture state of the right inode in xfs_iflush_done
- xfs: always swap the cow forks when swapping extents
- xfs: handle racy AIO in xfs_reflink_end_cow
- xfs: Don't log uninitialised fields in inode structures
- xfs: move more RT specific code under CONFIG_XFS_RT
- xfs: don't change inode mode if ACL update fails
- xfs: reinit btree pointer on attr tree inactivation walk
- xfs: handle error if xfs_btree_get_bufs fails
- xfs: cancel dirty pages on invalidation
- xfs: trim writepage mapping to within eof
- xfs: move two more RT specific functions into CONFIG_XFS_RT
- Linux 4.13.10
* Artful update to 4.13.9 stable release (LP: #1731926)
- perf pmu: Unbreak perf record for arm/arm64 with events with explicit PMU
- mm: page_vma_mapped: ensure pmd is loaded with READ_ONCE outside of lock
- HID: hid-elecom: extend to fix descriptor for HUGE trackball
- Drivers: hv: vmbus: Fix rescind handling issues
- Drivers: hv: vmbus: Fix bugs in rescind handling
- vmbus: simplify hv_ringbuffer_read
- vmbus: refactor hv_signal_on_read
- vmbus: eliminate duplicate cached index
- vmbus: more host signalling avoidance
- Linux 4.13.9
-- Stefan Bader <email address hidden> Mon, 04 Dec 2017 12:27:13 +0100
-
linux (4.13.0-18.21) artful; urgency=low
* linux: 4.13.0-18.21 -proposed tracker (LP: #1733530)
* NVMe timeout is too short (LP: #1729119)
- nvme: update timeout module parameter type
* CPU call trace on AMD Raven Ridge after S3 (LP: #1732894)
- x86/mce/AMD: Allow any CPU to initialize the smca_banks array
* Set PANIC_TIMEOUT=10 on Power Systems (LP: #1730660)
- [Config]: Set PANIC_TIMEOUT=10 on ppc64el
* Cannot pair BLE remote devices when using combo BT SoC (LP: #1731467)
- Bluetooth: increase timeout for le auto connections
* enable CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH easily confuse users
(LP: #1732627)
- [Config] CONFIG_SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH=n
* Plantronics P610 does not support sample rate reading (LP: #1719853)
- ALSA: usb-audio: Add sample rate quirk for Plantronics P610
* Allow drivers to use Relaxed Ordering on capable root ports (LP: #1721365)
- Revert commit 1a8b6d76dc5b ("net:add one common config...")
- net: ixgbe: Use new PCI_DEV_FLAGS_NO_RELAXED_ORDERING flag
* support GICv3 ITS save/restore & migration (LP: #1710019)
- KVM: arm/arm64: vgic-its: Fix return value for device table restore
* Device hotplugging with MPT SAS cannot work for VMWare ESXi (LP: #1730852)
- scsi: mptsas: Fixup device hotplug for VMWare ESXi
* Artful update to 4.13.13 stable release (LP: #1732726)
- netfilter: nat: Revert "netfilter: nat: convert nat bysrc hash to
rhashtable"
- netfilter: nft_set_hash: disable fast_ops for 2-len keys
- workqueue: Fix NULL pointer dereference
- crypto: ccm - preserve the IV buffer
- crypto: x86/sha1-mb - fix panic due to unaligned access
- crypto: x86/sha256-mb - fix panic due to unaligned access
- KEYS: fix NULL pointer dereference during ASN.1 parsing [ver #2]
- ACPI / PM: Blacklist Low Power S0 Idle _DSM for Dell XPS13 9360
- ARM: 8720/1: ensure dump_instr() checks addr_limit
- ALSA: timer: Limit max instances per timer
- ALSA: usb-audio: support new Amanero Combo384 firmware version
- ALSA: hda - fix headset mic problem for Dell machines with alc274
- ALSA: seq: Fix OSS sysex delivery in OSS emulation
- ALSA: seq: Avoid invalid lockdep class warning
- MIPS: Fix CM region target definitions
- MIPS: BMIPS: Fix missing cbr address
- MIPS: AR7: Defer registration of GPIO
- MIPS: AR7: Ensure that serial ports are properly set up
- KVM: PPC: Book3S HV: Fix exclusion between HPT resizing and other HPT
updates
- Input: elan_i2c - add ELAN060C to the ACPI table
- rbd: use GFP_NOIO for parent stat and data requests
- drm/vmwgfx: Fix Ubuntu 17.10 Wayland black screen issue
- Revert "x86: CPU: Fix up "cpu MHz" in /proc/cpuinfo"
- can: sun4i: handle overrun in RX FIFO
- can: peak: Add support for new PCIe/M2 CAN FD interfaces
- can: ifi: Fix transmitter delay calculation
- can: c_can: don't indicate triple sampling support for D_CAN
- x86/debug: Handle warnings before the notifier chain, to fix KGDB crash
- x86/smpboot: Make optimization of delay calibration work correctly
- x86/oprofile/ppro: Do not use __this_cpu*() in preemptible context
- Linux 4.13.13
* ELANTECH Touchpad is not detected in 'Lenovo Ideapad 320 14AST' after fresh
install (LP: #1727544)
- Input: elan_i2c - add ELAN060C to the ACPI table
* Power8 Nest PMU Instrumentation support (LP: #1481347)
- powerpc/powernv: Add IMC OPAL APIs
- powerpc/powernv: Detect and create IMC device
- powerpc/perf: Add nest IMC PMU support
- powerpc/perf: Add core IMC PMU support
- powerpc/perf: Add thread IMC PMU support
- powerpc/perf: Fix double unlock in imc_common_cpuhp_mem_free()
- powerpc/perf/imc: Fix nest events on muti socket system
- powerpc/powernv: Fix build error in opal-imc.c when NUMA=n
- powerpc/perf: Fix usage of nest_imc_refc
- powerpc/perf: Fix for core/nest imc call trace on cpuhotplug
- powerpc/perf: Add ___GFP_NOWARN flag to alloc_pages_node()
- powerpc/perf: Fix IMC initialization crash
* Artful update to 4.13.12 stable release (LP: #1731971)
- ALSA: timer: Add missing mutex lock for compat ioctls
- ALSA: seq: Fix nested rwsem annotation for lockdep splat
- cifs: check MaxPathNameComponentLength != 0 before using it
- KEYS: return full count in keyring_read() if buffer is too small
- KEYS: trusted: fix writing past end of buffer in trusted_read()
- KEYS: fix out-of-bounds read during ASN.1 parsing
- ASoC: adau17x1: Workaround for noise bug in ADC
- virtio_blk: Fix an SG_IO regression
- arm64: ensure __dump_instr() checks addr_limit
- KVM: arm64: its: Fix missing dynamic allocation check in scan_its_table
- arm/arm64: KVM: set right LR register value for 32 bit guest when inject
abort
- arm/arm64: kvm: Disable branch profiling in HYP code
- ARM: dts: mvebu: pl310-cache disable double-linefill
- ARM: 8715/1: add a private asm/unaligned.h
- drm/amdgpu: return -ENOENT from uvd 6.0 early init for harvesting
- drm/amdgpu: allow harvesting check for Polaris VCE
- userfaultfd: hugetlbfs: prevent UFFDIO_COPY to fill beyond the end of i_size
- ocfs2: fstrim: Fix start offset of first cluster group during fstrim
- fs/hugetlbfs/inode.c: fix hwpoison reserve accounting
- mm, swap: fix race between swap count continuation operations
- drm/i915: Do not rely on wm preservation for ILK watermarks
- drm/i915/edp: read edp display control registers unconditionally
- Revert "powerpc64/elfv1: Only dereference function descriptor for non-text
symbols"
- MIPS: bpf: Fix a typo in build_one_insn()
- MIPS: smp-cmp: Use right include for task_struct
- MIPS: microMIPS: Fix incorrect mask in insn_table_MM
- MIPS: SMP: Fix deadlock & online race
- Revert "x86: do not use cpufreq_quick_get() for /proc/cpuinfo "cpu MHz""
- x86: CPU: Fix up "cpu MHz" in /proc/cpuinfo
- powerpc/kprobes: Dereference function pointers only if the address does not
belong to kernel text
- futex: Fix more put_pi_state() vs. exit_pi_state_list() races
- perf/cgroup: Fix perf cgroup hierarchy support
- x86/mcelog: Get rid of RCU remnants
- irqchip/irq-mvebu-gicp: Add missing spin_lock init
- Linux 4.13.12
* Artful update to 4.13.11 stable release (LP: #1731961)
- workqueue: replace pool->manager_arb mutex with a flag
- nvme-fc: fix iowait hang
- ALSA: hda/realtek - Add support for ALC236/ALC3204
- ALSA: hda - fix headset mic problem for Dell machines with alc236
- ceph: unlock dangling spinlock in try_flush_caps()
- Fix tracing sample code warning.
- KVM: PPC: Fix oops when checking KVM_CAP_PPC_HTM
- KVM: PPC: Book3S HV: POWER9 more doorbell fixes
- KVM: PPC: Book3S: Protect kvmppc_gpa_to_ua() with SRCU
- s390/kvm: fix detection of guest machine checks
- nbd: handle interrupted sendmsg with a sndtimeo set
- spi: uapi: spidev: add missing ioctl header
- spi: a3700: Return correct value on timeout detection
- spi: bcm-qspi: Fix use after free in bcm_qspi_probe() in error path
- spi: armada-3700: Fix failing commands with quad-SPI
- ovl: add NULL check in ovl_alloc_inode
- ovl: fix EIO from lookup of non-indexed upper
- ovl: handle ENOENT on index lookup
- ovl: do not cleanup unsupported index entries
- fuse: fix READDIRPLUS skipping an entry
- xen/gntdev: avoid out of bounds access in case of partial gntdev_mmap()
- xen: fix booting ballooned down hvm guest
- cifs: Select all required crypto modules
- CIFS: Fix NULL pointer deref on SMB2_tcon() failure
- Input: elan_i2c - add ELAN0611 to the ACPI table
- Input: gtco - fix potential out-of-bound access
- Fix encryption labels and lengths for SMB3.1.1
- SMB3: Validate negotiate request must always be signed
- assoc_array: Fix a buggy node-splitting case
- scsi: zfcp: fix erp_action use-before-initialize in REC action trace
- scsi: aacraid: Fix controller initialization failure
- scsi: qla2xxx: Initialize Work element before requesting IRQs
- scsi: sg: Re-fix off by one in sg_fill_request_table()
- x86/cpu/AMD: Apply the Erratum 688 fix when the BIOS doesn't
- drm/amd/powerplay: fix uninitialized variable
- drm/i915/perf: fix perf enable/disable ioctls with 32bits userspace
- can: sun4i: fix loopback mode
- can: kvaser_usb: Correct return value in printout
- can: kvaser_usb: Ignore CMD_FLUSH_QUEUE_REPLY messages
- cfg80211: fix connect/disconnect edge cases
- ipsec: Fix aborted xfrm policy dump crash
- regulator: fan53555: fix I2C device ids
- powerpc/xive: Fix the size of the cpumask used in xive_find_target_in_mask()
- Linux 4.13.11
* Touchpad not detected - Lenovo ideapad 320-15IKB (LP: #1723736)
- Input: elan_i2c - add ELAN0611 to the ACPI table
* Artful update to 4.13.10 stable release (LP: #1731951)
- staging: bcm2835-audio: Fix memory corruption
- USB: devio: Revert "USB: devio: Don't corrupt user memory"
- USB: core: fix out-of-bounds access bug in usb_get_bos_descriptor()
- USB: serial: metro-usb: add MS7820 device id
- usb: cdc_acm: Add quirk for Elatec TWN3
- usb: quirks: add quirk for WORLDE MINI MIDI keyboard
- usb: hub: Allow reset retry for USB2 devices on connect bounce
- ALSA: usb-audio: Add native DSD support for Pro-Ject Pre Box S2 Digital
- can: gs_usb: fix busy loop if no more TX context is available
- scsi: qla2xxx: Fix uninitialized work element
- nbd: don't set the device size until we're connected
- s390/cputime: fix guest/irq/softirq times after CPU hotplug
- parisc: Fix double-word compare and exchange in LWS code on 32-bit kernels
- parisc: Fix detection of nonsynchronous cr16 cycle counters
- iio: dummy: events: Add missing break
- usb: musb: sunxi: Explicitly release USB PHY on exit
- USB: musb: fix session-bit runtime-PM quirk
- USB: musb: fix late external abort on suspend
- usb: musb: musb_cppi41: Fix the address of teardown and autoreq registers
- usb: musb: musb_cppi41: Fix cppi41_set_dma_mode() for DA8xx
- usb: musb: musb_cppi41: Configure the number of channels for DA8xx
- usb: musb: Check for host-mode using is_host_active() on reset interrupt
- xhci: Identify USB 3.1 capable hosts by their port protocol capability
- xhci: Cleanup current_cmd in xhci_cleanup_command_queue()
- usb: xhci: Reset halted endpoint if trb is noop
- usb: xhci: Handle error condition in xhci_stop_device()
- can: esd_usb2: Fix can_dlc value for received RTR, frames
- can: af_can: can_pernet_init(): add missing error handling for kzalloc
returning NULL
- can: flexcan: fix state transition regression
- can: flexcan: rename legacy error state quirk
- can: flexcan: implement error passive state quirk
- can: flexcan: fix i.MX6 state transition issue
- can: flexcan: fix i.MX28 state transition issue
- can: flexcan: fix p1010 state transition issue
- KEYS: encrypted: fix dereference of NULL user_key_payload
- mmc: sdhci-pci: Fix default d3_retune for Intel host controllers
- drm/i915: Use bdw_ddi_translations_fdi for Broadwell
- drm/nouveau/kms/nv50: fix oops during DP IRQ handling on non-MST boards
- drm/nouveau/bsp/g92: disable by default
- drm/nouveau/mmu: flush tlbs before deleting page tables
- media: s5p-cec: add NACK detection support
- media: cec: Respond to unregistered initiators, when applicable
- media: dvb: i2c transfers over usb cannot be done from stack
- tracing/samples: Fix creation and deletion of simple_thread_fn creation
- ALSA: seq: Enable 'use' locking in all configurations
- ALSA: hda: Remove superfluous '-' added by printk conversion
- ALSA: hda: Abort capability probe at invalid register read
- i2c: ismt: Separate I2C block read from SMBus block read
- i2c: piix4: Fix SMBus port selection for AMD Family 17h chips
- Revert "tools/power turbostat: stop migrating, unless '-m'"
- Input: stmfts - fix setting ABS_MT_POSITION_* maximum size
- brcmfmac: Add check for short event packets
- brcmsmac: make some local variables 'static const' to reduce stack size
- ARM: dts: sun6i: Fix endpoint IDs in second display pipeline
- bus: mbus: fix window size calculation for 4GB windows
- clockevents/drivers/cs5535: Improve resilience to spurious interrupts
- rtlwifi: rtl8821ae: Fix connection lost problem
- x86/microcode/intel: Disable late loading on model 79
- lib/digsig: fix dereference of NULL user_key_payload
- fscrypt: fix dereference of NULL user_key_payload
- ecryptfs: fix dereference of NULL user_key_payload
- KEYS: Fix race between updating and finding a negative key
- FS-Cache: fix dereference of NULL user_key_payload
- KEYS: don't let add_key() update an uninstantiated key
- pkcs7: Prevent NULL pointer dereference, since sinfo is not always set.
- arm64: dts: rockchip: correct vqmmc voltage for rk3399 platforms
- ALSA: hda - Fix incorrect TLV callback check introduced during set_fs()
removal
- iomap_dio_rw: Allocate AIO completion queue before submitting dio
- xfs: don't unconditionally clear the reflink flag on zero-block files
- xfs: evict CoW fork extents when performing finsert/fcollapse
- fs/xfs: Use %pS printk format for direct addresses
- xfs: report zeroed or not correctly in xfs_zero_range()
- xfs: update i_size after unwritten conversion in dio completion
- xfs: perag initialization should only touch m_ag_max_usable for AG 0
- xfs: Capture state of the right inode in xfs_iflush_done
- xfs: always swap the cow forks when swapping extents
- xfs: handle racy AIO in xfs_reflink_end_cow
- xfs: Don't log uninitialised fields in inode structures
- xfs: move more RT specific code under CONFIG_XFS_RT
- xfs: don't change inode mode if ACL update fails
- xfs: reinit btree pointer on attr tree inactivation walk
- xfs: handle error if xfs_btree_get_bufs fails
- xfs: cancel dirty pages on invalidation
- xfs: trim writepage mapping to within eof
- xfs: move two more RT specific functions into CONFIG_XFS_RT
- Linux 4.13.10
* Artful update to 4.13.9 stable release (LP: #1731926)
- perf pmu: Unbreak perf record for arm/arm64 with events with explicit PMU
- mm: page_vma_mapped: ensure pmd is loaded with READ_ONCE outside of lock
- HID: hid-elecom: extend to fix descriptor for HUGE trackball
- Drivers: hv: vmbus: Fix rescind handling issues
- Drivers: hv: vmbus: Fix bugs in rescind handling
- vmbus: simplify hv_ringbuffer_read
- vmbus: refactor hv_signal_on_read
- vmbus: eliminate duplicate cached index
- vmbus: more host signalling avoidance
- Linux 4.13.9
-- Stefan Bader <email address hidden> Tue, 21 Nov 2017 17:52:51 +0100
-
linux (4.13.0-17.20) artful; urgency=low
* linux: 4.13.0-17.20 -proposed tracker (LP: #1728927)
[ Seth Forshee ]
* thunderx2 ahci errata workaround needs additional delays (LP: #1724117)
- SAUCE: ahci: thunderx2: stop engine fix update
* usb 3-1: 2:1: cannot get freq at ep 0x1 (LP: #1708499)
- ALSA: usb-audio: Add sample rate quirk for Plantronics C310/C520-M
* Plantronics Blackwire C520-M - Cannot get freq at ep 0x1, 0x81
(LP: #1709282)
- ALSA: usb-audio: Add sample rate quirk for Plantronics C310/C520-M
* TSC_DEADLINE incorrectly disabled inside virtual guests (LP: #1724912)
- x86/apic: Silence "FW_BUG TSC_DEADLINE disabled due to Errata" on CPUs
without the feature
- x86/apic: Silence "FW_BUG TSC_DEADLINE disabled due to Errata" on
hypervisors
* x86/apic: Update TSC_DEADLINE quirk with additional SKX stepping
(LP: #1724612)
- x86/apic: Update TSC_DEADLINE quirk with additional SKX stepping
* [Artful] Add support for Dell/Wyse 3040 audio codec (LP: #1723916)
- SAUCE: ASoC: rt5670: Add support for Wyse 3040
* [Artful] Some Dell Monitors Doesn't Work Well with Dell/Wyse 3040
(LP: #1723915)
- SAUCE: drm/i915: Workaround for DP DPMS D3 on Dell monitor
* [Artful] Support headset mode for DELL WYSE (LP: #1723913)
- SAUCE: ALSA: hda/realtek - Add support headset mode for DELL WYSE
* Touchpad and TrackPoint Dose Not Work on Lenovo X1C6 and X280 (LP: #1723986)
- SAUCE: Input: synaptics-rmi4 - RMI4 can also use SMBUS version 3
- SAUCE: Input: synaptics - Lenovo X1 Carbon 5 should use SMBUS/RMI
- SAUCE: Input: synaptics - add Intertouch support on X1 Carbon 6th and X280
* Artful update to v4.13.8 stable release (LP: #1724669)
- USB: dummy-hcd: Fix deadlock caused by disconnect detection
- MIPS: math-emu: Remove pr_err() calls from fpu_emu()
- MIPS: bpf: Fix uninitialised target compiler error
- mei: always use domain runtime pm callbacks.
- dmaengine: edma: Align the memcpy acnt array size with the transfer
- dmaengine: ti-dma-crossbar: Fix possible race condition with dma_inuse
- NFS: Fix uninitialized rpc_wait_queue
- nfs/filelayout: fix oops when freeing filelayout segment
- HID: usbhid: fix out-of-bounds bug
- crypto: skcipher - Fix crash on zero-length input
- crypto: shash - Fix zero-length shash ahash digest crash
- KVM: MMU: always terminate page walks at level 1
- KVM: nVMX: fix guest CR4 loading when emulating L2 to L1 exit
- usb: renesas_usbhs: Fix DMAC sequence for receiving zero-length packet
- pinctrl/amd: Fix build dependency on pinmux code
- iommu/amd: Finish TLB flush in amd_iommu_unmap()
- device property: Track owner device of device property
- Revert "vmalloc: back off when the current task is killed"
- fs/mpage.c: fix mpage_writepage() for pages with buffers
- ALSA: usb-audio: Kill stray URB at exiting
- ALSA: seq: Fix use-after-free at creating a port
- ALSA: seq: Fix copy_from_user() call inside lock
- ALSA: caiaq: Fix stray URB at probe error path
- ALSA: line6: Fix NULL dereference at podhd_disconnect()
- ALSA: line6: Fix missing initialization before error path
- ALSA: line6: Fix leftover URB at error-path during probe
- drm/atomic: Unref duplicated drm_atomic_state in drm_atomic_helper_resume()
- drm/i915/edp: Get the Panel Power Off timestamp after panel is off
- drm/i915: Read timings from the correct transcoder in intel_crtc_mode_get()
- drm/i915/bios: parse DDI ports also for CHV for HDMI DDC pin and DP AUX
channel
- drm/i915: Use crtc_state_is_legacy_gamma in intel_color_check
- usb: gadget: configfs: Fix memory leak of interface directory data
- usb: gadget: composite: Fix use-after-free in
usb_composite_overwrite_options
- PCI: aardvark: Move to struct pci_host_bridge IRQ mapping functions
- Revert "PCI: tegra: Do not allocate MSI target memory"
- direct-io: Prevent NULL pointer access in submit_page_section
- fix unbalanced page refcounting in bio_map_user_iov
- more bio_map_user_iov() leak fixes
- bio_copy_user_iov(): don't ignore ->iov_offset
- perf script: Add missing separator for "-F ip,brstack" (and brstackoff)
- genirq/cpuhotplug: Enforce affinity setting on startup of managed irqs
- genirq/cpuhotplug: Add sanity check for effective affinity mask
- USB: serial: ftdi_sio: add id for Cypress WICED dev board
- USB: serial: cp210x: fix partnum regression
- USB: serial: cp210x: add support for ELV TFD500
- USB: serial: option: add support for TP-Link LTE module
- USB: serial: qcserial: add Dell DW5818, DW5819
- USB: serial: console: fix use-after-free on disconnect
- USB: serial: console: fix use-after-free after failed setup
- RAS/CEC: Use the right length for "cec_disable"
- x86/microcode: Do the family check first
- x86/alternatives: Fix alt_max_short macro to really be a max()
- KVM: nVMX: update last_nonleaf_level when initializing nested EPT
- Linux 4.13.8
* Artful update to v4.13.7 stable release (LP: #1724668)
- watchdog: Revert "iTCO_wdt: all versions count down twice"
- Linux 4.13.7
* libvirt - vnc port selection regression with newer kernels (LP: #1722702)
- net: set tb->fast_sk_family
- net: use inet6_rcv_saddr to compare sockets
- inet: fix improper empty comparison
* powerpc/64s: Add workaround for P9 vector CI load issue (LP: #1721070)
- powerpc/mce: Move 64-bit machine check code into mce.c
- powerpc/64s: Add workaround for P9 vector CI load issue
* Artful update to v4.13.6 stable release (LP: #1723145)
- imx-media-of: avoid uninitialized variable warning
- usb: dwc3: ep0: fix DMA starvation by assigning req->trb on ep0
- mlxsw: spectrum: Fix EEPROM access in case of SFP/SFP+
- net: bonding: Fix transmit load balancing in balance-alb mode if specified
by sysfs
- openvswitch: Fix an error handling path in 'ovs_nla_init_match_and_action()'
- mlxsw: spectrum: Prevent mirred-related crash on removal
- net: bonding: fix tlb_dynamic_lb default value
- net_sched: gen_estimator: fix scaling error in bytes/packets samples
- net: sched: fix use-after-free in tcf_action_destroy and tcf_del_walker
- sctp: potential read out of bounds in sctp_ulpevent_type_enabled()
- tcp: update skb->skb_mstamp more carefully
- bpf/verifier: reject BPF_ALU64|BPF_END
- tcp: fix data delivery rate
- udpv6: Fix the checksum computation when HW checksum does not apply
- ip6_gre: skb_push ipv6hdr before packing the header in ip6gre_header
- net: phy: Fix mask value write on gmii2rgmii converter speed register
- ip6_tunnel: do not allow loading ip6_tunnel if ipv6 is disabled in cmdline
- net/sched: cls_matchall: fix crash when used with classful qdisc
- 8139too: revisit napi_complete_done() usage
- bpf: do not disable/enable BH in bpf_map_free_id()
- tcp: fastopen: fix on syn-data transmit failure
- net: emac: Fix napi poll list corruption
- net: ipv6: fix regression of no RTM_DELADDR sent after DAD failure
- packet: hold bind lock when rebinding to fanout hook
- bpf: one perf event close won't free bpf program attached by another perf
event
- net: change skb->mac_header when Generic XDP calls adjust_head
- isdn/i4l: fetch the ppp_write buffer in one shot
- net_sched: always reset qdisc backlog in qdisc_reset()
- net: stmmac: Cocci spatch "of_table"
- net: qcom/emac: specify the correct size when mapping a DMA buffer
- vti: fix use after free in vti_tunnel_xmit/vti6_tnl_xmit
- l2tp: fix race condition in l2tp_tunnel_delete
- tun: bail out from tun_get_user() if the skb is empty
- net: dsa: mv88e6xxx: Allow dsa and cpu ports in multiple vlans
- net: dsa: Fix network device registration order
- packet: in packet_do_bind, test fanout with bind_lock held
- packet: only test po->has_vnet_hdr once in packet_snd
- net: dsa: mv88e6xxx: lock mutex when freeing IRQs
- net: Set sk_prot_creator when cloning sockets to the right proto
- net/mlx5e: IPoIB, Fix access to invalid memory address
- netlink: do not proceed if dump's start() errs
- ip6_gre: ip6gre_tap device should keep dst
- ip6_tunnel: update mtu properly for ARPHRD_ETHER tunnel device in tx path
- IPv4: early demux can return an error code
- tipc: use only positive error codes in messages
- l2tp: fix l2tp_eth module loading
- socket, bpf: fix possible use after free
- net: rtnetlink: fix info leak in RTM_GETSTATS call
- bpf: fix bpf_tail_call() x64 JIT
- usb: gadget: core: fix ->udc_set_speed() logic
- USB: gadgetfs: Fix crash caused by inadequate synchronization
- USB: gadgetfs: fix copy_to_user while holding spinlock
- usb: gadget: udc: atmel: set vbus irqflags explicitly
- usb: gadget: udc: renesas_usb3: fix for no-data control transfer
- usb: gadget: udc: renesas_usb3: fix Pn_RAMMAP.Pn_MPKT value
- usb: gadget: udc: renesas_usb3: Fix return value of usb3_write_pipe()
- usb-storage: unusual_devs entry to fix write-access regression for Seagate
external drives
- usb-storage: fix bogus hardware error messages for ATA pass-thru devices
- usb: renesas_usbhs: fix the BCLR setting condition for non-DCP pipe
- usb: renesas_usbhs: fix usbhsf_fifo_clear() for RX direction
- ALSA: usb-audio: Check out-of-bounds access by corrupted buffer descriptor
- usb: pci-quirks.c: Corrected timeout values used in handshake
- USB: cdc-wdm: ignore -EPIPE from GetEncapsulatedResponse
- USB: dummy-hcd: fix connection failures (wrong speed)
- USB: dummy-hcd: fix infinite-loop resubmission bug
- USB: dummy-hcd: Fix erroneous synchronization change
- USB: devio: Prevent integer overflow in proc_do_submiturb()
- USB: devio: Don't corrupt user memory
- USB: g_mass_storage: Fix deadlock when driver is unbound
- USB: uas: fix bug in handling of alternate settings
- USB: core: harden cdc_parse_cdc_header
- usb: Increase quirk delay for USB devices
- USB: fix out-of-bounds in usb_set_configuration
- usb: xhci: Free the right ring in xhci_add_endpoint()
- xhci: fix finding correct bus_state structure for USB 3.1 hosts
- xhci: fix wrong endpoint ESIT value shown in tracing
- usb: host: xhci-plat: allow sysdev to inherit from ACPI
- xhci: Fix sleeping with spin_lock_irq() held in ASmedia 1042A workaround
- Revert "xhci: Limit USB2 port wake support for AMD Promontory hosts"
- iio: adc: twl4030: Fix an error handling path in 'twl4030_madc_probe()'
- iio: adc: twl4030: Disable the vusb3v1 rugulator in the error handling path
of 'twl4030_madc_probe()'
- iio: ad_sigma_delta: Implement a dedicated reset function
- staging: iio: ad7192: Fix - use the dedicated reset function avoiding dma
from stack.
- iio: core: Return error for failed read_reg
- IIO: BME280: Updates to Humidity readings need ctrl_reg write!
- iio: trigger: stm32-timer: preset shouldn't be buffered
- iio: trigger: stm32-timer: fix a corner case to write preset
- iio: ad7793: Fix the serial interface reset
- iio: adc: stm32: fix bad error check on max_channels
- iio: adc: mcp320x: Fix readout of negative voltages
- iio: adc: mcp320x: Fix oops on module unload
- uwb: properly check kthread_run return value
- uwb: ensure that endpoint is interrupt
- staging: vchiq_2835_arm: Fix NULL ptr dereference in free_pagelist
- ksm: fix unlocked iteration over vmas in cmp_and_merge_page()
- mm, hugetlb, soft_offline: save compound page order before page migration
- mm, oom_reaper: skip mm structs with mmu notifiers
- mm: fix RODATA_TEST failure "rodata_test: test data was not read only"
- mm: avoid marking swap cached page as lazyfree
- mm: fix data corruption caused by lazyfree page
- userfaultfd: non-cooperative: fix fork use after free
- lib/ratelimit.c: use deferred printk() version
- lsm: fix smack_inode_removexattr and xattr_getsecurity memleak
- ALSA: compress: Remove unused variable
- Revert "ALSA: echoaudio: purge contradictions between dimension matrix
members and total number of members"
- ALSA: usx2y: Suppress kernel warning at page allocation failures
- powerpc/powernv: Increase memory block size to 1GB on radix
- powerpc: Fix action argument for cpufeatures-based TLB flush
- powerpc/64s: Use emergency stack for kernel TM Bad Thing program checks
- powerpc/tm: Fix illegal TM state in signal handler
- percpu: make this_cpu_generic_read() atomic w.r.t. interrupts
- intel_th: pci: Add Lewisburg PCH support
- driver core: platform: Don't read past the end of "driver_override" buffer
- cgroup: Reinit cgroup_taskset structure before cgroup_migrate_execute()
returns
- Drivers: hv: fcopy: restore correct transfer length
- vmbus: don't acquire the mutex in vmbus_hvsock_device_unregister()
- stm class: Fix a use-after-free
- auxdisplay: charlcd: properly restore atomic counter on error path
- ftrace: Fix kmemleak in unregister_ftrace_graph
- ovl: fix error value printed in ovl_lookup_index()
- ovl: fix dput() of ERR_PTR in ovl_cleanup_index()
- ovl: fix dentry leak in ovl_indexdir_cleanup()
- ovl: fix missing unlock_rename() in ovl_do_copy_up()
- ovl: fix regression caused by exclusive upper/work dir protection
- arm64: dt marvell: Fix AP806 system controller size
- arm64: Ensure the instruction emulation is ready for userspace
- HID: rmi: Make sure the HID device is opened on resume
- HID: i2c-hid: allocate hid buffers for real worst case
- HID: wacom: leds: Don't try to control the EKR's read-only LEDs
- HID: wacom: Properly report negative values from Intuos Pro 2 Bluetooth
- HID: wacom: Correct coordinate system of touchring and pen twist
- HID: wacom: generic: Send MSC_SERIAL and ABS_MISC when leaving prox
- HID: wacom: generic: Clear ABS_MISC when tool leaves proximity
- HID: wacom: Always increment hdev refcount within wacom_get_hdev_data
- HID: wacom: bits shifted too much for 9th and 10th buttons
- btrfs: avoid overflow when sector_t is 32 bit
- Btrfs: fix overlap of fs_info::flags values
- rocker: fix rocker_tlv_put_* functions for KASAN
- netlink: fix nla_put_{u8,u16,u32} for KASAN
- dm crypt: reject sector_size feature if device length is not aligned to it
- dm ioctl: fix alignment of event number in the device list
- dm crypt: fix memory leak in crypt_ctr_cipher_old()
- KVM: PPC: Book3S: Fix server always zero from kvmppc_xive_get_xive()
- kvm/x86: Avoid async PF preempting the kernel incorrectly
- iwlwifi: mvm: use IWL_HCMD_NOCOPY for MCAST_FILTER_CMD
- scsi: sd: Implement blacklist option for WRITE SAME w/ UNMAP
- scsi: sd: Do not override max_sectors_kb sysfs setting
- brcmfmac: add length check in brcmf_cfg80211_escan_handler()
- brcmfmac: setup passive scan if requested by user-space
- drm/i915: always update ELD connector type after get modes
- drm/i915/bios: ignore HDMI on port A
- bsg-lib: fix use-after-free under memory-pressure
- nvme-pci: Use PCI bus address for data/queues in CMB
- mmc: core: add driver strength selection when selecting hs400es
- nl80211: Define policy for packet pattern attributes
- clk: samsung: exynos4: Enable VPLL and EPLL clocks for suspend/resume cycle
- udp: perform source validation for mcast early demux
- udp: fix bcast packet reception
- base: arch_topology: fix section mismatch build warnings
- Linux 4.13.6
* Artful update to v4.13.5 stable release (LP: #1721777)
- cifs: check rsp for NULL before dereferencing in SMB2_open
- cifs: release cifs root_cred after exit_cifs
- cifs: release auth_key.response for reconnect.
- nvme-pci: fix host memory buffer allocation fallback
- nvme-pci: use appropriate initial chunk size for HMB allocation
- nvme-pci: propagate (some) errors from host memory buffer setup
- dax: remove the pmem_dax_ops->flush abstraction
- dm integrity: do not check integrity for failed read operations
- mmc: block: Fix incorrectly initialized requests
- fs/proc: Report eip/esp in /prod/PID/stat for coredumping
- scsi: scsi_transport_fc: fix NULL pointer dereference in fc_bsg_job_timeout
- SMB3: Add support for multidialect negotiate (SMB2.1 and later)
- mac80211: fix VLAN handling with TXQs
- mac80211_hwsim: Use proper TX power
- mac80211: flush hw_roc_start work before cancelling the ROC
- mac80211: fix deadlock in driver-managed RX BA session start
- genirq: Make sparse_irq_lock protect what it should protect
- genirq/msi: Fix populating multiple interrupts
- genirq: Fix cpumask check in __irq_startup_managed()
- KVM: PPC: Book3S HV: Hold kvm->lock around call to kvmppc_update_lpcr
- KVM: PPC: Book3S HV: Fix bug causing host SLB to be restored incorrectly
- KVM: PPC: Book3S HV: Don't access XIVE PIPR register using byte accesses
- tracing: Fix trace_pipe behavior for instance traces
- tracing: Erase irqsoff trace with empty write
- tracing: Remove RCU work arounds from stack tracer
- md/raid5: fix a race condition in stripe batch
- md/raid5: preserve STRIPE_ON_UNPLUG_LIST in break_stripe_batch_list
- scsi: scsi_transport_iscsi: fix the issue that iscsi_if_rx doesn't parse
nlmsg properly
- scsi: aacraid: Fix 2T+ drives on SmartIOC-2000
- scsi: aacraid: Add a small delay after IOP reset
- drm/exynos: Fix locking in the suspend/resume paths
- drm/i915/gvt: Fix incorrect PCI BARs reporting
- Revert "drm/i915/bxt: Disable device ready before shutdown command"
- drm/amdgpu: revert tile table update for oland
- drm/radeon: disable hard reset in hibernate for APUs
- crypto: drbg - fix freeing of resources
- crypto: talitos - Don't provide setkey for non hmac hashing algs.
- crypto: talitos - fix sha224
- crypto: talitos - fix hashing
- security/keys: properly zero out sensitive key material in big_key
- security/keys: rewrite all of big_key crypto
- KEYS: fix writing past end of user-supplied buffer in keyring_read()
- KEYS: prevent creating a different user's keyrings
- KEYS: prevent KEYCTL_READ on negative key
- libnvdimm, namespace: fix btt claim class crash
- powerpc/eeh: Create PHB PEs after EEH is initialized
- powerpc/pseries: Fix parent_dn reference leak in add_dt_node()
- powerpc/tm: Flush TM only if CPU has TM feature
- MIPS: Fix perf event init
- s390/perf: fix bug when creating per-thread event
- s390/mm: make pmdp_invalidate() do invalidation only
- s390/mm: fix write access check in gup_huge_pmd()
- PM: core: Fix device_pm_check_callbacks()
- Revert "IB/ipoib: Update broadcast object if PKey value was changed in index
0"
- Fix SMB3.1.1 guest authentication to Samba
- SMB3: Fix endian warning
- SMB3: Warn user if trying to sign connection that authenticated as guest
- SMB: Validate negotiate (to protect against downgrade) even if signing off
- SMB3: handle new statx fields
- SMB3: Don't ignore O_SYNC/O_DSYNC and O_DIRECT flags
- vfs: Return -ENXIO for negative SEEK_HOLE / SEEK_DATA offsets
- libceph: don't allow bidirectional swap of pg-upmap-items
- nl80211: check for the required netlink attributes presence
- brd: fix overflow in __brd_direct_access
- gfs2: Fix debugfs glocks dump
- bsg-lib: don't free job in bsg_prepare_job
- iw_cxgb4: drop listen destroy replies if no ep found
- iw_cxgb4: remove the stid on listen create failure
- iw_cxgb4: put ep reference in pass_accept_req()
- rcu: Allow for page faults in NMI handlers
- mmc: sdhci-pci: Fix voltage switch for some Intel host controllers
- extable: Consolidate *kernel_text_address() functions
- extable: Enable RCU if it is not watching in kernel_text_address()
- seccomp: fix the usage of get/put_seccomp_filter() in seccomp_get_filter()
- arm64: Make sure SPsel is always set
- arm64: fault: Route pte translation faults via do_translation_fault
- KVM: VMX: extract __pi_post_block
- KVM: VMX: avoid double list add with VT-d posted interrupts
- KVM: VMX: simplify and fix vmx_vcpu_pi_load
- KVM: nVMX: fix HOST_CR3/HOST_CR4 cache
- kvm/x86: Handle async PF in RCU read-side critical sections
- kvm: nVMX: Don't allow L2 to access the hardware CR8
- xfs: validate bdev support for DAX inode flag
- fix infoleak in waitid(2)
- sched/sysctl: Check user input value of sysctl_sched_time_avg
- irq/generic-chip: Don't replace domain's name
- mtd: Fix partition alignment check on multi-erasesize devices
- mtd: nand: atmel: fix buffer overflow in atmel_pmecc_user
- etnaviv: fix submit error path
- etnaviv: fix gem object list corruption
- futex: Fix pi_state->owner serialization
- md: fix a race condition for flush request handling
- md: separate request handling
- PCI: Fix race condition with driver_override
- btrfs: fix NULL pointer dereference from free_reloc_roots()
- btrfs: clear ordered flag on cleaning up ordered extents
- btrfs: finish ordered extent cleaning if no progress is found
- btrfs: propagate error to btrfs_cmp_data_prepare caller
- btrfs: prevent to set invalid default subvolid
- platform/x86: fujitsu-laptop: Don't oops when FUJ02E3 is not presnt
- PM / OPP: Call notifier without holding opp_table->lock
- x86/mm: Fix fault error path using unsafe vma pointer
- x86/fpu: Don't let userspace set bogus xcomp_bv
- KVM: VMX: do not change SN bit in vmx_update_pi_irte()
- KVM: VMX: remove WARN_ON_ONCE in kvm_vcpu_trigger_posted_interrupt
- KVM: VMX: use cmpxchg64
- video: fbdev: aty: do not leak uninitialized padding in clk to userspace
- Linux 4.13.5
- [Config] Update configs for v4.13.5
-- Khalid Elmously <email address hidden> Wed, 01 Nov 2017 11:17:43 -0400
-
linux (4.13.0-16.19) artful; urgency=low
* 20170817 - ISO hangs on boot on qemu with splash screen enabled and qxl
graphics driver (LP: #1711358)
- qxl: fix framebuffer unpinning
* [Bug] USB controller failed to respond on Denverton after loading
intel_th_pci module (LP: #1715833)
- SAUCE: PCI: Disable broken RTIT_BAR of Intel TH
* CVE-2017-5123
- waitid(): Add missing access_ok() checks
-- Seth Forshee <email address hidden> Wed, 11 Oct 2017 12:33:10 -0500
-
linux (4.13.0-15.16) artful; urgency=low
* linux: 4.13.0-15.16 -proposed tracker (LP: #1721373)
* Boot regression on POWER9 (LP: #1721391)
- Revert "crypto/nx: Add P9 NX support for 842 compression engine"
- Revert "crypto/nx: Add P9 NX specific error codes for 842 engine"
- Revert "crypto/nx: Use kzalloc for workmem allocation"
- Revert "crypto/nx: Add nx842_add_coprocs_list function"
- Revert "crypto/nx: Create nx842_delete_coprocs function"
- Revert "crypto/nx: Create nx842_configure_crb function"
- Revert "crypto/nx: Rename nx842_powernv_function as icswx function"
- Revert "UBUNTU: [Config] CONFIG_PPC_VAS=y"
- Revert "powerpc/powernv/vas: Define copy/paste interfaces"
- Revert "powerpc/powernv/vas: Define vas_tx_win_open()"
- Revert "powerpc/powernv/vas: Define vas_win_close() interface"
- Revert "powerpc/powernv/vas: Define vas_rx_win_open() interface"
- Revert "powerpc/powernv/vas: Define helpers to alloc/free windows"
- Revert "powerpc/powernv/vas: Define helpers to init window context"
- Revert "powerpc/powernv/vas: Define helpers to access MMIO regions"
- Revert "powerpc/powernv/vas: Define vas_init() and vas_exit()"
- Revert "powerpc/powernv: Move GET_FIELD/SET_FIELD to vas.h"
- Revert "powerpc/powernv/vas: Define macros, register fields and structures"
- Revert "powerpc/powernv: Enable PCI peer-to-peer"
- Revert "powerpc/powernv: Add support to set power-shifting-ratio"
- Revert "powerpc/powernv: Add support for powercap framework"
- Revert "powerpc/perf: Add nest IMC PMU support"
- Revert "powerpc/powernv: Detect and create IMC device"
- Revert "powerpc/powernv: Add IMC OPAL APIs"
* smartpqi patches for Artful (LP: #1721381)
- scsi: smartpqi: add pqi reset quiesce support
- scsi: smartpqi: enhance BMIC cache flush
- scsi: smartpqi: update pqi passthru ioctl
- scsi: smartpqi: cleanup doorbell register usage.
- scsi: smartpqi: update kexec and power down support
- scsi: smartpqi: add in new controller ids
- scsi: smartpqi: change driver version to 1.1.2-125
* CONFIG_DEBUG_FS is not enabled by "make zfcpdump_defconfig" with Ubuntu
17.10 (kernel 4.13) (LP: #1719290)
- SAUCE: s390: update zfcpdump_defconfig
* [Feature] PXE boot with Intel Omni-Path (LP: #1712031)
- d-i: Add hfi1 to nic-modules
* [Feature]CNL:New device IDs for CNL (LP: #1685729)
- pinctrl: intel: Add Intel Cannon Lake PCH-H pin controller support
linux (4.13.0-14.15) artful; urgency=low
* linux: 4.13.0-14.15 -proposed tracker (LP: #1721122)
* [Artful] ltp rwtest - Unable to handle kernel paging request at virtual
address (LP: #1721067)
- arm64: mm: Use READ_ONCE when dereferencing pointer to pte table
* linux 4.13.0-13.14 ADT test failure with linux 4.13.0-13.14 (LP: #1720779)
- SAUCE: LSM stacking: check for invalid zero sized writes
* Add installer support for Broadcom BCM573xx network drivers. (LP: #1720466)
- d-i: Add bnxt_en to nic-modules.
* Miscellaneous Ubuntu changes
- [Packaging] Include arch/arm64/kernel/ftrace-mod.o in headers package
linux (4.13.0-13.14) artful; urgency=low
* linux: 4.13.0-13.14 -proposed tracker (LP: #1720239)
* [Bug] USB 3.1 Gen2 works as 5Gbps (LP: #1720045)
- xhci: set missing SuperSpeedPlus Link Protocol bit in roothub descriptor
* [Feature]Memory Bandwidth Monitoring(MBM) port to new Cache Quality
Monitoring (CQM) (LP: #1591609)
- x86/perf/cqm: Wipe out perf based cqm
- x86/intel_rdt/cqm: Documentation for resctrl based RDT Monitoring
- x86/intel_rdt: Introduce a common compile option for RDT
- x86/intel_rdt: Change file names to accommodate RDT monitor code
- x86/intel_rdt: Mark rdt_root and closid_alloc as static
- x86/intel_rdt: Cleanup namespace to support RDT monitoring
- x86/intel_rdt: Make rdt_resources_all more readable
- x86/intel_rdt/cqm: Add RDT monitoring initialization
- x86/intel_rdt/cqm: Add RMID (Resource monitoring ID) management
- x86/intel_rdt: Simplify info and base file lists
- x86/intel_rdt/cqm: Add info files for RDT monitoring
- x86/intel_rdt: Prepare for RDT monitoring mkdir support
- x86/intel_rdt/cqm: Add mkdir support for RDT monitoring
- x86/intel_rdt: Change closid type from int to u32
- x86/intel_rdt/cqm: Add tasks file support
- x86/intel_rdt: Prepare to add RDT monitor cpus file support
- x86/intel_rdt/cqm: Add cpus file support
- x86/intel_rdt: Prepare for RDT monitor data support
- x86/intel_rdt/cqm: Add mon_data
- x86/intel_rdt: Separate the ctrl bits from rmdir
- x86/intel_rdt/cqm: Add rmdir support
- x86/intel_rdt/cqm: Add mount,umount support
- x86/intel_rdt: Introduce rdt_enable_key for scheduling
- x86/intel_rdt/cqm: Add sched_in support
- x86/intel_rdt/cqm: Add CPU hotplug support
- x86/intel_rdt/mbm: Basic counting of MBM events (total and local)
- x86/intel_rdt/mbm: Add mbm counter initialization
- x86/intel_rdt/mbm: Handle counter overflow
- x86/intel_rdt: Show bitmask of shareable resource with other executing units
- x86/intel_rdt/cqm: Clear the default RMID during hotcpu
- x86/intel_rdt: Modify the intel_pqr_state for better performance
- x86/intel_rdt/mbm: Fix MBM overflow handler during CPU hotplug
- x86/intel_rdt/cqm: Improve limbo list processing
- x86/intel_rdt: Remove redundant ternary operator on return
- [Config] CONFIG_INTEL_RDT=y
* [Feature] RDT: Disable most RDT features on Skylake server (LP: #1713619)
- x86/intel_rdt: Move special case code for Haswell to a quirk function
- x86/intel_rdt: Add command line options for resource director technology
- x86/intel_rdt: Turn off most RDT features on Skylake
* CVE-2017-1000252
- KVM: VMX: Do not BUG() on out-of-bounds guest IRQ
* POWER9: NX842 module changes (LP: #1718292)
- crypto/nx: Rename nx842_powernv_function as icswx function
- crypto/nx: Create nx842_configure_crb function
- crypto/nx: Create nx842_delete_coprocs function
- crypto/nx: Add nx842_add_coprocs_list function
- crypto/nx: Use kzalloc for workmem allocation
- crypto/nx: Add P9 NX specific error codes for 842 engine
- crypto/nx: Add P9 NX support for 842 compression engine
* [Ubuntu 17.10] POWER9 - Base - Integrate P9 VAS (Virtual Accelerator
Switchboard) support in kernel (LP: #1718293)
- powerpc/powernv: Add IMC OPAL APIs
- powerpc/powernv: Detect and create IMC device
- powerpc/perf: Add nest IMC PMU support
- powerpc/powernv: Add support for powercap framework
- powerpc/powernv: Add support to set power-shifting-ratio
- powerpc/powernv: Enable PCI peer-to-peer
- powerpc/powernv/vas: Define macros, register fields and structures
- powerpc/powernv: Move GET_FIELD/SET_FIELD to vas.h
- powerpc/powernv/vas: Define vas_init() and vas_exit()
- powerpc/powernv/vas: Define helpers to access MMIO regions
- powerpc/powernv/vas: Define helpers to init window context
- powerpc/powernv/vas: Define helpers to alloc/free windows
- powerpc/powernv/vas: Define vas_rx_win_open() interface
- powerpc/powernv/vas: Define vas_win_close() interface
- powerpc/powernv/vas: Define vas_tx_win_open()
- powerpc/powernv/vas: Define copy/paste interfaces
- [Config] CONFIG_PPC_VAS=y
* Artful update to v4.13.4 stable release (LP: #1720154)
- orangefs: Don't clear SGID when inheriting ACLs
- <linux/uaccess.h>: Fix copy_in_user() declaration
- IB/hfi1: Revert egress pkey check enforcement
- IB/{qib, hfi1}: Avoid flow control testing for RDMA write operation
- IB/mlx5: Fix cached MR allocation flow
- srcu: Provide ordering for CPU not involved in grace period
- smp/hotplug: Handle removal correctly in cpuhp_store_callbacks()
- Input: xpad - validate USB endpoint type during probe
- drm/amdgpu: read reg in each iterator of psp_wait_for loop
- tty: improve tty_insert_flip_char() fast path
- tty: improve tty_insert_flip_char() slow path
- tty: fix __tty_insert_flip_char regression
- pinctrl: samsung: Fix invalid register offset used for Exynos5433 external
interrupts
- pinctrl: samsung: Fix NULL pointer exception on external interrupts on
S3C24xx
- pinctrl/amd: save pin registers over suspend/resume
- MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix quiet NaN propagation
- MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix cases of both inputs zero
- MIPS: math-emu: <MAX|MIN>.<D|S>: Fix cases of both inputs negative
- MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of input values with opposite
signs
- MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of both infinite inputs
- MIPS: math-emu: MINA.<D|S>: Fix some cases of infinity and zero inputs
- MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix NaN propagation
- MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix some cases of infinite inputs
- MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix some cases of zero inputs
- MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Clean up "maddf_flags" enumeration
- MIPS: math-emu: <MADDF|MSUBF>.S: Fix accuracy (32-bit case)
- MIPS: math-emu: <MADDF|MSUBF>.D: Fix accuracy (64-bit case)
- docs: disable KASLR when debugging kernel
- crypto: ccp - Fix XTS-AES-128 support on v5 CCPs
- crypto: scompress - don't sleep with preemption disabled
- crypto: caam/qi - fix typo in authenc alg driver name
- crypto: caam/qi - properly set IV after {en,de}crypt
- crypto: AF_ALG - remove SGL terminator indicator when chaining
- regulator: cpcap: Fix standby mode
- wcn36xx: Introduce mutual exclusion of fw configuration
- ext4: in ext4_seek_{hole,data}, return -ENXIO for negative offsets
- ext4: fix incorrect quotaoff if the quota feature is enabled
- ext4: fix quota inconsistency during orphan cleanup for read-only mounts
- cxl: Fix driver use count
- powerpc/powernv/npu: Move tlb flush before launching ATSD
- powerpc/pseries: Don't attempt to acquire drc during memory hot add for
assigned lmbs
- powerpc: Fix DAR reporting when alignment handler faults
- block: Relax a check in blk_start_queue()
- block: directly insert blk-mq request from blk_insert_cloned_request()
- md/bitmap: copy correct data for bitmap super
- md/bitmap: disable bitmap_resize for file-backed bitmaps.
- skd: Avoid that module unloading triggers a use-after-free
- skd: Submit requests to firmware before triggering the doorbell
- scsi: zfcp: fix queuecommand for scsi_eh commands when DIX enabled
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path
- scsi: zfcp: fix capping of unsuccessful GPN_FT SAN response trace records
- scsi: zfcp: fix passing fsf_req to SCSI trace on TMF to correlate with HBA
- scsi: zfcp: fix missing trace records for early returns in TMF eh handlers
- scsi: zfcp: fix payload with full FCP_RSP IU in SCSI trace records
- scsi: zfcp: trace HBA FSF response by default on dismiss or timedout late
response
- scsi: zfcp: trace high part of "new" 64 bit SCSI LUN
- scsi: qedi: off by one in qedi_get_cmd_from_tid()
- scsi: aacraid: Fix command send race condition
- scsi: megaraid_sas: mismatch of allocated MFI frame size and length exposed
in MFI MPT pass through command
- scsi: megaraid_sas: set minimum value of resetwaittime to be 1 secs
- scsi: megaraid_sas: Check valid aen class range to avoid kernel panic
- scsi: megaraid_sas: Return pended IOCTLs with cmd_status
MFI_STAT_WRONG_STATE in case adapter is dead
- scsi: storvsc: fix memory leak on ring buffer busy
- scsi: sg: factor out sg_fill_request_table()
- scsi: sg: fixup infoleak when using SG_GET_REQUEST_TABLE
- scsi: qla2xxx: Update fw_started flags at qpair creation.
- scsi: qla2xxx: Correction to vha->vref_count timeout
- scsi: qla2xxx: Fix target multiqueue configuration
- scsi: qla2xxx: Use BIT_6 to acquire FAWWPN from switch
- scsi: qla2xxx: Use fabric name for Get Port Speed command
- scsi: qla2xxx: Fix an integer overflow in sysfs code
- mailbox: bcm-flexrm-mailbox: Fix mask used in CMPL_START_ADDR_VALUE()
- ftrace: Fix debug preempt config name in stack_tracer_{en,dis}able
- ftrace: Fix selftest goto location on error
- ftrace: Fix memleak when unregistering dynamic ops when tracing disabled
- tracing: Add barrier to trace_printk() buffer nesting modification
- tracing: Fix clear of RECORDED_TGID flag when disabling trace event
- tracing: Apply trace_clock changes to instance max buffer
- ARC: Re-enable MMU upon Machine Check exception
- PCI: shpchp: Enable bridge bus mastering if MSI is enabled
- PCI: pciehp: Report power fault only once until we clear it
- net/netfilter/nf_conntrack_core: Fix net_conntrack_lock()
- media: v4l2-compat-ioctl32: Fix timespec conversion
- media: Revert "[media] lirc_dev: remove superfluous get/put_device() calls"
- media: venus: fix copy/paste error in return_buf_error
- media: uvcvideo: Prevent heap overflow when accessing mapped controls
- media: adv7180: add missing adv7180cp, adv7180st i2c device IDs
- PM / devfreq: Fix memory leak when fail to register device
- ALSA: seq: Cancel pending autoload work at unbinding device
- bcache: initialize dirty stripes in flash_dev_run()
- bcache: Fix leak of bdev reference
- bcache: do not subtract sectors_to_gc for bypassed IO
- bcache: correct cache_dirty_target in __update_writeback_rate()
- bcache: Correct return value for sysfs attach errors
- bcache: fix sequential large write IO bypass
- bcache: fix for gc and write-back race
- bcache: fix bch_hprint crash and improve output
- sched/cpuset/pm: Fix cpuset vs. suspend-resume bugs
- iwlwifi: add workaround to disable wide channels in 5GHz
- Linux 4.13.4
* [17.10 FEAT] KVM: CPU Model z14 (LP: #1719297)
- KVM: s390: Support Configuration z/Architecture Mode
* sata reset hangs w/ early cn99xx silicon (LP: #1719031)
- SAUCE: ahci: thunderx2: Fix for errata that affects stop engine
- SAUCE: ahci: thunderx2: stop engine fix update
* PCI quirk required for SATA on early cn99xx silicon (LP: #1718760)
- SAUCE: PCI: Vulcan: AHCI PCI bar fix for Broadcom Vulcan early silicon
* Please make linux-libc-dev Provide: aufs-dev (LP: #1716091)
- [Packaging] Add aufs-dev to the Provides: for linux-libc-dev
* Miscellaneous Ubuntu changes
- [Packaging] Use SRCPKGNAME rather than hard-coding the source package name
- SAUCE: LSM stacking: procfs: add smack subdir to attrs
- SAUCE: LSM stacking: LSM: manage credential security blobs
- SAUCE: LSM stacking: LSM: Manage file security blobs
- SAUCE: LSM stacking: LSM: manage task security blobs
- SAUCE: LSM stacking: LSM: Infrastructure management of the remaining blobs
- SAUCE: LSM stacking: LSM: general but not extreme module stacking
- SAUCE: LSM stacking: LSM: Complete task_alloc hook
- SAUCE: LSM stacking: fixup procsfs: add smack subdir to attrs
- SAUCE: LSM stacking: fixup initialize task->security
- SAUCE: LSM stacking: fixup: alloc_task_ctx is dead code
- SAUCE: LSM stacking: add support for stacking getpeersec_stream
- SAUCE: LSM stacking: add stacking support to apparmor network hooks
- SAUCE: LSM stacking: fixup apparmor stacking enablement
- SAUCE: LSM stacking: fixup stacking kconfig
- SAUCE: LSM stacking: allow selecting multiple LSMs using kernel boot params
- SAUCE: LSM stacking: provide prctl interface for setting context
- SAUCE: LSM stacking: inherit current display LSM
- SAUCE: LSM stacking: keep an index for each registered LSM
- SAUCE: LSM stacking: verify display LSM
- SAUCE: LSM stacking: provide a way to specify the default display lsm
- SAUCE: LSM stacking: make sure LSM blob align on 64 bit boundaries
- SAUCE: LSM stacking: add /proc/<pid>/attr/display_lsm
- SAUCE: LSM stacking: add Kconfig to set default display LSM
- SAUCE: LSM stacking: add configs for LSM stacking
- [Config] Run updateconfigs after merging LSM stacking
-- Seth Forshee <email address hidden> Wed, 04 Oct 2017 16:21:48 -0500
-
linux (4.13.0-14.15) artful; urgency=low
* linux: 4.13.0-14.15 -proposed tracker (LP: #1721122)
* [Artful] ltp rwtest - Unable to handle kernel paging request at virtual
address (LP: #1721067)
- arm64: mm: Use READ_ONCE when dereferencing pointer to pte table
* linux 4.13.0-13.14 ADT test failure with linux 4.13.0-13.14 (LP: #1720779)
- SAUCE: LSM stacking: check for invalid zero sized writes
* Add installer support for Broadcom BCM573xx network drivers. (LP: #1720466)
- d-i: Add bnxt_en to nic-modules.
* Miscellaneous Ubuntu changes
- [Packaging] Include arch/arm64/kernel/ftrace-mod.o in headers package
linux (4.13.0-13.14) artful; urgency=low
* linux: 4.13.0-13.14 -proposed tracker (LP: #1720239)
* [Bug] USB 3.1 Gen2 works as 5Gbps (LP: #1720045)
- xhci: set missing SuperSpeedPlus Link Protocol bit in roothub descriptor
* [Feature]Memory Bandwidth Monitoring(MBM) port to new Cache Quality
Monitoring (CQM) (LP: #1591609)
- x86/perf/cqm: Wipe out perf based cqm
- x86/intel_rdt/cqm: Documentation for resctrl based RDT Monitoring
- x86/intel_rdt: Introduce a common compile option for RDT
- x86/intel_rdt: Change file names to accommodate RDT monitor code
- x86/intel_rdt: Mark rdt_root and closid_alloc as static
- x86/intel_rdt: Cleanup namespace to support RDT monitoring
- x86/intel_rdt: Make rdt_resources_all more readable
- x86/intel_rdt/cqm: Add RDT monitoring initialization
- x86/intel_rdt/cqm: Add RMID (Resource monitoring ID) management
- x86/intel_rdt: Simplify info and base file lists
- x86/intel_rdt/cqm: Add info files for RDT monitoring
- x86/intel_rdt: Prepare for RDT monitoring mkdir support
- x86/intel_rdt/cqm: Add mkdir support for RDT monitoring
- x86/intel_rdt: Change closid type from int to u32
- x86/intel_rdt/cqm: Add tasks file support
- x86/intel_rdt: Prepare to add RDT monitor cpus file support
- x86/intel_rdt/cqm: Add cpus file support
- x86/intel_rdt: Prepare for RDT monitor data support
- x86/intel_rdt/cqm: Add mon_data
- x86/intel_rdt: Separate the ctrl bits from rmdir
- x86/intel_rdt/cqm: Add rmdir support
- x86/intel_rdt/cqm: Add mount,umount support
- x86/intel_rdt: Introduce rdt_enable_key for scheduling
- x86/intel_rdt/cqm: Add sched_in support
- x86/intel_rdt/cqm: Add CPU hotplug support
- x86/intel_rdt/mbm: Basic counting of MBM events (total and local)
- x86/intel_rdt/mbm: Add mbm counter initialization
- x86/intel_rdt/mbm: Handle counter overflow
- x86/intel_rdt: Show bitmask of shareable resource with other executing units
- x86/intel_rdt/cqm: Clear the default RMID during hotcpu
- x86/intel_rdt: Modify the intel_pqr_state for better performance
- x86/intel_rdt/mbm: Fix MBM overflow handler during CPU hotplug
- x86/intel_rdt/cqm: Improve limbo list processing
- x86/intel_rdt: Remove redundant ternary operator on return
- [Config] CONFIG_INTEL_RDT=y
* [Feature] RDT: Disable most RDT features on Skylake server (LP: #1713619)
- x86/intel_rdt: Move special case code for Haswell to a quirk function
- x86/intel_rdt: Add command line options for resource director technology
- x86/intel_rdt: Turn off most RDT features on Skylake
* CVE-2017-1000252
- KVM: VMX: Do not BUG() on out-of-bounds guest IRQ
* POWER9: NX842 module changes (LP: #1718292)
- crypto/nx: Rename nx842_powernv_function as icswx function
- crypto/nx: Create nx842_configure_crb function
- crypto/nx: Create nx842_delete_coprocs function
- crypto/nx: Add nx842_add_coprocs_list function
- crypto/nx: Use kzalloc for workmem allocation
- crypto/nx: Add P9 NX specific error codes for 842 engine
- crypto/nx: Add P9 NX support for 842 compression engine
* [Ubuntu 17.10] POWER9 - Base - Integrate P9 VAS (Virtual Accelerator
Switchboard) support in kernel (LP: #1718293)
- powerpc/powernv: Add IMC OPAL APIs
- powerpc/powernv: Detect and create IMC device
- powerpc/perf: Add nest IMC PMU support
- powerpc/powernv: Add support for powercap framework
- powerpc/powernv: Add support to set power-shifting-ratio
- powerpc/powernv: Enable PCI peer-to-peer
- powerpc/powernv/vas: Define macros, register fields and structures
- powerpc/powernv: Move GET_FIELD/SET_FIELD to vas.h
- powerpc/powernv/vas: Define vas_init() and vas_exit()
- powerpc/powernv/vas: Define helpers to access MMIO regions
- powerpc/powernv/vas: Define helpers to init window context
- powerpc/powernv/vas: Define helpers to alloc/free windows
- powerpc/powernv/vas: Define vas_rx_win_open() interface
- powerpc/powernv/vas: Define vas_win_close() interface
- powerpc/powernv/vas: Define vas_tx_win_open()
- powerpc/powernv/vas: Define copy/paste interfaces
- [Config] CONFIG_PPC_VAS=y
* Artful update to v4.13.4 stable release (LP: #1720154)
- orangefs: Don't clear SGID when inheriting ACLs
- <linux/uaccess.h>: Fix copy_in_user() declaration
- IB/hfi1: Revert egress pkey check enforcement
- IB/{qib, hfi1}: Avoid flow control testing for RDMA write operation
- IB/mlx5: Fix cached MR allocation flow
- srcu: Provide ordering for CPU not involved in grace period
- smp/hotplug: Handle removal correctly in cpuhp_store_callbacks()
- Input: xpad - validate USB endpoint type during probe
- drm/amdgpu: read reg in each iterator of psp_wait_for loop
- tty: improve tty_insert_flip_char() fast path
- tty: improve tty_insert_flip_char() slow path
- tty: fix __tty_insert_flip_char regression
- pinctrl: samsung: Fix invalid register offset used for Exynos5433 external
interrupts
- pinctrl: samsung: Fix NULL pointer exception on external interrupts on
S3C24xx
- pinctrl/amd: save pin registers over suspend/resume
- MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix quiet NaN propagation
- MIPS: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix cases of both inputs zero
- MIPS: math-emu: <MAX|MIN>.<D|S>: Fix cases of both inputs negative
- MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of input values with opposite
signs
- MIPS: math-emu: <MAXA|MINA>.<D|S>: Fix cases of both infinite inputs
- MIPS: math-emu: MINA.<D|S>: Fix some cases of infinity and zero inputs
- MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix NaN propagation
- MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix some cases of infinite inputs
- MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Fix some cases of zero inputs
- MIPS: math-emu: <MADDF|MSUBF>.<D|S>: Clean up "maddf_flags" enumeration
- MIPS: math-emu: <MADDF|MSUBF>.S: Fix accuracy (32-bit case)
- MIPS: math-emu: <MADDF|MSUBF>.D: Fix accuracy (64-bit case)
- docs: disable KASLR when debugging kernel
- crypto: ccp - Fix XTS-AES-128 support on v5 CCPs
- crypto: scompress - don't sleep with preemption disabled
- crypto: caam/qi - fix typo in authenc alg driver name
- crypto: caam/qi - properly set IV after {en,de}crypt
- crypto: AF_ALG - remove SGL terminator indicator when chaining
- regulator: cpcap: Fix standby mode
- wcn36xx: Introduce mutual exclusion of fw configuration
- ext4: in ext4_seek_{hole,data}, return -ENXIO for negative offsets
- ext4: fix incorrect quotaoff if the quota feature is enabled
- ext4: fix quota inconsistency during orphan cleanup for read-only mounts
- cxl: Fix driver use count
- powerpc/powernv/npu: Move tlb flush before launching ATSD
- powerpc/pseries: Don't attempt to acquire drc during memory hot add for
assigned lmbs
- powerpc: Fix DAR reporting when alignment handler faults
- block: Relax a check in blk_start_queue()
- block: directly insert blk-mq request from blk_insert_cloned_request()
- md/bitmap: copy correct data for bitmap super
- md/bitmap: disable bitmap_resize for file-backed bitmaps.
- skd: Avoid that module unloading triggers a use-after-free
- skd: Submit requests to firmware before triggering the doorbell
- scsi: zfcp: fix queuecommand for scsi_eh commands when DIX enabled
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path
- scsi: zfcp: fix capping of unsuccessful GPN_FT SAN response trace records
- scsi: zfcp: fix passing fsf_req to SCSI trace on TMF to correlate with HBA
- scsi: zfcp: fix missing trace records for early returns in TMF eh handlers
- scsi: zfcp: fix payload with full FCP_RSP IU in SCSI trace records
- scsi: zfcp: trace HBA FSF response by default on dismiss or timedout late
response
- scsi: zfcp: trace high part of "new" 64 bit SCSI LUN
- scsi: qedi: off by one in qedi_get_cmd_from_tid()
- scsi: aacraid: Fix command send race condition
- scsi: megaraid_sas: mismatch of allocated MFI frame size and length exposed
in MFI MPT pass through command
- scsi: megaraid_sas: set minimum value of resetwaittime to be 1 secs
- scsi: megaraid_sas: Check valid aen class range to avoid kernel panic
- scsi: megaraid_sas: Return pended IOCTLs with cmd_status
MFI_STAT_WRONG_STATE in case adapter is dead
- scsi: storvsc: fix memory leak on ring buffer busy
- scsi: sg: factor out sg_fill_request_table()
- scsi: sg: fixup infoleak when using SG_GET_REQUEST_TABLE
- scsi: qla2xxx: Update fw_started flags at qpair creation.
- scsi: qla2xxx: Correction to vha->vref_count timeout
- scsi: qla2xxx: Fix target multiqueue configuration
- scsi: qla2xxx: Use BIT_6 to acquire FAWWPN from switch
- scsi: qla2xxx: Use fabric name for Get Port Speed command
- scsi: qla2xxx: Fix an integer overflow in sysfs code
- mailbox: bcm-flexrm-mailbox: Fix mask used in CMPL_START_ADDR_VALUE()
- ftrace: Fix debug preempt config name in stack_tracer_{en,dis}able
- ftrace: Fix selftest goto location on error
- ftrace: Fix memleak when unregistering dynamic ops when tracing disabled
- tracing: Add barrier to trace_printk() buffer nesting modification
- tracing: Fix clear of RECORDED_TGID flag when disabling trace event
- tracing: Apply trace_clock changes to instance max buffer
- ARC: Re-enable MMU upon Machine Check exception
- PCI: shpchp: Enable bridge bus mastering if MSI is enabled
- PCI: pciehp: Report power fault only once until we clear it
- net/netfilter/nf_conntrack_core: Fix net_conntrack_lock()
- media: v4l2-compat-ioctl32: Fix timespec conversion
- media: Revert "[media] lirc_dev: remove superfluous get/put_device() calls"
- media: venus: fix copy/paste error in return_buf_error
- media: uvcvideo: Prevent heap overflow when accessing mapped controls
- media: adv7180: add missing adv7180cp, adv7180st i2c device IDs
- PM / devfreq: Fix memory leak when fail to register device
- ALSA: seq: Cancel pending autoload work at unbinding device
- bcache: initialize dirty stripes in flash_dev_run()
- bcache: Fix leak of bdev reference
- bcache: do not subtract sectors_to_gc for bypassed IO
- bcache: correct cache_dirty_target in __update_writeback_rate()
- bcache: Correct return value for sysfs attach errors
- bcache: fix sequential large write IO bypass
- bcache: fix for gc and write-back race
- bcache: fix bch_hprint crash and improve output
- sched/cpuset/pm: Fix cpuset vs. suspend-resume bugs
- iwlwifi: add workaround to disable wide channels in 5GHz
- Linux 4.13.4
* [17.10 FEAT] KVM: CPU Model z14 (LP: #1719297)
- KVM: s390: Support Configuration z/Architecture Mode
* sata reset hangs w/ early cn99xx silicon (LP: #1719031)
- SAUCE: ahci: thunderx2: Fix for errata that affects stop engine
- SAUCE: ahci: thunderx2: stop engine fix update
* PCI quirk required for SATA on early cn99xx silicon (LP: #1718760)
- SAUCE: PCI: Vulcan: AHCI PCI bar fix for Broadcom Vulcan early silicon
* Please make linux-libc-dev Provide: aufs-dev (LP: #1716091)
- [Packaging] Add aufs-dev to the Provides: for linux-libc-dev
* Miscellaneous Ubuntu changes
- [Packaging] Use SRCPKGNAME rather than hard-coding the source package name
- SAUCE: LSM stacking: procfs: add smack subdir to attrs
- SAUCE: LSM stacking: LSM: manage credential security blobs
- SAUCE: LSM stacking: LSM: Manage file security blobs
- SAUCE: LSM stacking: LSM: manage task security blobs
- SAUCE: LSM stacking: LSM: Infrastructure management of the remaining blobs
- SAUCE: LSM stacking: LSM: general but not extreme module stacking
- SAUCE: LSM stacking: LSM: Complete task_alloc hook
- SAUCE: LSM stacking: fixup procsfs: add smack subdir to attrs
- SAUCE: LSM stacking: fixup initialize task->security
- SAUCE: LSM stacking: fixup: alloc_task_ctx is dead code
- SAUCE: LSM stacking: add support for stacking getpeersec_stream
- SAUCE: LSM stacking: add stacking support to apparmor network hooks
- SAUCE: LSM stacking: fixup apparmor stacking enablement
- SAUCE: LSM stacking: fixup stacking kconfig
- SAUCE: LSM stacking: allow selecting multiple LSMs using kernel boot params
- SAUCE: LSM stacking: provide prctl interface for setting context
- SAUCE: LSM stacking: inherit current display LSM
- SAUCE: LSM stacking: keep an index for each registered LSM
- SAUCE: LSM stacking: verify display LSM
- SAUCE: LSM stacking: provide a way to specify the default display lsm
- SAUCE: LSM stacking: make sure LSM blob align on 64 bit boundaries
- SAUCE: LSM stacking: add /proc/<pid>/attr/display_lsm
- SAUCE: LSM stacking: add Kconfig to set default display LSM
- SAUCE: LSM stacking: add configs for LSM stacking
- [Config] Run updateconfigs after merging LSM stacking
-- Seth Forshee <email address hidden> Tue, 03 Oct 2017 14:51:52 -0500
-
linux (4.13.0-12.13) artful; urgency=low
* linux: 4.13.0-12.13 -proposed tracker (LP: #1718980)
* [Feature] SKX: Support crystall ridge / far / near memory indication in PEBS
(LP: #1591813)
- perf/x86: Move Nehalem PEBS code to flag
- perf/x86: Fix data source decoding for Skylake
* Upgrade to 4.13.0-11.12 in artful amd64 VM breaks display on wayland
(LP: #1718679)
- [Config] CONFIG_DRM_VBOXVIDEO=n
* ipmmu-vmsa driver breaks arm64 boots (LP: #1718734)
- [Config] Disable CONFIG_IPMMU_VMSA on arm64
* Vlun resize request could fail with cxlflash driver (LP: #1713575)
- scsi: cxlflash: Fix vlun resize failure in the shrink path
* multipath -ll is not showing the disks which are actually multipath
(LP: #1718397)
- fs: aio: fix the increment of aio-nr and counting against aio-max-nr
* [Feature] Crystal Ridge - BTT - Rework error clearing (LP: #1704350)
- libnvdimm, btt: fix a missed NVDIMM_IO_ATOMIC case in the write path
- libnvdimm, btt: refactor map entry operations with macros
- libnvdimm, btt: ensure that flags were also unchanged during a map_read
- libnvdimm, btt: cache sector_size in arena_info
- libnvdimm: fix potential deadlock while clearing errors
- libnvdimm, btt: rework error clearing
* [Feature] Crystal Ridge - have 4k DAX faults use a common zero page
(LP: #1704439)
- mm: add vm_insert_mixed_mkwrite()
- dax: relocate some dax functions
- dax: use common 4k zero page for dax mmap reads
- dax: remove DAX code from page_cache_tree_insert()
- dax: move all DAX radix tree defs to fs/dax.c
* [bug] 17.10: CDP test fail on platform of Purley-2S/4S/Neoncity,BDW-
de/ep/ex, (LP: #1716843)
- SAUCE: (no-up) x86/intel_rdt: Fix cdp info directory files issue
* [featue] GPIO support for Denverton (LP: #1591829)
- pinctrl: intel: Add Intel Denverton pin controller support
* ETPS/2 Elantech Touchpad inconsistently detected (Gigabyte P57W laptop)
(LP: #1594214)
- Input: i8042 - add Gigabyte P57 to the keyboard reset table
* autopkgtest profile fails to build on armhf (LP: #1717920)
- [Packaging] autopkgtest -- disable d-i when dropping flavours
* Artful update to v4.13.3 stable release (LP: #1718412)
- Revert "net: use lib/percpu_counter API for fragmentation mem accounting"
- Revert "net: fix percpu memory leaks"
- gianfar: Fix Tx flow control deactivation
- vhost_net: correctly check tx avail during rx busy polling
- ip6_gre: update mtu properly in ip6gre_err
- udp: drop head states only when all skb references are gone
- ipv6: fix memory leak with multiple tables during netns destruction
- ipv6: fix typo in fib6_net_exit()
- sctp: fix missing wake ups in some situations
- tcp: fix a request socket leak
- ip_tunnel: fix setting ttl and tos value in collect_md mode
- f2fs: let fill_super handle roll-forward errors
- f2fs: check hot_data for roll-forward recovery
- x86/fsgsbase/64: Fully initialize FS and GS state in start_thread_common
- x86/fsgsbase/64: Report FSBASE and GSBASE correctly in core dumps
- x86/switch_to/64: Rewrite FS/GS switching yet again to fix AMD CPUs
- x86/mm, mm/hwpoison: Clear PRESENT bit for kernel 1:1 mappings of poison
pages
- ovl: fix false positive ESTALE on lookup
- fuse: allow server to run in different pid_ns
- idr: remove WARN_ON_ONCE() when trying to replace negative ID
- libnvdimm, btt: check memory allocation failure
- libnvdimm: fix integer overflow static analysis warning
- xfs: write unmount record for ro mounts
- xfs: toggle readonly state around xfs_log_mount_finish
- xfs: Add infrastructure needed for error propagation during buffer IO
failure
- xfs: Properly retry failed inode items in case of error during buffer
writeback
- xfs: fix recovery failure when log record header wraps log end
- xfs: always verify the log tail during recovery
- xfs: fix log recovery corruption error due to tail overwrite
- xfs: handle -EFSCORRUPTED during head/tail verification
- xfs: stop searching for free slots in an inode chunk when there are none
- xfs: evict all inodes involved with log redo item
- xfs: check for race with xfs_reclaim_inode() in xfs_ifree_cluster()
- xfs: open-code xfs_buf_item_dirty()
- xfs: remove unnecessary dirty bli format check for ordered bufs
- xfs: ordered buffer log items are never formatted
- xfs: refactor buffer logging into buffer dirtying helper
- xfs: don't log dirty ranges for ordered buffers
- xfs: skip bmbt block ino validation during owner change
- xfs: move bmbt owner change to last step of extent swap
- xfs: disallow marking previously dirty buffers as ordered
- xfs: relog dirty buffers during swapext bmbt owner change
- xfs: disable per-inode DAX flag
- xfs: fix incorrect log_flushed on fsync
- xfs: don't set v3 xflags for v2 inodes
- xfs: open code end_buffer_async_write in xfs_finish_page_writeback
- xfs: use kmem_free to free return value of kmem_zalloc
- md/raid1/10: reset bio allocated from mempool
- md/raid5: release/flush io in raid5_do_work()
- xfs: fix compiler warnings
- Linux 4.13.3
* Artful update to v4.13.2 stable release (LP: #1717549)
- mtd: nand: make Samsung SLC NAND usable again
- mtd: nand: hynix: add support for 20nm NAND chips
- mtd: nand: mxc: Fix mxc_v1 ooblayout
- mtd: nand: qcom: fix read failure without complete bootchain
- mtd: nand: qcom: fix config error for BCH
- nvme-fabrics: generate spec-compliant UUID NQNs
- btrfs: resume qgroup rescan on rw remount
- rtlwifi: btcoexist: Fix breakage of ant_sel for rtl8723be
- rtlwifi: btcoexist: Fix antenna selection code
- radix-tree: must check __radix_tree_preload() return value
- brcmfmac: feature check for multi-scheduled scan fails on bcm4345 devices
- kselftests: timers: leap-a-day: Change default arguments to help test runs
- selftests: timers: Fix run_destructive_tests target to handle skipped tests
- selftests/x86/fsgsbase: Test selectors 1, 2, and 3
- mm: kvfree the swap cluster info if the swap file is unsatisfactory
- mm/swapfile.c: fix swapon frontswap_map memory leak on error
- mm/sparse.c: fix typo in online_mem_sections
- mm/memory.c: fix mem_cgroup_oom_disable() call missing
- KVM: SVM: Limit PFERR_NESTED_GUEST_PAGE error_code check to L1 guest
- Revert "firmware: add sanity check on shutdown/suspend"
- rt2800: fix TX_PIN_CFG setting for non MT7620 chips
- ARM64: dts: marvell: armada-37xx: Fix GIC maintenance interrupt
- ARM: 8692/1: mm: abort uaccess retries upon fatal signal
- NFS: Fix 2 use after free issues in the I/O code
- NFS: Sync the correct byte range during synchronous writes
- NFSv4: Fix up mirror allocation
- xfs: XFS_IS_REALTIME_INODE() should be false if no rt device present
- Linux 4.13.2
* [Bug] Thunderbolt-patches: Related to the way the key for secure connection
is handled (LP: #1717430)
- thunderbolt: Remove superfluous check
- thunderbolt: Make key root-only accessible
- thunderbolt: Allow clearing the key
* [Bug] Thunderbolt-patches: Fixes the issue regarding the order of ACPI calls
w.r.t. PCI enumeration (LP: #1717431)
- ACPICA: Dispatch active GPEs at init time
- ACPICA: Make it possible to enable runtime GPEs earlier
- ACPI / scan: Enable GPEs before scanning the namespace
* Miscellaneous Ubuntu changes
- ubuntu: vbox -- update to 5.1.28-dfsg-1
- [Config] CONFIG_PINCTRL_DENVERTON=m
- [Config] CONFIG_I2C_XLP9XX=m
* Miscellaneous upstream changes
- Introduce v3 namespaced file capabilities
-- Seth Forshee <email address hidden> Fri, 22 Sep 2017 12:10:03 -0500
-
linux (4.13.0-11.12) artful; urgency=low
* linux: 4.13.0-11.12 -proposed tracker (LP: #1716699)
* kernel panic -not syncing: Fatal exception: panic_on_oops (LP: #1708399)
- s390/mm: fix local TLB flushing vs. detach of an mm address space
- s390/mm: fix race on mm->context.flush_mm
* CVE-2017-1000251
- Bluetooth: Properly check L2CAP config option output buffer length
-- Seth Forshee <email address hidden> Tue, 12 Sep 2017 10:18:38 -0500
-
linux (4.13.0-10.11) artful; urgency=low
* linux: 4.13.0-10.11 -proposed tracker (LP: #1716287)
* please add aufs-dkms to the Provides: for the kernel packages (LP: #1716093)
- [Packaging] Add aufs-dkms to the Provides: for kernel packages
* Artful update to v4.13.1 stable release (LP: #1716284)
- usb: quirks: add delay init quirk for Corsair Strafe RGB keyboard
- USB: serial: option: add support for D-Link DWM-157 C1
- usb: Add device quirk for Logitech HD Pro Webcam C920-C
- usb:xhci:Fix regression when ATI chipsets detected
- USB: musb: fix external abort on suspend
- ANDROID: binder: add padding to binder_fd_array_object.
- ANDROID: binder: add hwbinder,vndbinder to BINDER_DEVICES.
- USB: core: Avoid race of async_completed() w/ usbdev_release()
- staging/rts5208: fix incorrect shift to extract upper nybble
- staging: ccree: save ciphertext for CTS IV
- staging: fsl-dpaa2/eth: fix off-by-one FD ctrl bitmaks
- iio: adc: ti-ads1015: fix incorrect data rate setting update
- iio: adc: ti-ads1015: fix scale information for ADS1115
- iio: adc: ti-ads1015: enable conversion when CONFIG_PM is not set
- iio: adc: ti-ads1015: avoid getting stale result after runtime resume
- iio: adc: ti-ads1015: don't return invalid value from buffer setup callbacks
- iio: adc: ti-ads1015: add adequate wait time to get correct conversion
- driver core: bus: Fix a potential double free
- HID: wacom: Do not completely map WACOM_HID_WD_TOUCHRINGSTATUS usage
- binder: free memory on error
- crypto: caam/qi - fix compilation with CONFIG_DEBUG_FORCE_WEAK_PER_CPU=y
- crypto: caam/qi - fix compilation with DEBUG enabled
- thunderbolt: Fix reset response_type
- fpga: altera-hps2fpga: fix multiple init of l3_remap_lock
- intel_th: pci: Add Cannon Lake PCH-H support
- intel_th: pci: Add Cannon Lake PCH-LP support
- ath10k: fix memory leak in rx ring buffer allocation
- drm/vgem: Pin our pages for dmabuf exports
- drm/ttm: Fix accounting error when fail to get pages for pool
- drm/dp/mst: Handle errors from drm_atomic_get_private_obj_state() correctly
- rtlwifi: rtl_pci_probe: Fix fail path of _rtl_pci_find_adapter
- Bluetooth: Add support of 13d3:3494 RTL8723BE device
- iwlwifi: pci: add new PCI ID for 7265D
- dlm: avoid double-free on error path in dlm_device_{register,unregister}
- mwifiex: correct channel stat buffer overflows
- MCB: add support for SC31 to mcb-lpc
- s390/mm: avoid empty zero pages for KVM guests to avoid postcopy hangs
- drm/nouveau/pci/msi: disable MSI on big-endian platforms by default
- drm/nouveau: Fix error handling in nv50_disp_atomic_commit
- workqueue: Fix flag collision
- ahci: don't use MSI for devices with the silly Intel NVMe remapping scheme
- cs5536: add support for IDE controller variant
- scsi: sg: protect against races between mmap() and SG_SET_RESERVED_SIZE
- scsi: sg: recheck MMAP_IO request length with lock held
- of/device: Prevent buffer overflow in of_device_modalias()
- rtlwifi: Fix memory leak when firmware request fails
- rtlwifi: Fix fallback firmware loading
- Linux 4.13.1
* Kernel has trouble recognizing Corsair Strafe RGB keyboard (LP: #1678477)
- usb: quirks: add delay init quirk for Corsair Strafe RGB keyboard
* SRIOV: warning if unload VFs (LP: #1715073)
- PCI: Disable VF decoding before pcibios_sriov_disable() updates resources
* [Patch] network-i40e:NVM bug fixes (cherrypick from 4.14) (LP: #1715578)
- i40e: avoid NVM acquire deadlock during NVM update
- i40e: point wb_desc at the nvm_wb_desc during i40e_read_nvm_aq
* [P9,POwer NV] Perf PMU event : pm_br_2path and pm_ld_miss_l1 is counted
twice when perf stat is done (perf:) (LP: #1714571)
- perf vendor events powerpc: Remove duplicate events
* Unable to install Ubuntu on the NVMe disk under VMD PCI domain
(LP: #1703339)
- [Config] Include vmd in storage-core-modules udeb
* 17.10 fails to boot on POWER9 DD2.0 with Deep stop states (LP: #1715064)
- powerpc/powernv: Save/Restore additional SPRs for stop4 cpuidle
- powerpc/powernv: Clear PECE1 in LPCR via stop-api only on Hotplug
- SAUCE: powerpc/powernv: Clear LPCR[PECE1] via stop-api only for deep state
offline
* Miscellaneous Ubuntu changes
- SAUCE: selftests/seccomp: Support glibc 2.26 siginfo_t.h
- Revert "UBUNTU: SAUCE: Import aufs driver"
- SAUCE: Import aufs driver
-- Seth Forshee <email address hidden> Sun, 10 Sep 2017 17:48:59 -0500
-
linux (4.12.0-13.14) artful; urgency=low
* linux: 4.12.0-13.14 -proposed tracker (LP: #1714687)
* vhost guest network randomly drops under stress (kvm) (LP: #1711251)
- Revert "vhost: cache used event for better performance"
* EDAC sbridge: Failed to register device with error -22. (LP: #1714112)
- [Config] CONFIG_EDAC_GHES=n
* Artful update to v4.12.10 stable release (LP: #1714525)
- sparc64: remove unnecessary log message
- bonding: require speed/duplex only for 802.3ad, alb and tlb
- bonding: ratelimit failed speed/duplex update warning
- af_key: do not use GFP_KERNEL in atomic contexts
- dccp: purge write queue in dccp_destroy_sock()
- dccp: defer ccid_hc_tx_delete() at dismantle time
- ipv4: fix NULL dereference in free_fib_info_rcu()
- net_sched/sfq: update hierarchical backlog when drop packet
- net_sched: remove warning from qdisc_hash_add
- bpf: fix bpf_trace_printk on 32 bit archs
- net: igmp: Use ingress interface rather than vrf device
- openvswitch: fix skb_panic due to the incorrect actions attrlen
- ptr_ring: use kmalloc_array()
- ipv4: better IP_MAX_MTU enforcement
- nfp: fix infinite loop on umapping cleanup
- tun: handle register_netdevice() failures properly
- sctp: fully initialize the IPv6 address in sctp_v6_to_addr()
- tipc: fix use-after-free
- ipv6: reset fn->rr_ptr when replacing route
- ipv6: repair fib6 tree in failure case
- tcp: when rearming RTO, if RTO time is in past then fire RTO ASAP
- net/mlx4_core: Enable 4K UAR if SRIOV module parameter is not enabled
- irda: do not leak initialized list.dev to userspace
- net: sched: fix NULL pointer dereference when action calls some targets
- net_sched: fix order of queue length updates in qdisc_replace()
- bpf, verifier: add additional patterns to evaluate_reg_imm_alu
- bpf: fix mixed signed/unsigned derived min/max value bounds
- bpf/verifier: fix min/max handling in BPF_SUB
- Input: trackpoint - add new trackpoint firmware ID
- Input: elan_i2c - add ELAN0602 ACPI ID to support Lenovo Yoga310
- Input: ALPS - fix two-finger scroll breakage in right side on ALPS touchpad
- KVM: s390: sthyi: fix sthyi inline assembly
- KVM: s390: sthyi: fix specification exception detection
- KVM: x86: simplify handling of PKRU
- KVM, pkeys: do not use PKRU value in vcpu->arch.guest_fpu.state
- KVM: x86: block guest protection keys unless the host has them enabled
- ALSA: usb-audio: Add delay quirk for H650e/Jabra 550a USB headsets
- ALSA: core: Fix unexpected error at replacing user TLV
- ALSA: hda - Add stereo mic quirk for Lenovo G50-70 (17aa:3978)
- ALSA: firewire: fix NULL pointer dereference when releasing uninitialized
data of iso-resource
- ALSA: firewire-motu: destroy stream data surely at failure of card
initialization
- ARCv2: SLC: Make sure busy bit is set properly for region ops
- ARCv2: PAE40: Explicitly set MSB counterpart of SLC region ops addresses
- ARCv2: PAE40: set MSB even if !CONFIG_ARC_HAS_PAE40 but PAE exists in SoC
- PM/hibernate: touch NMI watchdog when creating snapshot
- mm, shmem: fix handling /sys/kernel/mm/transparent_hugepage/shmem_enabled
- dax: fix deadlock due to misaligned PMD faults
- i2c: designware: Fix system suspend
- mm/madvise.c: fix freeing of locked page with MADV_FREE
- fork: fix incorrect fput of ->exe_file causing use-after-free
- mm/memblock.c: reversed logic in memblock_discard()
- arm64: fpsimd: Prevent registers leaking across exec
- drm: Fix framebuffer leak
- drm: Release driver tracking before making the object available again
- drm/sun4i: Implement drm_driver lastclose to restore fbdev console
- drm/atomic: Handle -EDEADLK with out-fences correctly
- drm/atomic: If the atomic check fails, return its value first
- drm/i915/vbt: ignore extraneous child devices for a port
- drm/i915/gvt: Fix the kernel null pointer error
- Revert "drm/amdgpu: fix vblank_time when displays are off"
- ACPI: device property: Fix node lookup in acpi_graph_get_child_prop_value()
- tracing: Call clear_boot_tracer() at lateinit_sync
- tracing: Missing error code in tracer_alloc_buffers()
- tracing: Fix kmemleak in tracing_map_array_free()
- tracing: Fix freeing of filter in create_filter() when set_str is false
- RDMA/uverbs: Initialize cq_context appropriately
- kbuild: linker script do not match C names unless
LD_DEAD_CODE_DATA_ELIMINATION is configured
- cifs: Fix df output for users with quota limits
- cifs: return ENAMETOOLONG for overlong names in cifs_open()/cifs_lookup()
- nfsd: Limit end of page list when decoding NFSv4 WRITE
- ring-buffer: Have ring_buffer_alloc_read_page() return error on offline CPU
- virtio_pci: fix cpu affinity support
- ftrace: Check for null ret_stack on profile function graph entry function
- perf/core: Fix group {cpu,task} validation
- timers: Fix excessive granularity of new timers after a nohz idle
- x86/mm: Fix use-after-free of ldt_struct
- net: sunrpc: svcsock: fix NULL-pointer exception
- netfilter: expect: fix crash when putting uninited expectation
- netfilter: nat: fix src map lookup
- netfilter: nfnetlink: Improve input length sanitization in nfnetlink_rcv
- Bluetooth: hidp: fix possible might sleep error in hidp_session_thread
- Bluetooth: cmtp: fix possible might sleep error in cmtp_session
- Bluetooth: bnep: fix possible might sleep error in bnep_session
- Revert "android: binder: Sanity check at binder ioctl"
- binder: use group leader instead of open thread
- binder: Use wake up hint for synchronous transactions.
- ANDROID: binder: fix proc->tsk check.
- iio: imu: adis16480: Fix acceleration scale factor for adis16480
- iio: hid-sensor-trigger: Fix the race with user space powering up sensors
- iio: magnetometer: st_magn: fix status register address for LSM303AGR
- iio: magnetometer: st_magn: remove ihl property for LSM303AGR
- staging: rtl8188eu: add RNX-N150NUB support
- iommu: Fix wrong freeing of iommu_device->dev
- Clarify (and fix) MAX_LFS_FILESIZE macros
- ntb: ntb_test: ensure the link is up before trying to configure the mws
- ntb: transport shouldn't disable link due to bogus values in SPADs
- ACPI: EC: Fix regression related to wrong ECDT initialization order
- powerpc/mm: Ensure cpumask update is ordered
- Linux 4.12.10
* arm64 arch_timer fixes (LP: #1713821)
- clocksource/drivers/arm_arch_timer: Fix mem frame loop initialization
- clocksource/drivers/arm_arch_timer: Avoid infinite recursion when ftrace is
enabled
* [Bug] Harrisonville: pnd2_edac always fail to load on B1 stepping
Harrisonville SDP (LP: #1709257)
- EDAC, pnd2: Return proper error value from apl_rd_reg()
- EDAC, pnd2: Make function sbi_send() static
- EDAC, pnd2: Fix Apollo Lake DIMM detection
- EDAC, pnd2: Build in a minimal sideband driver for Apollo Lake
- EDAC, pnd2: Mask off the lower four bits of a BAR
- EDAC, pnd2: Conditionally unhide/hide the P2SB PCI device to read BAR
- EDAC, pnd2: Properly toggle hidden state for P2SB PCI device
- SAUCE: i2c: i801: Restore the presence state of P2SB PCI device after
reading BAR
* implement 'complain mode' in seccomp for developer mode with snaps
(LP: #1567597)
- seccomp: Action to log before allowing
* linux 4.12.0-11.12 ADT test failure with linux 4.12.0-11.12 (LP: #1710904)
- SAUCE: selftests/powerpc: Use snprintf to construct DSCR sysfs interface
paths
* Artful update to v4.12.9 stable release (LP: #1713106)
- audit: Fix use after free in audit_remove_watch_rule()
- parisc: pci memory bar assignment fails with 64bit kernels on dino/cujo
- crypto: ixp4xx - Fix error handling path in 'aead_perform()'
- crypto: x86/sha1 - Fix reads beyond the number of blocks passed
- drm/i915: Perform an invalidate prior to executing golden renderstate
- drm/amdgpu: save list length when fence is signaled
- Input: elan_i2c - add ELAN0608 to the ACPI table
- Input: elan_i2c - Add antoher Lenovo ACPI ID for upcoming Lenovo NB
- md: fix test in md_write_start()
- md: always clear ->safemode when md_check_recovery gets the mddev lock.
- MD: not clear ->safemode for external metadata array
- ALSA: seq: 2nd attempt at fixing race creating a queue
- ALSA: usb-audio: Apply sample rate quirk to Sennheiser headset
- ALSA: usb-audio: Add mute TLV for playback volumes on C-Media devices
- ALSA: usb-audio: add DSD support for new Amanero PID
- mm: discard memblock data later
- slub: fix per memcg cache leak on css offline
- mm: fix double mmap_sem unlock on MMF_UNSTABLE enforced SIGBUS
- mm/cma_debug.c: fix stack corruption due to sprintf usage
- mm/mempolicy: fix use after free when calling get_mempolicy
- mm/vmalloc.c: don't unconditonally use __GFP_HIGHMEM
- mm: revert x86_64 and arm64 ELF_ET_DYN_BASE base changes
- xen: fix bio vec merging
- ARM: dts: imx6qdl-nitrogen6_som2: fix PCIe reset
- blk-mq-pci: add a fallback when pci_irq_get_affinity returns NULL
- powerpc: Fix VSX enabling/flushing to also test MSR_FP and MSR_VEC
- xen-blkfront: use a right index when checking requests
- perf/x86: Fix RDPMC vs. mm_struct tracking
- x86/asm/64: Clear AC on NMI entries
- x86: Fix norandmaps/ADDR_NO_RANDOMIZE
- x86/elf: Remove the unnecessary ADDR_NO_RANDOMIZE checks
- irqchip/atmel-aic: Fix unbalanced of_node_put() in aic_common_irq_fixup()
- irqchip/atmel-aic: Fix unbalanced refcount in aic_common_rtc_irq_fixup()
- genirq: Restore trigger settings in irq_modify_status()
- genirq/ipi: Fixup checks against nr_cpu_ids
- kernel/watchdog: Prevent false positives with turbo modes
- Sanitize 'move_pages()' permission checks
- pids: make task_tgid_nr_ns() safe
- debug: Fix WARN_ON_ONCE() for modules
- usb: optimize acpi companion search for usb port devices
- usb: qmi_wwan: add D-Link DWM-222 device ID
- Linux 4.12.9
* Touchpad not detected (LP: #1708852)
- Input: elan_i2c - add ELAN0608 to the ACPI table
* HID: multitouch: Support ALPS PTP Stick and Touchpad devices (LP: #1712481)
- HID: multitouch: Support PTP Stick and Touchpad device
- SAUCE: HID: multitouch: Support ALPS PTP stick with pid 0x120A
* sort ABI files with C.UTF-8 locale (LP: #1712345)
- [Packaging] sort ABI files with C.UTF-8 locale
* igb: Support using Broadcom 54616 as PHY (LP: #1712024)
- SAUCE: igb: add support for using Broadcom 54616 as PHY
* RPT related fixes missing in Ubuntu 16.04.3 (LP: #1709220)
- powerpc/mm/radix: Improve _tlbiel_pid to be usable for PWC flushes
- powerpc/mm/radix: Improve TLB/PWC flushes
- powerpc/mm/radix: Avoid flushing the PWC on every flush_tlb_range
* AMD RV platforms with SNPS 3.1 USB controller stop responding (S3 issue)
(LP: #1711098)
- usb: xhci: Issue stop EP command only when the EP state is running
* dma-buf: performance issue when looking up the fence status (LP: #1711096)
- dma-buf: avoid scheduling on fence status query v2
* Linux 4.12 refuses to load self-signed modules under Secure Boot with
properly enrolled keys (LP: #1712168)
- SAUCE: (efi-lockdown) MODSIGN: Fix module signature verification
* [17.10 FEAT] Enable NVMe driver - kernel (LP: #1708432)
- [Config] CONFIG_BLK_DEV_NVME=m for s390
* Miscellaneous Ubuntu changes
- SAUCE: selftests/powerpc: Disable some ptrace selftests
* Miscellaneous upstream changes
- Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled"
- seccomp: Provide matching filter for introspection
- seccomp: Sysctl to display available actions
- seccomp: Operation for checking if an action is available
- seccomp: Sysctl to configure actions that are allowed to be logged
- seccomp: Selftest for detection of filter flag support
- seccomp: Filter flag to log all actions except SECCOMP_RET_ALLOW
-- Andy Whitcroft <email address hidden> Fri, 25 Aug 2017 18:04:36 +0100
-
linux (4.12.0-12.13) artful; urgency=low
* Artful update to v4.12.8 stable release (LP: #1711368)
- mm: ratelimit PFNs busy info message
- mm: fix list corruptions on shmem shrinklist
- futex: Remove unnecessary warning from get_futex_key
- xtensa: fix cache aliasing handling code for WT cache
- xtensa: mm/cache: add missing EXPORT_SYMBOLs
- xtensa: don't limit csum_partial export by CONFIG_NET
- xfs: Fix leak of discard bio
- pinctrl: armada-37xx: Fix number of pin in south bridge
- mtd: nand: atmel: Fix DT backward compatibility in pmecc.c
- mtd: nand: Fix timing setup for NANDs that do not support SET FEATURES
- mtd: nand: Declare tBERS, tR and tPROG as u64 to avoid integer overflow
- iscsi-target: fix memory leak in iscsit_setup_text_cmd()
- iscsi-target: Fix iscsi_np reset hung task during parallel delete
- usb-storage: fix deadlock involving host lock and scsi_done
- target: Fix node_acl demo-mode + uncached dynamic shutdown regression
- fuse: initialize the flock flag in fuse_file on allocation
- i2c: designware: Some broken DSTDs use 1MiHz instead of 1MHz
- nand: fix wrong default oob layout for small pages using soft ecc
- mmc: mmc: correct the logic for setting HS400ES signal voltage
- nfs/flexfiles: fix leak of nfs4_ff_ds_version arrays
- drm/bridge: tc358767: fix probe without attached output node
- drm/etnaviv: Fix off-by-one error in reloc checking
- drm/i915: Fix out-of-bounds array access in bdw_load_gamma_lut
- USB: serial: option: add D-Link DWM-222 device ID
- USB: serial: cp210x: add support for Qivicon USB ZigBee dongle
- USB: serial: pl2303: add new ATEN device id
- usb: musb: fix tx fifo flush handling again
- USB: hcd: Mark secondary HCD as dead if the primary one died
- staging:iio:resolver:ad2s1210 fix negative IIO_ANGL_VEL read
- iio: aspeed-adc: wait for initial sequence.
- iio: accel: st_accel: add SPI-3wire support
- iio: accel: bmc150: Always restore device to normal mode after suspend-
resume
- iio: pressure: st_pressure_core: disable multiread by default for LPS22HB
- iio: light: tsl2563: use correct event code
- iio: adc: Revert "axp288: Drop bogus AXP288_ADC_TS_PIN_CTRL register
modifications"
- staging: comedi: comedi_fops: do not call blocking ops when !TASK_RUNNING
- uas: Add US_FL_IGNORE_RESIDUE for Initio Corporation INIC-3069
- firmware: fix batched requests - wake all waiters
- firmware: fix batched requests - send wake up on failure on direct lookups
- firmware: avoid invalid fallback aborts by using killable wait
- block: Make blk_mq_delay_kick_requeue_list() rerun the queue at a quiet time
- usb: gadget: udc: renesas_usb3: Fix usb_gadget_giveback_request() calling
- usb: renesas_usbhs: Fix UGCTRL2 value for R-Car Gen3
- USB: Check for dropped connection before switching to full speed
- usb: core: unlink urbs from the tail of the endpoint's urb_list
- usb: quirks: Add no-lpm quirk for Moshi USB to Ethernet Adapter
- usb:xhci:Add quirk for Certain failing HP keyboard on reset after resume
- PCI: Protect pci_error_handlers->reset_notify() usage with device_lock()
- PCI: Remove __pci_dev_reset() and pci_dev_reset()
- PCI: Add pci_reset_function_locked()
- xhci: Reset Renesas uPD72020x USB controller for 32-bit DMA issue
- iio: adc: vf610_adc: Fix VALT selection value for REFSEL bits
- pnfs/blocklayout: require 64-bit sector_t
- pinctrl: cherryview: Add Setzer models to the Chromebook DMI quirk
- pinctrl: sunxi: add a missing function of A10/A20 pinctrl driver
- pinctrl: intel: merrifield: Correct UART pin lists
- pinctrl: uniphier: fix WARN_ON() of pingroups dump on LD11
- pinctrl: uniphier: fix WARN_ON() of pingroups dump on LD20
- pinctrl: samsung: Remove bogus irq_[un]mask from resource management
- pinctrl: meson-gxbb: Add missing GPIODV_18 pin entry
- pinctrl: meson-gxl: Add missing GPIODV_18 pin entry
- MIPS: DEC: Fix an int-handler.S CPU_DADDI_WORKAROUNDS regression
- Revert "MIPS: Don't unnecessarily include kmalloc.h into <asm/cache.h>."
- MIPS: Octeon: Fix broken EDAC driver.
- Linux 4.12.8
* Artful: 4.12.0-11.12: Boot panic in vlv2_plat_configure_clock+0x3b/0xa0
(LP: #1711298)
- [Config] CONFIG_INTEL_ATOMISP=n
* ACPI ID for Hip07/08 I2C controller has typo (LP: #1711182)
- ACPI: APD: Fix HID for Hisilicon Hip07/08
* Ubuntu17.10 - perf: Update Power9 PMU event JSON files (LP: #1708630)
- perf pmu-events: Support additional POWER8+ PVR in mapfile
- perf vendor events: Add POWER9 PMU events
- perf vendor events: Add POWER9 PVRs to mapfile
- SAUCE: perf vendor events powerpc: remove suffix in mapfile
- SAUCE: perf vendor events powerpc: Update POWER9 events
* Disable CONFIG_MEMORY_HOTPLUG_DEFAULT_ONLINE (LP: #1709171)
- [Config] CONFIG_MEMORY_HOTPLUG_DEFAULT_ONLINE=n for ppc64el
* Artful update to v4.12.7 stable release (LP: #1710649)
- ppp: Fix false xmit recursion detect with two ppp devices
- ppp: fix xmit recursion detection on ppp channels
- tcp: avoid setting cwnd to invalid ssthresh after cwnd reduction states
- net: fix keepalive code vs TCP_FASTOPEN_CONNECT
- ipv6: set rt6i_protocol properly in the route when it is installed
- bpf, s390: fix jit branch offset related to ldimm64
- net/mlx4_en: don't set CHECKSUM_COMPLETE on SCTP packets
- net: sched: set xt_tgchk_param par.net properly in ipt_init_target
- net: sched: set xt_tgchk_param par.nft_compat as 0 in ipt_init_target
- tcp: fastopen: tcp_connect() must refresh the route
- qmi_wwan: fix NULL deref on disconnect
- net: avoid skb_warn_bad_offload false positives on UFO
- igmp: Fix regression caused by igmp sysctl namespace code.
- scsi: sg: only check for dxfer_len greater than 256M
- btrfs: Remove false alert when fiemap range is smaller than on-disk extent
- Linux 4.12.7
* Artful update to v4.12.6 stable release (LP: #1710648)
- parisc: Increase thread and stack size to 32kb
- parisc: Handle vma's whose context is not current in flush_cache_range
- scsi: lpfc: fix linking against modular NVMe support
- ACPI / LPSS: Only call pwm_add_table() for the first PWM controller
- cgroup: don't call migration methods if there are no tasks to migrate
- cgroup: create dfl_root files on subsys registration
- cgroup: fix error return value from cgroup_subtree_control()
- libata: array underflow in ata_find_dev()
- workqueue: restore WQ_UNBOUND/max_active==1 to be ordered
- iwlwifi: dvm: prevent an out of bounds access
- brcmfmac: fix memleak due to calling brcmf_sdiod_sgtable_alloc() twice
- NFSv4: Fix EXCHANGE_ID corrupt verifier issue
- mmc: sdhci-of-at91: force card detect value for non removable devices
- mmc: core: Use device_property_read instead of of_property_read
- mmc: dw_mmc: Use device_property_read instead of of_property_read
- mm, mprotect: flush TLB if potentially racing with a parallel reclaim
leaving stale TLB entries
- mm/hugetlb.c: __get_user_pages ignores certain follow_hugetlb_page errors
- userfaultfd: non-cooperative: notify about unmap of destination during
mremap
- userfaultfd_zeropage: return -ENOSPC in case mm has gone
- userfaultfd: non-cooperative: flush event_wqh at release time
- cpuset: fix a deadlock due to incomplete patching of cpusets_enabled()
- ocfs2: don't clear SGID when inheriting ACLs
- ALSA: hda - Fix speaker output from VAIO VPCL14M1R
- drm/amdgpu: fix header on gfx9 clear state
- drm/amdgpu: Fix undue fallthroughs in golden registers initialization
- ASoC: fix pcm-creation regression
- ASoC: ux500: Restore platform DAI assignments
- ASoC: do not close shared backend dailink
- KVM: arm/arm64: Handle hva aging while destroying the vm
- KVM: async_pf: make rcu irq exit if not triggered from idle task
- timers: Fix overflow in get_next_timer_interrupt
- powerpc/tm: Fix saving of TM SPRs in core dump
- powerpc/64: Fix __check_irq_replay missing decrementer interrupt
- iommu/amd: Enable ga_log_intr when enabling guest_mode
- ARM64: dts: marvell: armada-37xx: Fix the number of GPIO on south bridge
- gpiolib: skip unwanted events, don't convert them to opposite edge
- ext4: fix SEEK_HOLE/SEEK_DATA for blocksize < pagesize
- ext4: fix overflow caused by missing cast in ext4_resize_fs()
- MIPS: ralink: Fix build error due to missing header
- clk: sunxi-ng: sun5i: Add clk_set_rate_parent to the CPU clock
- ARM: mvebu: use __pa_symbol in the mv98dx3236 platform SMP code
- ARM: dts: armada-38x: Fix irq type for pca955
- ARM: dts: tango4: Request RGMII RX and TX clock delays
- media: pulse8-cec: persistent_config should be off by default
- media: lirc: LIRC_GET_REC_RESOLUTION should return microseconds
- media: platform: davinci: return -EINVAL for VPFE_CMD_S_CCDC_RAW_PARAMS
ioctl
- ir-spi: Fix issues with lirc API
- tcmu: Fix flushing cmd entry dcache page
- tcmu: Fix possbile memory leak / OOPs when recalculating cmd base size
- ext4: preserve i_mode if __ext4_set_acl() fails
- ext4: Don't clear SGID when inheriting ACLs
- Btrfs: fix early ENOSPC due to delalloc
- blk-mq: Include all present CPUs in the default queue mapping
- blk-mq: Create hctx for each present CPU
- block: disable runtime-pm for blk-mq
- saa7164: fix double fetch PCIe access condition
- sctp: fix an array overflow when all ext chunks are set
- tcp_bbr: cut pacing rate only if filled pipe
- tcp_bbr: introduce bbr_bw_to_pacing_rate() helper
- tcp_bbr: introduce bbr_init_pacing_rate_from_rtt() helper
- tcp_bbr: remove sk_pacing_rate=0 transient during init
- tcp_bbr: init pacing rate on first RTT sample
- ipv4: ipv6: initialize treq->txhash in cookie_v[46]_check()
- wireless: wext: terminate ifr name coming from userspace
- net: Zero terminate ifr_name in dev_ifname().
- net: dsa: mv88e6xxx: Enable CMODE config support for 6390X
- Revert "rtnetlink: Do not generate notifications for CHANGEADDR event"
- ipv6: avoid overflow of offset in ip6_find_1stfragopt
- net: dsa: b53: Add missing ARL entries for BCM53125
- ipv4: initialize fib_trie prior to register_netdev_notifier call.
- rtnetlink: allocate more memory for dev_set_mac_address()
- net: bonding: Fix transmit load balancing in balance-alb mode
- mcs7780: Fix initialization when CONFIG_VMAP_STACK is enabled
- openvswitch: fix potential out of bound access in parse_ct
- packet: fix use-after-free in prb_retire_rx_blk_timer_expired()
- ipv6: Don't increase IPSTATS_MIB_FRAGFAILS twice in ip6_fragment()
- net: ethernet: nb8800: Handle all 4 RGMII modes identically
- bonding: commit link status change after propose
- dccp: fix a memleak that dccp_ipv6 doesn't put reqsk properly
- dccp: fix a memleak that dccp_ipv4 doesn't put reqsk properly
- dccp: fix a memleak for dccp_feat_init err process
- net/mlx5: Consider tx_enabled in all modes on remap
- net/mlx5: Fix command completion after timeout access invalid structure
- net/mlx5: Fix command bad flow on command entry allocation failure
- sctp: don't dereference ptr before leaving _sctp_walk_{params, errors}()
- sctp: fix the check for _sctp_walk_params and _sctp_walk_errors
- net/mlx5e: IPoIB, Modify add/remove underlay QPN flows
- net/mlx5e: Fix outer_header_zero() check size
- net/mlx5: Fix mlx5_ifc_mtpps_reg_bits structure size
- net/mlx5e: Add field select to MTPPS register
- net/mlx5e: Fix broken disable 1PPS flow
- net/mlx5e: Change 1PPS out scheme
- net/mlx5e: Add missing support for PTP_CLK_REQ_PPS request
- net/mlx5e: Fix wrong delay calculation for overflow check scheduling
- net/mlx5e: Schedule overflow check work to mlx5e workqueue
- net/mlx5: Fix mlx5_add_flow_rules call with correct num of dests
- udp6: fix socket leak on early demux
- net: phy: Correctly process PHY_HALTED in phy_stop_machine()
- workqueue: implicit ordered attribute should be overridable
- ipv4: fib: Fix NULL pointer deref during fib_sync_down_dev()
- sparc64: Measure receiver forward progress to avoid send mondo timeout
- sparc64: Prevent perf from running during super critical sections
- sparc64: Register hugepages during arch init
- sparc64: Fix exception handling in UltraSPARC-III memcpy.
- drm/vmwgfx: Fix cursor hotspot issue with Wayland on Fedora
- Linux 4.12.6
* [SRU][Zesty] [QDF2400] pl011 E44 erratum patch needed for 2.0 firmware and
1.1 silicon (LP: #1709123)
- tty: pl011: fix initialization order of QDF2400 E44
* Avoid spurious PMU interrupts after idle (LP: #1709352)
- powerpc/perf: Avoid spurious PMU interrupts after idle
* Miscellaneous Ubuntu changes
- [Packaging] switch up to debhelper 9
* Miscellaneous upstream changes
- Revert "UBUNTU: SAUCE: PCI: Workaround to enable poweroff on Mac Pro 11"
-- Andy Whitcroft <email address hidden> Thu, 17 Aug 2017 15:05:29 +0100
-
linux (4.12.0-11.12) artful; urgency=low
* linux: 4.12.0-11.12 -proposed tracker (LP: #1709929)
* CVE-2017-1000111
- packet: fix tp_reserve race in packet_set_ring
* CVE-2017-1000112
- udp: consistently apply ufo or fragmentation
* Please only recommend or suggest initramfs-tools | linux-initramfs-tool for
kernels able to boot without initramfs (LP: #1700972)
- Revert "UBUNTU: [Debian] Don't depend on initramfs-tools"
- [Debian] Don't depend on initramfs-tools
* Miscellaneous Ubuntu changes
- SAUCE: (noup) Update spl to 0.6.5.11-ubuntu1, zfs to 0.6.5.11-1ubuntu3
- SAUCE: powerpc: Always initialize input array when calling epapr_hypercall()
* Miscellaneous upstream changes
- selftests: typo correction for memory-hotplug test
- selftests: check hot-pluggagble memory for memory-hotplug test
- selftests: check percentage range for memory-hotplug test
- selftests: add missing test name in memory-hotplug test
- selftests: fix memory-hotplug test
-- Seth Forshee <email address hidden> Thu, 10 Aug 2017 13:37:00 -0500
-
linux (4.11.0-14.22) artful; urgency=low
* CVE-2017-1000112
- udp: consistently apply ufo or fragmentation
* CVE-2017-1000111
- packet: fix tp_reserve race in packet_set_ring
* linux 4.11.0-13.19 ADT test failure with linux 4.11.0-13.19 (LP: #1709590)
- SAUCE: ZFS: Don't take spin lock on rwlock owner
* [Config] select gcc-6 explicitly
-- Andy Whitcroft <email address hidden> Fri, 11 Aug 2017 09:13:27 +0100
-
linux (4.11.0-14.21) artful; urgency=low
* CVE-2017-1000112
- udp: consistently apply ufo or fragmentation
* CVE-2017-1000111
- packet: fix tp_reserve race in packet_set_ring
* linux 4.11.0-13.19 ADT test failure with linux 4.11.0-13.19 (LP: #1709590)
- SAUCE: ZFS: Don't take spin lock on rwlock owner
-- Andy Whitcroft <email address hidden> Fri, 11 Aug 2017 09:13:27 +0100
-
linux (4.11.0-13.19) artful; urgency=low
* CVE-2017-7533
- dentry name snapshots
linux (4.11.0-12.18) artful; urgency=low
* linux: 4.11.0-12.18 -proposed tracker (LP: #1707635)
- no change rebuild to pick up the new binutils.
* Adt tests of src:linux time out often on armhf lxc containers (LP: #1705495)
- [Packaging] tests -- reduce rebuild test to one flavour
- [Packaging] tests -- reduce rebuild test to one flavour -- use filter
* [ARM64] config EDAC_GHES=y depends on EDAC_MM_EDAC=y (LP: #1706141)
- [Config] set EDAC_MM_EDAC=y for ARM64
* [Hyper-V] hv_netvsc: Exclude non-TCP port numbers from vRSS hashing
(LP: #1690174)
- hv_netvsc: Exclude non-TCP port numbers from vRSS hashing
* ath10k doesn't report full RSSI information (LP: #1706531)
- ath10k: add per chain RSSI reporting
* ideapad_laptop don't support v310-14isk (LP: #1705378)
- platform/x86: ideapad-laptop: Add several models to no_hw_rfkill
* Ubuntu 16.04.3: Qemu fails on P9 (LP: #1686019)
- KVM: PPC: Pass kvm* to kvmppc_find_table()
- KVM: PPC: Use preregistered memory API to access TCE list
- KVM: PPC: VFIO: Add in-kernel acceleration for VFIO
- powerpc/powernv/iommu: Add real mode version of iommu_table_ops::exchange()
- powerpc/iommu/vfio_spapr_tce: Cleanup iommu_table disposal
- powerpc/vfio_spapr_tce: Add reference counting to iommu_table
- powerpc/mmu: Add real mode support for IOMMU preregistered memory
- KVM: PPC: Reserve KVM_CAP_SPAPR_TCE_VFIO capability number
- KVM: PPC: Book3S HV: Add radix checks in real-mode hypercall handlers
* hns: ethtool selftest crashes system (LP: #1705712)
- net/hns:bugfix of ethtool -t phy self_test
* ThunderX: soft lockup on 4.8+ kernels when running qemu-efi with vhost=on
(LP: #1673564)
- KVM: arm/arm64: vgic-v3: Use PREbits to infer the number of ICH_APxRn_EL2
registers
- KVM: arm/arm64: vgic-v3: Fix nr_pre_bits bitfield extraction
- arm64: Add a facility to turn an ESR syndrome into a sysreg encoding
- KVM: arm/arm64: vgic-v3: Add accessors for the ICH_APxRn_EL2 registers
- KVM: arm64: Make kvm_condition_valid32() accessible from EL2
- KVM: arm64: vgic-v3: Add hook to handle guest GICv3 sysreg accesses at EL2
- KVM: arm64: vgic-v3: Add ICV_BPR1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_IGRPEN1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_IAR1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_EOIR1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_AP1Rn_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_HPPIR1_EL1 handler
- KVM: arm64: vgic-v3: Enable trapping of Group-1 system registers
- KVM: arm64: Enable GICv3 Group-1 sysreg trapping via command-line
- KVM: arm64: vgic-v3: Add ICV_BPR0_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_IGNREN0_EL1 handler
- KVM: arm64: vgic-v3: Add misc Group-0 handlers
- KVM: arm64: vgic-v3: Enable trapping of Group-0 system registers
- KVM: arm64: Enable GICv3 Group-0 sysreg trapping via command-line
- arm64: Add MIDR values for Cavium cn83XX SoCs
- arm64: Add workaround for Cavium Thunder erratum 30115
- KVM: arm64: vgic-v3: Add ICV_DIR_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_RPR_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_CTLR_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_PMR_EL1 handler
- KVM: arm64: Enable GICv3 common sysreg trapping via command-line
- KVM: arm64: vgic-v3: Log which GICv3 system registers are trapped
- arm64: KVM: Make unexpected reads from WO registers inject an undef
- KVM: arm64: Log an error if trapping a read-from-write-only GICv3 access
- KVM: arm64: Log an error if trapping a write-to-read-only GICv3 access
* ath9k freezes suspend resume Ubuntu 17.04 (LP: #1697027)
- ath9k: fix an invalid pointer dereference in ath9k_rng_stop()
* xhci_hcd: ERROR Transfer event TRB DMA ptr not part of current TD ep_index 2
comp_code 13 (LP: #1667750)
- xhci: Bad Ethernet performance plugged in ASM1042A host
* Migrating KSM page causes the VM lock up as the KSM page merging list is too
large (LP: #1680513)
- ksm: introduce ksm_max_page_sharing per page deduplication limit
- ksm: fix use after free with merge_across_nodes = 0
- ksm: cleanup stable_node chain collapse case
- ksm: swap the two output parameters of chain/chain_prune
- ksm: optimize refile of stable_node_dup at the head of the chain
* Artful update to v4.11.12 stable release (LP: #1706067)
- net/phy: micrel: configure intterupts after autoneg workaround
- ipv6: avoid unregistering inet6_dev for loopback
- netvsc: don't access netdev->num_rx_queues directly
- sfc: Fix MCDI command size for filter operations
- net: account for current skb length when deciding about UFO
- net: dp83640: Avoid NULL pointer dereference.
- tcp: reset sk_rx_dst in tcp_disconnect()
- net: prevent sign extension in dev_get_stats()
- virtio-net: serialize tx routine during reset
- net: sched: Fix one possible panic when no destroy callback
- mlxsw: spectrum_router: Fix NULL pointer dereference
- rocker: move dereference before free
- bpf: prevent leaking pointer via xadd on unpriviledged
- net: handle NAPI_GRO_FREE_STOLEN_HEAD case also in napi_frags_finish()
- net/mlx5: Cancel delayed recovery work when unloading the driver
- net/mlx5e: Fix TX carrier errors report in get stats ndo
- ipv6: dad: don't remove dynamic addresses if link is down
- vxlan: fix hlist corruption
- geneve: fix hlist corruption
- net: core: Fix slab-out-of-bounds in netdev_stats_to_stats64
- liquidio: fix bug in soft reset failure detection
- net: ipv6: Compare lwstate in detecting duplicate nexthops
- vrf: fix bug_on triggered by rx when destroying a vrf
- rds: tcp: use sock_create_lite() to create the accept socket
- net/mlx5e: Initialize CEE's getpermhwaddr address buffer to 0xff
- cxgb4: fix BUG() on interrupt deallocating path of ULD
- tap: convert a mutex to a spinlock
- bridge: mdb: fix leak on complete_info ptr on fail path
- brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx()
- sfc: don't read beyond unicast address list
- Adding asm-prototypes.h for genksyms to generate crc
- sed regex in Makefile.build requires line break between exported symbols
- Adding the type of exported symbols
- sparc64: Fix gup_huge_pmd
- block: Fix a blk_exit_rl() regression
- brcmfmac: Fix a memory leak in error handling path in
'brcmf_cfg80211_attach'
- brcmfmac: Fix glom_skb leak in brcmf_sdiod_recv_chain
- efi: Process the MEMATTR table only if EFI_MEMMAP is enabled
- cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE
- cfg80211: Validate frequencies nested in NL80211_ATTR_SCAN_FREQUENCIES
- cfg80211: Check if PMKID attribute is of expected size
- cfg80211: Check if NAN service ID is of expected size
- drm/amdgpu/gfx6: properly cache mc_arb_ramcfg
- irqchip/gic-v3: Fix out-of-bound access in gic_set_affinity
- parisc: Report SIGSEGV instead of SIGBUS when running out of stack
- parisc: use compat_sys_keyctl()
- parisc: DMA API: return error instead of BUG_ON for dma ops on non dma devs
- parisc/mm: Ensure IRQs are off in switch_mm()
- tools/lib/lockdep: Reduce MAX_LOCK_DEPTH to avoid overflowing lock_chain/:
Depth
- thp, mm: fix crash due race in MADV_FREE handling
- kernel/extable.c: mark core_kernel_text notrace
- mm/list_lru.c: fix list_lru_count_node() to be race free
- fs/dcache.c: fix spin lockup issue on nlru->lock
- checkpatch: silence perl 5.26.0 unescaped left brace warnings
- binfmt_elf: use ELF_ET_DYN_BASE only for PIE
- arm: move ELF_ET_DYN_BASE to 4MB
- arm64: move ELF_ET_DYN_BASE to 4GB / 4MB
- powerpc: move ELF_ET_DYN_BASE to 4GB / 4MB
- s390: reduce ELF_ET_DYN_BASE
- exec: Limit arg stack to at most 75% of _STK_LIM
- powerpc/kexec: Fix radix to hash kexec due to IAMR/AMOR
- ARM64: dts: marvell: armada37xx: Fix timer interrupt specifiers
- arm64: Preventing READ_IMPLIES_EXEC propagation
- vt: fix unchecked __put_user() in tioclinux ioctls
- rcu: Add memory barriers for NOCB leader wakeup
- nvmem: core: fix leaks on registration errors
- Drivers: hv: vmbus: Close timing hole that can corrupt per-cpu page
- mnt: In umount propagation reparent in a separate pass
- mnt: In propgate_umount handle visiting mounts in any order
- mnt: Make propagate_umount less slow for overlapping mount propagation trees
- selftests/capabilities: Fix the test_execve test
- mm: fix overflow check in expand_upwards()
- crypto: talitos - Extend max key length for SHA384/512-HMAC and AEAD
- crypto: atmel - only treat EBUSY as transient if backlog
- crypto: sha1-ssse3 - Disable avx2
- crypto: caam - properly set IV after {en,de}crypt
- crypto: caam - fix signals handling
- sched/fair, cpumask: Export for_each_cpu_wrap()
- sched/topology: Fix building of overlapping sched-groups
- sched/topology: Optimize build_group_mask()
- sched/topology: Fix overlapping sched_group_mask
- PM / wakeirq: Convert to SRCU
- ALSA: x86: Clear the pdata.notify_lpe_audio pointer before teardown
- PM / QoS: return -EINVAL for bogus strings
- kvm: vmx: Do not disable intercepts for BNDCFGS
- kvm: x86: Guest BNDCFGS requires guest MPX support
- kvm: vmx: Check value written to IA32_BNDCFGS
- kvm: vmx: allow host to access guest MSR_IA32_BNDCFGS
- Linux 4.11.12
* Artful update to v4.11.11 stable release (LP: #1706066)
- mqueue: fix a use-after-free in sys_mq_notify()
- proc: Fix proc_sys_prune_dcache to hold a sb reference
- locking/rwsem-spinlock: Fix EINTR branch in __down_write_common()
- staging: vt6556: vnt_start Fix missing call to vnt_key_init_table.
- staging: comedi: fix clean-up of comedi_class in comedi_init()
- crypto: caam - fix gfp allocation flags (part I)
- crypto: rsa-pkcs1pad - use constant time memory comparison for MACs
- ext4: check return value of kstrtoull correctly in reserved_clusters_store
- x86/mm/pat: Don't report PAT on CPUs that don't support it
- Linux 4.11.11
* Change CONFIG_IBMVETH to module (LP: #1704479)
- [Config] CONFIG_IBMVETH=m
* hns: use after free in hns_nic_net_xmit_hw (LP: #1704885)
- net: hns: Fix a skb used after free bug
* Opal and POWER9 DD2 (LP: #1702159)
- powerpc/powernv: Fix boot on Power8 bare metal due to opal_configure_cores()
* CVE-2017-1000364
- mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack
- mm/mmap.c: expand_downwards: don't require the gap if !vm_prev
* [Xenial] nvme: Quirks for PM1725 controllers (LP: #1704435)
- nvme: Quirks for PM1725 controllers
* bonding: stack dump when unregistering a netdev (LP: #1704102)
- bonding: avoid NETDEV_CHANGEMTU event when unregistering slave
* Ubuntu 16.04 IOB Error when the Mustang board rebooted (LP: #1693673)
- drivers: net: xgene: Fix redundant prefetch buffer cleanup
* Ubuntu16.04: NVMe 4K+T10 DIF/DIX format returns I/O error on dd with split
op (LP: #1689946)
- blk-mq: NVMe 512B/4K+T10 DIF/DIX format returns I/O error on dd with split
op
* linux >= 4.2: bonding 802.3ad does not work with 5G, 25G and 50G link speeds
(LP: #1697892)
- bonding: add 802.3ad support for 25G speeds
- bonding: fix 802.3ad support for 5G and 50G speeds
* hns: under heavy load, NIC may fail and require reboot (LP: #1704146)
- net: hns: Bugfix for Tx timeout handling in hns driver
* New ACPI identifiers for ThunderX SMMU (LP: #1703437)
- iommu/arm-smmu: Plumb in new ACPI identifiers
* Transparent hugepages should default to enabled=madvise (LP: #1703742)
- [Config] use CONFIG_TRANSPARENT_HUGEPAGE_MADVISE=y as default
* Miscellaneous Ubuntu changes
- [Config] CONFIG_CAVIUM_ERRATUM_30115=y
* Miscellaneous upstream changes
- platform/x86: thinkpad_acpi: guard generic hotkey case
- platform/x86: thinkpad_acpi: add mapping for new hotkeys
- selftest/memfd/Makefile: Fix build error
linux (4.11.0-11.16) artful; urgency=low
* linux: 4.11.0-11.16 -proposed tracker (LP: #1703901)
* Artful update to v4.11.10 stable release (LP: #1703854)
- fs: add a VALID_OPEN_FLAGS
- fs: completely ignore unknown open flags
- driver core: platform: fix race condition with driver_override
- RDMA/uverbs: Check port number supplied by user verbs cmds
- ceph: choose readdir frag based on previous readdir reply
- tracing/kprobes: Allow to create probe with a module name starting with a
digit
- usb: dwc3: replace %p with %pK
- USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick
- Add USB quirk for HVR-950q to avoid intermittent device resets
- usb: usbip: set buffer pointers to NULL after free
- usb: Fix typo in the definition of Endpoint[out]Request
- USB: core: fix device node leak
- arm: remove wrong CONFIG_PROC_SYSCTL ifdef
- pinctrl: sh-pfc: r8a7794: Swap ATA signals
- pinctrl: sh-pfc: r8a7791: Fix SCIF2 pinmux data
- pinctrl: sh-pfc: r8a7791: Add missing DVC_MUTE signal
- pinctrl: sh-pfc: r8a7795: Fix hscif2_clk_b and hscif4_ctrl
- pinctrl: meson: meson8b: fix the NAND DQS pins
- pinctrl: stm32: Fix bad function call
- pinctrl: sunxi: Fix SPDIF function name for A83T
- pinctrl: core: Fix warning by removing bogus code
- pinctrl: mxs: atomically switch mux and drive strength config
- pinctrl: sh-pfc: r8a7791: Add missing HSCIF1 pinmux data
- pinctrl: sh-pfc: Update info pointer after SoC-specific init
- USB: serial: option: add two Longcheer device ids
- USB: serial: qcserial: new Sierra Wireless EM7305 device ID
- xhci: Limit USB2 port wake support for AMD Promontory hosts
- gfs2: Fix glock rhashtable rcu bug
- Add "shutdown" to "struct class".
- tpm: Issue a TPM2_Shutdown for TPM2 devices.
- tpm: fix a kernel memory leak in tpm-sysfs.c
- x86/uaccess: Optimize copy_user_enhanced_fast_string() for short strings
- xen: avoid deadlock in xenbus driver
- crypto: drbg - Fixes panic in wait_for_completion call
- rt286: add Thinkpad Helix 2 to force_combo_jack_table
- Linux 4.11.10
* CVE-2017-10810
- drm/virtio: don't leak bo on drm_gem_object_init failure
* cxlflash update request in the Xenial SRU stream (LP: #1702521)
- scsi: cxlflash: Separate RRQ processing from the RRQ interrupt handler
- scsi: cxlflash: Serialize RRQ access and support offlevel processing
- scsi: cxlflash: Implement IRQ polling for RRQ processing
- scsi: cxlflash: Update sysfs helper routines to pass config structure
- scsi: cxlflash: Support dynamic number of FC ports
- scsi: cxlflash: Remove port configuration assumptions
- scsi: cxlflash: Hide FC internals behind common access routine
- scsi: cxlflash: SISlite updates to support 4 ports
- scsi: cxlflash: Support up to 4 ports
- scsi: cxlflash: Fence EEH during probe
- scsi: cxlflash: Remove unnecessary DMA mapping
- scsi: cxlflash: Fix power-of-two validations
- scsi: cxlflash: Fix warnings/errors
- scsi: cxlflash: Improve asynchronous interrupt processing
- scsi: cxlflash: Support multiple hardware queues
- scsi: cxlflash: Add hardware queues attribute
- scsi: cxlflash: Introduce hardware queue steering
- cxl: Enable PCI device IDs for future IBM CXL adapters
- scsi: cxlflash: Select IRQ_POLL
- scsi: cxlflash: Combine the send queue locks
- scsi: cxlflash: Update cxlflash_afu_sync() to return errno
- scsi: cxlflash: Reset hardware queue context via specified register
- scsi: cxlflash: Schedule asynchronous reset of the host
- scsi: cxlflash: Handle AFU sync failures
- scsi: cxlflash: Track pending scsi commands in each hardware queue
- scsi: cxlflash: Flush pending commands in cleanup path
- scsi: cxlflash: Add scsi command abort handler
- scsi: cxlflash: Create character device to provide host management interface
- scsi: cxlflash: Separate AFU internal command handling from AFU sync
specifics
- scsi: cxlflash: Introduce host ioctl support
- scsi: cxlflash: Refactor AFU capability checking
- scsi: cxlflash: Support LUN provisioning
- scsi: cxlflash: Support AFU debug
- scsi: cxlflash: Support WS16 unmap
- scsi: cxlflash: Remove zeroing of private command data
- scsi: cxlflash: Update TMF command processing
- scsi: cxlflash: Avoid double free of character device
- scsi: cxlflash: Update send_tmf() parameters
- scsi: cxlflash: Update debug prints in reset handlers
* make snap-pkg support (LP: #1700747)
- make snap-pkg support
* Quirk for non-compliant PCI bridge on HiSilicon D05 board (LP: #1698706)
- SAUCE: PCI: Support hibmc VGA cards behind a misbehaving HiSilicon bridge
* arm64: fix crash reading /proc/kcore (LP: #1702749)
- fs/proc: kcore: use kcore_list type to check for vmalloc/module address
- arm64: mm: select CONFIG_ARCH_PROC_KCORE_TEXT
* Opal and POWER9 DD2 (LP: #1702159)
- SAUCE: powerpc/powernv: Tell OPAL about our MMU mode on POWER9
* Data corruption with hio driver (LP: #1701316)
- SAUCE: hio: Fix incorrect use of enum req_opf values
* Artful update to v4.11.9 stable release (LP: #1702515)
- net: don't call strlen on non-terminated string in dev_set_alias()
- net: Fix inconsistent teardown and release of private netdev state.
- net: s390: fix up for "Fix inconsistent teardown and release of private
netdev state"
- mac80211: free netdev on dev_alloc_name() error
- decnet: dn_rtmsg: Improve input length sanitization in
dnrmg_receive_user_skb
- net: Zero ifla_vf_info in rtnl_fill_vfinfo()
- net: ipv6: Release route when device is unregistering
- net: vrf: Make add_fib_rules per network namespace flag
- af_unix: Add sockaddr length checks before accessing sa_family in bind and
connect handlers
- Fix an intermittent pr_emerg warning about lo becoming free.
- sctp: disable BH in sctp_for_each_endpoint
- net: caif: Fix a sleep-in-atomic bug in cfpkt_create_pfx
- net: tipc: Fix a sleep-in-atomic bug in tipc_msg_reverse
- net/mlx5: Remove several module events out of ethtool stats
- net/mlx5e: Added BW check for DIM decision mechanism
- net/mlx5e: Fix wrong indications in DIM due to counter wraparound
- net/mlx5: Enable 4K UAR only when page size is bigger than 4K
- proc: snmp6: Use correct type in memset
- igmp: acquire pmc lock for ip_mc_clear_src()
- igmp: add a missing spin_lock_init()
- qmi_wwan: new Telewell and Sierra device IDs
- net: don't global ICMP rate limit packets originating from loopback
- ipv6: fix calling in6_ifa_hold incorrectly for dad work
- sctp: return next obj by passing pos + 1 into sctp_transport_get_idx
- net/mlx5e: Fix min inline value for VF rep SQs
- net/mlx5e: Avoid doing a cleanup call if the profile doesn't have it
- net/mlx5: Wait for FW readiness before initializing command interface
- net/mlx5e: Fix timestamping capabilities reporting
- decnet: always not take dst->__refcnt when inserting dst into hash table
- net: 8021q: Fix one possible panic caused by BUG_ON in free_netdev
- ipv6: Do not leak throw route references
- rtnetlink: add IFLA_GROUP to ifla_policy
- netfilter: synproxy: fix conntrackd interaction
- NFSv4.x/callback: Create the callback service through svc_create_pooled
- xen/blkback: don't use xen_blkif_get() in xen-blkback kthread
- MIPS: head: Reorder instructions missing a delay slot
- MIPS: Avoid accidental raw backtrace
- MIPS: pm-cps: Drop manual cache-line alignment of ready_count
- MIPS: Fix IRQ tracing & lockdep when rescheduling
- ALSA: hda - Fix endless loop of codec configure
- ALSA: hda - set input_path bitmap to zero after moving it to new place
- NFSv4.2: Don't send mode again in post-EXCLUSIVE4_1 SETATTR with umask
- NFSv4.1: Fix a race in nfs4_proc_layoutget
- Revert "NFS: nfs_rename() handle -ERESTARTSYS dentry left behind"
- ovl: copy-up: don't unlock between lookup and link
- gpiolib: fix filtering out unwanted events
- x86/intel_rdt: Fix memory leak on mount failure
- perf/x86/intel/uncore: Fix wrong box pointer check
- drm/vmwgfx: Free hash table allocated by cmdbuf managed res mgr
- dm thin: do not queue freed thin mapping for next stage processing
- x86/mm: Fix boot crash caused by incorrect loop count calculation in
sync_global_pgds()
- mm/vmalloc.c: huge-vmap: fail gracefully on unexpected huge vmap mappings
- xen/blkback: don't free be structure too early
- xfrm6: Fix IPv6 payload_len in xfrm6_transport_finish
- xfrm: move xfrm_garbage_collect out of xfrm_policy_flush
- xfrm: fix stack access out of bounds with CONFIG_XFRM_SUB_POLICY
- xfrm: NULL dereference on allocation failure
- xfrm: Oops on error in pfkey_msg2xfrm_state()
- watchdog: bcm281xx: Fix use of uninitialized spinlock.
- ARM64: PCI: Fix struct acpi_pci_root_ops allocation failure path
- ARM64/ACPI: Fix BAD_MADT_GICC_ENTRY() macro implementation
- ARM: 8685/1: ensure memblock-limit is pmd-aligned
- ARM: davinci: PM: Free resources in error handling path in 'davinci_pm_init'
- ARM: davinci: PM: Do not free useful resources in normal path in
'davinci_pm_init'
- tools arch: Sync arch/x86/lib/memcpy_64.S with the kernel
- Revert "x86/entry: Fix the end of the stack for newly forked tasks"
- x86/mshyperv: Remove excess #includes from mshyperv.h
- x86/boot/KASLR: Fix kexec crash due to 'virt_addr' calculation bug
- perf/x86: Fix spurious NMI with PEBS Load Latency event
- x86/mpx: Correctly report do_mpx_bt_fault() failures to user-space
- x86/mm: Fix flush_tlb_page() on Xen
- ocfs2: o2hb: revert hb threshold to keep compatible
- ocfs2: fix deadlock caused by recursive locking in xattr
- iommu/dma: Don't reserve PCI I/O windows
- iommu/amd: Fix incorrect error handling in amd_iommu_bind_pasid()
- iommu/amd: Fix interrupt remapping when disable guest_mode
- infiniband: hns: avoid gcc-7.0.1 warning for uninitialized data
- mtd: nand: brcmnand: Check flash #WP pin status before nand erase/program
- mtd: nand: fsmc: fix NAND width handling
- KVM: x86: fix emulation of RSM and IRET instructions
- KVM: x86/vPMU: fix undefined shift in intel_pmu_refresh()
- KVM: x86: zero base3 of unusable segments
- KVM: nVMX: Fix exception injection
- esp4: Fix udpencap for local TCP packets.
- hsi: Fix build regression due to netdev destructor fix.
- Linux 4.11.9
* update ENA driver to 1.2.0k from net-next (LP: #1701575)
- net/ena: switch to pci_alloc_irq_vectors
- net: ena: fix rare uncompleted admin command false alarm
- net: ena: fix bug that might cause hang after consecutive open/close
interface.
- net: ena: add missing return when ena_com_get_io_handlers() fails
- net: ena: fix race condition between submit and completion admin command
- net: ena: add missing unmap bars on device removal
- net: ena: fix theoretical Rx hang on low memory systems
- net: ena: disable admin msix while working in polling mode
- net: ena: bug fix in lost tx packets detection mechanism
- net: ena: update ena driver to version 1.1.7
- net: ena: change return value for unsupported features unsupported return
value
- net: ena: add hardware hints capability to the driver
- net: ena: change sizeof() argument to be the type pointer
- net: ena: add reset reason for each device FLR
- net: ena: add support for out of order rx buffers refill
- net: ena: allow the driver to work with small number of msix vectors
- net: ena: use napi_schedule_irqoff when possible
- net: ena: separate skb allocation to dedicated function
- net: ena: use lower_32_bits()/upper_32_bits() to split dma address
- net: ena: update driver's rx drop statistics
- net: ena: update ena driver to version 1.2.0
* APST gets enabled against explicit kernel option (LP: #1699004)
- nvme: Display raw APST configuration via DYNAMIC_DEBUG
- nvme: Add nvme_core.force_apst to ignore the NO_APST quirk
- nvme: explicitly disable APST on quirked devices
* New NVLINK2 patches (LP: #1701272)
- powerpc/powernv/npu-dma: Add explicit flush when sending an ATSD
- powerpc/npu-dma: Remove spurious WARN_ON when a PCI device has no of_node
* ERAT invalidate on context switch removal (LP: #1700819)
- powerpc: Only do ERAT invalidate on radix context switch on P9 DD1
* Miscellaneous Ubuntu changes
- SAUCE: (noup) Update spl to 0.6.5.10-1, zfs to 0.6.5.10-1ubuntu2
- snapcraft.yaml: Sync with xenial
* Miscellaneous upstream changes
- Revert "UBUNTU: SAUCE: (efi-lockdown) efi: Add sysctls for secureboot and
MokSBState"
-- Thadeu Lima de Souza Cascardo <email address hidden> Tue, 01 Aug 2017 19:35:17 -0300
-
linux (4.11.0-12.18) artful; urgency=low
* linux: 4.11.0-12.18 -proposed tracker (LP: #1707635)
- no change rebuild to pick up the new binutils.
* Adt tests of src:linux time out often on armhf lxc containers (LP: #1705495)
- [Packaging] tests -- reduce rebuild test to one flavour
- [Packaging] tests -- reduce rebuild test to one flavour -- use filter
* [ARM64] config EDAC_GHES=y depends on EDAC_MM_EDAC=y (LP: #1706141)
- [Config] set EDAC_MM_EDAC=y for ARM64
* [Hyper-V] hv_netvsc: Exclude non-TCP port numbers from vRSS hashing
(LP: #1690174)
- hv_netvsc: Exclude non-TCP port numbers from vRSS hashing
* ath10k doesn't report full RSSI information (LP: #1706531)
- ath10k: add per chain RSSI reporting
* ideapad_laptop don't support v310-14isk (LP: #1705378)
- platform/x86: ideapad-laptop: Add several models to no_hw_rfkill
* Ubuntu 16.04.3: Qemu fails on P9 (LP: #1686019)
- KVM: PPC: Pass kvm* to kvmppc_find_table()
- KVM: PPC: Use preregistered memory API to access TCE list
- KVM: PPC: VFIO: Add in-kernel acceleration for VFIO
- powerpc/powernv/iommu: Add real mode version of iommu_table_ops::exchange()
- powerpc/iommu/vfio_spapr_tce: Cleanup iommu_table disposal
- powerpc/vfio_spapr_tce: Add reference counting to iommu_table
- powerpc/mmu: Add real mode support for IOMMU preregistered memory
- KVM: PPC: Reserve KVM_CAP_SPAPR_TCE_VFIO capability number
- KVM: PPC: Book3S HV: Add radix checks in real-mode hypercall handlers
* hns: ethtool selftest crashes system (LP: #1705712)
- net/hns:bugfix of ethtool -t phy self_test
* ThunderX: soft lockup on 4.8+ kernels when running qemu-efi with vhost=on
(LP: #1673564)
- KVM: arm/arm64: vgic-v3: Use PREbits to infer the number of ICH_APxRn_EL2
registers
- KVM: arm/arm64: vgic-v3: Fix nr_pre_bits bitfield extraction
- arm64: Add a facility to turn an ESR syndrome into a sysreg encoding
- KVM: arm/arm64: vgic-v3: Add accessors for the ICH_APxRn_EL2 registers
- KVM: arm64: Make kvm_condition_valid32() accessible from EL2
- KVM: arm64: vgic-v3: Add hook to handle guest GICv3 sysreg accesses at EL2
- KVM: arm64: vgic-v3: Add ICV_BPR1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_IGRPEN1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_IAR1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_EOIR1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_AP1Rn_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_HPPIR1_EL1 handler
- KVM: arm64: vgic-v3: Enable trapping of Group-1 system registers
- KVM: arm64: Enable GICv3 Group-1 sysreg trapping via command-line
- KVM: arm64: vgic-v3: Add ICV_BPR0_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_IGNREN0_EL1 handler
- KVM: arm64: vgic-v3: Add misc Group-0 handlers
- KVM: arm64: vgic-v3: Enable trapping of Group-0 system registers
- KVM: arm64: Enable GICv3 Group-0 sysreg trapping via command-line
- arm64: Add MIDR values for Cavium cn83XX SoCs
- arm64: Add workaround for Cavium Thunder erratum 30115
- KVM: arm64: vgic-v3: Add ICV_DIR_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_RPR_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_CTLR_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_PMR_EL1 handler
- KVM: arm64: Enable GICv3 common sysreg trapping via command-line
- KVM: arm64: vgic-v3: Log which GICv3 system registers are trapped
- arm64: KVM: Make unexpected reads from WO registers inject an undef
- KVM: arm64: Log an error if trapping a read-from-write-only GICv3 access
- KVM: arm64: Log an error if trapping a write-to-read-only GICv3 access
* ath9k freezes suspend resume Ubuntu 17.04 (LP: #1697027)
- ath9k: fix an invalid pointer dereference in ath9k_rng_stop()
* xhci_hcd: ERROR Transfer event TRB DMA ptr not part of current TD ep_index 2
comp_code 13 (LP: #1667750)
- xhci: Bad Ethernet performance plugged in ASM1042A host
* Migrating KSM page causes the VM lock up as the KSM page merging list is too
large (LP: #1680513)
- ksm: introduce ksm_max_page_sharing per page deduplication limit
- ksm: fix use after free with merge_across_nodes = 0
- ksm: cleanup stable_node chain collapse case
- ksm: swap the two output parameters of chain/chain_prune
- ksm: optimize refile of stable_node_dup at the head of the chain
* Artful update to v4.11.12 stable release (LP: #1706067)
- net/phy: micrel: configure intterupts after autoneg workaround
- ipv6: avoid unregistering inet6_dev for loopback
- netvsc: don't access netdev->num_rx_queues directly
- sfc: Fix MCDI command size for filter operations
- net: account for current skb length when deciding about UFO
- net: dp83640: Avoid NULL pointer dereference.
- tcp: reset sk_rx_dst in tcp_disconnect()
- net: prevent sign extension in dev_get_stats()
- virtio-net: serialize tx routine during reset
- net: sched: Fix one possible panic when no destroy callback
- mlxsw: spectrum_router: Fix NULL pointer dereference
- rocker: move dereference before free
- bpf: prevent leaking pointer via xadd on unpriviledged
- net: handle NAPI_GRO_FREE_STOLEN_HEAD case also in napi_frags_finish()
- net/mlx5: Cancel delayed recovery work when unloading the driver
- net/mlx5e: Fix TX carrier errors report in get stats ndo
- ipv6: dad: don't remove dynamic addresses if link is down
- vxlan: fix hlist corruption
- geneve: fix hlist corruption
- net: core: Fix slab-out-of-bounds in netdev_stats_to_stats64
- liquidio: fix bug in soft reset failure detection
- net: ipv6: Compare lwstate in detecting duplicate nexthops
- vrf: fix bug_on triggered by rx when destroying a vrf
- rds: tcp: use sock_create_lite() to create the accept socket
- net/mlx5e: Initialize CEE's getpermhwaddr address buffer to 0xff
- cxgb4: fix BUG() on interrupt deallocating path of ULD
- tap: convert a mutex to a spinlock
- bridge: mdb: fix leak on complete_info ptr on fail path
- brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx()
- sfc: don't read beyond unicast address list
- Adding asm-prototypes.h for genksyms to generate crc
- sed regex in Makefile.build requires line break between exported symbols
- Adding the type of exported symbols
- sparc64: Fix gup_huge_pmd
- block: Fix a blk_exit_rl() regression
- brcmfmac: Fix a memory leak in error handling path in
'brcmf_cfg80211_attach'
- brcmfmac: Fix glom_skb leak in brcmf_sdiod_recv_chain
- efi: Process the MEMATTR table only if EFI_MEMMAP is enabled
- cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE
- cfg80211: Validate frequencies nested in NL80211_ATTR_SCAN_FREQUENCIES
- cfg80211: Check if PMKID attribute is of expected size
- cfg80211: Check if NAN service ID is of expected size
- drm/amdgpu/gfx6: properly cache mc_arb_ramcfg
- irqchip/gic-v3: Fix out-of-bound access in gic_set_affinity
- parisc: Report SIGSEGV instead of SIGBUS when running out of stack
- parisc: use compat_sys_keyctl()
- parisc: DMA API: return error instead of BUG_ON for dma ops on non dma devs
- parisc/mm: Ensure IRQs are off in switch_mm()
- tools/lib/lockdep: Reduce MAX_LOCK_DEPTH to avoid overflowing lock_chain/:
Depth
- thp, mm: fix crash due race in MADV_FREE handling
- kernel/extable.c: mark core_kernel_text notrace
- mm/list_lru.c: fix list_lru_count_node() to be race free
- fs/dcache.c: fix spin lockup issue on nlru->lock
- checkpatch: silence perl 5.26.0 unescaped left brace warnings
- binfmt_elf: use ELF_ET_DYN_BASE only for PIE
- arm: move ELF_ET_DYN_BASE to 4MB
- arm64: move ELF_ET_DYN_BASE to 4GB / 4MB
- powerpc: move ELF_ET_DYN_BASE to 4GB / 4MB
- s390: reduce ELF_ET_DYN_BASE
- exec: Limit arg stack to at most 75% of _STK_LIM
- powerpc/kexec: Fix radix to hash kexec due to IAMR/AMOR
- ARM64: dts: marvell: armada37xx: Fix timer interrupt specifiers
- arm64: Preventing READ_IMPLIES_EXEC propagation
- vt: fix unchecked __put_user() in tioclinux ioctls
- rcu: Add memory barriers for NOCB leader wakeup
- nvmem: core: fix leaks on registration errors
- Drivers: hv: vmbus: Close timing hole that can corrupt per-cpu page
- mnt: In umount propagation reparent in a separate pass
- mnt: In propgate_umount handle visiting mounts in any order
- mnt: Make propagate_umount less slow for overlapping mount propagation trees
- selftests/capabilities: Fix the test_execve test
- mm: fix overflow check in expand_upwards()
- crypto: talitos - Extend max key length for SHA384/512-HMAC and AEAD
- crypto: atmel - only treat EBUSY as transient if backlog
- crypto: sha1-ssse3 - Disable avx2
- crypto: caam - properly set IV after {en,de}crypt
- crypto: caam - fix signals handling
- sched/fair, cpumask: Export for_each_cpu_wrap()
- sched/topology: Fix building of overlapping sched-groups
- sched/topology: Optimize build_group_mask()
- sched/topology: Fix overlapping sched_group_mask
- PM / wakeirq: Convert to SRCU
- ALSA: x86: Clear the pdata.notify_lpe_audio pointer before teardown
- PM / QoS: return -EINVAL for bogus strings
- kvm: vmx: Do not disable intercepts for BNDCFGS
- kvm: x86: Guest BNDCFGS requires guest MPX support
- kvm: vmx: Check value written to IA32_BNDCFGS
- kvm: vmx: allow host to access guest MSR_IA32_BNDCFGS
- Linux 4.11.12
* Artful update to v4.11.11 stable release (LP: #1706066)
- mqueue: fix a use-after-free in sys_mq_notify()
- proc: Fix proc_sys_prune_dcache to hold a sb reference
- locking/rwsem-spinlock: Fix EINTR branch in __down_write_common()
- staging: vt6556: vnt_start Fix missing call to vnt_key_init_table.
- staging: comedi: fix clean-up of comedi_class in comedi_init()
- crypto: caam - fix gfp allocation flags (part I)
- crypto: rsa-pkcs1pad - use constant time memory comparison for MACs
- ext4: check return value of kstrtoull correctly in reserved_clusters_store
- x86/mm/pat: Don't report PAT on CPUs that don't support it
- Linux 4.11.11
* Change CONFIG_IBMVETH to module (LP: #1704479)
- [Config] CONFIG_IBMVETH=m
* hns: use after free in hns_nic_net_xmit_hw (LP: #1704885)
- net: hns: Fix a skb used after free bug
* Opal and POWER9 DD2 (LP: #1702159)
- powerpc/powernv: Fix boot on Power8 bare metal due to opal_configure_cores()
* CVE-2017-1000364
- mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack
- mm/mmap.c: expand_downwards: don't require the gap if !vm_prev
* [Xenial] nvme: Quirks for PM1725 controllers (LP: #1704435)
- nvme: Quirks for PM1725 controllers
* bonding: stack dump when unregistering a netdev (LP: #1704102)
- bonding: avoid NETDEV_CHANGEMTU event when unregistering slave
* Ubuntu 16.04 IOB Error when the Mustang board rebooted (LP: #1693673)
- drivers: net: xgene: Fix redundant prefetch buffer cleanup
* Ubuntu16.04: NVMe 4K+T10 DIF/DIX format returns I/O error on dd with split
op (LP: #1689946)
- blk-mq: NVMe 512B/4K+T10 DIF/DIX format returns I/O error on dd with split
op
* linux >= 4.2: bonding 802.3ad does not work with 5G, 25G and 50G link speeds
(LP: #1697892)
- bonding: add 802.3ad support for 25G speeds
- bonding: fix 802.3ad support for 5G and 50G speeds
* hns: under heavy load, NIC may fail and require reboot (LP: #1704146)
- net: hns: Bugfix for Tx timeout handling in hns driver
* New ACPI identifiers for ThunderX SMMU (LP: #1703437)
- iommu/arm-smmu: Plumb in new ACPI identifiers
* Transparent hugepages should default to enabled=madvise (LP: #1703742)
- [Config] use CONFIG_TRANSPARENT_HUGEPAGE_MADVISE=y as default
* Miscellaneous Ubuntu changes
- [Config] CONFIG_CAVIUM_ERRATUM_30115=y
* Miscellaneous upstream changes
- platform/x86: thinkpad_acpi: guard generic hotkey case
- platform/x86: thinkpad_acpi: add mapping for new hotkeys
- selftest/memfd/Makefile: Fix build error
-- Seth Forshee <email address hidden> Thu, 13 Jul 2017 10:19:08 -0500
-
linux (4.11.0-12.17) artful; urgency=low
* linux: 4.11.0-12.17 -proposed tracker (LP: #1707157)
* Adt tests of src:linux time out often on armhf lxc containers (LP: #1705495)
- [Packaging] tests -- reduce rebuild test to one flavour
- [Packaging] tests -- reduce rebuild test to one flavour -- use filter
* [ARM64] config EDAC_GHES=y depends on EDAC_MM_EDAC=y (LP: #1706141)
- [Config] set EDAC_MM_EDAC=y for ARM64
* [Hyper-V] hv_netvsc: Exclude non-TCP port numbers from vRSS hashing
(LP: #1690174)
- hv_netvsc: Exclude non-TCP port numbers from vRSS hashing
* ath10k doesn't report full RSSI information (LP: #1706531)
- ath10k: add per chain RSSI reporting
* ideapad_laptop don't support v310-14isk (LP: #1705378)
- platform/x86: ideapad-laptop: Add several models to no_hw_rfkill
* Ubuntu 16.04.3: Qemu fails on P9 (LP: #1686019)
- KVM: PPC: Pass kvm* to kvmppc_find_table()
- KVM: PPC: Use preregistered memory API to access TCE list
- KVM: PPC: VFIO: Add in-kernel acceleration for VFIO
- powerpc/powernv/iommu: Add real mode version of iommu_table_ops::exchange()
- powerpc/iommu/vfio_spapr_tce: Cleanup iommu_table disposal
- powerpc/vfio_spapr_tce: Add reference counting to iommu_table
- powerpc/mmu: Add real mode support for IOMMU preregistered memory
- KVM: PPC: Reserve KVM_CAP_SPAPR_TCE_VFIO capability number
- KVM: PPC: Book3S HV: Add radix checks in real-mode hypercall handlers
* hns: ethtool selftest crashes system (LP: #1705712)
- net/hns:bugfix of ethtool -t phy self_test
* ThunderX: soft lockup on 4.8+ kernels when running qemu-efi with vhost=on
(LP: #1673564)
- KVM: arm/arm64: vgic-v3: Use PREbits to infer the number of ICH_APxRn_EL2
registers
- KVM: arm/arm64: vgic-v3: Fix nr_pre_bits bitfield extraction
- arm64: Add a facility to turn an ESR syndrome into a sysreg encoding
- KVM: arm/arm64: vgic-v3: Add accessors for the ICH_APxRn_EL2 registers
- KVM: arm64: Make kvm_condition_valid32() accessible from EL2
- KVM: arm64: vgic-v3: Add hook to handle guest GICv3 sysreg accesses at EL2
- KVM: arm64: vgic-v3: Add ICV_BPR1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_IGRPEN1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_IAR1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_EOIR1_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_AP1Rn_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_HPPIR1_EL1 handler
- KVM: arm64: vgic-v3: Enable trapping of Group-1 system registers
- KVM: arm64: Enable GICv3 Group-1 sysreg trapping via command-line
- KVM: arm64: vgic-v3: Add ICV_BPR0_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_IGNREN0_EL1 handler
- KVM: arm64: vgic-v3: Add misc Group-0 handlers
- KVM: arm64: vgic-v3: Enable trapping of Group-0 system registers
- KVM: arm64: Enable GICv3 Group-0 sysreg trapping via command-line
- arm64: Add MIDR values for Cavium cn83XX SoCs
- arm64: Add workaround for Cavium Thunder erratum 30115
- KVM: arm64: vgic-v3: Add ICV_DIR_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_RPR_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_CTLR_EL1 handler
- KVM: arm64: vgic-v3: Add ICV_PMR_EL1 handler
- KVM: arm64: Enable GICv3 common sysreg trapping via command-line
- KVM: arm64: vgic-v3: Log which GICv3 system registers are trapped
- arm64: KVM: Make unexpected reads from WO registers inject an undef
- KVM: arm64: Log an error if trapping a read-from-write-only GICv3 access
- KVM: arm64: Log an error if trapping a write-to-read-only GICv3 access
* ath9k freezes suspend resume Ubuntu 17.04 (LP: #1697027)
- ath9k: fix an invalid pointer dereference in ath9k_rng_stop()
* xhci_hcd: ERROR Transfer event TRB DMA ptr not part of current TD ep_index 2
comp_code 13 (LP: #1667750)
- xhci: Bad Ethernet performance plugged in ASM1042A host
* Migrating KSM page causes the VM lock up as the KSM page merging list is too
large (LP: #1680513)
- ksm: introduce ksm_max_page_sharing per page deduplication limit
- ksm: fix use after free with merge_across_nodes = 0
- ksm: cleanup stable_node chain collapse case
- ksm: swap the two output parameters of chain/chain_prune
- ksm: optimize refile of stable_node_dup at the head of the chain
* Artful update to v4.11.12 stable release (LP: #1706067)
- net/phy: micrel: configure intterupts after autoneg workaround
- ipv6: avoid unregistering inet6_dev for loopback
- netvsc: don't access netdev->num_rx_queues directly
- sfc: Fix MCDI command size for filter operations
- net: account for current skb length when deciding about UFO
- net: dp83640: Avoid NULL pointer dereference.
- tcp: reset sk_rx_dst in tcp_disconnect()
- net: prevent sign extension in dev_get_stats()
- virtio-net: serialize tx routine during reset
- net: sched: Fix one possible panic when no destroy callback
- mlxsw: spectrum_router: Fix NULL pointer dereference
- rocker: move dereference before free
- bpf: prevent leaking pointer via xadd on unpriviledged
- net: handle NAPI_GRO_FREE_STOLEN_HEAD case also in napi_frags_finish()
- net/mlx5: Cancel delayed recovery work when unloading the driver
- net/mlx5e: Fix TX carrier errors report in get stats ndo
- ipv6: dad: don't remove dynamic addresses if link is down
- vxlan: fix hlist corruption
- geneve: fix hlist corruption
- net: core: Fix slab-out-of-bounds in netdev_stats_to_stats64
- liquidio: fix bug in soft reset failure detection
- net: ipv6: Compare lwstate in detecting duplicate nexthops
- vrf: fix bug_on triggered by rx when destroying a vrf
- rds: tcp: use sock_create_lite() to create the accept socket
- net/mlx5e: Initialize CEE's getpermhwaddr address buffer to 0xff
- cxgb4: fix BUG() on interrupt deallocating path of ULD
- tap: convert a mutex to a spinlock
- bridge: mdb: fix leak on complete_info ptr on fail path
- brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx()
- sfc: don't read beyond unicast address list
- Adding asm-prototypes.h for genksyms to generate crc
- sed regex in Makefile.build requires line break between exported symbols
- Adding the type of exported symbols
- sparc64: Fix gup_huge_pmd
- block: Fix a blk_exit_rl() regression
- brcmfmac: Fix a memory leak in error handling path in
'brcmf_cfg80211_attach'
- brcmfmac: Fix glom_skb leak in brcmf_sdiod_recv_chain
- efi: Process the MEMATTR table only if EFI_MEMMAP is enabled
- cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE
- cfg80211: Validate frequencies nested in NL80211_ATTR_SCAN_FREQUENCIES
- cfg80211: Check if PMKID attribute is of expected size
- cfg80211: Check if NAN service ID is of expected size
- drm/amdgpu/gfx6: properly cache mc_arb_ramcfg
- irqchip/gic-v3: Fix out-of-bound access in gic_set_affinity
- parisc: Report SIGSEGV instead of SIGBUS when running out of stack
- parisc: use compat_sys_keyctl()
- parisc: DMA API: return error instead of BUG_ON for dma ops on non dma devs
- parisc/mm: Ensure IRQs are off in switch_mm()
- tools/lib/lockdep: Reduce MAX_LOCK_DEPTH to avoid overflowing lock_chain/:
Depth
- thp, mm: fix crash due race in MADV_FREE handling
- kernel/extable.c: mark core_kernel_text notrace
- mm/list_lru.c: fix list_lru_count_node() to be race free
- fs/dcache.c: fix spin lockup issue on nlru->lock
- checkpatch: silence perl 5.26.0 unescaped left brace warnings
- binfmt_elf: use ELF_ET_DYN_BASE only for PIE
- arm: move ELF_ET_DYN_BASE to 4MB
- arm64: move ELF_ET_DYN_BASE to 4GB / 4MB
- powerpc: move ELF_ET_DYN_BASE to 4GB / 4MB
- s390: reduce ELF_ET_DYN_BASE
- exec: Limit arg stack to at most 75% of _STK_LIM
- powerpc/kexec: Fix radix to hash kexec due to IAMR/AMOR
- ARM64: dts: marvell: armada37xx: Fix timer interrupt specifiers
- arm64: Preventing READ_IMPLIES_EXEC propagation
- vt: fix unchecked __put_user() in tioclinux ioctls
- rcu: Add memory barriers for NOCB leader wakeup
- nvmem: core: fix leaks on registration errors
- Drivers: hv: vmbus: Close timing hole that can corrupt per-cpu page
- mnt: In umount propagation reparent in a separate pass
- mnt: In propgate_umount handle visiting mounts in any order
- mnt: Make propagate_umount less slow for overlapping mount propagation trees
- selftests/capabilities: Fix the test_execve test
- mm: fix overflow check in expand_upwards()
- crypto: talitos - Extend max key length for SHA384/512-HMAC and AEAD
- crypto: atmel - only treat EBUSY as transient if backlog
- crypto: sha1-ssse3 - Disable avx2
- crypto: caam - properly set IV after {en,de}crypt
- crypto: caam - fix signals handling
- sched/fair, cpumask: Export for_each_cpu_wrap()
- sched/topology: Fix building of overlapping sched-groups
- sched/topology: Optimize build_group_mask()
- sched/topology: Fix overlapping sched_group_mask
- PM / wakeirq: Convert to SRCU
- ALSA: x86: Clear the pdata.notify_lpe_audio pointer before teardown
- PM / QoS: return -EINVAL for bogus strings
- kvm: vmx: Do not disable intercepts for BNDCFGS
- kvm: x86: Guest BNDCFGS requires guest MPX support
- kvm: vmx: Check value written to IA32_BNDCFGS
- kvm: vmx: allow host to access guest MSR_IA32_BNDCFGS
- Linux 4.11.12
* Artful update to v4.11.11 stable release (LP: #1706066)
- mqueue: fix a use-after-free in sys_mq_notify()
- proc: Fix proc_sys_prune_dcache to hold a sb reference
- locking/rwsem-spinlock: Fix EINTR branch in __down_write_common()
- staging: vt6556: vnt_start Fix missing call to vnt_key_init_table.
- staging: comedi: fix clean-up of comedi_class in comedi_init()
- crypto: caam - fix gfp allocation flags (part I)
- crypto: rsa-pkcs1pad - use constant time memory comparison for MACs
- ext4: check return value of kstrtoull correctly in reserved_clusters_store
- x86/mm/pat: Don't report PAT on CPUs that don't support it
- Linux 4.11.11
* Change CONFIG_IBMVETH to module (LP: #1704479)
- [Config] CONFIG_IBMVETH=m
* hns: use after free in hns_nic_net_xmit_hw (LP: #1704885)
- net: hns: Fix a skb used after free bug
* Opal and POWER9 DD2 (LP: #1702159)
- powerpc/powernv: Fix boot on Power8 bare metal due to opal_configure_cores()
* CVE-2017-1000364
- mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack
- mm/mmap.c: expand_downwards: don't require the gap if !vm_prev
* [Xenial] nvme: Quirks for PM1725 controllers (LP: #1704435)
- nvme: Quirks for PM1725 controllers
* bonding: stack dump when unregistering a netdev (LP: #1704102)
- bonding: avoid NETDEV_CHANGEMTU event when unregistering slave
* Ubuntu 16.04 IOB Error when the Mustang board rebooted (LP: #1693673)
- drivers: net: xgene: Fix redundant prefetch buffer cleanup
* Ubuntu16.04: NVMe 4K+T10 DIF/DIX format returns I/O error on dd with split
op (LP: #1689946)
- blk-mq: NVMe 512B/4K+T10 DIF/DIX format returns I/O error on dd with split
op
* linux >= 4.2: bonding 802.3ad does not work with 5G, 25G and 50G link speeds
(LP: #1697892)
- bonding: add 802.3ad support for 25G speeds
- bonding: fix 802.3ad support for 5G and 50G speeds
* hns: under heavy load, NIC may fail and require reboot (LP: #1704146)
- net: hns: Bugfix for Tx timeout handling in hns driver
* New ACPI identifiers for ThunderX SMMU (LP: #1703437)
- iommu/arm-smmu: Plumb in new ACPI identifiers
* Transparent hugepages should default to enabled=madvise (LP: #1703742)
- [Config] use CONFIG_TRANSPARENT_HUGEPAGE_MADVISE=y as default
* Miscellaneous Ubuntu changes
- [Config] CONFIG_CAVIUM_ERRATUM_30115=y
* Miscellaneous upstream changes
- platform/x86: thinkpad_acpi: guard generic hotkey case
- platform/x86: thinkpad_acpi: add mapping for new hotkeys
- selftest/memfd/Makefile: Fix build error
-- Seth Forshee <email address hidden> Thu, 13 Jul 2017 10:19:08 -0500
-
linux (4.11.0-11.16) artful; urgency=low
* linux: 4.11.0-11.16 -proposed tracker (LP: #1703901)
* Artful update to v4.11.10 stable release (LP: #1703854)
- fs: add a VALID_OPEN_FLAGS
- fs: completely ignore unknown open flags
- driver core: platform: fix race condition with driver_override
- RDMA/uverbs: Check port number supplied by user verbs cmds
- ceph: choose readdir frag based on previous readdir reply
- tracing/kprobes: Allow to create probe with a module name starting with a
digit
- usb: dwc3: replace %p with %pK
- USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick
- Add USB quirk for HVR-950q to avoid intermittent device resets
- usb: usbip: set buffer pointers to NULL after free
- usb: Fix typo in the definition of Endpoint[out]Request
- USB: core: fix device node leak
- arm: remove wrong CONFIG_PROC_SYSCTL ifdef
- pinctrl: sh-pfc: r8a7794: Swap ATA signals
- pinctrl: sh-pfc: r8a7791: Fix SCIF2 pinmux data
- pinctrl: sh-pfc: r8a7791: Add missing DVC_MUTE signal
- pinctrl: sh-pfc: r8a7795: Fix hscif2_clk_b and hscif4_ctrl
- pinctrl: meson: meson8b: fix the NAND DQS pins
- pinctrl: stm32: Fix bad function call
- pinctrl: sunxi: Fix SPDIF function name for A83T
- pinctrl: core: Fix warning by removing bogus code
- pinctrl: mxs: atomically switch mux and drive strength config
- pinctrl: sh-pfc: r8a7791: Add missing HSCIF1 pinmux data
- pinctrl: sh-pfc: Update info pointer after SoC-specific init
- USB: serial: option: add two Longcheer device ids
- USB: serial: qcserial: new Sierra Wireless EM7305 device ID
- xhci: Limit USB2 port wake support for AMD Promontory hosts
- gfs2: Fix glock rhashtable rcu bug
- Add "shutdown" to "struct class".
- tpm: Issue a TPM2_Shutdown for TPM2 devices.
- tpm: fix a kernel memory leak in tpm-sysfs.c
- x86/uaccess: Optimize copy_user_enhanced_fast_string() for short strings
- xen: avoid deadlock in xenbus driver
- crypto: drbg - Fixes panic in wait_for_completion call
- rt286: add Thinkpad Helix 2 to force_combo_jack_table
- Linux 4.11.10
* CVE-2017-10810
- drm/virtio: don't leak bo on drm_gem_object_init failure
* cxlflash update request in the Xenial SRU stream (LP: #1702521)
- scsi: cxlflash: Separate RRQ processing from the RRQ interrupt handler
- scsi: cxlflash: Serialize RRQ access and support offlevel processing
- scsi: cxlflash: Implement IRQ polling for RRQ processing
- scsi: cxlflash: Update sysfs helper routines to pass config structure
- scsi: cxlflash: Support dynamic number of FC ports
- scsi: cxlflash: Remove port configuration assumptions
- scsi: cxlflash: Hide FC internals behind common access routine
- scsi: cxlflash: SISlite updates to support 4 ports
- scsi: cxlflash: Support up to 4 ports
- scsi: cxlflash: Fence EEH during probe
- scsi: cxlflash: Remove unnecessary DMA mapping
- scsi: cxlflash: Fix power-of-two validations
- scsi: cxlflash: Fix warnings/errors
- scsi: cxlflash: Improve asynchronous interrupt processing
- scsi: cxlflash: Support multiple hardware queues
- scsi: cxlflash: Add hardware queues attribute
- scsi: cxlflash: Introduce hardware queue steering
- cxl: Enable PCI device IDs for future IBM CXL adapters
- scsi: cxlflash: Select IRQ_POLL
- scsi: cxlflash: Combine the send queue locks
- scsi: cxlflash: Update cxlflash_afu_sync() to return errno
- scsi: cxlflash: Reset hardware queue context via specified register
- scsi: cxlflash: Schedule asynchronous reset of the host
- scsi: cxlflash: Handle AFU sync failures
- scsi: cxlflash: Track pending scsi commands in each hardware queue
- scsi: cxlflash: Flush pending commands in cleanup path
- scsi: cxlflash: Add scsi command abort handler
- scsi: cxlflash: Create character device to provide host management interface
- scsi: cxlflash: Separate AFU internal command handling from AFU sync
specifics
- scsi: cxlflash: Introduce host ioctl support
- scsi: cxlflash: Refactor AFU capability checking
- scsi: cxlflash: Support LUN provisioning
- scsi: cxlflash: Support AFU debug
- scsi: cxlflash: Support WS16 unmap
- scsi: cxlflash: Remove zeroing of private command data
- scsi: cxlflash: Update TMF command processing
- scsi: cxlflash: Avoid double free of character device
- scsi: cxlflash: Update send_tmf() parameters
- scsi: cxlflash: Update debug prints in reset handlers
* make snap-pkg support (LP: #1700747)
- make snap-pkg support
* Quirk for non-compliant PCI bridge on HiSilicon D05 board (LP: #1698706)
- SAUCE: PCI: Support hibmc VGA cards behind a misbehaving HiSilicon bridge
* arm64: fix crash reading /proc/kcore (LP: #1702749)
- fs/proc: kcore: use kcore_list type to check for vmalloc/module address
- arm64: mm: select CONFIG_ARCH_PROC_KCORE_TEXT
* Opal and POWER9 DD2 (LP: #1702159)
- SAUCE: powerpc/powernv: Tell OPAL about our MMU mode on POWER9
* Data corruption with hio driver (LP: #1701316)
- SAUCE: hio: Fix incorrect use of enum req_opf values
* Artful update to v4.11.9 stable release (LP: #1702515)
- net: don't call strlen on non-terminated string in dev_set_alias()
- net: Fix inconsistent teardown and release of private netdev state.
- net: s390: fix up for "Fix inconsistent teardown and release of private
netdev state"
- mac80211: free netdev on dev_alloc_name() error
- decnet: dn_rtmsg: Improve input length sanitization in
dnrmg_receive_user_skb
- net: Zero ifla_vf_info in rtnl_fill_vfinfo()
- net: ipv6: Release route when device is unregistering
- net: vrf: Make add_fib_rules per network namespace flag
- af_unix: Add sockaddr length checks before accessing sa_family in bind and
connect handlers
- Fix an intermittent pr_emerg warning about lo becoming free.
- sctp: disable BH in sctp_for_each_endpoint
- net: caif: Fix a sleep-in-atomic bug in cfpkt_create_pfx
- net: tipc: Fix a sleep-in-atomic bug in tipc_msg_reverse
- net/mlx5: Remove several module events out of ethtool stats
- net/mlx5e: Added BW check for DIM decision mechanism
- net/mlx5e: Fix wrong indications in DIM due to counter wraparound
- net/mlx5: Enable 4K UAR only when page size is bigger than 4K
- proc: snmp6: Use correct type in memset
- igmp: acquire pmc lock for ip_mc_clear_src()
- igmp: add a missing spin_lock_init()
- qmi_wwan: new Telewell and Sierra device IDs
- net: don't global ICMP rate limit packets originating from loopback
- ipv6: fix calling in6_ifa_hold incorrectly for dad work
- sctp: return next obj by passing pos + 1 into sctp_transport_get_idx
- net/mlx5e: Fix min inline value for VF rep SQs
- net/mlx5e: Avoid doing a cleanup call if the profile doesn't have it
- net/mlx5: Wait for FW readiness before initializing command interface
- net/mlx5e: Fix timestamping capabilities reporting
- decnet: always not take dst->__refcnt when inserting dst into hash table
- net: 8021q: Fix one possible panic caused by BUG_ON in free_netdev
- ipv6: Do not leak throw route references
- rtnetlink: add IFLA_GROUP to ifla_policy
- netfilter: synproxy: fix conntrackd interaction
- NFSv4.x/callback: Create the callback service through svc_create_pooled
- xen/blkback: don't use xen_blkif_get() in xen-blkback kthread
- MIPS: head: Reorder instructions missing a delay slot
- MIPS: Avoid accidental raw backtrace
- MIPS: pm-cps: Drop manual cache-line alignment of ready_count
- MIPS: Fix IRQ tracing & lockdep when rescheduling
- ALSA: hda - Fix endless loop of codec configure
- ALSA: hda - set input_path bitmap to zero after moving it to new place
- NFSv4.2: Don't send mode again in post-EXCLUSIVE4_1 SETATTR with umask
- NFSv4.1: Fix a race in nfs4_proc_layoutget
- Revert "NFS: nfs_rename() handle -ERESTARTSYS dentry left behind"
- ovl: copy-up: don't unlock between lookup and link
- gpiolib: fix filtering out unwanted events
- x86/intel_rdt: Fix memory leak on mount failure
- perf/x86/intel/uncore: Fix wrong box pointer check
- drm/vmwgfx: Free hash table allocated by cmdbuf managed res mgr
- dm thin: do not queue freed thin mapping for next stage processing
- x86/mm: Fix boot crash caused by incorrect loop count calculation in
sync_global_pgds()
- mm/vmalloc.c: huge-vmap: fail gracefully on unexpected huge vmap mappings
- xen/blkback: don't free be structure too early
- xfrm6: Fix IPv6 payload_len in xfrm6_transport_finish
- xfrm: move xfrm_garbage_collect out of xfrm_policy_flush
- xfrm: fix stack access out of bounds with CONFIG_XFRM_SUB_POLICY
- xfrm: NULL dereference on allocation failure
- xfrm: Oops on error in pfkey_msg2xfrm_state()
- watchdog: bcm281xx: Fix use of uninitialized spinlock.
- ARM64: PCI: Fix struct acpi_pci_root_ops allocation failure path
- ARM64/ACPI: Fix BAD_MADT_GICC_ENTRY() macro implementation
- ARM: 8685/1: ensure memblock-limit is pmd-aligned
- ARM: davinci: PM: Free resources in error handling path in 'davinci_pm_init'
- ARM: davinci: PM: Do not free useful resources in normal path in
'davinci_pm_init'
- tools arch: Sync arch/x86/lib/memcpy_64.S with the kernel
- Revert "x86/entry: Fix the end of the stack for newly forked tasks"
- x86/mshyperv: Remove excess #includes from mshyperv.h
- x86/boot/KASLR: Fix kexec crash due to 'virt_addr' calculation bug
- perf/x86: Fix spurious NMI with PEBS Load Latency event
- x86/mpx: Correctly report do_mpx_bt_fault() failures to user-space
- x86/mm: Fix flush_tlb_page() on Xen
- ocfs2: o2hb: revert hb threshold to keep compatible
- ocfs2: fix deadlock caused by recursive locking in xattr
- iommu/dma: Don't reserve PCI I/O windows
- iommu/amd: Fix incorrect error handling in amd_iommu_bind_pasid()
- iommu/amd: Fix interrupt remapping when disable guest_mode
- infiniband: hns: avoid gcc-7.0.1 warning for uninitialized data
- mtd: nand: brcmnand: Check flash #WP pin status before nand erase/program
- mtd: nand: fsmc: fix NAND width handling
- KVM: x86: fix emulation of RSM and IRET instructions
- KVM: x86/vPMU: fix undefined shift in intel_pmu_refresh()
- KVM: x86: zero base3 of unusable segments
- KVM: nVMX: Fix exception injection
- esp4: Fix udpencap for local TCP packets.
- hsi: Fix build regression due to netdev destructor fix.
- Linux 4.11.9
* update ENA driver to 1.2.0k from net-next (LP: #1701575)
- net/ena: switch to pci_alloc_irq_vectors
- net: ena: fix rare uncompleted admin command false alarm
- net: ena: fix bug that might cause hang after consecutive open/close
interface.
- net: ena: add missing return when ena_com_get_io_handlers() fails
- net: ena: fix race condition between submit and completion admin command
- net: ena: add missing unmap bars on device removal
- net: ena: fix theoretical Rx hang on low memory systems
- net: ena: disable admin msix while working in polling mode
- net: ena: bug fix in lost tx packets detection mechanism
- net: ena: update ena driver to version 1.1.7
- net: ena: change return value for unsupported features unsupported return
value
- net: ena: add hardware hints capability to the driver
- net: ena: change sizeof() argument to be the type pointer
- net: ena: add reset reason for each device FLR
- net: ena: add support for out of order rx buffers refill
- net: ena: allow the driver to work with small number of msix vectors
- net: ena: use napi_schedule_irqoff when possible
- net: ena: separate skb allocation to dedicated function
- net: ena: use lower_32_bits()/upper_32_bits() to split dma address
- net: ena: update driver's rx drop statistics
- net: ena: update ena driver to version 1.2.0
* APST gets enabled against explicit kernel option (LP: #1699004)
- nvme: Display raw APST configuration via DYNAMIC_DEBUG
- nvme: Add nvme_core.force_apst to ignore the NO_APST quirk
- nvme: explicitly disable APST on quirked devices
* New NVLINK2 patches (LP: #1701272)
- powerpc/powernv/npu-dma: Add explicit flush when sending an ATSD
- powerpc/npu-dma: Remove spurious WARN_ON when a PCI device has no of_node
* ERAT invalidate on context switch removal (LP: #1700819)
- powerpc: Only do ERAT invalidate on radix context switch on P9 DD1
* Miscellaneous Ubuntu changes
- SAUCE: (noup) Update spl to 0.6.5.10-1, zfs to 0.6.5.10-1ubuntu2
- snapcraft.yaml: Sync with xenial
* Miscellaneous upstream changes
- Revert "UBUNTU: SAUCE: (efi-lockdown) efi: Add sysctls for secureboot and
MokSBState"
-- Andy Whitcroft <email address hidden> Wed, 12 Jul 2017 16:35:20 +0100
-
linux (4.11.0-10.15) artful; urgency=low
* linux: 4.11.0-10.15 -proposed tracker (LP: #1701271)
* Artful update to v4.11.8 stable release (LP: #1701269)
- clk: sunxi-ng: a31: Correct lcd1-ch1 clock register offset
- clk: sunxi-ng: v3s: Fix usb otg device reset bit
- clk: sunxi-ng: sun5i: Fix ahb_bist_clk definition
- xen/blkback: fix disconnect while I/Os in flight
- xen-blkback: don't leak stack data via response ring
- ALSA: firewire-lib: Fix stall of process context at packet error
- ALSA: pcm: Don't treat NULL chmap as a fatal error
- ALSA: hda - Add Coffelake PCI ID
- ALSA: hda - Apply quirks to Broxton-T, too
- fs/exec.c: account for argv/envp pointers
- powerpc/perf: Fix oops when kthread execs user process
- autofs: sanity check status reported with AUTOFS_DEV_IOCTL_FAIL
- fs/dax.c: fix inefficiency in dax_writeback_mapping_range()
- lib/cmdline.c: fix get_options() overflow while parsing ranges
- perf/x86/intel: Add 1G DTLB load/store miss support for SKL
- perf probe: Fix probe definition for inlined functions
- KVM: x86: fix singlestepping over syscall
- KVM: MIPS: Fix maybe-uninitialized build failure
- KVM: s390: gaccess: fix real-space designation asce handling for gmap
shadows
- KVM: PPC: Book3S HV: Cope with host using large decrementer mode
- KVM: PPC: Book3S HV: Preserve userspace HTM state properly
- KVM: PPC: Book3S HV: Ignore timebase offset on POWER9 DD1
- KVM: PPC: Book3S HV: Context-switch EBB registers properly
- KVM: PPC: Book3S HV: Restore critical SPRs to host values on guest exit
- KVM: PPC: Book3S HV: Save/restore host values of debug registers
- CIFS: Improve readdir verbosity
- CIFS: Fix some return values in case of error in 'crypt_message'
- cxgb4: notify uP to route ctrlq compl to rdma rspq
- HID: Add quirk for Dell PIXART OEM mouse
- random: silence compiler warnings and fix race
- signal: Only reschedule timers on signals timers have sent
- powerpc/kprobes: Pause function_graph tracing during jprobes handling
- powerpc/64s: Handle data breakpoints in Radix mode
- Input: i8042 - add Fujitsu Lifebook AH544 to notimeout list
- brcmfmac: add parameter to pass error code in firmware callback
- brcmfmac: use firmware callback upon failure to load
- brcmfmac: unbind all devices upon failure in firmware callback
- time: Fix clock->read(clock) race around clocksource changes
- time: Fix CLOCK_MONOTONIC_RAW sub-nanosecond accounting
- arm64/vdso: Fix nsec handling for CLOCK_MONOTONIC_RAW
- target: Fix kref->refcount underflow in transport_cmd_finish_abort
- iscsi-target: Fix delayed logout processing greater than
SECONDS_FOR_LOGOUT_COMP
- iscsi-target: Reject immediate data underflow larger than SCSI transfer
length
- drm/radeon: add a PX quirk for another K53TK variant
- drm/radeon: add a quirk for Toshiba Satellite L20-183
- drm/amdgpu/atom: fix ps allocation size for EnableDispPowerGating
- drm/amdgpu: adjust default display clock
- drm/amdgpu: add Polaris12 DID
- ACPI / scan: Apply default enumeration to devices with ACPI drivers
- ACPI / scan: Fix enumeration for special SPI and I2C devices
- rxrpc: Fix several cases where a padded len isn't checked in ticket decode
- drm: Fix GETCONNECTOR regression
- usb: gadget: f_fs: avoid out of bounds access on comp_desc
- spi: double time out tolerance
- net: phy: fix marvell phy status reading
- brcmfmac: fix uninitialized warning in brcmf_usb_probe_phase2()
- Linux 4.11.8
* powerpc: Invalidate ERAT on powersave wakeup for POWER9 (LP: #1700521)
- SAUCE: powerpc: Invalidate ERAT on powersave wakeup for POWER9
* Miscellaneous Ubuntu changes
- d-i: Move qcom-emac from arm64 to shared nic-modules
-- Seth Forshee <email address hidden> Thu, 29 Jun 2017 08:46:53 -0500
-
linux (4.11.0-9.14) artful; urgency=low
* linux: 4.11.0-9.14 -proposed tracker (LP: #1700537)
* Artful update to v4.11.7 stable release (LP: #1700372)
- Revert "Allow stack to grow up to address space limit"
- Revert "UBUNTU: SAUCE: mm: fix new crash in unmapped_area_topdown()"
- Revert "mm: larger stack guard gap, between vmas"
- fs: pass on flags in compat_writev
- configfs: Fix race between create_link and configfs_rmdir
- can: gs_usb: fix memory leak in gs_cmd_reset()
- ila_xlat: add missing hash secret initialization
- cpufreq: conservative: Allow down_threshold to take values from 1 to 10
- vb2: Fix an off by one error in 'vb2_plane_vaddr'
- cec: race fix: don't return -ENONET in cec_receive()
- selinux: fix double free in selinux_parse_opts_str()
- mac80211: don't look at the PM bit of BAR frames
- mac80211/wpa: use constant time memory comparison for MACs
- drm: mxsfb_crtc: Reset the eLCDIF controller
- drm/amdgpu: Fix overflow of watermark calcs at > 4k resolutions.
- drm/i915: Fix GVT-g PVINFO version compatibility check
- drm/i915: Fix scaling check for 90/270 degree plane rotation
- drm/i915: Do not sync RCU during shrinking
- mac80211: fix IBSS presp allocation size
- mac80211: strictly check mesh address extension mode
- mac80211: fix dropped counter in multiqueue RX
- mac80211: don't send SMPS action frame in AP mode when not needed
- drm/mediatek: fix mtk_hdmi_setup_vendor_specific_infoframe mistake
- drm/vc4: Fix OOPSes from trying to cache a partially constructed BO.
- serial: efm32: Fix parity management in 'efm32_uart_console_get_options()'
- serial: 8250_lpss: Unconditionally set PCI master for Quark
- serial: sh-sci: Fix (AUTO)RTS in sci_init_pins()
- serial: sh-sci: Fix late enablement of AUTORTS
- x86/mm/32: Set the '__vmalloc_start_set' flag in initmem_init()
- mfd: omap-usb-tll: Fix inverted bit use for USB TLL mode
- mfd: axp20x: Add support for dts property "xpowers,master-mode"
- dt-bindings: mfd: axp20x: Add "xpowers,master-mode" property for AXP806
PMICs
- mfd: cpcap: Fix interrupt to use level interrupt
- mfd: cpcap: Use ack_invert interrupts
- mfd: cpcap: Fix bad use of IRQ sense register
- phy: rcar-gen3-usb2: fix implementation for runtime PM
- mtd: physmap_of: really fix the physmap add-ons
- powerpc/mm: Add physical address to Linux page table dump
- staging: rtl8188eu: prevent an underflow in rtw_check_beacon_data()
- staging: bcm2835-camera: fix error handling in init
- staging: iio: tsl2x7x_core: Fix standard deviation calculation
- iio: imu: st_lsm6dsx: do not apply ODR configuration in write_raw handler
- iio: proximity: as3935: recalibrate RCO after resume
- iio: adc: ti_am335x_adc: allocating too much in probe
- ALSA: hda: Add Geminilake id to SKL_PLUS
- ALSA: usb-audio: fix Amanero Combo384 quirk on big-endian hosts
- usb: gadget: udc: renesas_usb3: fix pm_runtime functions calling
- usb: gadget: udc: renesas_usb3: fix deadlock by spinlock
- usb: gadget: udc: renesas_usb3: lock for PN_ registers access
- USB: hub: fix SS max number of ports
- usb: core: fix potential memory leak in error path during hcd creation
- USB: usbip: fix nonconforming hub descriptor
- usb: dwc3: gadget: Fix ISO transfer performance
- pvrusb2: reduce stack usage pvr2_eeprom_analyze()
- USB: gadget: dummy_hcd: fix hub-descriptor removable fields
- usb: r8a66597-hcd: select a different endpoint on timeout
- usb: r8a66597-hcd: decrease timeout
- coda: restore original firmware locations
- drivers/misc/c2port/c2port-duramar2150.c: checking for NULL instead of
IS_ERR()
- usb: xhci: Fix USB 3.1 supported protocol parsing
- usb: xhci: ASMedia ASM1042A chipset need shorts TX quirk
- USB: gadget: fix GPF in gadgetfs
- USB: gadgetfs, dummy-hcd, net2280: fix locking for callbacks
- mm/memory-failure.c: use compound_head() flags for huge pages
- swap: cond_resched in swap_cgroup_prepare()
- mm: numa: avoid waiting on freed migrated pages
- userfaultfd: shmem: handle coredumping in handle_userfault()
- iio: imu: inv_mpu6050: add accel lpf setting for chip >= MPU6500
- staging: iio: ad7152: Fix deadlock in ad7152_write_raw_samp_freq()
- iio: adc: meson-saradc: fix potential crash in meson_sar_adc_clear_fifo
- sched/core: Idle_task_exit() shouldn't use switch_mm_irqs_off()
- genirq: Release resources in __setup_irq() error path
- alarmtimer: Prevent overflow of relative timers
- alarmtimer: Rate limit periodic intervals
- virtio_balloon: disable VIOMMU support
- MIPS: Fix bnezc/jialc return address calculation
- MIPS: .its targets depend on vmlinux
- crypto: Work around deallocated stack frame reference gcc bug on sparc.
- ARM: dts: am335x-sl50: Fix card detect pin for mmc1
- ARM: dts: am335x-sl50: Fix cannot claim requested pins for spi0
- mm: larger stack guard gap, between vmas
- Allow stack to grow up to address space limit
- mm: fix new crash in unmapped_area_topdown()
- Linux 4.11.7
* aacraid driver may return uninitialized stack data to userspace
(LP: #1700077)
- SAUCE: scsi: aacraid: Don't copy uninitialized stack memory to userspace
* KILLER1435-S[0489:e0a2] BT cannot search BT 4.0 device (LP: #1699651)
- Bluetooth: btusb: Add support for 0489:e0a2 QCA_ROME device
* arm64 kernel crashdump support (LP: #1694859)
- memblock: add memblock_clear_nomap()
- memblock: add memblock_cap_memory_range()
- arm64: limit memory regions based on DT property, usable-memory-range
- arm64: kdump: reserve memory for crash dump kernel
- arm64: mm: add set_memory_valid()
- arm64: kdump: protect crash dump kernel memory
- arm64: hibernate: preserve kdump image around hibernation
- arm64: kdump: implement machine_crash_shutdown()
- arm64: kdump: add VMCOREINFO's for user-space tools
- [Config] CONFIG_CRASH_DUMP=y on arm64
- arm64: kdump: provide /proc/vmcore file
- Documentation: kdump: describe arm64 port
- Documentation: dt: chosen properties for arm64 kdump
- efi/libstub/arm*: Set default address and size cells values for an empty dtb
* AACRAID for power9 platform (LP: #1689980)
- scsi: aacraid: pci_alloc_consistent() failures on ARM64
- scsi: aacraid: Remove __GFP_DMA for raw srb memory
- scsi: aacraid: Fix DMAR issues with iommu=pt
- scsi: aacraid: Added 32 and 64 queue depth for arc natives
- scsi: aacraid: Set correct Queue Depth for HBA1000 RAW disks
- scsi: aacraid: Remove reset support from check_health
- scsi: aacraid: Change wait time for fib completion
- scsi: aacraid: Log count info of scsi cmds before reset
- scsi: aacraid: Print ctrl status before eh reset
- scsi: aacraid: Using single reset mask for IOP reset
- scsi: aacraid: Rework IOP reset
- scsi: aacraid: Add periodic checks to see IOP reset status
- scsi: aacraid: Rework SOFT reset code
- scsi: aacraid: Rework aac_src_restart
- scsi: aacraid: Use correct function to get ctrl health
- scsi: aacraid: Make sure ioctl returns on controller reset
- scsi: aacraid: Enable ctrl reset for both hba and arc
- scsi: aacraid: Add reset debugging statements
- scsi: aacraid: Remove reference to Series-9
- scsi: aacraid: Update driver version to 50834
* Miscellaneous upstream changes
- Allow stack to grow up to address space limit
-- Seth Forshee <email address hidden> Mon, 26 Jun 2017 08:08:45 -0500
-
linux (4.11.0-8.13) artful; urgency=low
[ Seth Forshee ]
* Release Tracking Bug
- LP: #1699184
* hibmc driver does not include "pci:" prefix in bus ID (LP: #1698700)
- SAUCE: drm: hibmc: Use set_busid function from drm core
* HiSilicon D05: installer doesn't appear on VGA (LP: #1698954)
- d-i: Add hibmc-drm to kernel-image udeb
* Fix /proc/cpuinfo revision for POWER9 DD2 (LP: #1698844)
- SAUCE: powerpc: Fix /proc/cpuinfo revision for POWER9 DD2
* Miscellaneous Ubuntu changes
- SAUCE: mm: fix new crash in unmapped_area_topdown()
-- Seth Forshee <email address hidden> Tue, 20 Jun 2017 10:05:45 -0500
-
linux (4.11.0-7.12) artful; urgency=low
[ Seth Forshee ]
* Release Tracking Bug
- LP: #1698881
* CVE-2017-1000364
- mm: larger stack guard gap, between vmas
* Artful update to v4.11.6 stable release (LP: #1698800)
- drm/i915: Do not drop pagetables when empty
- PCI/PM: Add needs_resume flag to avoid suspend complete optimization
- drm/i915: Prevent the system suspend complete optimization
- partitions/msdos: FreeBSD UFS2 file systems are not recognized
- efi: Fix boot panic because of invalid BGRT image address
- xtensa: don't use linux IRQ #0
- s390/kvm: do not rely on the ILC on kvm host protection fauls
- Revert "drm/i915: Restore lost "Initialized i915" welcome message"
- drm/i915: Fix 90/270 rotated coordinates for FBC
- drm/i915: Workaround VLV/CHV DSI scanline counter hardware fail
- drm/i915: Guard against i915_ggtt_disable_guc() being invoked
unconditionally
- drm/i915: Always recompute watermarks when distrust_bios_wm is set, v2.
- drm/i915: Disable decoupled MMIO
- Linux 4.11.6
* Bugfixes for hns network driver (LP: #1696031)
- net: hns: Fix the implementation of irq affinity function
- net: hns: Modify GMAC init TX threshold value
- net: hns: Optimize the code for GMAC pad and crc Config
- net: hns: Remove redundant memset during buffer release
- net: hns: bug fix of ethtool show the speed
- net: hns: Optimize hns_nic_common_poll for better performance
- net: hns: Fix to adjust buf_size of ring according to mtu
- net: hns: Replace netif_tx_lock to ring spin lock
- net: hns: Correct HNS RSS key set function
- net: hns: Remove the redundant adding and deleting mac function
- net: hns: Remove redundant mac_get_id()
- net: hns: Remove redundant mac table operations
- net: hns: Clean redundant code from hns_mdio.c file
- net: hns: Optimise the code in hns_mdio_wait_ready()
- net: hns: Simplify the exception sequence in hns_ppe_init()
- net: hns: Adjust the SBM module buffer threshold
- net: hns: Avoid Hip06 chip TX packet line bug
- net: hns: Some checkpatch.pl script & warning fixes
- net: hns: support deferred probe when can not obtain irq
- net: hns: support deferred probe when no mdio
- net: hns: fix ethtool_get_strings overflow in hns driver
* OpenPower: Some multipaths temporarily have only a single path
(LP: #1696445)
- scsi: ses: don't get power status of SES device slot on probe
* Artful update to v4.11.5 stable release (LP: #1697955)
- bnx2x: Fix Multi-Cos
- net: bridge: start hello timer only if device is up
- vxlan: eliminate cached dst leak
- net: systemport: Fix missing Wake-on-LAN interrupt for SYSTEMPORT Lite
- ipv6: xfrm: Handle errors reported by xfrm6_find_1stfragopt()
- cxgb4: avoid enabling napi twice to the same queue
- tcp: disallow cwnd undo when switching congestion control
- vxlan: fix use-after-free on deletion
- ip6_tunnel: fix traffic class routing for tunnels
- sock: reset sk_err when the error queue is empty
- geneve: fix needed_headroom and max_mtu for collect_metadata
- ipv6: Fix leak in ipv6_gso_segment().
- net: dsa: Fix stale cpu_switch reference after unbind then bind
- net: ping: do not abuse udp_poll()
- net/ipv6: Fix CALIPSO causing GPF with datagram support
- ravb: Fix use-after-free on `ifconfig eth0 down`
- net: bridge: fix a null pointer dereference in br_afspec
- net: ethoc: enable NAPI before poll may be scheduled
- net: stmmac: fix completely hung TX when using TSO
- sparc64: Add __multi3 for gcc 7.x and later.
- sparc64: mm: fix copy_tsb to correctly copy huge page TSBs
- sparc: Machine description indices can vary
- sparc/mm/hugepages: Fix setup_hugepagesz for invalid values.
- sparc64: reset mm cpumask after wrap
- sparc64: combine activate_mm and switch_mm
- sparc64: redefine first version
- sparc64: add per-cpu mm of secondary contexts
- sparc64: new context wrap
- sparc64: delete old wrap code
- arch/sparc: support NR_CPUS = 4096
- ftrace: Fix memory leak in ftrace_graph_release()
- serial: exar: Fix stuck MSIs
- serial: ifx6x60: fix use-after-free on module unload
- serial: core: fix crash in uart_suspend_port
- ptrace: Properly initialize ptracer_cred on fork
- ARM: dts: keystone-k2l: fix broken Ethernet due to disabled OSR
- crypto: asymmetric_keys - handle EBUSY due to backlog correctly
- KEYS: fix dereferencing NULL payload with nonzero length
- KEYS: fix freeing uninitialized memory in key_update()
- KEYS: encrypted: avoid encrypting/decrypting stack buffers
- crypto: drbg - wait for crypto op not signal safe
- crypto: gcm - wait for crypto op not signal safe
- ovl: fix creds leak in copy up error path
- kthread: Fix use-after-free if kthread fork fails
- drm/amdgpu/ci: disable mclk switching for high refresh rates (v2)
- nfsd4: fix null dereference on replay
- gfs2: Make flush bios explicitely sync
- efi: Don't issue error message when booted under Xen
- efi/bgrt: Skip efi_bgrt_init() in case of non-EFI boot
- kvm: async_pf: fix rcu_irq_enter() with irqs enabled
- KVM: cpuid: Fix read/write out-of-bounds vulnerability in cpuid emulation
- arm64: KVM: Preserve RES1 bits in SCTLR_EL2
- arm64: KVM: Allow unaligned accesses at EL2
- arm: KVM: Allow unaligned accesses at HYP
- KVM: async_pf: avoid async pf injection when in guest mode
- dmaengine: usb-dmac: Fix DMAOR AE bit definition
- dmaengine: ep93xx: Always start from BASE0
- dmaengine: ep93xx: Don't drain the transfers in terminate_all()
- dmaengine: mv_xor_v2: handle mv_xor_v2_prep_sw_desc() error properly
- dmaengine: mv_xor_v2: properly handle wrapping in the array of HW
descriptors
- dmaengine: mv_xor_v2: do not use descriptors not acked by async_tx
- dmaengine: mv_xor_v2: enable XOR engine after its configuration
- dmaengine: mv_xor_v2: fix tx_submit() implementation
- dmaengine: mv_xor_v2: remove interrupt coalescing
- dmaengine: mv_xor_v2: set DMA mask to 40 bits
- cfq-iosched: fix the delay of cfq_group's vdisktime under iops mode
- reiserfs: Make flush bios explicitely sync
- mtd: nand: tango: Export OF device ID table as module aliases
- mtd: nand: tango: Update ecc_stats.corrected
- xen/privcmd: Support correctly 64KB page granularity when mapping memory
- ext4: fix SEEK_HOLE
- ext4: keep existing extra fields when inode expands
- ext4: fix data corruption with EXT4_GET_BLOCKS_ZERO
- ext4: fix fdatasync(2) after extent manipulation operations
- drm: Fix oops + Xserver hang when unplugging USB drm devices
- usb: gadget: f_mass_storage: Serialize wake and sleep execution
- usb: musb: dsps: keep VBUS on for host-only mode
- usb: chipidea: imx: Do not access CLKONOFF on i.MX51
- usb: chipidea: udc: fix NULL pointer dereference if udc_start failed
- usb: chipidea: debug: check before accessing ci_role
- staging/lustre/lov: remove set_fs() call from lov_getstripe()
- iio: adc: bcm_iproc_adc: swap primary and secondary isr handler's
- iio: light: ltr501 Fix interchanged als/ps register field
- iio: trigger: fix NULL pointer dereference in iio_trigger_write_current()
- iio: proximity: as3935: fix AS3935_INT mask
- iio: proximity: as3935: fix iio_trigger_poll issue
- block: Avoid that blk_exit_rl() triggers a use-after-free
- mei: make sysfs modalias format similar as uevent modalias
- random: invalidate batched entropy after crng init
- cpufreq: cpufreq_register_driver() should return -ENODEV if init fails
- target: Re-add check to reject control WRITEs with overflow data
- drm/msm: Expose our reservation object when exporting a dmabuf.
- drm/msm/mdp5: use __drm_atomic_helper_plane_duplicate_state()
- ahci: Acer SA5-271 SSD Not Detected Fix
- rc-core: race condition during ir_raw_event_register()
- cgroup: Prevent kill_css() from being called more than once
- Input: elantech - add Fujitsu Lifebook E546/E557 to force crc_enabled
- cpuset: consider dying css as offline
- ufs: restore proper tail allocation
- fix ufs_isblockset()
- ufs: restore maintaining ->i_blocks
- ufs: set correct ->s_maxsize
- ufs_extend_tail(): fix the braino in calling conventions of
ufs_new_fragments()
- ufs_getfrag_block(): we only grab ->truncate_mutex on block creation path
- excessive checks in ufs_write_failed() and ufs_evict_inode()
- cxl: Fix error path on bad ioctl
- cxl: Avoid double free_irq() for psl,slice interrupts
- btrfs: use correct types for page indices in btrfs_page_exists_in_range
- btrfs: fix memory leak in update_space_info failure path
- btrfs: fix race with relocation recovery and fs_root setup
- Btrfs: fix delalloc accounting leak caused by u32 overflow
- KVM: arm/arm64: Handle possible NULL stage2 pud when ageing pages
- scsi: qla2xxx: don't disable a not previously enabled PCI device
- scsi: qla2xxx: Fix recursive loop during target mode configuration for
ISP25XX leaving system unresponsive
- scsi: qla2xxx: Fix crash due to mismatch mumber of Q-pair creation for Multi
queue
- scsi: qla2xxx: Fix NULL pointer access due to redundant fc_host_port_name
call
- scsi: qla2xxx: Modify T262 FW dump template to specify same start/end to
debug customer issues
- scsi: qla2xxx: Set bit 15 for DIAG_ECHO_TEST MBC
- scsi: qla2xxx: Fix mailbox pointer error in fwdump capture
- powerpc/sysdev/simple_gpio: Fix oops in gpio save_regs function
- powerpc/numa: Fix percpu allocations to be NUMA aware
- powerpc/hotplug-mem: Fix missing endian conversion of aa_index
- powerpc/kernel: Fix FP and vector register restoration
- powerpc/kernel: Initialize load_tm on task creation
- Revert "ata: sata_mv: Convert to devm_ioremap_resource()"
- perf/core: Drop kernel samples even though :u is specified
- srcu: Allow use of Classic SRCU from both process and interrupt context
- net: qcom/emac: do not use hardware mdio automatic polling
- drm/vmwgfx: Handle vmalloc() failure in vmw_local_fifo_reserve()
- drm/vmwgfx: limit the number of mip levels in vmw_gb_surface_define_ioctl()
- drm/vmwgfx: Make sure backup_handle is always valid
- x86/microcode/intel: Clear patch pointer before jettisoning the initrd
- drm/nouveau/tmr: fully separate alarm execution/pending lists
- ALSA: timer: Fix race between read and ioctl
- ALSA: timer: Fix missing queue indices reset at SNDRV_TIMER_IOCTL_SELECT
- ASoC: Fix use-after-free at card unregistration
- cpu/hotplug: Drop the device lock on error
- drivers: char: mem: Fix wraparound check to allow mappings up to the end
- drm/i915: Fix runtime PM for LPE audio
- drm/i915/skl: Add missing SKL ID
- serial: sh-sci: Fix panic when serial console and DMA are enabled
- pinctrl: cherryview: Add terminate entry for dmi_system_id tables
- cgroup: mark cgroup_get() with __maybe_unused
- iomap_dio_rw: Prevent reading file data beyond iomap_dio->i_size
- hwmon: (coretemp) Handle frozen hotplug state correctly
- audit: fix the RCU locking for the auditd_connection structure
- drm/i915/vbt: don't propagate errors from intel_bios_init()
- drm/i915/vbt: split out defaults that are set when there is no VBT
- netfilter: nft_set_rbtree: handle element re-addition after deletion
- kthread: fix boot hang (regression) on MIPS/OpenRISC
- Linux 4.11.5
-- Seth Forshee <email address hidden> Mon, 19 Jun 2017 11:16:19 -0500
-
linux (4.11.0-6.11) artful; urgency=low
[ Seth Forshee ]
* Release Tracking Bug
- LP: #1697022
* CVE-2014-9900
- SAUCE: (no-up) net: Zeroing the structure ethtool_wolinfo in
ethtool_get_wol()
* hisi_sas driver updates (LP: #1695999)
- scsi: hisi_sas: add to_hisi_sas_port()
- scsi: hisi_sas: add controller reset
- scsi: hisi_sas: move PHY init to hisi_sas_scan_start()
- scsi: hisi_sas: add softreset function for SATA disk
- scsi: hisi_sas: remove hisi_sas_port_deformed()
- scsi: hisi_sas: error hisi_sas_task_prep() when port down
- scsi: hisi_sas: only reset link for PHY_FUNC_LINK_RESET
- scsi: hisi_sas: modify error handling for v2 hw
- scsi: hisi_sas: modify hisi_sas_abort_task() for SSP
- scsi: hisi_sas: hardreset for SATA disk in LU reset
- scsi: hisi_sas: check for SAS_TASK_STATE_ABORTED in slot complete
- scsi: hisi_sas: free slots after hardreset
- scsi: hisi_sas: fix some sas_task.task_state_lock locking
- scsi: hisi_sas: remove task free'ing for timeouts
- scsi: hisi_sas: process error codes according to their priority
- scsi: hisi_sas: some modifications to v2 hw reg init values
- scsi: hisi_sas: handle PHY UP+DOWN simultaneous irq
- scsi: hisi_sas: rename hisi_sas_link_timeout_{enable, disable}_link
- scsi: hisi_sas: add hisi_sas_clear_nexus_ha()
- scsi: hisi_sas: release SMP slot in lldd_abort_task
- scsi: hisi_sas: check hisi_sas_lu_reset() error message
- scsi: hisi_sas: use dev_is_sata to identify SATA or SAS disk
- scsi: hisi_sas: add is_sata_phy_v2_hw()
- scsi: hisi_sas: add missing break in switch statement
- scsi: hisi_sas: fix SATA dependency
- scsi: hisi_sas: workaround STP link SoC bug
- scsi: hisi_sas: workaround a SoC SATA IO processing bug
- scsi: hisi_sas: workaround SoC about abort timeout bug
- scsi: hisi_sas: add v2 hw internal abort timeout workaround
- scsi: hisi_sas: fix NULL deference when TMF timeouts
- scsi: hisi_sas: controller reset for multi-bits ECC and AXI fatal errors
* [SRU][Zesty] Support SMMU passthrough using the default domain
(LP: #1688158)
- iommu/arm-smmu: Restrict domain attributes to UNMANAGED domains
- iommu/arm-smmu: Install bypass S2CRs for IOMMU_DOMAIN_IDENTITY domains
- iommu/arm-smmu-v3: Make arm_smmu_install_ste_for_dev return void
- iommu/arm-smmu-v3: Install bypass STEs for IOMMU_DOMAIN_IDENTITY domains
- iommu: Allow default domain type to be set on the kernel command line
* [Zesty] QDF2400 ARM64 server - NMI watchdog: BUG: soft lockup - CPU#8 stuck
for 22s! (LP: #1680549)
- iommu/dma: Convert to address-based allocation
- iommu/dma: Clean up MSI IOVA allocation
- iommu/dma: Plumb in the per-CPU IOVA caches
- iommu/iova: Fix underflow bug in __alloc_and_insert_iova_range
* Artful update to v4.11.4 stable release (LP: #1696723)
- dccp/tcp: do not inherit mc_list from parent
- driver: vrf: Fix one possible use-after-free issue
- ipv6/dccp: do not inherit ipv6_mc_list from parent
- s390/qeth: handle sysfs error during initialization
- s390/qeth: unbreak OSM and OSN support
- s390/qeth: avoid null pointer dereference on OSN
- s390/qeth: add missing hash table initializations
- bpf, arm64: fix faulty emission of map access in tail calls
- netem: fix skb_orphan_partial()
- net: fix compile error in skb_orphan_partial()
- tcp: avoid fragmenting peculiar skbs in SACK
- tipc: make macro tipc_wait_for_cond() smp safe
- sctp: fix src address selection if using secondary addresses for ipv6
- sctp: do not inherit ipv6_{mc|ac|fl}_list from parent
- net/packet: fix missing net_device reference release
- net/mlx5e: Use the correct pause values for ethtool advertising
- net/mlx5e: Fix ethtool pause support and advertise reporting
- tcp: eliminate negative reordering in tcp_clean_rtx_queue
- smc: switch to usage of IB_PD_UNSAFE_GLOBAL_RKEY
- net/smc: Add warning about remote memory exposure
- net: Improve handling of failures on link and route dumps
- ipv6: Prevent overrun when parsing v6 header options
- ipv6: Check ip6_find_1stfragopt() return value properly.
- bridge: netlink: check vlan_default_pvid range
- qmi_wwan: add another Lenovo EM74xx device ID
- bridge: start hello_timer when enabling KERNEL_STP in br_stp_start
- ipv6: fix out of bound writes in __ip6_append_data()
- bonding: fix accounting of active ports in 3ad
- net/mlx5: Avoid using pending command interface slots
- net: phy: marvell: Limit errata to 88m1101
- vlan: Fix tcp checksum offloads in Q-in-Q vlans
- be2net: Fix offload features for Q-in-Q packets
- virtio-net: enable TSO/checksum offloads for Q-in-Q vlans
- geneve: fix fill_info when using collect_metadata
- tcp: avoid fastopen API to be used on AF_UNSPEC
- sctp: fix ICMP processing if skb is non-linear
- ip6_tunnel, ip6_gre: fix setting of DSCP on encapsulated packets
- ipv4: add reference counting to metrics
- bpf: add bpf_clone_redirect to bpf_helper_changes_pkt_data
- bpf: fix wrong exposure of map_flags into fdinfo for lpm
- bpf: adjust verifier heuristics
- sparc64: Fix mapping of 64k pages with MAP_FIXED
- sparc: Fix -Wstringop-overflow warning
- sparc/ftrace: Fix ftrace graph time measurement
- fs/ufs: Set UFS default maximum bytes per file
- powerpc: Fix booting P9 hash with CONFIG_PPC_RADIX_MMU=N
- powerpc/spufs: Fix hash faults for kernel regions
- Revert "tty_port: register tty ports with serdev bus"
- serdev: fix tty-port client deregistration
- i2c: i2c-tiny-usb: fix buffer not being DMA capable
- crypto: skcipher - Add missing API setkey checks
- Revert "ACPI / button: Remove lid_init_state=method mode"
- x86/MCE: Export memory_error()
- acpi, nfit: Fix the memory error check in nfit_handle_mce()
- ACPI / sysfs: fix acpi_get_table() leak / acpi-sysfs denial of service
- ACPICA: Tables: Fix regression introduced by a too early mechanism enabling
- Revert "ACPI / button: Change default behavior to lid_init_state=open"
- mmc: sdhci-iproc: suppress spurious interrupt with Multiblock read
- scsi: zero per-cmd private driver data for each MQ I/O
- iscsi-target: Always wait for kthread_should_stop() before kthread exit
- iscsi-target: Fix initial login PDU asynchronous socket close OOPs
- scsi: scsi_dh_rdac: Use ctlr directly in rdac_failover_get()
- ibmvscsis: Clear left-over abort_cmd pointers
- ibmvscsis: Fix the incorrect req_lim_delta
- HID: wacom: Have wacom_tpc_irq guard against possible NULL dereference
- nvme-rdma: support devices with queue size < 32
- nvme: use blk_mq_start_hw_queues() in nvme_kill_queues()
- nvme: avoid to use blk_mq_abort_requeue_list()
- drm/amd/powerplay/smu7: add vblank check for mclk switching (v2)
- drm/amd/powerplay/smu7: disable mclk switching for high refresh rates
- drm/radeon/ci: disable mclk switching for high refresh rates (v2)
- drm/radeon: Unbreak HPD handling for r600+
- pcmcia: remove left-over %Z format
- ALSA: hda - No loopback on ALC299 codec
- ALSA: hda - apply STAC_9200_DELL_M22 quirk for Dell Latitude D430
- Revert "ALSA: usb-audio: purge needless variable length array"
- ALSA: usb: Fix a typo in Tascam US-16x08 mixer element
- mm/page_alloc.c: make sure OOM victim can try allocations with no watermarks
once
- mm: avoid spurious 'bad pmd' warning messages
- dax: fix race between colliding PMD & PTE entries
- mm/migrate: fix refcount handling when !hugepage_migration_supported()
- mlock: fix mlock count can not decrease in race condition
- mm/hugetlb: report -EHWPOISON not -EFAULT when FOLL_HWPOISON is specified
- mm: consider memblock reservations for deferred memory initialization sizing
- RDMA/srp: Fix NULL deref at srp_destroy_qp()
- RDMA/qib,hfi1: Fix MR reference count leak on write with immediate
- x86/boot: Use CROSS_COMPILE prefix for readelf
- ksm: prevent crash after write_protect_page fails
- slub/memcg: cure the brainless abuse of sysfs attributes
- drm/gma500/psb: Actually use VBT mode when it is found
- xfs: Fix missed holes in SEEK_HOLE implementation
- xfs: use ->b_state to fix buffer I/O accounting release race
- xfs: fix off-by-one on max nr_pages in xfs_find_get_desired_pgoff()
- xfs: use dedicated log worker wq to avoid deadlock with cil wq
- xfs: fix over-copying of getbmap parameters from userspace
- xfs: actually report xattr extents via iomap
- xfs: drop iolock from reclaim context to appease lockdep
- xfs: fix integer truncation in xfs_bmap_remap_alloc
- xfs: handle array index overrun in xfs_dir2_leaf_readbuf()
- xfs: prevent multi-fsb dir readahead from reading random blocks
- xfs: fix up quotacheck buffer list error handling
- xfs: support ability to wait on new inodes
- xfs: update ag iterator to support wait on new inodes
- xfs: wait on new inodes during quotaoff dquot release
- xfs: reserve enough blocks to handle btree splits when remapping
- xfs: fix use-after-free in xfs_finish_page_writeback
- xfs: fix indlen accounting error on partial delalloc conversion
- xfs: BMAPX shouldn't barf on inline-format directories
- xfs: bad assertion for delalloc an extent that start at i_size
- xfs: xfs_trans_alloc_empty
- xfs: avoid mount-time deadlock in CoW extent recovery
- xfs: fix unaligned access in xfs_btree_visit_blocks
- xfs: Fix off-by-in in loop termination in xfs_find_get_desired_pgoff()
- Linux 4.11.4
* orangefs kernel module not compiled for amd64, i386 (LP: #1696541)
- [Config] CONFIG_ORANGEFS_FS=m
* Dell Inspiron on kernel 4.10 : battery detected only after AC power adapter
event (LP: #1678590)
- ACPI / blacklist: add _REV quirk for Dell Inspiron 7537
* APST quirk needed for Intel NVMe (LP: #1686592)
- nvme: Quirk APST on Intel 600P/P3100 devices
* iptables/ip6tables regressions in deleting rules (LP: #1691752)
- netfilter: xtables: zero padding in data_to_user
- netfilter: xtables: fix build failure from COMPAT_XT_ALIGN outside
CONFIG_COMPAT
* System doesn't boot properly on Gigabyte AM4 motherboards (AMD Ryzen)
(LP: #1671360)
- pinctrl: amd: make use of raw_spinlock variants
- pinctrl/amd: Use regular interrupt instead of chained
* Marvell MacchiatoBin crashes in fintek_8250_probe() (LP: #1692548)
- drivers/tty: 8250: only call fintek_8250_probe when doing port I/O
* extend-diff-ignore should use exact matches (LP: #1693504)
- [Packaging] exact extend-diff-ignore matches
* ATS fix: Fix opal_npu_destroy_context call (LP: #1692580)
- powerpc/powernv/npu-dma.c: Fix opal_npu_destroy_context() call
* Keyboard backlight control does not work on some dell laptops.
(LP: #1693126)
- platform/x86: dell-laptop: Add keyboard backlight timeout AC settings
* Miscellaneous Ubuntu changes
- SAUCE: efi: Don't print secure boot state from the efi stub
- ubuntu: vbox -- Update to 5.1.22-dfsg-1
- SAUCE: (noup) Update spl to 0.6.5.9-1ubuntu2, zfs to 0.6.5.9-5ubuntu7
-- Seth Forshee <email address hidden> Fri, 09 Jun 2017 10:51:20 -0500
-
linux (4.11.0-5.10) artful; urgency=low
[ Seth Forshee ]
* Release Tracking Bug
- LP: #1693962
* Artful update to v4.11.3 stable release (LP: #1693932)
- usb: misc: legousbtower: Fix buffers on stack
- usb: misc: legousbtower: Fix memory leak
- USB: ene_usb6250: fix DMA to the stack
- watchdog: pcwd_usb: fix NULL-deref at probe
- char: lp: fix possible integer overflow in lp_setup()
- USB: core: replace %p with %pK
- tpm_tis_core: Choose appropriate timeout for reading burstcount
- ALSA: hda: Fix cpu lockup when stopping the cmd dmas
- fanotify: don't expose EOPENSTALE to userspace
- tpm_tis_spi: Use single function to transfer data
- tpm_tis_spi: Abort transfer when too many wait states are signaled
- tpm_tis_spi: Check correct byte for wait state indicator
- tpm_tis_spi: Remove limitation of transfers to MAX_SPI_FRAMESIZE bytes
- tpm_tis_spi: Add small delay after last transfer
- tpm: msleep() delays - replace with usleep_range() in i2c nuvoton driver
- tpm_crb: check for bad response size
- vTPM: Fix missing NULL check
- tpm: fix handling of the TPM 2.0 event logs
- ASoC: cs4271: configure reset GPIO as output
- mlx5: Fix mlx5_ib_map_mr_sg mr length
- infiniband: call ipv6 route lookup via the stub interface
- dm btree: fix for dm_btree_find_lowest_key()
- dm raid: select the Kconfig option CONFIG_MD_RAID0
- dm bufio: avoid a possible ABBA deadlock
- dm bufio: check new buffer allocation watermark every 30 seconds
- dm mpath: requeue after a small delay if blk_get_request() fails
- dm mpath: split and rename activate_path() to prepare for its expanded use
- dm mpath: avoid that path removal can trigger an infinite loop
- dm mpath: delay requeuing while path initialization is in progress
- dm cache metadata: fail operations if fail_io mode has been established
- dm bufio: make the parameter "retain_bytes" unsigned long
- dm thin metadata: call precommit before saving the roots
- dm space map disk: fix some book keeping in the disk space map
- md: update slab_cache before releasing new stripes when stripes resizing
- md: MD_CLOSING needs to be cleared after called md_set_readonly or
do_md_stop
- rtlwifi: rtl8821ae: setup 8812ae RFE according to device type
- mwifiex: MAC randomization should not be persistent
- mwifiex: pcie: fix cmd_buf use-after-free in remove/reset
- ima: accept previously set IMA_NEW_FILE
- KVM: x86: Fix load damaged SSEx MXCSR register
- KVM: x86: Fix potential preemption when get the current kvmclock timestamp
- KVM: X86: Fix read out-of-bounds vulnerability in kvm pio emulation
- x86: fix 32-bit case of __get_user_asm_u64()
- regulator: rk808: Fix RK818 LDO2
- regulator: tps65023: Fix inverted core enable logic.
- s390/kdump: Add final note
- s390/cputime: fix incorrect system time
- ath9k_htc: Add support of AirTies 1eda:2315 AR9271 device
- ath9k_htc: fix NULL-deref at probe
- drm/amdgpu: Make display watermark calculations more accurate
- drm/amdgpu: Avoid overflows/divide-by-zero in latency_watermark
calculations.
- drm/amdgpu: Add missing lb_vblank_lead_lines setup to DCE-6 path.
- drm/nouveau/therm: remove ineffective workarounds for alarm bugs
- drm/nouveau/kms/nv50: fix source-rect-only plane updates
- drm/nouveau/kms/nv50: skip core channel cursor update on position-only
changes
- drm/nouveau/tmr: ack interrupt before processing alarms
- drm/nouveau/tmr: fix corruption of the pending list when rescheduling an
alarm
- drm/nouveau/tmr: avoid processing completed alarms when adding a new one
- drm/nouveau/tmr: handle races with hw when updating the next alarm time
- gpio: omap: return error if requested debounce time is not possible
- cdc-acm: fix possible invalid access when processing notification
- ohci-pci: add qemu quirk
- cxl: Force context lock during EEH flow
- cxl: Route eeh events to all drivers in cxl_pci_error_detected()
- proc: Fix unbalanced hard link numbers
- of: fix sparse warning in of_pci_range_parser_one
- of: fix "/cpus" reference leak in of_numa_parse_cpu_nodes()
- of: fdt: add missing allocation-failure check
- ibmvscsis: Do not send aborted task response
- scsi: lpfc: Fix panic on BFS configuration
- iio: dac: ad7303: fix channel description
- IIO: bmp280-core.c: fix error in humidity calculation
- iio: stm32 trigger: fix sampling_frequency read
- IB/hfi1: Return an error on memory allocation failure
- IB/hfi1: Fix a subcontext memory leak
- pid_ns: Sleep in TASK_INTERRUPTIBLE in zap_pid_ns_processes
- pid_ns: Fix race between setns'ed fork() and zap_pid_ns_processes()
- USB: serial: ftdi_sio: fix setting latency for unprivileged users
- USB: serial: ftdi_sio: add Olimex ARM-USB-TINY(H) PIDs
- USB: chaoskey: fix Alea quirk on big-endian hosts
- Make stat/lstat/fstatat pass AT_NO_AUTOMOUNT to vfs_statx()
- libnvdimm: fix clear length of nvdimm_forget_poison()
- dax: fix data corruption when fault races with write
- EDAC, amd64: Fix reporting of Chip Select sizes on Fam17h
- xhci: Fix command ring stop regression in 4.11
- xhci: remove GFP_DMA flag from allocation
- usb: host: xhci-plat: propagate return value of platform_get_irq()
- USB: xhci: fix lock-inversion problem
- xhci: apply PME_STUCK_QUIRK and MISSING_CAS quirk for Denverton
- usb: host: xhci-mem: allocate zeroed Scratchpad Buffer
- net: irda: irda-usb: fix firmware name on big-endian hosts
- usbvision: fix NULL-deref at probe
- mceusb: fix NULL-deref at probe
- ttusb2: limit messages to buffer size
- dvb-usb-dibusb-mc-common: Add MODULE_LICENSE
- usb: dwc3: gadget: Prevent losing events in event cache
- usb: musb: tusb6010_omap: Do not reset the other direction's packet size
- usb: musb: Fix trying to suspend while active for OTG configurations
- USB: iowarrior: fix info ioctl on big-endian hosts
- usb: serial: option: add Telit ME910 support
- USB: serial: qcserial: add more Lenovo EM74xx device IDs
- USB: serial: mct_u232: fix big-endian baud-rate handling
- USB: serial: io_ti: fix div-by-zero in set_termios
- USB: hub: fix SS hub-descriptor handling
- USB: hub: fix non-SS hub-descriptor handling
- ipx: call ipxitf_put() in ioctl error path
- iio: proximity: as3935: fix as3935_write
- iio: hid-sensor: Store restore poll and hysteresis on S3
- cec: Fix runtime BUG when (CONFIG_RC_CORE && !CEC_CAP_RC)
- s5p-mfc: Fix race between interrupt routine and device functions
- gspca: konica: add missing endpoint sanity check
- s5p-mfc: Fix unbalanced call to clock management
- dib0700: fix NULL-deref at probe
- zr364xx: enforce minimum size when reading header
- dvb-frontends/cxd2841er: define symbol_rate_min/max in T/C fe-ops
- digitv: limit messages to buffer size
- dw2102: limit messages to buffer size
- cx231xx-audio: fix init error path
- cx231xx-audio: fix NULL-deref at probe
- cx231xx-cards: fix NULL-deref at probe
- powerpc/mm: Ensure IRQs are off in switch_mm()
- powerpc/eeh: Avoid use after free in eeh_handle_special_event()
- powerpc/book3s/mce: Move add_taint() later in virtual mode
- powerpc/pseries: Fix of_node_put() underflow during DLPAR remove
- powerpc/sysfs: Fix reference leak of cpu device_nodes present at boot
- powerpc/iommu: Do not call PageTransHuge() on tail pages
- powerpc/64e: Fix hang when debugging programs with relocated kernel
- powerpc/mm: Fix crash in page table dump with huge pages
- arm64: KVM: Do not use stack-protector to compile EL2 code
- arm: KVM: Do not use stack-protector to compile HYP code
- KVM: arm/arm64: vgic-v2: Do not use Active+Pending state for a HW interrupt
- KVM: arm/arm64: vgic-v3: Do not use Active+Pending state for a HW interrupt
- KVM: arm: plug potential guest hardware debug leakage
- ARM: 8662/1: module: split core and init PLT sections
- ARM: 8667/3: Fix memory attribute inconsistencies when using fixmap
- ARM: 8670/1: V7M: Do not corrupt vector table around v7m_invalidate_l1 call
- ARM: dts: at91: sama5d3_xplained: fix ADC vref
- ARM: dts: at91: sama5d3_xplained: not all ADC channels are available
- ARM: dts: imx6sx-sdb: Remove OPP override
- arm64: dts: hi6220: Reset the mmc hosts
- arm64: xchg: hazard against entire exchange variable
- arm64: ensure extension of smp_store_release value
- arm64: armv8_deprecated: ensure extension of addr
- arm64: uaccess: ensure extension of access_ok() addr
- arm64: traps: fix userspace cache maintenance emulation on a tagged pointer
- arm64: hw_breakpoint: fix watchpoint matching for tagged pointers
- arm64: entry: improve data abort handling of tagged pointers
- arm64: documentation: document tagged pointer stack constraints
- staging: vc04_services: Fix bulk cache maintenance
- staging: rtl8192e: rtl92e_fill_tx_desc fix write to mapped out memory.
- staging: rtl8192e: fix 2 byte alignment of register BSSIDR.
- staging: rtl8192e: rtl92e_get_eeprom_size Fix read size of EPROM_CMD.
- staging: rtl8192e: GetTs Fix invalid TID 7 warning.
- iommu/vt-d: Flush the IOTLB to get rid of the initial kdump mappings
- cpuidle: check dev before usage in cpuidle_use_deepest_state()
- metag/uaccess: Fix access_ok()
- metag/uaccess: Check access_ok in strncpy_from_user
- stackprotector: Increase the per-task stack canary's random range from 32
bits to 64 bits on 64-bit platforms
- uwb: fix device quirk on big-endian hosts
- genirq: Fix chained interrupt data ordering
- nvme: unmap CMB and remove sysfs file in reset path
- MIPS: Loongson-3: Select MIPS_L1_CACHE_SHIFT_6
- kvm: arm/arm64: Fix race in resetting stage2 PGD
- kvm: arm/arm64: Fix use after free of stage2 page table
- kvm: arm/arm64: Force reading uncached stage2 PGD
- osf_wait4(): fix infoleak
- drbd: fix request leak introduced by locking/atomic, kref: Kill kref_sub()
- um: Fix to call read_initrd after init_bootmem
- firmware: ti_sci: fix strncat length check
- tracing/kprobes: Enforce kprobes teardown after testing
- thermal: mt8173: minor mtk_thermal.c cleanups
- PCI/ACPI: Tidy up MCFG quirk whitespace
- PCI/ACPI: Add ThunderX pass2.x 2nd node MCFG quirk
- PCI: hv: Allocate interrupt descriptors with GFP_ATOMIC
- PCI: hv: Specify CPU_AFFINITY_ALL for MSI affinity when >= 32 CPUs
- PCI: Fix pci_mmap_fits() for HAVE_PCI_RESOURCE_TO_USER platforms
- PCI: Fix another sanity check bug in /proc/pci mmap
- PCI: Only allow WC mmap on prefetchable resources
- PCI: Freeze PME scan before suspending devices
- mtd: nand: orion: fix clk handling
- mtd: nand: omap2: Fix partition creation via cmdline mtdparts
- mtd: nand: add ooblayout for old hamming layout
- drm/edid: Add 10 bpc quirk for LGD 764 panel in HP zBook 17 G2
- NFSv4: Fix a hang in OPEN related to server reboot
- NFS: Fix use after free in write error path
- NFS: Use GFP_NOIO for two allocations in writeback
- pNFS/flexfiles: Check the result of nfs4_pnfs_ds_connect
- NFSv4: Fix an rcu lock leak
- nfsd: fix undefined behavior in nfsd4_layout_verify
- nfsd: encoders mustn't use unitialized values in error cases
- nfsd: Fix up the "supattr_exclcreat" attributes
- drivers: char: mem: Check for address space wraparound with mmap()
- drm/i915/gvt: Disable access to stolen memory as a guest
- IB/hfi1: Protect the global dev_cntr_names and port_cntr_names
- Linux 4.11.3
* iptables/ip6tables regressions in deleting rules (LP: #1691752)
- SAUCE: iptables/ip6tables: Ensure entries are fully copied to userspace
* Enable Matrox driver for Ubuntu 16.04.3 (LP: #1693337)
- [Config] Enable CONFIG_DRM_MGAG200 as module
* Miscellaneous Ubuntu changes
- Update configs for PPC xive options
- [Debian] Run 'silentoldconfig' when not editing a configuration
-- Seth Forshee <email address hidden> Fri, 26 May 2017 20:46:56 -0500
-
linux (4.10.0-26.30) zesty; urgency=low
* linux: 4.10.0-26.30 -proposed tracker (LP: #1700528)
* CVE-2017-1000364
- Revert "UBUNTU: SAUCE: mm: Only expand stack if guard area is hit"
- Revert "mm: do not collapse stack gap into THP"
- Revert "mm: enlarge stack guard gap"
- mm: larger stack guard gap, between vmas
- mm: fix new crash in unmapped_area_topdown()
- Allow stack to grow up to address space limit
linux (4.10.0-25.29) zesty; urgency=low
* linux: 4.10.0-25.29 -proposed tracker (LP: #1699028)
* CVE-2017-1000364
- SAUCE: mm: Only expand stack if guard area is hit
* CVE-2017-9074
- ipv6: Prevent overrun when parsing v6 header options
- ipv6: Check ip6_find_1stfragopt() return value properly.
* [Zesty] QDF2400 ARM64 server - NMI watchdog: BUG: soft lockup - CPU#8 stuck
for 22s! (LP: #1680549)
- iommu/dma: Stop getting dma_32bit_pfn wrong
- iommu/dma: Implement PCI allocation optimisation
- iommu/dma: Convert to address-based allocation
- iommu/dma: Clean up MSI IOVA allocation
- iommu/dma: Plumb in the per-CPU IOVA caches
- iommu/iova: Fix underflow bug in __alloc_and_insert_iova_range
* Zesty update to 4.10.17 stable release (LP: #1692898)
- xen: adjust early dom0 p2m handling to xen hypervisor behavior
- target: Fix compare_and_write_callback handling for non GOOD status
- target/fileio: Fix zero-length READ and WRITE handling
- iscsi-target: Set session_fall_back_to_erl0 when forcing reinstatement
- usb: xhci: bInterval quirk for TI TUSB73x0
- usb: host: xhci: print correct command ring address
- USB: serial: ftdi_sio: add device ID for Microsemi/Arrow SF2PLUS Dev Kit
- USB: Proper handling of Race Condition when two USB class drivers try to
call init_usb_class simultaneously
- USB: Revert "cdc-wdm: fix "out-of-sync" due to missing notifications"
- staging: vt6656: use off stack for in buffer USB transfers.
- staging: vt6656: use off stack for out buffer USB transfers.
- staging: gdm724x: gdm_mux: fix use-after-free on module unload
- staging: wilc1000: Fix problem with wrong vif index
- staging: comedi: jr3_pci: fix possible null pointer dereference
- staging: comedi: jr3_pci: cope with jiffies wraparound
- usb: misc: add missing continue in switch
- usb: gadget: legacy gadgets are optional
- usb: Make sure usb/phy/of gets built-in
- usb: hub: Fix error loop seen after hub communication errors
- usb: hub: Do not attempt to autosuspend disconnected devices
- x86/boot: Fix BSS corruption/overwrite bug in early x86 kernel startup
- selftests/x86/ldt_gdt_32: Work around a glibc sigaction() bug
- x86, pmem: Fix cache flushing for iovec write < 8 bytes
- um: Fix PTRACE_POKEUSER on x86_64
- perf/x86: Fix Broadwell-EP DRAM RAPL events
- KVM: x86: fix user triggerable warning in kvm_apic_accept_events()
- KVM: arm/arm64: fix races in kvm_psci_vcpu_on
- arm64: KVM: Fix decoding of Rt/Rt2 when trapping AArch32 CP accesses
- block: fix blk_integrity_register to use template's interval_exp if not 0
- crypto: s5p-sss - Close possible race for completed requests
- crypto: algif_aead - Require setkey before accept(2)
- crypto: ccp - Use only the relevant interrupt bits
- crypto: ccp - Disable interrupts early on unload
- crypto: ccp - Change ISR handler method for a v3 CCP
- crypto: ccp - Change ISR handler method for a v5 CCP
- dm crypt: rewrite (wipe) key in crypto layer using random data
- dm era: save spacemap metadata root after the pre-commit
- dm rq: check blk_mq_register_dev() return value in
dm_mq_init_request_queue()
- dm thin: fix a memory leak when passing discard bio down
- vfio/type1: Remove locked page accounting workqueue
- iov_iter: don't revert iov buffer if csum error
- IB/core: Fix sysfs registration error flow
- IB/core: For multicast functions, verify that LIDs are multicast LIDs
- IB/IPoIB: ibX: failed to create mcg debug file
- IB/mlx4: Fix ib device initialization error flow
- IB/mlx4: Reduce SRIOV multicast cleanup warning message to debug level
- IB/hfi1: Prevent kernel QP post send hard lockups
- perf auxtrace: Fix no_size logic in addr_filter__resolve_kernel_syms()
- perf annotate s390: Fix perf annotate error -95 (4.10 regression)
- perf annotate s390: Implement jump types for perf annotate
- jbd2: fix dbench4 performance regression for 'nobarrier' mounts
- ext4: evict inline data when writing to memory map
- orangefs: fix bounds check for listxattr
- orangefs: clean up oversize xattr validation
- orangefs: do not set getattr_time on orangefs_lookup
- orangefs: do not check possibly stale size on truncate
- fs/xattr.c: zero out memory copied to userspace in getxattr
- ceph: fix memory leak in __ceph_setxattr()
- fs/block_dev: always invalidate cleancache in invalidate_bdev()
- mm: prevent potential recursive reclaim due to clearing PF_MEMALLOC
- Fix match_prepath()
- Set unicode flag on cifs echo request to avoid Mac error
- SMB3: Work around mount failure when using SMB3 dialect to Macs
- CIFS: fix mapping of SFM_SPACE and SFM_PERIOD
- cifs: fix leak in FSCTL_ENUM_SNAPS response handling
- cifs: fix CIFS_ENUMERATE_SNAPSHOTS oops
- CIFS: fix oplock break deadlocks
- cifs: fix CIFS_IOC_GET_MNT_INFO oops
- CIFS: add misssing SFM mapping for doublequote
- ovl: do not set overlay.opaque on non-dir create
- padata: free correct variable
- md/raid1: avoid reusing a resync bio after error handling.
- device-dax: fix cdev leak
- device-dax: fix sysfs attribute deadlock
- dax: prevent invalidation of mapped DAX entries
- mm: fix data corruption due to stale mmap reads
- f2fs: fix fs corruption due to zero inode page
- fscrypt: fix context consistency check when key(s) unavailable
- serial: samsung: Use right device for DMA-mapping calls
- serial: omap: fix runtime-pm handling on unbind
- serial: omap: suspend device on probe errors
- tty: pty: Fix ldisc flush after userspace become aware of the data already
- Bluetooth: Fix user channel for 32bit userspace on 64bit kernel
- Bluetooth: hci_bcm: add missing tty-device sanity check
- Bluetooth: hci_intel: add missing tty-device sanity check
- libnvdimm, region: fix flush hint detection crash
- libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify
- libnvdimm: fix nvdimm_bus_lock() vs device_lock() ordering
- libnvdimm, pfn: fix 'npfns' vs section alignment
- pstore: Shut down worker when unregistering
- Linux 4.10.17
* [SRU][Zesty] Support SMMU passthrough using the default domain
(LP: #1688158)
- iommu/arm-smmu: Restrict domain attributes to UNMANAGED domains
- iommu/arm-smmu: Install bypass S2CRs for IOMMU_DOMAIN_IDENTITY domains
- iommu/arm-smmu-v3: Make arm_smmu_install_ste_for_dev return void
- iommu: Rename iommu_get_instance()
- iommu: Rename struct iommu_device
- iommu: Introduce new 'struct iommu_device'
- iommu: Add sysfs bindings for struct iommu_device
- iommu: Make iommu_device_link/unlink take a struct iommu_device
- iommu: Add iommu_device_set_fwnode() interface
- iommu/arm-smmu: Make use of the iommu_register interface
- iommu/arm-smmu-v3: Install bypass STEs for IOMMU_DOMAIN_IDENTITY domains
- iommu: Allow default domain type to be set on the kernel command line
- arm64: dma-mapping: Only swizzle DMA ops for IOMMU_DOMAIN_DMA
- iommu/vt-d: Fix crash on boot when DMAR is disabled
* Enable Matrox driver for Ubuntu 16.04.3 (LP: #1693337)
- [Config] Enable CONFIG_DRM_MGAG200 as module
- drm/mgag200: Added support for the new device G200eH3
* Ubuntu16.04.03: POWER9 XIVE: msgsnd/doorbell IPI support (backport)
(LP: #1691973)
- powerpc/64s: Add msgp facility unavailable log string
- powerpc/64s: Add SCV FSCR bit for ISA v3.0
- powerpc/xmon: Dump memory in CPU endian format
- powerpc/xive: Native exploitation of the XIVE interrupt controller
- powerpc: Change the doorbell IPI calling convention
- powerpc: Introduce msgsnd/doorbell barrier primitives
- powerpc/64s: Avoid a branch for ppc_msgsnd
- powerpc/powernv: POWER9 support for msgsnd/doorbell IPI
- powerpc: Add optional smp_ops->prepare_cpu SMP callback
- powerpc: Add more PPC bit conversion macros
- powerpc/powernv: Add XIVE related definitions to opal-api.h
- powerpc/smp: Remove migrate_irq() custom implementation
- powerpc/powernv: Fix oops on P9 DD1 in cause_ipi()
- (config) Update configs with PPC_XIVE options
* CVE-2017-100363
- char: lp: fix possible integer overflow in lp_setup()
* CVE-2017-9242
- ipv6: fix out of bound writes in __ip6_append_data()
* CVE-2017-9075
- sctp: do not inherit ipv6_{mc|ac|fl}_list from parent
* CVE-2017-9076
- ipv6/dccp: do not inherit ipv6_mc_list from parent
* CVE-2017-9077
- ipv6/dccp: do not inherit ipv6_mc_list from parent
* CVE-2017-8890
- dccp/tcp: do not inherit mc_list from parent
* Module signing exclusion for staging drivers does not work properly
(LP: #1690908)
- SAUCE: Fix module signing exclusion in package builds
* extend-diff-ignore should use exact matches (LP: #1693504)
- [Packaging] exact extend-diff-ignore matches
* Marvell MacchiatoBin crashes in fintek_8250_probe() (LP: #1692548)
- drivers/tty: 8250: only call fintek_8250_probe when doing port I/O
* arm-smmu arm-smmu.2.auto: Unhandled context fault (LP: #1694506)
- net: thunderx: Fix IOMMU translation faults
* arm64: mbigen updates (LP: #1692783)
- Revert "UBUNTU: SAUCE: irqchip: mbigen: Add ACPI support"
- irqchip/mbigen: Add ACPI support
- irqchip/mbigen: Fix return value check in mbigen_device_probe()
- irqchip/mbigen: Fix memory mapping code
- irqchip/mbigen: Fix potential NULL dereferencing
- irqchip/mbigen: Fix the clear register offset calculation
* System doesn't boot properly on Gigabyte AM4 motherboards (AMD Ryzen)
(LP: #1671360)
- pinctrl: amd: make use of raw_spinlock variants
- pinctrl/amd: Use regular interrupt instead of chained
* PowerPC: Pstore dump for powerpc is broken (LP: #1691045)
- pstore: Fix flags to enable dumps on powerpc
* Dell Inspiron on kernel 4.10 : battery detected only after AC power adapter
event (LP: #1678590)
- ACPI / blacklist: add _REV quirk for Dell Inspiron 7537
* APST quirk needed for Intel NVMe (LP: #1686592)
- nvme: Quirk APST on Intel 600P/P3100 devices
* Merlin SGMII fail on Ubuntu Xenial HWE kernel (LP: #1686305)
- drivers: net: phy: xgene: Fix mdio write
* Zesty update to 4.10.16 stable release (LP: #1691369)
- 9p: fix a potential acl leak
- drm/sti: fix GDP size to support up to UHD resolution
- hwmon: (it87) Fix pwm4 detection for IT8620 and IT8628
- mtd: nand: Add OX820 NAND hardware dependency
- tpm: fix RC value check in tpm2_seal_trusted
- tmp: use pdev for parent device in tpm_chip_alloc
- crypto: caam - fix error path for ctx_dma mapping failure
- crypto: caam - don't dma_map key for hash algorithms
- power: supply: lp8788: prevent out of bounds array access
- cpupower: Fix turbo frequency reporting for pre-Sandy Bridge cores
- powerpc/perf: Fix perf_get_data_addr() for power9 DD1
- powerpc/perf: Handle sdar_mode for marked event in power9
- powerpc/mm: Fixup wrong LPCR_VRMASD value
- powerpc/powernv: Fix opal_exit tracepoint opcode
- powerpc/mm: Fix build break when CMA=n && SPAPR_TCE_IOMMU=y
- powerpc/ftrace: Fix confusing help text for DISABLE_MPROFILE_KERNEL
- powerpc: Correctly disable latent entropy GCC plugin on prom_init.o
- power: supply: bq24190_charger: Fix irq trigger to IRQF_TRIGGER_FALLING
- power: supply: bq24190_charger: Call set_mode_host() on pm_resume()
- power: supply: bq24190_charger: Install irq_handler_thread() at end of
probe()
- power: supply: bq24190_charger: Call power_supply_changed() for relevant
component
- power: supply: bq24190_charger: Don't read fault register outside
irq_handle_thread()
- power: supply: bq24190_charger: Handle fault before status on interrupt
- arm64: dts: r8a7795: Mark EthernetAVB device node disabled
- arm: dts: qcom: Fix ipq board clock rates
- arm64: remove wrong CONFIG_PROC_SYSCTL ifdef
- arm64: Improve detection of user/non-user mappings in set_pte(_at)
- spi: armada-3700: Remove spi_master_put in a3700_spi_remove()
- leds: ktd2692: avoid harmless maybe-uninitialized warning
- ARM: pxa: ezx: fix a910 camera data
- ARM: dts: NSP: GPIO reboot open-source
- ARM: dts: imx6sx-udoo-neo: Fix reboot hang
- ARM: OMAP5 / DRA7: Fix HYP mode boot for thumb2 build
- ARM: OMAP3: Fix smartreflex platform data regression
- ARM: dts: am57xx-idk: tpic2810 is on I2C bus, not SPI
- ARM: dts: sun7i: lamobo-r1: Fix CPU port RGMII settings
- mwifiex: debugfs: Fix (sometimes) off-by-1 SSID print
- mwifiex: remove redundant dma padding in AMSDU
- mwifiex: Avoid skipping WEP key deletion for AP
- mwifiex: don't enable/disable IRQ 0 during suspend/resume
- mwifiex: set adapter->dev before starting to use mwifiex_dbg()
- iwlwifi: mvm: properly check for transport data in dump
- iwlwifi: mvm: don't restart HW if suspend fails with unified image
- iwlwifi: mvm: overwrite skb info later
- iwlwifi: pcie: don't increment / decrement a bool
- iwlwifi: pcie: trans: Remove unused 'shift_param'
- iwlwifi: pcie: fix the set of DMA memory mask
- iwlwifi: mvm: fix reorder timer re-arming
- iwlwifi: mvm: Use aux queue for offchannel frames in dqa
- iwlwifi: mvm/pcie: adjust A-MSDU tx_cmd length in PCIe
- iwlwifi: mvm: fix pending frame counter calculation
- iwlwifi: mvm: fix references to first_agg_queue in DQA mode
- iwlwifi: mvm: synchronize firmware DMA paging memory
- iwlwifi: mvm: writing zero bytes to debugfs causes a crash
- iwlwifi: mvm: fix accessing fw_id_to_mac_id
- x86/ioapic: Restore IO-APIC irq_chip retrigger callback
- x86/pci-calgary: Fix iommu_free() comparison of unsigned expression >= 0
- x86/mpx: Re-add MPX to selftests Makefile
- clk: Make x86/ conditional on CONFIG_COMMON_CLK
- platform/x86: intel_pmc_core: fix out-of-bounds accesses on stack
- kprobes/x86: Fix kernel panic when certain exception-handling addresses are
probed
- x86/platform/intel-mid: Correct MSI IRQ line for watchdog device
- Revert "KVM: nested VMX: disable perf cpuid reporting"
- KVM: nVMX: initialize PML fields in vmcs02
- KVM: nVMX: do not leak PML full vmexit to L1
- usb: dwc2: host: use msleep() for long delay
- usb: host: ehci-exynos: Decrese node refcount on exynos_ehci_get_phy() error
paths
- usb: host: ohci-exynos: Decrese node refcount on exynos_ehci_get_phy() error
paths
- usb: chipidea: Only read/write OTGSC from one place
- usb: chipidea: Handle extcon events properly
- USB: serial: keyspan_pda: fix receive sanity checks
- USB: serial: digi_acceleport: fix incomplete rx sanity check
- USB: serial: ssu100: fix control-message error handling
- USB: serial: io_edgeport: fix epic-descriptor handling
- USB: serial: ti_usb_3410_5052: fix control-message error handling
- USB: serial: ark3116: fix open error handling
- USB: serial: ftdi_sio: fix latency-timer error handling
- USB: serial: quatech2: fix control-message error handling
- USB: serial: mct_u232: fix modem-status error handling
- USB: serial: ch341: fix modem-status handling
- USB: serial: io_edgeport: fix descriptor error handling
- clk: rockchip: add "," to mux_pll_src_apll_dpll_gpll_usb480m_p on rk3036
- phy: qcom-usb-hs: Add depends on EXTCON
- serial: 8250_omap: Fix probe and remove for PM runtime
- scsi: qedi: Fix possible memory leak in qedi_iscsi_update_conn()
- scsi: qedi: fix build error without DEBUG_FS
- scsi: qla2xxx: Fix crash in qla2xxx_eh_abort on bad ptr
- scsi: mac_scsi: Fix MAC_SCSI=m option when SCSI=m
- scsi: smartpqi: fix time handling
- MIPS: R2-on-R6 MULTU/MADDU/MSUBU emulation bugfix
- brcmfmac: Ensure pointer correctly set if skb data location changes
- brcmfmac: Make skb header writable before use
- staging/lustre/llite: move root_squash from sysfs to debugfs
- staging: wlan-ng: add missing byte order conversion
- staging: emxx_udc: remove incorrect __init annotations
- staging: lustre: ptlrpc: avoid warning on missing return
- ALSA: hda - Fix deadlock of controller device lock at unbinding
- sparc64: fix fault handling in NGbzero.S and GENbzero.S
- tcp: do not underestimate skb->truesize in tcp_trim_head()
- net: adjust skb->truesize in ___pskb_trim()
- net: macb: fix phy interrupt parsing
- geneve: fix incorrect setting of UDP checksum flag
- bpf: enhance verifier to understand stack pointer arithmetic
- bpf, arm64: fix jit branch offset related to ldimm64
- tcp: fix wraparound issue in tcp_lp
- net: ipv6: Do not duplicate DAD on link up
- net: usb: qmi_wwan: add Telit ME910 support
- tcp: do not inherit fastopen_req from parent
- ipv4, ipv6: ensure raw socket message is big enough to hold an IP header
- rtnetlink: NUL-terminate IFLA_PHYS_PORT_NAME string
- ipv6: initialize route null entry in addrconf_init()
- ipv6: reorder ip6_route_dev_notifier after ipv6_dev_notf
- bnxt_en: allocate enough space for ->ntp_fltr_bmap
- bpf: don't let ldimm64 leak map addresses on unprivileged
- net: mdio-mux: bcm-iproc: call mdiobus_free() in error path
- openvswitch: Set internal device max mtu to ETH_MAX_MTU.
- f2fs: sanity check segment count
- xen: Revert commits da72ff5bfcb0 and 72a9b186292d
- drm/hisilicon/hibmc: Fix wrong pointer passed to PTR_ERR()
- drm: mxsfb: drm_dev_alloc() returns error pointers
- drm/ttm: fix use-after-free races in vm fault handling
- block: get rid of blk_integrity_revalidate()
- Linux 4.10.16
- [Config] Remove CONFIG_MTD_NAND_OXNAS=m
- Ignore missing oxnas_nand
* Keyboard backlight control does not work on some dell laptops.
(LP: #1693126)
- platform/x86: dell-laptop: Add Latitude 7480 and others to the DMI whitelist
- platform/x86: dell-laptop: Add keyboard backlight timeout AC settings
* Hardware transaction memory corruption (LP: #1691477)
- powerpc/tm: Fix FP and VMX register corruption
* Offlined CPUs of a core fail to come up online on POWER9 DD1 (Ubuntu 17.04)
(LP: #1685792)
- powerpc/powernv: Move CPU-Offline idle state invocation from smp.c to idle.c
- powerpc/powernv/smp: Add busy-wait loop as fall back for CPU-Hotplug
- powerpc/powernv/idle: Don't override default/deepest directly in kernel
- powerpc/powernv: Recover correct PACA on wakeup from a stop on P9 DD1
* [Regression] NUMA_BALANCING disabled on arm64 (LP: #1690914)
- [Config] CONFIG_NUMA_BALANCING{,_DEFAULT_ENABLED}=y on arm64
* ATS fix: Fix opal_npu_destroy_context call (LP: #1692580)
- powerpc/powernv/npu-dma.c: Fix opal_npu_destroy_context() call
* powerpc/powernv: Introduce address translation services for Nvlink2
(LP: #1690412)
- powerpc/powernv: Require MMU_NOTIFIER to fix NPU build
- drivers/of/base.c: Add of_property_read_u64_index
- powerpc/powernv: Add sanity checks to pnv_pci_get_{gpu|npu}_dev
- powerpc/powernv: Introduce address translation services for Nvlink2
* exec'ing a setuid binary from a threaded program sometimes fails to setuid
(LP: #1672819)
- SAUCE: exec: ensure file system accounting in check_unsafe_exec is correct
-- Juerg Haefliger <email address hidden> Mon, 26 Jun 2017 18:09:03 +0200
-
linux (4.10.0-22.24) zesty; urgency=low
* linux: 4.10.0-22.24 -proposed tracker (LP: #1691146)
* Fix NVLINK2 TCE route (LP: #1690155)
- powerpc/powernv: Fix TCE kill on NVLink2
* CVE-2017-0605
- tracing: Use strlcpy() instead of strcpy() in __trace_find_cmdline()
* perf: qcom: Add L3 cache PMU driver (LP: #1689856)
- [Config] CONFIG_QCOM_L3_PMU=y
- perf: qcom: Add L3 cache PMU driver
* No PMU support for ACPI-based arm64 systems (LP: #1689661)
- drivers/perf: arm_pmu: rework per-cpu allocation
- drivers/perf: arm_pmu: manage interrupts per-cpu
- drivers/perf: arm_pmu: split irq request from enable
- drivers/perf: arm_pmu: remove pointless PMU disabling
- drivers/perf: arm_pmu: define armpmu_init_fn
- drivers/perf: arm_pmu: fold init into alloc
- drivers/perf: arm_pmu: factor out pmu registration
- drivers/perf: arm_pmu: simplify cpu_pmu_request_irqs()
- drivers/perf: arm_pmu: handle no platform_device
- drivers/perf: arm_pmu: rename irq request/free functions
- drivers/perf: arm_pmu: split cpu-local irq request/free
- drivers/perf: arm_pmu: move irq request/free into probe
- drivers/perf: arm_pmu: split out platform device probe logic
- arm64: add function to get a cpu's MADT GICC table
- [Config] CONFIG_ARM_PMU_ACPI=y
- drivers/perf: arm_pmu: add ACPI framework
- arm64: pmuv3: handle !PMUv3 when probing
- arm64: pmuv3: use arm_pmu ACPI framework
* [SRU][Zesty]QDF2400 kernel oops on ipmitool fru write 0 fru.bin
(LP: #1689886)
- ipmi: Fix kernel panic at ipmi_ssif_thread()
* tty: pl011: fix earlycon work-around for QDF2400 erratum 44 (LP: #1689818)
- tty: pl011: fix earlycon work-around for QDF2400 erratum 44
- tty: pl011: use "qdf2400_e44" as the earlycon name for QDF2400 E44
* kernel-wedge fails in artful due to leftover squashfs-modules d-i files
(LP: #1688259)
- Remove squashfs-modules files from d-i
- [Config] as squashfs-modules is builtin kernel-image must Provides: it
* arm64/ACPI support for SBSA watchdog (LP: #1688114)
- clocksource: arm_arch_timer: clean up printk usage
- clocksource: arm_arch_timer: rename type macros
- clocksource: arm_arch_timer: rename the PPI enum
- clocksource: arm_arch_timer: move enums and defines to header file
- clocksource: arm_arch_timer: add a new enum for spi type
- clocksource: arm_arch_timer: rework PPI selection
- clocksource: arm_arch_timer: split dt-only rate handling
- clocksource: arm_arch_timer: refactor arch_timer_needs_probing
- clocksource: arm_arch_timer: move arch_timer_needs_of_probing into DT init
call
- clocksource: arm_arch_timer: add structs to describe MMIO timer
- clocksource: arm_arch_timer: split MMIO timer probing.
- [Config] CONFIG_ACPI_GTDT=y
- acpi/arm64: Add GTDT table parse driver
- clocksource: arm_arch_timer: simplify ACPI support code.
- acpi/arm64: Add memory-mapped timer support in GTDT driver
- clocksource: arm_arch_timer: add GTDT support for memory-mapped timer
- acpi/arm64: Add SBSA Generic Watchdog support in GTDT driver
* kernel BUG at /build/linux-7LGLH_/linux-4.10.0/include/linux/swapops.h:129
(LP: #1674838)
- Revert "mm/ksm: handle protnone saved writes when making page write protect"
- Revert "mm, ksm: convert write_protect_page() to use page_vma_mapped_walk()"
- Revert "mm: introduce page_vma_mapped_walk()"
- mm/ksm: handle protnone saved writes when making page write protect
* arm64: Add CNTFRQ_EL0 handler (LP: #1688164)
- arm64: Add CNTFRQ_EL0 trap handler
* Support IPMI system interface on Cavium ThunderX (LP: #1688132)
- i2c: thunderx: Enable HWMON class probing
* Update ENA driver to 1.1.2 from net-next (LP: #1664312)
- net/ena: remove ntuple filter support from device feature list
- net/ena: fix queues number calculation
- net/ena: fix ethtool RSS flow configuration
- net/ena: fix RSS default hash configuration
- net/ena: fix NULL dereference when removing the driver after device reset
failed
- net/ena: refactor ena_get_stats64 to be atomic context safe
- net/ena: fix potential access to freed memory during device reset
- net/ena: use READ_ONCE to access completion descriptors
- net/ena: reduce the severity of ena printouts
- net/ena: change driver's default timeouts
- net/ena: change condition for host attribute configuration
- net/ena: update driver version to 1.1.2
* Zesty update to 4.10.15 stable release (LP: #1689258)
- timerfd: Protect the might cancel mechanism proper
- Handle mismatched open calls
- hwmon: (it87) Avoid registering the same chip on both SIO addresses
- dm ioctl: prevent stack leak in dm ioctl call
- Linux 4.10.15
* Zesty update to 4.10.14 stable release (LP: #1688499)
- ping: implement proper locking
- sparc64: kern_addr_valid regression
- sparc64: Fix kernel panic due to erroneous #ifdef surrounding pmd_write()
- net: neigh: guard against NULL solicit() method
- net: phy: handle state correctly in phy_stop_machine
- kcm: return immediately after copy_from_user() failure
- secure_seq: downgrade to per-host timestamp offsets
- bpf: improve verifier packet range checks
- Revert "UBUNTU: SAUCE: (no-up) net/mlx5: Avoid dereferencing uninitialized
pointer"
- net/mlx5: Avoid dereferencing uninitialized pointer
- l2tp: hold tunnel socket when handling control frames in l2tp_ip and
l2tp_ip6
- l2tp: purge socket queues in the .destruct() callback
- openvswitch: Fix ovs_flow_key_update()
- l2tp: take reference on sessions being dumped
- l2tp: fix PPP pseudo-wire auto-loading
- net: ipv4: fix multipath RTM_GETROUTE behavior when iif is given
- sctp: listen on the sock only when it's state is listening or closed
- tcp: clear saved_syn in tcp_disconnect()
- ipv6: Fix idev->addr_list corruption
- net-timestamp: avoid use-after-free in ip_recv_error
- net: vrf: Fix setting NLM_F_EXCL flag when adding l3mdev rule
- sh_eth: unmap DMA buffers when freeing rings
- ipv6: sr: fix out-of-bounds access in SRH validation
- dp83640: don't recieve time stamps twice
- ipv6: sr: fix double free of skb after handling invalid SRH
- ipv6: fix source routing
- gso: Validate assumption of frag_list segementation
- net: ipv6: RTF_PCPU should not be settable from userspace
- netpoll: Check for skb->queue_mapping
- ip6mr: fix notification device destruction
- net/mlx5: Fix driver load bad flow when having fw initializing timeout
- net/mlx5: E-Switch, Correctly deal with inline mode on ConnectX-5
- net/mlx5e: Fix small packet threshold
- net/mlx5e: Fix ETHTOOL_GRXCLSRLALL handling
- tcp: fix SCM_TIMESTAMPING_OPT_STATS for normal skbs
- tcp: mark skbs with SCM_TIMESTAMPING_OPT_STATS
- macvlan: Fix device ref leak when purging bc_queue
- net: ipv6: regenerate host route if moved to gc list
- net: phy: fix auto-negotiation stall due to unavailable interrupt
- ipv6: check skb->protocol before lookup for nexthop
- tcp: memset ca_priv data to 0 properly
- ipv6: check raw payload size correctly in ioctl
- ALSA: oxfw: fix regression to handle Stanton SCS.1m/1d
- ALSA: firewire-lib: fix inappropriate assignment between signed/unsigned
type
- ALSA: seq: Don't break snd_use_lock_sync() loop by timeout
- scsi: return correct blkprep status code in case scsi_init_io() fails.
- ARC: [plat-eznps] Fix build error
- MIPS: KGDB: Use kernel context for sleeping threads
- MIPS: cevt-r4k: Fix out-of-bounds array access
- MIPS: Avoid BUG warning in arch_check_elf
- p9_client_readdir() fix
- ASoC: intel: Fix PM and non-atomic crash in bytcr drivers
- Input: i8042 - add Clevo P650RS to the i8042 reset list
- nfsd: check for oversized NFSv2/v3 arguments
- nfsd4: minor NFSv2/v3 write decoding cleanup
- nfsd: stricter decoding of write-like NFSv2/v3 ops
- ceph: fix recursion between ceph_set_acl() and __ceph_setattr()
- macsec: avoid heap overflow in skb_to_sgvec
- net: can: usb: gs_usb: Fix buffer on stack
- cpu/hotplug: Serialize callback invocations proper
- ftrace/x86: Fix triple fault with graph tracing and suspend-to-ram
- Linux 4.10.14
* Zesty update to 4.10.13 stable release (LP: #1688485)
- KEYS: Disallow keyrings beginning with '.' to be joined as session keyrings
- KEYS: Change the name of the dead type to ".dead" to prevent user access
- KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyrings
- tracing: Allocate the snapshot buffer before enabling probe
- HID: wacom: Treat HID_DG_TOOLSERIALNUMBER as unsigned
- ring-buffer: Have ring_buffer_iter_empty() return true when empty
- mm: prevent NR_ISOLATE_* stats from going negative
- cifs: Do not send echoes before Negotiate is complete
- CIFS: remove bad_network_name flag
- mmc: dw_mmc: silent verbose log when calling from PM context
- s390/mm: fix CMMA vs KSM vs others
- Input: elantech - add Fujitsu Lifebook E547 to force crc_enabled
- ACPI / power: Avoid maybe-uninitialized warning
- mmc: dw_mmc: Don't allow Runtime PM for SDIO cards
- mmc: sdhci-esdhc-imx: increase the pad I/O drive strength for DDR50 card
- ubifs: Fix RENAME_WHITEOUT support
- ubifs: Fix O_TMPFILE corner case in ubifs_link()
- mac80211: reject ToDS broadcast data frames
- mac80211: fix MU-MIMO follow-MAC mode
- x86/mce: Make the MCE notifier a blocking one
- ubi/upd: Always flush after prepared for an update
- powerpc/kprobe: Fix oops when kprobed on 'stdu' instruction
- x86/mce/AMD: Give a name to MCA bank 3 when accessed with legacy MSRs
- device-dax: switch to srcu, fix rcu_read_lock() vs pte allocation
- Linux 4.10.13
* Zesty update to 4.10.12 stable release (LP: #1687045)
- Revert "UBUNTU: SAUCE: Revert "audit: fix auditd/kernel connection state
tracking""
- cgroup, kthread: close race window where new kthreads can be migrated to
non-root cgroups
- audit: make sure we don't let the retry queue grow without bounds
- tcmu: Fix possible overwrite of t_data_sg's last iov[]
- tcmu: Fix wrongly calculating of the base_command_size
- tcmu: Skip Data-Out blocks before gathering Data-In buffer for BIDI case
- thp: fix MADV_DONTNEED vs. MADV_FREE race
- thp: fix MADV_DONTNEED vs clear soft dirty race
- zsmalloc: expand class bit
- orangefs: free superblock when mount fails
- drm/nouveau/mpeg: mthd returns true on success now
- drm/nouveau/mmu/nv4a: use nv04 mmu rather than the nv44 one
- drm/nouveau/kms/nv50: fix setting of HeadSetRasterVertBlankDmi method
- drm/nouveau/kms/nv50: fix double dma_fence_put() when destroying plane state
- drm/nouveau: initial support (display-only) for GP107
- drm/etnaviv: fix missing unlock on error in etnaviv_gpu_submit()
- drm/fb-helper: Allow var->x/yres(_virtual) < fb->width/height again
- CIFS: reconnect thread reschedule itself
- CIFS: store results of cifs_reopen_file to avoid infinite wait
- Input: xpad - add support for Razer Wildcat gamepad
- perf annotate s390: Fix perf annotate error -95 (4.10 regression)
- perf/x86: Avoid exposing wrong/stale data in intel_pmu_lbr_read_32()
- x86/efi: Don't try to reserve runtime regions
- x86/signals: Fix lower/upper bound reporting in compat siginfo
- x86/intel_rdt: Fix locking in rdtgroup_schemata_write()
- x86, pmem: fix broken __copy_user_nocache cache-bypass assumptions
- x86/vdso: Ensure vdso32_enabled gets set to valid values only
- x86/vdso: Plug race between mapping and ELF header setup
- acpi, nfit, libnvdimm: fix interleave set cookie calculation (64-bit
comparison)
- ACPI / scan: Set the visited flag for all enumerated devices
- parisc: fix bugs in pa_memcpy
- efi/libstub: Skip GOP with PIXEL_BLT_ONLY format
- efi/fb: Avoid reconfiguration of BAR that covers the framebuffer
- iscsi-target: Fix TMR reference leak during session shutdown
- iscsi-target: Drop work-around for legacy GlobalSAN initiator
- scsi: sr: Sanity check returned mode data
- scsi: sd: Consider max_xfer_blocks if opt_xfer_blocks is unusable
- scsi: qla2xxx: Add fix to read correct register value for ISP82xx.
- scsi: sd: Fix capacity calculation with 32-bit sector_t
- target: Avoid mappedlun symlink creation during lun shutdown
- xen, fbfront: fix connecting to backend
- new privimitive: iov_iter_revert()
- make skb_copy_datagram_msg() et.al. preserve ->msg_iter on error
- libnvdimm: fix blk free space accounting
- libnvdimm: fix reconfig_mutex, mmap_sem, and jbd2_handle lockdep splat
- libnvdimm: band aid btt vs clear poison locking
- can: ifi: use correct register to read rx status
- pwm: rockchip: State of PWM clock should synchronize with PWM enabled state
- cpufreq: Bring CPUs up even if cpufreq_online() failed
- irqchip/irq-imx-gpcv2: Fix spinlock initialization
- ftrace: Fix removing of second function probe
- drm/i915/gvt: set the correct default value of CTX STATUS PTR
- char: lack of bool string made CONFIG_DEVPORT always on
- Revert "MIPS: Lantiq: Fix cascaded IRQ setup"
- zram: do not use copy_page with non-page aligned address
- ftrace: Fix function pid filter on instances
- crypto: algif_aead - Fix bogus request dereference in completion function
- crypto: xts - Fix use-after-free on EINPROGRESS
- crypto: ahash - Fix EINPROGRESS notification callback
- crypto: lrw - Fix use-after-free on EINPROGRESS
- parisc: Fix get_user() for 64-bit value on 32-bit kernel
- dvb-usb-v2: avoid use-after-free
- [Config] CONFIG_SND_SOC_INTEL_BDW_RT5677_MACH=m
- ASoC: Intel: select DW_DMAC_CORE since it's mandatory
- platform/x86: acer-wmi: setup accelerometer when machine has appropriate
notify event
- x86/xen: Fix APIC id mismatch warning on Intel
- ACPI / EC: Use busy polling mode when GPE is not enabled
- rtc: tegra: Implement clock handling
- mm: Tighten x86 /dev/mem with zeroing reads
- cxusb: Use a dma capable buffer also for reading
- virtio-console: avoid DMA from stack
- Linux 4.10.12
* Support low-pin-count devices on Hisilicon SoCs (LP: #1677319)
- [Config] CONFIG_LIBIO=y on arm64 only
- SAUCE: LIBIO: Introduce a generic PIO mapping method
- SAUCE: OF: Add missing I/O range exception for indirect-IO devices
- [Config] CONFIG_HISILICON_LPC=y
- SAUCE: LPC: Support the device-tree LPC host on Hip06/Hip07
- SAUCE: LIBIO: Support the dynamically logical PIO registration of ACPI host
I/O
- SAUCE: LPC: Add the ACPI LPC support
- SAUCE: PCI: Apply the new generic I/O management on PCI IO hosts
- SAUCE: PCI: Restore codepath for !CONFIG_LIBIO
* APST quirk needed for Samsung 512GB NVMe drive (LP: #1678184)
- nvme: Adjust the Samsung APST quirk
- nvme: Quirk APST off on "THNSF5256GPUK TOSHIBA"
* [Zesty] d-i: replace msm_emac with qcom_emac (LP: #1677297)
- Revert "UBUNTU: d-i: initrd needs msm_emac on amberwing platform."
- d-i: initrd needs qcom_emac on amberwing platform.
* POWER9: CAPI2 enablement (LP: #1686519)
- cxl: Fix build when CONFIG_DEBUG_FS=n
- cxl: Read vsec perst load image
- cxl: Remove unused values in bare-metal environment.
- cxl: Keep track of mm struct associated with a context
- cxl: Update implementation service layer
- cxl: Rename some psl8 specific functions
- cxl: Isolate few psl8 specific calls
- cxl: Force psl data-cache flush during device shutdown
- cxl: Add psl9 specific code
* CVE-2017-7979
- net sched actions: allocate act cookie early
* refcount underflow / kernel NULL dereference after attempting to add basic
tc filter (LP: #1682368)
- net_sched: nla_memdup_cookie() can be static
-- Thadeu Lima de Souza Cascardo <email address hidden> Wed, 17 May 2017 18:13:39 -0300
-
linux (4.10.0-21.23) zesty; urgency=low
* linux: 4.10.0-21.23 -proposed tracker (LP: #1686414)
* Need to stop using bzip2 compression in packages for zesty onward
(LP: #1686782)
- [Debian] Use default compression for all packages
* [Hyper-V][SAUCE] pci-hyperv: Use only 16 bit integer for PCI domain
(LP: #1684971)
- SAUCE: pci-hyperv: Use only 16 bit integer for PCI domain
* CVE-2017-7477: macsec: avoid heap overflow in skb_to_sgvec (LP: #1685892)
- macsec: avoid heap overflow in skb_to_sgvec
- macsec: dynamically allocate space for sglist
* Zesty update to 4.10.11 stable release (LP: #1685140)
- drm/i915: Fix forcewake active domain tracking
- drm/i915: Move updating color management to before vblank evasion
- drm/i915/fbdev: Stop repeating tile configuration on stagnation
- drm/i915: Squelch any ktime/jiffie rounding errors for wait-ioctl
- drm/i915/gen9: Increase PCODE request timeout to 50ms
- drm/i915: Store a permanent error in obj->mm.pages
- drm/i915: Nuke debug messages from the pipe update critical section
- drm/i915: Avoid tweaking evaluation thresholds on Baytrail v3
- drm/i915: Reject HDMI 12bpc if the sink doesn't indicate support
- drm/i915: Only enable hotplug interrupts if the display interrupts are
enabled
- drm/i915: Drop support for I915_EXEC_CONSTANTS_* execbuf parameters.
- drm/i915: Stop using RP_DOWN_EI on Baytrail
- drm/i915: Avoid rcu_barrier() from reclaim paths (shrinker)
- drm/i915: Do .init_clock_gating() earlier to avoid it clobbering watermarks
- orangefs: Dan Carpenter influenced cleanups...
- orangefs: fix buffer size mis-match between kernel space and user space.
- nfs: flexfiles: fix kernel OOPS if MDS returns unsupported DS type
- rt2x00usb: fix anchor initialization
- rt2x00usb: do not anchor rx and tx urb's
- MIPS: Introduce irq_stack
- MIPS: Stack unwinding while on IRQ stack
- MIPS: Only change $28 to thread_info if coming from user mode
- MIPS: Switch to the irq_stack in interrupts
- MIPS: Select HAVE_IRQ_EXIT_ON_IRQ_STACK
- MIPS: IRQ Stack: Fix erroneous jal to plat_irq_dispatch
- crypto: caam - fix RNG deinstantiation error checking
- crypto: caam - fix invalid dereference in caam_rsa_init_tfm()
- dma-buf: add support for compat ioctl
- Linux 4.10.11
* Zesty update to v4.10.10 stable release (LP: #1682130)
- drm/vmwgfx: Type-check lookups of fence objects
- drm/vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl()
- drm/vmwgfx: avoid calling vzalloc with a 0 size in vmw_get_cap_3d_ioctl()
- drm/ttm, drm/vmwgfx: Relax permission checking when opening surfaces
- drm/vmwgfx: Remove getparam error message
- drm/vmwgfx: fix integer overflow in vmw_surface_define_ioctl()
- PCI: thunder-pem: Add legacy firmware support for Cavium ThunderX host
controller
- PCI: thunder-pem: Fix legacy firmware PEM-specific resources
- sysfs: be careful of error returns from ops->show()
- staging: android: ashmem: lseek failed due to no FMODE_LSEEK.
- arm/arm64: KVM: Take mmap_sem in stage2_unmap_vm
- arm/arm64: KVM: Take mmap_sem in kvm_arch_prepare_memory_region
- kvm: arm/arm64: Fix locking for kvm_free_stage2_pgd
- iio: core: Fix IIO_VAL_FRACTIONAL_LOG2 for negative values
- iio: st_pressure: initialize lps22hb bootime
- iio: bmg160: reset chip when probing
- arm64: mm: unaligned access by user-land should be received as SIGBUS
- cfg80211: check rdev resume callback only for registered wiphy
- Reset TreeId to zero on SMB2 TREE_CONNECT
- mm/page_alloc.c: fix print order in show_free_areas()
- ptrace: fix PTRACE_LISTEN race corrupting task->state
- dax: fix radix tree insertion race
- dm verity fec: limit error correction recursion
- dm verity fec: fix bufio leaks
- ACPI / gpio: do not fall back to parsing _CRS when we get a deferral
- ACPI / scan: Prefer devices without _HID for _ADR matching
- Kbuild: use cc-disable-warning consistently for maybe-uninitialized
- jump label: fix passing kbuild_cflags when checking for asm goto support
- orangefs: move features validation to fix filesystem hang
- xfs: Honor FALLOC_FL_KEEP_SIZE when punching ends of files
- ring-buffer: Fix return value check in test_ringbuffer()
- mac80211: unconditionally start new netdev queues with iTXQ support
- brcmfmac: use local iftype avoiding use-after-free of virtual interface
- metag/usercopy: Drop unused macros
- metag/usercopy: Fix alignment error checking
- metag/usercopy: Add early abort to copy_to_user
- metag/usercopy: Zero rest of buffer from copy_from_user
- metag/usercopy: Set flags before ADDZ
- metag/usercopy: Fix src fixup in from user rapf loops
- metag/usercopy: Add missing fixups
- drm/msm: adreno: fix build error without debugfs
- powerpc: Disable HFSCR[TM] if TM is not supported
- powerpc/mm: Add missing global TLB invalidate if cxl is active
- powerpc/64: Fix flush_(d|i)cache_range() called from modules
- powerpc: Don't try to fix up misaligned load-with-reservation instructions
- powerpc/crypto/crc32c-vpmsum: Fix missing preempt_disable()
- dm raid: fix NULL pointer dereference for raid1 without bitmap
- x86/mce: Don't print MCEs when mcelog is active
- nios2: reserve boot memory for device tree
- xtensa: make __pa work with uncached KSEG addresses
- s390/decompressor: fix initrd corruption caused by bss clear
- s390/uaccess: get_user() should zero on failure (again)
- MIPS: Force o32 fp64 support on 32bit MIPS64r6 kernels
- MIPS: ralink: Fix typos in rt3883 pinctrl
- MIPS: End spinlocks with .insn
- MIPS: Lantiq: fix missing xbar kernel panic
- MIPS: Check TLB before handle_ri_rdhwr() for Loongson-3
- MIPS: Add MIPS_CPU_FTLB for Loongson-3A R2
- MIPS: Flush wrong invalid FTLB entry for huge page
- MIPS: c-r4k: Fix Loongson-3's vcache/scache waysize calculation
- drm/i915/gvt: Fix gvt scheduler interval time
- drm/i915/kvmgt: fix suspicious rcu dereference usage
- usb: dwc3: gadget: delay unmap of bounced requests
- Documentation: stable-kernel-rules: fix stable-tag format
- mm/mempolicy.c: fix error handling in set_mempolicy and mbind.
- random: use chacha20 for get_random_int/long
- kvm: fix page struct leak in handle_vmon
- drm/edid: constify edid quirk list
- drm/i915: fix INTEL_BDW_IDS definition
- drm/i915: more .is_mobile cleanups for BDW
- drm/i915: actually drive the BDW reserved IDs
- ASoC: Intel: bytcr_rt5640: quirks for Insyde devices
- usb: chipidea: msm: Rely on core to override AHBBURST
- serial: 8250_omap: Add OMAP_DMA_TX_KICK quirk for AM437x
- usb: xhci: add quirk flag for broken PED bits
- usb: host: xhci-plat: enable BROKEN_PED quirk if platform requested
- usb: dwc3: host: pass quirk-broken-port-ped property for known broken
revisions
- drm/mga: remove device_is_agp callback
- PCI: Add ACS quirk for Intel Union Point
- PCI: xgene: Fix double free on init error
- sata: ahci-da850: implement a workaround for the softreset quirk
- ACPI / button: Change default behavior to lid_init_state=open
- ASoC: codecs: rt5670: add quirk for Lenovo Thinkpad 10
- ASoC: Intel: Baytrail: add quirk for Lenovo Thinkpad 10
- ASoC: Intel: cht_bsw_rt5645: harden ACPI device detection
- ASoC: Intel: cht_bsw_rt5645: add Baytrail MCLK support
- ACPI: save NVS memory for Lenovo G50-45
- ASoC: sun4i-i2s: Add quirks to handle a31 compatible
- HID: wacom: don't apply generic settings to old devices
- arm: kernel: Add SMC structure parameter
- firmware: qcom: scm: Fix interrupted SCM calls
- ARM: smccc: Update HVC comment to describe new quirk parameter
- PCI: Add Broadcom Northstar2 PAXC quirk for device class and MPSS
- PCI: Disable MSI for HiSilicon Hip06/Hip07 Root Ports
- mmc: sdhci-of-esdhc: remove default broken-cd for ARM
- PCI: Sort the list of devices with D3 delay quirk by ID
- watchdog: s3c2410: Fix infinite interrupt in soft mode
- platform/x86: asus-wmi: Detect quirk_no_rfkill from the DSDT
- x86/reboot/quirks: Add ASUS EeeBook X205TA reboot quirk
- x86/reboot/quirks: Add ASUS EeeBook X205TA/W reboot quirk
- usb-storage: Add ignore-residue quirk for Initio INIC-3619
- x86/reboot/quirks: Fix typo in ASUS EeeBook X205TA reboot quirk
- Linux 4.10.10
* Broken PowerNV PCI hotplug driver - Patch backporting to zesty
(LP: #1680328)
- drivers/pci/hotplug: Mask PDC interrupt if required
* Zesty update to v4.10.9 stable release (LP: #1681875)
- libceph: force GFP_NOIO for socket allocations
- KVM: nVMX: fix nested EPT detection
- xfs: pull up iolock from xfs_free_eofblocks()
- xfs: sync eofblocks scans under iolock are livelock prone
- xfs: fix eofblocks race with file extending async dio writes
- xfs: fix toctou race when locking an inode to access the data map
- xfs: fail _dir_open when readahead fails
- xfs: filter out obviously bad btree pointers
- xfs: check for obviously bad level values in the bmbt root
- xfs: verify free block header fields
- xfs: allow unwritten extents in the CoW fork
- xfs: mark speculative prealloc CoW fork extents unwritten
- xfs: reset b_first_retry_time when clear the retry status of xfs_buf_t
- xfs: reject all unaligned direct writes to reflinked files
- xfs: update ctime and mtime on clone destinatation inodes
- xfs: correct null checks and error processing in xfs_initialize_perag
- xfs: don't fail xfs_extent_busy allocation
- xfs: handle indlen shortage on delalloc extent merge
- xfs: split indlen reservations fairly when under reserved
- xfs: fix uninitialized variable in _reflink_convert_cow
- xfs: don't reserve blocks for right shift transactions
- xfs: Use xfs_icluster_size_fsb() to calculate inode chunk alignment
- xfs: tune down agno asserts in the bmap code
- xfs: only reclaim unwritten COW extents periodically
- xfs: fix and streamline error handling in xfs_end_io
- xfs: Use xfs_icluster_size_fsb() to calculate inode alignment mask
- xfs: use iomap new flag for newly allocated delalloc blocks
- xfs: try any AG when allocating the first btree block when reflinking
- scsi: sg: check length passed to SG_NEXT_CMD_LEN
- scsi: libsas: fix ata xfer length
- scsi: scsi_dh_alua: Check scsi_device_get() return value
- scsi: scsi_dh_alua: Ensure that alua_activate() calls the completion
function
- PCI: iproc: Save host bridge window resource in struct iproc_pcie
- PCI: thunder-pem: Use Cavium assigned hardware ID for ThunderX host
controller
- ALSA: seq: Fix race during FIFO resize
- ALSA: hda - fix a problem for lineout on a Dell AIO machine
- ASoC: atmel-classd: fix audio clock rate
- ASoC: Intel: Skylake: fix invalid memory access due to wrong reference of
pointer
- ASoC: rt5665: fix getting wrong work handler container
- HID: wacom: Don't add ghost interface as shared data
- mmc: sdhci: Disable runtime pm when the sdio_irq is enabled
- mmc: sdhci-of-at91: fix MMC_DDR_52 timing selection
- crypto: ccp - Make some CCP DMA channels private
- crypto: xts,lrw - fix out-of-bounds write after kmalloc failure
- ARCv2: SLC: Make sure busy bit is set properly on SLC flushing
- NFSv4.1 fix infinite loop on IO BAD_STATEID error
- nfsd: map the ENOKEY to nfserr_perm for avoiding warning
- dt-bindings: rng: clocks property on omap_rng not always mandatory
- parisc: Clean up fixup routines for get_user()/put_user()
- parisc: Avoid stalled CPU warnings after system shutdown
- parisc: Fix access fault handling in pa_memcpy()
- ACPI: Fix incompatibility with mcount-based function graph tracing
- ACPI: Do not create a platform_device for IOAPIC/IOxAPIC
- tty/serial: atmel: fix race condition (TX+DMA)
- tty/serial: atmel: fix TX path in atmel_console_write()
- xhci: Set URB actual length for stopped control transfers
- USB: fix linked-list corruption in rh_call_control()
- serial: mxs-auart: Fix baudrate calculation
- KVM: x86: clear bus pointer when destroyed
- KVM: kvm_io_bus_unregister_dev() should never fail
- drm/radeon: Override fpfn for all VRAM placements in radeon_evict_flags
- drm/vc4: Allocate the right amount of space for boot-time CRTC state.
- drm/etnaviv: (re-)protect fence allocation with GPU mutex
- drm/i915/kvmgt: Hold struct kvm reference
- x86/mm/KASLR: Exclude EFI region from KASLR VA space randomization
- x86/mce: Fix copy/paste error in exception table entries
- lib/syscall: Clear return values when no stack
- mm: rmap: fix huge file mmap accounting in the memcg stats
- mm: workingset: fix premature shadow node shrinking with cgroups
- mm, hugetlb: use pte_present() instead of pmd_present() in follow_huge_pmd()
- drm/armada: Fix compile fail
- ARM: dts: BCM5301X: Correct GIC_PPI interrupt flags
- MIPS: Lantiq: Fix cascaded IRQ setup
- blk: improve order of bio handling in generic_make_request()
- blk: Ensure users for current->bio_list can see the full list.
- padata: avoid race in reordering
- nvme/core: Fix race kicking freed request_queue
- nvme/pci: Disable on removal when disconnected
- drm/i915: Move the release of PT page to the upper caller
- drm/i915: Let execlist_update_context() cover !FULL_PPGTT mode.
- drm/i915: A hotfix for making aliasing PPGTT work for GVT-g
- Linux 4.10.9
* POWER9: Improve performance on memory management (LP: #1681429)
- SAUCE: powerpc/mm/radix: Don't do page walk cache flush when doing full mm
flush
- SAUCE: powerpc/mm/radix: Remove unnecessary ptesync
* Disable CONFIG_HVC_UDBG on ppc64el (LP: #1680888)
- [Config] Disable CONFIG_HVC_UDBG on ppc64el
-- Kleber Sacilotto de Souza <email address hidden> Fri, 28 Apr 2017 12:41:49 +0200
-
linux (4.10.0-20.22) zesty; urgency=low
* linux: 4.10.0-20.22 -proposed tracker (LP: #1684491)
* [Hyper-V] hv: util: move waiting for release to hv_utils_transport itself
(LP: #1682561)
- Drivers: hv: util: move waiting for release to hv_utils_transport itself
-- Stefan Bader <email address hidden> Wed, 19 Apr 2017 16:13:16 +0200
-
linux (4.10.0-19.21) zesty; urgency=low
[ Tim Gardner ]
* Release Tracking Bug
- LP: #1680535
* ADT regressions caused by "audit: fix auditd/kernel connection state
tracking" (LP: #1680532)
- SAUCE: Revert "audit: fix auditd/kernel connection state tracking"
* Miscellaneous Ubuntu changes
- [Config] updateconfigs to update CONFIG_GENERIC_CSUM for ppc64el
This cleans up behind a Kconfig change that went undetected.
linux (4.10.0-18.20) zesty; urgency=low
[ Tim Gardner ]
* Release Tracking Bug
- LP: #1680168
* smartpqi driver needed in initram disk and installer (LP: #1680156)
- UBUNU: [Config] Add smartpqi to d-i
linux (4.10.0-17.19) zesty; urgency=low
[ Tim Gardner ]
* Release Tracking Bug
- LP: #1679718
* Fix CVE-2017-7308 (LP: #1678009)
- net/packet: fix overflow in check for priv area size
- net/packet: fix overflow in check for tp_frame_nr
- net/packet: fix overflow in check for tp_reserve
* apparmor: oops on boot if parameters set on grub command line (LP: #1678048)
- SAUCE: apparmor: fix parameters so that the permission test is bypassed at boot
* apparmor: does not provide a way to detect policy updataes (LP: #1678032)
- SAUCE: apparmor: add policy revision file interface
* apparmor does not make support of query data visible (LP: #1678023)
- SAUCE: apparmor: add label data availability to the feature set
* apparmor query interface does not make supported query info available
(LP: #1678030)
- SAUCE: apparmor: add information about the query inteface to the feature set
* change_profile incorrect when using namespaces with a compound stack
(LP: #1677959)
- SAUCE: apparmor: fix label parse for stacked labels
* Zesty update to v4.10.8 stable release (LP: #1678930)
- xfrm: policy: init locks early
- xfrm_user: validate XFRM_MSG_NEWAE XFRMA_REPLAY_ESN_VAL replay_window
- xfrm_user: validate XFRM_MSG_NEWAE incoming ESN size harder
- KVM: nVMX: Fix nested VPID vmx exec control
- KVM: x86: cleanup the page tracking SRCU instance
- virtio_balloon: init 1st buffer in stats vq
- pinctrl: qcom: Don't clear status bit on irq_unmask
- c6x/ptrace: Remove useless PTRACE_SETREGSET implementation
- h8300/ptrace: Fix incorrect register transfer count
- mips/ptrace: Preserve previous registers for short regset write
- sparc/ptrace: Preserve previous registers for short regset write
- metag/ptrace: Preserve previous registers for short regset write
- metag/ptrace: Provide default TXSTATUS for short NT_PRSTATUS
- metag/ptrace: Reject partial NT_METAG_RPIPE writes
- qla2xxx: Allow vref count to timeout on vport delete.
- sched/rt: Add a missing rescheduling point
- usb: musb: fix possible spinlock deadlock
- Linux 4.10.8
* [Hyper-V] pci-hyperv: Use device serial number as PCI domain (LP: #1667527)
- net/mlx4_core: Use cq quota in SRIOV when creating completion EQs
- PCI: hv: Use device serial number as PCI domain
* Miscellaneous Ubuntu changes
- [Config] flash-kernel should be a Breaks
- [Config] drop the info directory
- [Config] drop NOTES as obsolete
- [Config] drop changelog.historical as obsolete
linux (4.10.0-16.18) zesty; urgency=low
[ Tim Gardner ]
* Release Tracking Bug
- LP: #1677697
* [Feature] ISH (Intel Sensor Hub) support (LP: #1645521)
- iio: accel: hid-sensor-accel-3d: Add timestamp
* Zesty update to v4.10.7 stable release (LP: #1677589)
- net/openvswitch: Set the ipv6 source tunnel key address attribute correctly
- net: bcmgenet: Do not suspend PHY if Wake-on-LAN is enabled
- net: properly release sk_frag.page
- amd-xgbe: Fix jumbo MTU processing on newer hardware
- openvswitch: Add missing case OVS_TUNNEL_KEY_ATTR_PAD
- net: unix: properly re-increment inflight counter of GC discarded candidates
- qmi_wwan: add Dell DW5811e
- net: vrf: Reset rt6i_idev in local dst after put
- net/mlx5: Add missing entries for set/query rate limit commands
- net/mlx5e: Use the proper UAPI values when offloading TC vlan actions
- net/mlx5: Increase number of max QPs in default profile
- net/mlx5e: Count GSO packets correctly
- net/mlx5e: Count LRO packets correctly
- ipv6: make sure to initialize sockc.tsflags before first use
- net: bcmgenet: remove bcmgenet_internal_phy_setup()
- ipv4: provide stronger user input validation in nl_fib_input()
- socket, bpf: fix sk_filter use after free in sk_clone_lock
- genetlink: fix counting regression on ctrl_dumpfamily()
- tcp: initialize icsk_ack.lrcvtime at session start time
- amd-xgbe: Fix the ECC-related bit position definitions
- net: solve a NAPI race
- HID: sony: Fix input device leak when connecting a DS4 twice using USB/BT
- Input: ALPS - fix V8+ protocol handling (73 03 28)
- Input: ALPS - fix trackstick button handling on V8 devices
- Input: elan_i2c - add ASUS EeeBook X205TA special touchpad fw
- Input: i8042 - add noloop quirk for Dell Embedded Box PC 3000
- Input: iforce - validate number of endpoints before using them
- Input: ims-pcu - validate number of endpoints before using them
- Input: hanwang - validate number of endpoints before using them
- Input: yealink - validate number of endpoints before using them
- Input: cm109 - validate number of endpoints before using them
- Input: kbtab - validate number of endpoints before using them
- Input: sur40 - validate number of endpoints before using them
- ALSA: seq: Fix racy cell insertions during snd_seq_pool_done()
- ALSA: ctxfi: Fix the incorrect check of dma_set_mask() call
- ALSA: hda - Adding a group of pin definition to fix headset problem
- USB: serial: option: add Quectel UC15, UC20, EC21, and EC25 modems
- USB: serial: qcserial: add Dell DW5811e
- ACM gadget: fix endianness in notifications
- usb: gadget: f_uvc: Fix SuperSpeed companion descriptor's wBytesPerInterval
- dvb-usb-firmware: don't do DMA on stack
- usb-core: Add LINEAR_FRAME_INTR_BINTERVAL USB quirk
- USB: uss720: fix NULL-deref at probe
- USB: lvtest: fix NULL-deref at probe
- USB: idmouse: fix NULL-deref at probe
- USB: wusbcore: fix NULL-deref at probe
- usb: musb: cppi41: don't check early-TX-interrupt for Isoch transfer
- usb: hub: Fix crash after failure to read BOS descriptor
- USB: usbtmc: add missing endpoint sanity check
- USB: usbtmc: fix probe error path
- uwb: i1480-dfu: fix NULL-deref at probe
- uwb: hwa-rc: fix NULL-deref at probe
- mmc: ushc: fix NULL-deref at probe
- nl80211: fix dumpit error path RTNL deadlocks
- mmc: core: Fix access to HS400-ES devices
- iio: adc: ti_am335x_adc: fix fifo overrun recovery
- iio: sw-device: Fix config group initialization
- iio: hid-sensor-trigger: Change get poll value function order to avoid
sensor properties losing after resume from S3
- iio: magnetometer: ak8974: remove incorrect __exit markups
- mei: fix deadlock on mei reset
- mei: don't wait for os version message reply
- parport: fix attempt to write duplicate procfiles
- ppdev: fix registering same device name
- ext4: mark inode dirty after converting inline directory
- powerpc/64s: Fix idle wakeup potential to clobber registers
- audit: fix auditd/kernel connection state tracking
- mmc: sdhci-of-at91: Support external regulators
- mmc: sdhci-of-arasan: fix incorrect timeout clock
- mmc: sdhci: Do not disable interrupts while waiting for clock
- mmc: sdhci-pci: Do not disable interrupts in sdhci_intel_set_power
- hwrng: amd - Revert managed API changes
- hwrng: geode - Revert managed API changes
- clk: sunxi-ng: sun6i: Fix enable bit offset for hdmi-ddc module clock
- clk: sunxi-ng: mp: Adjust parent rate for pre-dividers
- mwifiex: pcie: don't leak DMA buffers when removing
- ath10k: fix incorrect wlan_mac_base in qca6174_regs
- crypto: ccp - Assign DMA commands to the channel's CCP
- fscrypt: remove broken support for detecting keyring key revocation
- vfio: Rework group release notifier warning
- xen/acpi: upload PM state from init-domain to Xen
- iommu/vt-d: Fix NULL pointer dereference in device_to_iommu
- iommu/exynos: Block SYSMMU while invalidating FLPD cache
- iommu/exynos: Workaround FLPD cache flush issues for SYSMMU v5
- Revert "ARM: at91/dt: sama5d2: Use new compatible for ohci node"
- ARM: at91: pm: cpu_idle: switch DDR to power-down mode
- arm64: kaslr: Fix up the kernel image alignment
- cpufreq: Restore policy min/max limits on CPU online
- cgroup, net_cls: iterate the fds of only the tasks which are being migrated
- blk-mq: don't complete un-started request in timeout handler
- cpsw/netcp: cpts depends on posix_timers
- drm/amdgpu: reinstate oland workaround for sclk
- drm/amd/amdgpu: add POLARIS12 PCI ID
- auxdisplay: img-ascii-lcd: add missing sentinel entry in
img_ascii_lcd_matches
- jbd2: don't leak memory if setting up journal fails
- intel_th: Don't leak module refcount on failure to activate
- Drivers: hv: vmbus: Don't leak channel ids
- Drivers: hv: vmbus: Don't leak memory when a channel is rescinded
- mmc: block: Fix is_waiting_last_req set incorrectly
- libceph: don't set weight to IN when OSD is destroyed
- device-dax: fix pmd/pte fault fallback handling
- scsi: sd: Check for unaligned partial completion
- cpuidle: Validate cpu_dev in cpuidle_add_sysfs()
- xen: do not re-use pirq number cached in pci device msi msg data
- drm: reference count event->completion
- fbcon: Fix vc attr at deinit
- crypto: algif_hash - avoid zero-sized array
- Linux 4.10.7
* PS/2 mouse does not work on Dell embedded computer (LP: #1591053)
- Input: i8042 - add noloop quirk for Dell Embedded Box PC 3000
* [Zesty] mlx5_core Kernel oops with bonding mode 1 and 6 (LP: #1676786)
- SAUCE: (no-up) net/mlx5: Avoid dereferencing uninitialized pointer
* [Hyper-V] Implement Hyper-V PTP Source (LP: #1676635)
- Revert "hv: don't reset hv_context.tsc_page on crash"
- Revert "Drivers: hv: vmbus: Raise retry/wait limits in vmbus_post_msg()"
- Revert "hv: allocate synic pages for all present CPUs"
- Revert "hv: init percpu_list in hv_synic_alloc()"
- Revert "Drivers: hv: vmbus: Prevent sending data on a rescinded channel"
- Revert "Drivers: hv: vmbus: Fix a rescind handling bug"
- Revert "Drivers: hv: util: kvp: Fix a rescind processing issue"
- Revert "Drivers: hv: util: Fcopy: Fix a rescind processing issue"
- Revert "Drivers: hv: util: Backup: Fix a rescind processing issue"
- Revert "drivers: hv: Turn off write permission on the hypercall page"
- Revert "UBUNTU: SAUCE: (no-up) hv: Supply vendor ID and package ABI"
- Drivers: hv: vmbus: Raise retry/wait limits in vmbus_post_msg()
- hv: allocate synic pages for all present CPUs
- hv: init percpu_list in hv_synic_alloc()
- hv: don't reset hv_context.tsc_page on crash
- Drivers: hv: vmbus: Prevent sending data on a rescinded channel
- hv: switch to cpuhp state machine for synic init/cleanup
- hv: make CPU offlining prevention fine-grained
- Drivers: hv: vmbus: Fix a rescind handling bug
- Drivers: hv: util: kvp: Fix a rescind processing issue
- Drivers: hv: util: Fcopy: Fix a rescind processing issue
- Drivers: hv: util: Backup: Fix a rescind processing issue
- Drivers: hv: vmbus: Move the definition of hv_x64_msr_hypercall_contents
- Drivers: hv: vmbus: Move the definition of generate_guest_id()
- Drivers: hv vmbus: Move Hypercall page setup out of common code
- Drivers: hv: vmbus: Move Hypercall invocation code out of common code
- Drivers: hv: vmbus: Consolidate all Hyper-V specific clocksource code
- Drivers: hv: vmbus: Move the extracting of Hypervisor version information
- Drivers: hv: vmbus: Move the crash notification function
- Drivers: hv: vmbus: Move the check for hypercall page setup
- Drivers: hv: vmbus: Move the code to signal end of message
- Drivers: hv: vmbus: Restructure the clockevents code
- Drivers: hv: util: Use hv_get_current_tick() to get current tick
- Drivers: hv: vmbus: Get rid of an unsused variable
- Drivers: hv: vmbus: Define APIs to manipulate the message page
- Drivers: hv: vmbus: Define APIs to manipulate the event page
- Drivers: hv: vmbus: Define APIs to manipulate the synthetic interrupt controller
- Drivers: hv: vmbus: Define an API to retrieve virtual processor index
- Drivers: hv: vmbus: Define an APIs to manage interrupt state
- Drivers: hv: vmbus: Cleanup hyperv_vmbus.h
- hv_util: switch to using timespec64
- Drivers: hv: restore hypervcall page cleanup before kexec
- Drivers: hv: restore TSC page cleanup before kexec
- Drivers: hv: balloon: add a fall through comment to hv_memory_notifier()
- Drivers: hv: vmbus: Use all supported IC versions to negotiate
- Drivers: hv: Log the negotiated IC versions.
- Drivers: hv: Fix the bug in generating the guest ID
- hv: export current Hyper-V clocksource
- hv_utils: implement Hyper-V PTP source
- SAUCE: (no-up) hv: Supply vendor ID and package ABI
- drivers: hv: Turn off write permission on the hypercall page
* Populating Hyper-V MSR for Ubuntu 13.10 (LP: #1193172)
- SAUCE: (no-up) hv: Supply vendor ID and package ABI
* Ubuntu 16.10: Network checksum fixes needed for IPoIB for Mellanox CX4/CX5
card (LP: #1670247)
- powerpc/64: Fix checksum folding in csum_tcpudp_nofold and ip_fast_csum_nofold
- powerpc/64: Use optimized checksum routines on little-endian
* Kernel linux-image-4.4.0-67-generic prevent the boot on Microsoft Hyper-v
2012r2 Gen2 VM (LP: #1674635)
- scsi: storvsc: Workaround for virtual DVD SCSI version
* POWER9 Radix mode KVM (LP: #1675806)
- Revert "powerpc: Update to new option-vector-5 format for CAS"
- Revert "powerpc/powernv: Initialise nest mmu"
- Revert "KVM: PPC: Book 3S: XICS: Don't lock twice when checking for resend"
- KVM: PPC: Book3S: Change interrupt call to reduce scratch space use on HV
- KVM: PPC: Book3S: Move 64-bit KVM interrupt handler out from alt section
- KVM: PPC: Book3S: 64-bit CONFIG_RELOCATABLE support for interrupts
- powerpc/64: More definitions for POWER9
- powerpc/64: Export pgtable_cache and pgtable_cache_add for KVM
- powerpc/64: Make type of partition table flush depend on partition type
- powerpc/64: Allow for relocation-on interrupts from guest to host
- KVM: PPC: Book3S HV: Add userspace interfaces for POWER9 MMU
- KVM: PPC: Book3S HV: Set process table for HPT guests on POWER9
- KVM: PPC: Book3S HV: Use ASDR for HPT guests on POWER9
- KVM: PPC: Book3S HV: Add basic infrastructure for radix guests
- KVM: PPC: Book3S HV: Modify guest entry/exit paths to handle radix guests
- KVM: PPC: Book3S HV: Page table construction and page faults for radix guests
- KVM: PPC: Book3S HV: MMU notifier callbacks for radix guests
- KVM: PPC: Book3S HV: Implement dirty page logging for radix guests
- KVM: PPC: Book3S HV: Make HPT-specific hypercalls return error in radix mode
- KVM: PPC: Book3S HV: Invalidate TLB on radix guest vcpu movement
- KVM: PPC: Book3S HV: Allow guest exit path to have MMU on
- KVM: PPC: Book3S HV: Invalidate ERAT on guest entry/exit for POWER9 DD1
- KVM: PPC: Book3S HV: Enable radix guest support
- powerpc/64: CONFIG_RELOCATABLE support for hmi interrupts
- KVM: PPC: Book3S HV: Fix software walk of guest process page tables
- KVM: PPC: Book3S HV: Don't use ASDR for real-mode HPT faults on POWER9
- KVM: PPC: Book3S HV: Don't try to signal cpu -1
- KVM: PPC: Book 3S: Fix error return in kvm_vm_ioctl_create_spapr_tce()
- powerpc/64: Invalidate process table caching after setting process table
- powerpc: Update to new option-vector-5 format for CAS
- KVM: PPC: Book 3S: XICS: Don't lock twice when checking for resend
- powerpc/powernv: Initialise nest mmu
- powerpc/powernv: Remove separate entry for OPAL real mode calls
* [Hyper-V][Mellanox] net/mlx4_core: Avoid delays during VF driver device shutdown (LP: #1672785)
- net/mlx4_core: Avoid delays during VF driver device shutdown
* [zesty] mlx4_core OOM with 32 bit arch (LP: #1676858)
- mlx4: reduce OOM risk on arches with large pages
* [Feature] GLK Northpeak Enabling (LP: #1645963)
- intel_th: pci: Add Denverton SOC support
- intel_th: pci: Add Gemini Lake support
* [zesty] mlx5e OVS fixes (LP: #1676388)
- net/mlx5: Fix create autogroup prev initializer
- net/mlx5e: Avoid supporting udp tunnel port ndo for VF reps
- net/mlx5e: Avoid wrong identification of rules on deletion
- devlink: fix the name of eswitch commands
- devlink: rename devlink_eswitch_fill to devlink_nl_eswitch_fill
- devlink: use nla_put_failure goto label instead of out
- devlink: allow to fillup eswitch attrs even if mode_get op does not exist
- net/mlx5e: Change the TC offload rule add/del code path to be per NIC or E-Switch
- net/mlx5: E-Switch, Don't allow changing inline mode when flows are configured
* [ARM64] Support systems where the physical memory footprint exceeds the size
of the linear mapping. (LP: #1675046)
- SAUCE: efi: arm-stub: Correct FDT and initrd allocation rules for arm64
- SAUCE: efi: arm-stub: Round up FDT allocation to mapping size
* AACRAID Driver: Add 3 patch fixes to Kernel release (LP: #1675872)
- scsi: aacraid: remove redundant zero check on ret
- scsi: aacraid: Fix typo in blink status
- scsi: aacraid: Fix potential null access
* stress_smoke_test passing and exiting rc=9 (linux 4.9.0-12.13 ADT test
failure with linux 4.9.0-12.13) (LP: #1658633)
- ext4: lock the xattr block before checksuming it
* ARM arch_timer erratum (LP: #1675509)
- arm64: ptrace: add XZR-safe regs accessors
- SAUCE: arm64: Allow checking of a CPU-local erratum
- SAUCE: arm64: Add CNTVCT_EL0 trap handler
- SAUCE: arm64: Define Cortex-A73 MIDR
- SAUCE: arm64: cpu_errata: Allow an erratum to be match for all revisions of a core
- SAUCE: arm64: cpu_errata: Add capability to advertise Cortex-A73 erratum 858921
- SAUCE: arm64: arch_timer: Add infrastructure for multiple erratum detection methods
- SAUCE: arm64: arch_timer: Add erratum handler for globally defined capability
- SAUCE: arm64: arch_timer: Add erratum handler for CPU-specific capability
- SAUCE: arm64: arch_timer: Move arch_timer_reg_read/write around
- SAUCE: arm64: arch_timer: Get rid of erratum_workaround_set_sne
- SAUCE: arm64: arch_timer: Rework the set_next_event workarounds
- SAUCE: arm64: arch_timer: Make workaround methods optional
- SAUCE: arm64: arch_timer: Allows a CPU-specific erratum to only affect a subset of CPUs
- SAUCE: arm64: arch_timer: Move clocksource_counter and co around
- SAUCE: arm64: arch_timer: Enable CNTVCT_EL0 trap if workaround is enabled
- SAUCE: arm64: arch_timer: Workaround for Cortex-A73 erratum 858921
- SAUCE: arm64: arch_timer: Allow erratum matching with ACPI OEM information
- SAUCE: arm64: arch_timer: Add HISILICON_ERRATUM_161010101 ACPI matching data
- SAUCE: arm64: arch_timer: Add check for unknown erratum
* Zesty update to v4.10.6 stable release (LP: #1676429)
- give up on gcc ilog2() constant optimizations
- qla2xxx: Fix memory leak for abts processing
- qla2xxx: Fix request queue corruption.
- parisc: Optimize flush_kernel_vmap_range and invalidate_kernel_vmap_range
- parisc: support R_PARISC_SECREL32 relocation in modules
- parisc: Fix system shutdown halt
- perf/core: Fix use-after-free in perf_release()
- perf/core: Fix event inheritance on fork()
- md/r5cache: fix set_syndrome_sources() for data in cache
- xprtrdma: Squelch kbuild sparse complaint
- NFS prevent double free in async nfs4_exchange_id
- cpufreq: Fix and clean up show_cpuinfo_cur_freq()
- powerpc/boot: Fix zImage TOC alignment
- hwrng: omap - write registers after enabling the clock
- hwrng: omap - use devm_clk_get() instead of of_clk_get()
- hwrng: omap - Do not access INTMASK_REG on EIP76
- md/raid1/10: fix potential deadlock
- target/pscsi: Fix TYPE_TAPE + TYPE_MEDIMUM_CHANGER export
- scsi: lpfc: Add shutdown method for kexec
- scsi: libiscsi: add lock around task lists to fix list corruption regression
- scsi: mpt3sas: Avoid sleeping in interrupt context
- target: Fix VERIFY_16 handling in sbc_parse_cdb
- isdn/gigaset: fix NULL-deref at probe
- gfs2: Avoid alignment hole in struct lm_lockname
- percpu: acquire pcpu_lock when updating pcpu_nr_empty_pop_pages
- cgroup/pids: remove spurious suspicious RCU usage warning
- drm/amdgpu/si: add dpm quirk for Oland
- Linux 4.10.6
* Miscellaneous Ubuntu changes
- [Config] CONFIG_ARM64_ERRATUM_858921=y
- [Debian] add rprovides for spl-modules and zfs-modules
-- Tim Gardner <email address hidden> Thu, 06 Apr 2017 17:28:49 +0100
