Group :: Sistema/Kernel e hardware
RPM: kernel-image-centos
Navegação
Main Changelog Spec Patches Sources Download Gear Bugs e FR Repocop
9 agosto 2022 Alexey Gladkov <legion at altlinux.ru> 5.14.0.144-alt1.el9
- Updated to kernel-5.14.0-144.el9 (fixes: CVE-2022-1184):
+ ena: update driver to v5.18
+ ext4: fix use-after-free and memory errors when working with a corrupted directory
+ Fix outstanding device-mapper bugs from upstream 5.19 and 6.0
+ ipmi: When handling send message responses, don't process the message
+ NFS: Fix initialisation of nfs_client cl_flags field
+ opp: fix broken DT boot on Nvidia Jetson
+ scsi: qla2xxx: Fix imbalance vha->vref_count
+ smartpqi updates
+ xfs: Ensure important RHEL8 fixes are present in RHEL9
- Updated to kernel-5.14.0-143.el9 (fixes: CVE-2022-23816, CVE-2022-23825, CVE-2022-29900, CVE-2022-29901):
+ Documentation: add a description for net.core.high_order_alloc_disable
+ net: ping6: Fix memleak in ipv6_renew_options().
+ rebase the input and HID stack in RHEL 9.1
+ [RHEL 9.1.0 BZ 2015209] A couple dma fixes
+ [RHEL9.1 BZ2100482] Revert dmaengine: idxd: Separate user and kernel pasid enabling
+ sched, cpuset: Fix dl_cpu_busy() panic due to empty cs->cpus_allowed
+ sit: do not call ipip6_dev_free() from sit_init_net()
+ x86: Fix RETBleed Vulnerabilities
- Updated to kernel-5.14.0-141.el9:
+ ACPI: VIOT: Fix ACS setup
+ Documentation: Add an explanation of NFSv4 client identifiers
+ Documentation: filesystems: proc: update meminfo section
+ iommu/vt-d: A couple of late landing fixes
+ mm: make slab and vmalloc allocators __GFP_NOLOCKDEP aware
+ mm/munlock: Fix sleeping function called from invalid context bug
+ powercap: intel_rapl: add support for ALDERLAKE_N
+ ppc64le: bpf: bpf_perf_event.h field 'regs' has incomplete type (perf:)
+ scsi: qla2xxx: Fix excessive I/O error messages by default
+ Update ACPI to match Linux v5.18
- Updated to kernel-5.14.0-140.el9:
+ ibmvnic: Properly dispose of all skbs during a failover.
+ Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together
+ perf stat report segfaults
+ powerpc/fadump: save CPU reg data in vmcore when PHYP terminates LPAR
- Updated to kernel-5.14.0-139.el9:
+ cgroup: Miscellaneous bug fixes and enhancements
+ drm/mgag200: Add FB damage clips and gamma support
+ Fix kvm/selftests/rseq_test failure
+ net: mld: fix reference count leak in mld_{query | report}_work()
+ RDMA: Bug fixes from v5.19
+ update the non-x86 portions of drivers/platform to v5.18
+ vsock: backport latest commits for RHEL-9-1
- Updated to kernel-5.14.0-138.el9:
+ Add support for MaxLinear NICs (GPY115/21x/24x driver)
+ blk-mq: don't create hctx debugfs dir until q->debugfs_dir is created
+ block: Fix handling of offline queues in blk_mq_alloc_request_hctx()
+ bonding: bugfix series from v5.19
+ Bring MD kernel up to date
+ CNB: net: Don't include filter.h from net/sock.h
+ crypto: qat: Update QAT drivers upto v5.19
+ Documentation: fix udp_wmem_min in ip-sysctl.rst
+ e1000e: Driver update for RHEL9.1
+ Enable MediaTek BT Support for RHEL-9 and bug fixes
+ fscache: Avoid ASSERTCMP if two threads race into fscache_disable_cookie
+ netdevsim: don't overwrite read only ethtool parms
+ NFSv4.1 support for NFS4_OPEN_RESULT_PRESERVE_UNLINKED
+ nvme: fix RCU hole that allowed for endless looping in multipath round robin
+ redhat/configs/common: Enable CONFIG_LZ4_COMPRESS
+ redhat: workaround CKI cross compilation for scripts
+ RHEL-9 nfsd server post_wcc fixes - clients see increased revalidations
+ sfc: fix efx_separate_tx_channels=y
+ tools/testing/nvdimm: Fix security_init() symbol collision
+ Update intel_idle with SPR and ADL support
+ Update USB and Thunderbolt to v5.19-rc5
+ vdpa/mlx5: Fix ethtool can not set combined numbers in vm when the vcpu < vqs
+ XDP/Networking BPF: 9.1 P2 backports from upstream
- Updated to kernel-5.14.0-136.el9:
+ arm64: update GIC interrupt controller driver to v5.18 level
+ bpftool: Enable libbpf's strict mode by default
+ drivers/base: fix userspace break from using bin_attributes for cpumap and cpulist
+ ipv4: backport upstream fixes
+ nfsd: destroy percpu stats counters after reply cache shutdown
+ x86/kexec: fix memory leak of elf header buffer
+ xfs: fallocate doesn't drop privileges or capabilities
- Updated to kernel-5.14.0-135.el9 (fixes: CVE-2022-34918):
+ ACPI, PCI: Power Management fixes
+ Additional SCSI updates for 9.1
+ audit: backport from upstream v5.18 to v5.19-rc3
+ block drivers: fix build warning on not checking add_disk*
+ IPv6: 9.1 P2 backports from upstream
+ kselftest: backport from upstream P2
+ Make signature verification FIPS compliant
+ mptcp: backports for 9.1p2
+ net: backport upstream fixes for IP tunnels
+ netfilter: 9.1 P2 backports
+ netfilter: nf_tables: stricter validation of element data
+ net: openvswitch: fix misuse of the cached connection on tuple changes
+ net/other: backports for 9.1 p2
+ net/sched: backports for 9.1 p2
+ redhat: fix kernel_variant_package option definition
+ tcp: fix possible divide-by-zero
+ tipc: backports from upstream, 2nd phase
+ tipc: move bc link creation back to tipc_node_create
- Updated to kernel-5.14.0-133.el9 (fixes: CVE-2022-0854, CVE-2022-21123, CVE-2022-21125, CVE-2022-21166, CVE-2022-28893):
+ arm64: Update core arch code to upstream v5.18
+ dlm: fix missing lkb refcount handling
+ fix swiotlb information leak with DMA_FROM_DEVICE
+ igb: Driver Update
+ kdump: round up the total memory size to 128M for crashkernel reservation
+ lockd: set fl_owner when unlocking files
+ lpfc cs9 (rhel9.1) update to 14.2.0.5
+ nfs: reexport documentation
+ ovs: backports for 9.1 P2
+ remoteproc: updates for build issues
+ scsi: target: pscsi: Set SCF_TREAT_READ_AS_NORMAL flag only if there is valid data
+ SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
+ update cpuidle to v5.18
+ Update drivers/base to v5.18
+ x86/speculation/mmio: Fix Processor MMIO Stale Data Vulnerabilities
- Updated to kernel-5.14.0-130.el9:
+ CNB: bpf: Let bpf_warn_invalid_xdp_action() report more info
+ mm: folio backports part 2
+ redhat: make kernel-zfcpdump-core to not provide kernel-core/kernel
+ scsi: csiostor: Add module softdep on cxgb4
+ scsi: iscsi: iSCSI transport bugfixes
- Updated to kernel-5.14.0-129.el9:
+ DRM 5.18 backport
+ ext4,jbd2: Backport fixes from 5.18
+ iRDMA: Driver update to v5.19
+ Make NFSv4 OPEN(CREATE) less brittle
+ net/core: backport fixes from upstream for 9.1 P2
+ redhat/configs: enable CONFIG_SAMPLE_VFIO_MDEV_MTTY
+ spec: Keep .BTF section in modules
+ virtiofs: Add support for SELinux
- Updated to kernel-5.14.0-128.el9:
+ block: kill warning of 'Directory XXXXX with parent 'block' already present!'
+ CNB: gro: get out of core files
+ sched: Fix balance_push() vs __sched_setscheduler()
+ selftests, xsk: Fix bpf_res cleanup test
- Updated to kernel-5.14.0-127.el9:
+ aarch64: Enable NVIDIA Jetson Xavier SoCs
+ fs: dlm: filter messages case to avoid kernel crash
+ hyperv: Add support for AMD SEV-SNP for Azure/Hyper-V
+ igbvf: Driver Update
+ perf: Support Cstate PMU on SPR
+ powercap: intel_rapl: add support for RaptorLake
+ r8169: driver update
+ x86/sme: fix boot failure when memory encryption is enabled
- Updated to kernel-5.14.0-126.el9:
+ cxl: Update CXL code from upstream 5.17.
+ kvm/arm64 rebase for RHEL9.1
+ mm/page_alloc: always attempt to allocate at least one page during bulk allocation
- Updated to kernel-5.14.0-125.el9:
+ bnxt: Driver update for RHEL9.1
+ CIFS, backport two patches that fixes issues in smb2_compound_op
+ gfs2: Make sure FITRIM minlen is rounded up to fs block size
+ i40e: Driver Update
+ iavf: Driver update to upstream 5.18
+ ice: Driver update to upstream 5.18
+ time: Handle negative seconds correctly in timespec64_to_ns()
- Updated to kernel-5.14.0-124.el9:
+ ceph: wait on async create before checking caps for syncfs
+ CNB: lib: bitmap: Introduce node-aware alloc API
+ dm: sync with upstream 5.19
+ scsi: ibmvfc: Allocate/free queue resource only during probe/remove
- Updated to kernel-5.14.0-123.el9:
+ exec: Force single empty string when argv is empty
+ net: backport netdevice and netns refcount tracking and enable them for debug kernels
+ nfs: fix broken handling of the softreval mount option
+ powerpc: Enable execve syscall exit tracepoint
+ rcu: Fix rcu_tasks_verify_self_tests failure
+ scsi: ibmvfc: Store vhost pointer during subcrq allocation
- Updated to kernel-5.14.0-122.el9:
+ Add MEI support for ADL-N
+ Backport fixes for ucounts
+ bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers
+ exec: Force single empty string when argv is empty
+ Intel SDSi: fix issue reading state certificate
+ iwlwifi: fix use-after-free
+ mptcp: fix checksum byte order
+ net: hyper-v: NetVSC driver updates for 9.1
+ [PATCHv3 00/28] support reserving crashkernel above 4G on arm64 kdump
+ s390/crypto: add SIMD implementation for ChaCha20
- Updated to kernel-5.14.0-121.el9:
+ arm64: Update core arch code to upstream v5.16
+ crypto: fips - make proc files report fips module name and version
+ fuse: allow sharing existing sb
+ gfs2: File corruption with large writes when memory is tight
+ kbuild: Enable -std=gnu11
+ redhat/configs: Set CONFIG_VIRTIO_IOMMU on x86_64
+ redhat/kernel.spec.template: fix standalone tools build
- Updated to kernel-5.14.0-120.el9 (fixes: CVE-2022-1998, CVE-2022-2078):
+ block: update with 5.18 for rhel 9.1
+ fanotify: Fix stale file descriptor in copy_event_to_user()
+ netfilter: nf_tables: sanitize nft_set_desc_concat_parse()
+ ntb: update from upstream v5.17
+ redhat: spec: trigger dracut when modules are installed separately
+ [s390] s390/zcrypt: Add admask to zcdn
+ scsi: mpi3mr: Add bsg device support
+ tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.
+ vmxnet3: Update network driver for RHEL 9.1
- Updated to kernel-5.14.0-119.el9:
+ mt76: mt7921: Fix the error handling path of mt7921_pci_probe()
+ powerpc/pseries: Added support for differentiated memory equivalent to ACPI special purpose memory (SPM) (SCM/pmem)
+ revert bus: Make remove callback return void
+ [s390] drivers/s390/char: Add Ultravisor io device
+ [s390] [IBM 9.1 FEAT] Upgrade the SMC driver to latest from upstream, e.g. kernel 5.18
+ tg3: Driver update for RHEL9.1
+ wireless: stack & drivers update to v5.18
- Updated to kernel-5.14.0-118.el9:
+ ixgbe: Driver update for RHEL9.1
+ sfc: update to upstream v5.18
+ SGX updates from v5.17
- Updated to kernel-5.14.0-117.el9:
+ Enable verbose error logging support for nvme
+ ionic: update driver to v5.18
+ Make DMAR_UNITS_SUPPORTED configurable
+ powerpc/rtas: rtas_busy_delay() improvements
+ [s390] zcrypt DD: Exploitation Support of new IBM Z Crypto Hardware - kernel part
+ scripts/pahole-flags.sh: use exit instead of return at the top level
+ Update kernel's PCI subsystem to v5.18
+ XDP and networking eBPF rebase to v5.16
+ xfs: validate inode fork size against fork format
- Updated to kernel-5.14.0-116.el9:
+ CNB: Update TC subsystem to upstream v5.18
+ hv: vmbus: Driver updates for 9.1
+ ixgbevf: Driver update for RHEL9.1
+ [RHEL9.1] IOMMU/DMA Updates
+ video: fbdev: hyperv_fb: Allow resolutions with size > 64 MB for Gen1
+ x86/fpu: KVM: Set the base guest FPU uABI size to sizeof(struct kvm_xsave)
- Updated to kernel-5.14.0-114.el9 (fixes: CVE-2022-1729):
+ block: ignore RWF_HIPRI hint for sync dio
+ lpfc cs9 (rhel9.1) update
+ perf: Fix sys_perf_event_open() race against self
+ redhat/configs: Drop outdated CRYPTO_ECDH and unify CRYPTO_USER configs
+ [s390] Upgrade the zfcp driver to latest from upstream, e.g. kernel 5.18
+ Update ext4 and jbd2 to upstream v5.17
- Updated to kernel-5.14.0-113.el9:
+ bpf update v5.16
+ netfilter: nat: really support inet nat without l3 address
+ netfilter: nf_tables: double hook unregistration in netns path
+ powerpc/rtas: Keep MSR[RI] set when calling RTAS
+ [s390] - s390/dasd: Fix read inconsistency and failure for ESE devices
+ Update ACPI subsystem to match Linux 5.17
+ Watchdog driver (sp5100_tco) support for AMD Family 17 and Family 19 CPUs
- Updated to kernel-5.14.0-112.el9:
+ iio: updates
+ net: mana: MANA driver updates for RHEL 9.1
+ PCI: Hyper-V: PCI driver updates for RHEL 9.1
+ [s390] s390/dasd: Fix data corruption for ESE devices
+ VMCI: Update driver and enable ARM64 build
- Updated to kernel-5.14.0-111.el9 (fixes: CVE-2022-1966):
+ Add pinctrl support for ADL-N
+ block, loop: support partitions without scanning
+ [Intel 9.1 FEAT] [RPL-P] perf: PerfMon support
+ ipv4: do not use per netns icmp sockets
+ netfilter: nf_tables: disallow non-stateful expression in sets earlier
+ remoteproc: updates
+ scsi: fnic: Finish scsi_cmnd before dropping the spinlock
+ turbostat: fix PC6 displaying on some systems
- Updated to kernel-5.14.0-110.el9:
+ ACPI: sysfs: Fix BERT error region memory mapping
+ CNB: net: disable NET_RX_BUSY_POLL on PREEMPT_RT
+ Hyper-V: x86: x86_64 Updates for RHEL 9.1
+ KVM: x86: Rebase to v5.18
+ topology: make core_mask include at least cluster_siblings
- Updated to kernel-5.14.0-109.el9:
+ Backport latest fixes from upstream s390x KVM for the RHEL 9.1 kernel
+ Brush up s390x/zfcpdump/ configs
+ CNB: net: consolidate neif_rx() and make it callable from any context
+ mptcp: better window sharing
+ ovs: 9.1 P1 backports
+ powerpc: Support for reporting NVDIMM performance stats (HMS/SCM/pmem)
+ redhat/configs: enable interconnect for NXP i.MX 8M
+ [s390] s390/cpumf: add new extended counter set for IBM z16
+ [s390] s390/perf: obtain sie_block from the right address
+ x86/split_lock: Enable the split lock feature on Raptor Lake
- Updated to kernel-5.14.0-108.el9:
+ ahci: Add a generic 'controller2' RAID id
+ bnx2x: fix napi API usage sequence
+ CNB: net: add netif_set_real_num_queues() for device reconfig
+ interconnect: updates
+ net/af_packet: add VLAN support for AF_PACKET SOCK_RAW GSO
+ net: openvswitch: fix leak of nested actions
+ NFSv4: Fix free of uninitialized nfs4_label on referral lookup.
+ regulator: updates
+ rpmsg: updates
+ Scheduler late arriving fixes for 9.1
+ scsi: scsi_dh_alua: Properly handle the ALUA transitioning state
+ selftests/bpf: Fix btf_dump test under new clang
+ spmi: updates
+ vdpa: mlx5: prevent cvq work from hogging CPU
- Updated to kernel-5.14.0-106.el9 (fixes: CVE-2022-24448):
+ clk: qcom: rpmhcc: add sc8280xp support to the RPMh clock controller
+ Documentation: add description for net.core.gro_normal_batch
+ Documentation/sysctl: document max_rcu_stall_to_panic
+ drivers/char: fix unused variable warning in mem.c
+ Fixes for nfs_atomic_open()
+ mm, compaction: fast_find_migrateblock() should return pfn in the target zone
+ PTP: backport fixes from upstream
+ [RHEL 9.1.0] IDXD fixes
+ [s390] Upgrade the qeth driver to latest from upstream
- Updated to kernel-5.14.0-105.el9:
+ Add Alderlake and Raptorlake CPU model numbers
+ Documentation/sysctl: document page_lock_unfairness
+ iommu/virtio: Support bypass domains
+ NFSv4.2: Fix up an invalid combination of memory allocation flags
+ Update bluetooth to upstream 5.17-rc5
+ Update thermal/int340x for RPL
+ XDP and networking eBPF rebase to v5.15
- Updated to kernel-5.14.0-104.el9:
+ bonding: driver update for 9.1
+ mptcp: fix subflow accounting on close
+ redhat: enable CONFIG_NET_ACT_CTINFO (as a module)
+ update qedi driver to latest upstream
- Updated to kernel-5.14.0-103.el9:
+ dlm: fix plock invalid read
+ ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()
+ MMIO support for SMBus and ASF controller in AMD APU/CPU
+ mpt3sas: driver update
+ powerpc/pseries/vas: Use QoS credits from the userspace
+ powerpc: support for perf sampling tests (PMU/performance counters/perf) [FEAT]
+ s390/cio: verify the driver availability for path_event call
+ [s390] RDMA/mlx5: Fix number of allocated XLT entries
+ [s390] s390/hypfs: include z/VM guests with access control group set
+ [s390] s390/tape: fix timer initialization in tape_std_assign()
+ scsi: mpi3mr: driver update
+ Sync osnoise/timerlat tracers with v5.17 upstream
+ tcp: stable backports for rhel 9.1 phase 1
+ vfs: make sync_filesystem return errors from ->sync_fs
- Updated to kernel-5.14.0-102.el9:
+ Enable INTEL_HFI_THERMAL
+ livepatch: rebase to linux v5.17
+ perf: sync with upstream v5.17
+ thunderx nic: mark device as unmaintained
+ xfs: Fix the free logic of state in xfs_attr_node_hasname
- Updated to kernel-5.14.0-101.el9:
+ mm: Backport upstream mm commits for kernel-rt
+ redhat: Exclude cpufreq.h from kernel-headers
+ tools: Fix radix-tree test build failure
- Updated to kernel-5.14.0-100.el9:
+ bpf: update to v5.15
+ KVM: Enable storage key checking for intercepted instruction
+ PCI: vmd: IRQ domain assignment to sub devices
- Updated to kernel-5.14.0-99.el9:
+ ceph: backport mainline changes up to v5.18 for RHEL 9.1
+ [EHL] Intel Sensor Hub (ISH): EClite driver enabling
+ Enable virtio-mem as tech-preview for aarch64
+ intel_idle: updates
+ megaraid_sas: driver update
+ net: drop_monitor: support drop reason
+ selftests: RHEL 9.1 backports from upstream
+ update tools/cpupower
- Updated to kernel-5.14.0-98.el9:
+ hv_balloon: rate-limit "Unhandled message" warning
+ KVM: s390: pv: make use of ultravisor AIV support
+ update qla2xxx driver to latest upstream
- Updated to kernel-5.14.0-97.el9 (fixes: CVE-2022-1012, CVE-2022-27666):
+ bridge: update bridge and switchdev to upstream v5.18
+ cifs: truncate the inode and mapping when we simulate fcollapse
+ Enable VM kselftests
+ net: esp: fix out-of-bounds writes (CVE-2022-27666)
+ quota: make dquot_quota_sync return errors from ->sync_fs
+ redhat/configs: enable GUP_TEST in debug kernel
+ ses: fix a fan issue
+ Sync SELinux/LSM code with upstream up to v5.18-rc5
+ tcp: Increase randomness for source port generation.
- Updated to kernel-5.14.0-96.el9 (fixes: CVE-2022-28390):
+ can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path
+ powerpc/ibmvnic: Upgrade ibmvnic device driver to latest from upstream, e.g. kernel 5.18
+ powerps/pseries/dma: Add support for 2M IOMMU page size
+ soc/tegra: Add devm_tegra_core_dev_init_opp_table_common()
+ VFIO refresh to v5.18
- Updated to kernel-5.14.0-95.el9:
+ mm: create a new system state and fix core_kernel_text()
+ openvswitch: Fix setting ipv6 fields causing hw csum failure
+ vmxnet3: Update network driver for RHEL 9.1
- Updated to kernel-5.14.0-94.el9:
+ arch/arm64: Fix topology initialization for core scheduling
+ arm64: enable CONFIG_MEMORY_HOTREMOVE
+ arm64: Fix KPTI disabling on ThunderX
+ CNB: eth: fwnode: remove the addr len from mac helpers
+ CNB: rebase/update devlink for RHEL 9.1
+ dm integrity: fix memory corruption when tag_size is less than digest size
+ drivers/char/random.c: Update for kernel-rt
+ efi: Allow to enable EFI runtime services by default on RT
+ ipvlan/macvlan: phase-1 updates for 9.1
+ locking: Backport upstream v5.18 locking/rcu commits for kernel-rt
+ md: fix NULL pointer deref with nowait but no mddev->queue
+ mptcp: rebase code to 5.18-net-next
+ net: backport core fixes from upstream
+ netfilter: phase 1 backports from upstream
+ netfilter: revert "kernel: lack of port sanity checking in natd and netfilter leads to exploit of OpenVPN clients"
+ NFSv4 only print the label when its queried
+ ntb_hw_amd: Add NTB PCI ID for new gen CPU
+ nvme: tp-8010 support
+ post upstream v5.14 backports for kprobes and arm64
+ scsi: target: update LIO to the latest version
+ xfs: punch out data fork delalloc blocks on COW writeback failure
- Updated to kernel-5.14.0-92.el9:
+ aarch64: Enable NXP i.MX8M SoCs
+ ahci: update to latest
+ genirq/affinity: Consider that CPUs on nodes can be unbalanced
+ platform/x86: Add AMD system management interface
+ RDMA: update to v5.18-rc6
+ SCSI updates for 9.1
+ update qedf driver to latest upstream
- Updated to kernel-5.14.0-90.el9:
+ bareudp: use ipv6_mod_enabled to check if IPv6 enabled
+ ip tunnels: backport upstream fixes
+ ipv4: Backport upstream fixes.
+ net: mpls: Fix notifications when deleting a device
+ Nvme misc fixes and quirks
+ other: backports from upstream
+ platform/x86/intel: Fix 'rmmod pmt_telemetry' panic
+ scsi: target: Allow changing dbroot if there are no registered devices
+ sctp: backports from upstream
+ tipc: backports from upstream
+ xfs: check sb_meta_uuid for dabuf buffer recovery
- Updated to kernel-5.14.0-89.el9:
+ CNB: net: use eth_hw_addr_set()
+ Merge remote-tracking branch 'origin/merge-requests/627' into bz2069275
+ Merge remote-tracking branch 'origin/merge-requests/671' into bz2069275
+ Merge remote-tracking branch 'origin/merge-requests/673' into bz2069275
+ net: cipso: fix warnings in netlbl_cipsov4_add_std
+ sched/deadline: code cleanup
+ Scheduler header clean up
+ Scheduler RT prerequisites
+ wireguard: 9.1 P1 backports
- Updated to kernel-5.14.0-88.el9:
+ mpt3sas: a bugfix
+ oom_kill.c: futex: delay the OOM reaper to allow time for proper futex cleanup
+ qed*: driver updates
+ sched/isolation: Split housekeeping cpumask per isolation features
+ Update ACPI code to match Linux v5.16
+ Update USB and Thunderbolt to v5.17
+ vrf: 9.1 P1 backports
- Updated to kernel-5.14.0-87.el9 (fixes: CVE-2022-0617, CVE-2022-1353):
+ af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register
+ Bring cifs.ko up to 5.16 plus some additional patches
+ cifs: destage any unwritten data to the server before calling copychunk_write
+ CNB: net: make use of helper netif_is_bridge_master()
+ CNB: xsk: Move tmp desc array from driver to pool
+ cpufreq: intel_pstate: updates
+ DAMON support
+ drivers/base/memory: determine and store zone for single-zone memory blocks
+ Fix CVE-2022-0617
+ General updates for kernel-rt
+ Information about perf-iostat is missing
+ macsec: backport fixes from upstream
+ mm: Optimize list lru memory consumption
+ proc/vmcore: pull back upstream commits to RHEL9
+ Redhat: enable Kfence on production servers
+ sctp: check asoc strreset_chunk in sctp_generate_reconf_event
+ tls: backport fixes from upstream
+ xfrm: backport fixes from upstream
- Updated to kernel-5.14.0-86.el9:
+ cifs: fix NULL ptr dereference in smb2_ioctl_query_info()
+ CNB: skbuff: introduce skb_pull_data
+ CNB: stddef: Introduce DECLARE_FLEX_ARRAY() helper
+ CNB: virtchnl: Add support for new VLAN capabilities
+ configs: enable LOGITECH_FF
+ IDXD driver update for 9.1.0
+ perf: Sync with upstream v5.15
+ ping: a couple of fixes in ping_lookup
+ [RHEL-9.1.0 BZ 2068207] redhat: configs: Enable CONFIG_INTEL_IOMMU_DEBUGFS
+ veth: Ensure eth header is in skb's linear part
- Updated to kernel-5.14.0-85.el9 (fixes: CVE-2022-1015, CVE-2022-1016):
+ bnx2x: driver updates
+ CNB: net: annotate accesses to dev->gso_max_* fields
+ CNB: net_tstamp: add new flag HWTSTAMP_FLAG_BONDED_PHC_INDEX
+ CNB: string.h: Introduce memset_after and memset_startat helpers
+ DRM 5.18 backport dependencies
+ Fix for two recent CVEs
+ Fix SCTP client-side peeloff issues with SELinux
+ ipv6: 9.1 P1 stable backports from upstream
+ mm: backport folio support
+ netfilter: conntrack: Add and use nf_ct_set_auto_assign_helper_warned()
+ net: mana: Add handling of CQE_RX_TRUNCATED
+ redhat/configs: Enable CONFIG_NFT_SYNPROXY
+ redhat/configs: enable CONFIG_RANDOMIZE_KSTACK_OFFSET_DEFAULT
+ [RHEL-9.1.0] IPMI update to kernel v5.17
+ Update kernel's PCI subsystem to v5.17
- Updated to kernel-5.14.0-83.el9:
+ Add the amd_pstate driver
+ CNB: net: make dev_watchdog() less intrusive
+ net: fix NULL pointer reference in cipso_v4_doi_free
+ powerpc/pseries: Enable an interface to represent PAPR firmware attributes
+ redhat/configs: aarch64: enable CPU_FREQ_GOV_SCHEDUTIL
+ redhat: configs: Disable CONFIG_MPLS for s390x/zfcpdump
+ x86: intel_epb: Allow model specific normal EPB value
+ x86/platform/uv: UV Kernel support for UV5
- Updated to kernel-5.14.0-82.el9:
+ bpf, test_offload.py: Skip base maps without names
+ CNB: Remove PDE_DATA() and replace by pde_data()
+ dmaengine: ptdma: Initial driver for the AMD PTDMA
+ e1000e: Add support for RPL-S
+ mm: lru_cache_disable: replace work queue synchronization with synchronize_rcu
+ mm/page_owner: Report memory cgroup info
+ mt76: mt7921e: fix possible probe failure after reboot
+ pci: fix multiple definition error when CONFIG_RHEL_DIFFERENCES is not set
+ perf: Fix typos in error messages
+ powerpc/lib/sstep: Don't use __{get/put}_user() on kernel addresses
+ Scheduler updates and fixes
+ selftests/bpf: Make test_lwt_ip_encap more stable and faster
+ Support PREEMPT_DYNAMIC on aarch64
+ ucounts: Backport fixes for ucount rlimits
- Updated to kernel-5.14.0-81.el9:
+ Add LPSS support for RPL-S
+ Enable i2c-i801 support for RPL-S
+ kABI: Prepare mm SST for kABI Lockdown
+ pinctrl: Add support for RPL-S
+ powerpc/pseries/vas: Enable NX-GZIP support with DLPAR and LPM operations
+ pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init
+ RDMA/qedr: Fix reporting max_{send/recv}_wr attrs
+ s390/kexec: fix memory leak of ipl report buffer
+ selftests: xsk: Make packet validation more robust
+ smartpqi updates
+ x86: Introduce Intel SDSi
- Updated to kernel-5.14.0-80.el9 (fixes: CVE-2022-1015, CVE-2022-25636):
+ gfs2: Fix bugs revealed by the dct tool
+ Merge tag 'kernel-5.14.0-70.13.1.el9_0' from 9.0
+ netfilter: heap out of bounds write in nf_dup_netdev.c since 5.4
+ netfilter: nf_tables: validate registers coming from userspace.
+ redhat/configs: Enable CONFIG_RCU_SCALE_TEST & CONFIG_RCU_REF_SCALE_TEST
+ redhat: disable uncommon media device infrastructure
+ redhat: Enable KASAN on all ELN debug kernels
+ Sched/numa: fix allowed numa imbalance
+ scsi: iscsi: iSCSI Offload regression fixes
+ Update thermal/drivers/int340x
- Updated to kernel-5.14.0-79.el9 (fixes: CVE-2020-36516):
+ audit: backport from upstream v5.13-rc1 to v5.16-rc6
+ block: update to v5.17
+ bpf/selftests: Fix namespace mount setup in tc_redirect
+ CNB: ipv6: separate ndisc_ns_create() from ndisc_send_ns()
+ Drivers: hv: Propagate VMBus coherence for performance
+ drivers/net: mark several as unmaintained
+ Fix panic while looking up a symlink due to NULL i_op->get_link
+ Fix "TSC Calibration failed" error
+ ibmvnic: fix race between xmit and reset
+ ice: bonding bug fixes
+ integrity: general upstream bugfixes
+ ipv4: avoid using shared IP generator for connected sockets
+ Merge tag 'kernel-5.14.0-70.11.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.12.1.el9_0' from 9.0
+ Merge up tags kernel-5.14.0-70.11.1.el9_0 to kernel-5.14.0-70.12.1.el9_0
+ mlxsw: Refactor parsing configuration
+ powerpc: fix some vm kernel selftests failures ( userfaultfd | userfaultfd_hugetlb | map_fixed_noreplace) [P10][DD2][Denali]
+ powerpc: P10 hardware counter (PMU/performance counters/perf:) Enhancements [FEAT]
+ powerpc: Support to handle control memory access error [FEAT]
+ powerpc/xive: Export XIVE IPI information for online-only processors.
+ Preallocate pgdat struct for all nodes during boot
+ rcu: Backport upstream RCU related commits up to v5.17
+ RDMA: update to v5.17
+ redhat/configs: disable CONFIG_CAN_SOFTING
+ redhat/configs: Enable WDT devices used by qemu VMs
+ Revert "xfs: actually bump warning counts when we send warnings"
+ Update kernel's PCI subsystem to v5.16
- Updated to kernel-5.14.0-78.el9 (fixes: CVE-2022-0995, CVE-2022-1011, CVE-2022-23960):
+ arm64: Spectre-BHB mitigation (CVE-2022-23960)
+ block: release rq qos structures for queue without disk
+ cifs: modefromsids must add an ACE for authenticated users
+ configs: enable CONFIG_RMI4_F3A
+ crypto: fips - Add algorithm-specific limits for FIPS
+ fuse: fix pipe buffer lifetime for direct_io
+ integrity: enable policy rule for restricting hash algo
+ KVM: SVM: Allow AVIC support on system w/ physical APIC ID > 255
+ Merge branch 'main' into nic_rdma
+ Merge branch 'net-doc' into nic_rdma
+ Merge commit '3801d2d30749ddab3e04e4998145b29bce09ac9a' into 9.0
+ Merge tag 'kernel-5.14.0-70.10.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.6.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.7.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.8.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.9.1.el9_0' from 9.0
+ Merge up tags kernel-5.14.0-70.6.1.el9_0 to kernel-5.14.0-70.10.1.el9_0
+ NFS: Don't loop forever in nfs_do_recoalesce()
+ perf symbols: Fix symbol size calculation condition
+ perf/x86/intel/uncore: Make uncore_discovery clean for 64 bit addresses
+ redhat: Add parallel processing of configs in dist-configs
+ redhat/configs: drop some config options for rhel 9
+ redhat/configs: remove unnecessary GPIO Kconfig options
+ redhat/Makefile: Fix dist-dump-variables target
+ [RHEL9.0 BZ2053219] amd/iommu: Fix I/O page table memory leak and recover from event log overflow
+ [RHEL9 BZ2061621] iommu/vt-d: Fix double list_add when enabling VMD in scalable mode
+ s390/mm: fix 2KB pgtable release race
+ scsi: iscsi: offload sync session regression impacting qedi
+ watch_queue: Fix filter limit check
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-77.el9 (fixes: CVE-2021-26401, CVE-2022-0001, CVE-2022-0002):
+ 2032117 - tpm: fix lpar crash when running on kexec with VTPM2.0 enabled [P10]
+ CNB: ethtool: update ethtool core to upstream v5.16
+ crypto: ccp: update ccp drivers upto v5.17
+ drm/i915/audio: Use BIOS provided value for RKL HDA link
+ Enable KVM AMX on SPR
+ futex: Fix PREEMPT_RT build
+ genirq: Provide new interfaces for affinity hints
+ ibmvnic: fix a race in ibmvnic_probe()
+ [Intel 9.1 Bug] SPR PMU Support: Uncore Events not enabled
+ KVM: use __vcalloc for very large allocations
+ lib/sbitmap: kill 'depth' from sbitmap_word
+ Merge tag 'kernel-5.14.0-70.5.1.el9_0' from 9.0
+ mm/memcg: Fix a lockdep splat in memory cgroup
+ mm: proactively backport MM fixes for RHEL-9.1
+ NFSD size, offset, and count sanity
+ perf tests attr: Add missing topdown metrics events
+ powerpc: Hard lockups are observed while running stress-ng and LPAR hangs [P8][P9][P10]
+ powerpc/papr_scm: Implement initial support for injecting smart errors
+ powerpc/pseries: Fix use after free panic
+ powerpc/smp: Update cpu_core_map on all PowerPc systems
+ redhat/configs: aarch64: Enable ARM_SPE_PMU
+ redhat: configs: Change aarch64 default dma domain to lazy
+ redhat: configs: Disable TPM 1.2 device drivers
+ redhat/configs: make SHA512_arch algos and CRYPTO_USER built-ins
+ redhat: fix make {distg-brew,distg-koji}
+ rename c9s pipeline from centos-stream-9 to c9s
+ SPR PMU Support: Uncore Events not enabled
+ Update kernel's PCI subsystem to v5.15
+ Update nvme to upstream 5.17-rc8
+ x86/speculation: Spectre-v2 BHI mitigation (CVE-2022-0001, CVE-2022-0002)
- Updated to kernel-5.14.0-76.el9:
+ cifs: fix double free race when mount fails in cifs_get_root()
+ copy_process(): Move fd_install() out of sighand->siglock critical section
+ kernel/futex: backport new futex_waitv(2) system call
+ Merge tag 'kernel-5.14.0-70.4.1.el9_0' from 9.0
+ Move Intel PMT drivers into their own directory
+ Sync vDPA with upstream for RHEL9
+ tick/rcu: fix NOHZ tick-stop when performing DLPAR proc remove on ppc64le [P10]
+ x86/hyperv: Output host build info as normal Windows version number
- Updated to kernel-5.14.0-75.el9 (fixes: CVE-2022-0742, CVE-2022-22942):
+ drm/ast: Create threshold values for AST2600
+ drm/vmwgfx: Fix stale file descriptors on failed usercopy
+ Fix FPU bugs that crash guest kernel after migration between newer->older cpu
+ gfs2: Fix fault_in_safe_writeable() for s390x
+ ipv6: fix skb drops in igmp6_event_query() and igmp6_event_report()
+ Merge tag 'kernel-5.14.0-70.3.1.el9_0' from 9.0
+ netfilter: nf_queue: fix socket refcount bugs
+ powerpc: drivers/char: Enable DLPAR operations with systems that have Guest Secure Boot and lockdown enabled
+ powerpc/pseries/ddw: Revert "Extend upper limit for huge DMA window for persistent memory"
+ redhat/configs: aarch64: Fix PAC/BTI config settings
+ redhat/configs: Disable KVM on POWER
+ redhat/configs: Disable watchdog components
+ RHEL9.0: arch_hw Update CONFIG_MOUSE_VSXXXAA=m
+ Sched: Fix fork versus cgroup race
+ scsi: mpi3mr: bug fixes
+ x86/cpu: Add Xeon Icelake-D to list of CPUs that support PPIN
- Updated to kernel-5.14.0-74.el9:
+ Fix bad page state in process qemu-kvm when using TDP_MMU
+ powerpc/ibmvnic: DLPAR fix kernel Oops when add of vNIC device
+ redhat: rpminspect: disable 'patches' check for known empty patch files
- Updated to kernel-5.14.0-73.el9 (fixes: CVE-2022-0516, CVE-2022-0847):
+ Add definition for RAPTOR_LAKE
+ block: kabi: reserve padding space for public structure
+ crypto: Make CRYPTO_EC* algos built-in
+ dm: fix crash and DM IO accounting
+ [EDAC] backport patches needed to support Genoa
+ Enable mellanox platform drivers to support LED, fan & watchdog devices
+ Fix edpc warning message
+ igb/igc: fix XDP registration
+ KVM: s390: Return error on SIDA memop on normal guest
+ lib/iov_iter: initialize "flags" in new pipe_buffer
+ Merge tag 'kernel-5.14.0-70.2.1.el9_0' from 9.0
+ nvmet-tcp: fix missing tech preview messages
+ powerpc: fix kernel panic on boot of PowerVM systems that are running on shared processing mode [Hash]
+ redhat: change default dist suffix for RHEL 9.0
+ redhat/configs: Enable CONFIG_ACER_WIRELESS
+ redhat: prepare to enter into zstream and adjust support for kabi
+ scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop
+ scsi: mpt3sas: driver fixes
+ virtio-net: fix pages leaking when building skb in big mode
- Updated to kernel-5.14.0-72.el9:
+ Merge tag 'kernel-5.14.0-70.1.1.el9_0' from 9.0
+ redhat/configs: Disable CONFIG_SURFACE_PLATFORMS
+ redhat/configs: Enable CONFIG_INTEL_PCH_THERMAL for x86
+ redhat: use centos x509.genkey file if building under centos
+ Revert 8dffe2b6 "Merge: kabi: add lib ACKed symbols"
+ SCSI host-managed SMR drive support in RHEL 9 is unmaintained and needs kernel warning message
+ spec: Fix separate tools build
+ spec: make linux-firmware weak(er) dependency
- Updated to kernel-5.14.0-71.el9:
+ MDRAID - Update to the latest upstream
+ redhat: Bump RHEL_MINOR for 9.1
- Updated to kernel-5.14.0-70.el9 (fixes: CVE-2022-0435, CVE-2022-0492, CVE-2022-24122):
+ Backport fixes for ucounts
+ bpf, arm64: Use emit_addr_mov_i64() for BPF_PSEUDO_FUNC
+ cgroup-v1: Require capabilities to set release_agent (CVE-2022-0492)
+ mm: fix invalid page pointer returned with FOLL_PIN gups
+ net: stmmac: Fix excessive swiotlb memory in nic driver
+ tipc: improve size validations for received domain records
- Updated to kernel-5.14.0-69.el9:
+ wireless update to v5.16+
- Updated to kernel-5.14.0-68.el9 (fixes: CVE-2021-22600, CVE-2021-4028, CVE-2022-0330):
+ drm/i915: Flush TLBs before releasing backing store
+ ena: update elastic network adapter to the latest upstream
+ ext4: fix remount with 'abort' option
+ kernel/sched/sched.h: Exclude cpuidle from KABI
+ kernel.spec: Add glibc-static build requirement
+ libbpf: Use dynamically allocated buffer when receiving netlink messages
+ netfilter: nf_conntrack incorrectly checking SEQ on syn-ack packets
+ net/packet: rx_owner_map depends on pg_vec
+ powerpc: security: Lock down the kernel if booted in secure boot mode
+ RDMA/cma: Do not change route.addr.src_addr.ss_family
+ redhat/configs: Disable arch_hw disabled CONFIGS
+ redhat/configs: Disable CONFIG_SENSORS_NCT6683 in RHEL for arm/aarch64
+ sfc: update to v5.16
+ Thunderbolt: various fixes
- Updated to kernel-5.14.0-67.el9:
+ block: fix for recent update to v5.16
+ ice: westport channel GPIO and SDP support
+ kabi: add lib ACKed symbols
+ redhat: switch the vsyscall config to CONFIG_LEGACY_VSYSCALL_XONLY=y
+ usb: xhci: Enable runtime-pm by default on AMD Yellow Carp platform
- Updated to kernel-5.14.0-66.el9:
+ Update NFS to upstream v5.16
- Updated to kernel-5.14.0-65.el9:
+ ALSA: backport for RHEL 9.0
- Updated to kernel-5.14.0-64.el9 (fixes: CVE-2021-3753):
+ EDAC/i10nm: Retrieve and print retry_rd_err_log registers
+ ice: bugfix update for 9.0
+ igc: driver update for 9.0
+ nvme-fabrics: fix state check in nvmf_ctlr_matches_baseopts()
+ scsi: reserve space in structures for KABI
+ vt_kdsetmode: extend console locking
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-63.el9:
+ ionic: driver update for 9.0
+ wireguard: 9.0 P2 backports from upstream
- Updated to kernel-5.14.0-62.el9 (fixes: CVE-2021-43389):
+ Backport page unpoisoning fixes
+ blktrace: switch trace spinlock to a raw spinlock
+ cgroup/cpuset: Fix RCU lockdep splat
+ CNB: net: create netdev->dev_addr assignment helpers
+ ext4: fix potential NULL pointer dereference in ext4_fill_super()
+ firmware: smccc: Fix check for ARCH_SOC_ID not implemented
+ ibmvnic: fix ethtool -L causing system to hang
+ ibmvnic: Update driver return codes
+ igb: driver update for 9.0
+ isdn: cpai: check ctr->cnr to avoid array index out of bound
+ netfilter: ipset: Emit deprecation warning at set creation time
+ NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION
+ powerpc/fadump: fix "seek error: kernel virtual address: c0000027f5e19000" observed while running crash tool on vmcore captured during fadump
+ rcu: Tighten rcu_advance_cbs_nowake() checks
+ redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS
+ redhat/configs: Enable CONFIG_TEST_BPF
+ redhat: move CONFIG_ARM64_MTE to aarch64 config directory
+ s390/pv: fix the forcing of the swiotlb
+ scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put()
+ scsi: vmw_pvscsi: Set residual data length conditionally
+ tipc: backports from upstream, 2nd phase
+ Two small SELinux fixes
- Updated to kernel-5.14.0-61.el9 (fixes: CVE-2021-4197, CVE-2021-4203, CVE-2022-0264):
+ bpf: Fix kernel address leakage in atomic fetch
+ cgroup: Use open-time credentials for process migraton perm checks
+ Enable KUNIT for CI Testing
+ IB/rdmavt: Validate remote_addr during loopback atomic tests
+ netfilter: P2 backports from upstream
+ nvme: fix a possible use-after-free in controller reset during load
+ ovs: backports P2 for 9.0
+ redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview
+ [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7
+ [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices
+ tracing: Fix trace_percpu_buffer
+ x86: add ITBM support for AlderLake
- Updated to kernel-5.14.0-60.el9 (fixes: CVE-2021-4083):
+ bnx2x: Fix enabling network interfaces without VFs
+ bonding: driver update or RHEL 9.0
+ Change "-auto" suffix to fix CI automotive pipeline issues
+ crypto: jitter - add oversampling of noise source
+ fget: check that the fd still exists after getting a ref to it
+ igbvf: driver update for 9.0
+ ipv6: 9.0 P2 backports from upstream
+ nfsd: fix use-after-free due to delegation race
+ NVMe command id changes for use-after-free CQE detection
+ Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values"
+ sctp: backports from upstream, 2nd phase
+ tun: fix bonding active backup with arp monitoring
+ udp: backports from upstream, 2nd phase
- Updated to kernel-5.14.0-59.el9:
+ gfs2: Upstream backports for mmap and deadlock fixes
+ x86/sgx: Update SGX subsystem code upto v5.16-rc5
- Updated to kernel-5.14.0-58.el9 (fixes: CVE-2022-0185):
+ CI updates
+ Fix load tracking WARNINGs
+ Fix RTC based wakeup for Barcelo
+ Handle warning of allocation failure on DMA zone w/o managed pages
+ ipv4: stable backports for rhel 9.0 (phase 2)
+ KVM: x86: Fix Win11 guests with Hyper-V role + hv_evmcs
+ netfilter: nft_reject_bridge: Fix for missing reply from prerouting
+ PCI: hv: Add arm64 Hyper-V vPCI support
+ pinctrl: amd: Fix wakeups when IRQ is shared with SCI
+ [s390] s390/pci: move pseudo-MMIO to prevent MIO overlap
+ selftests/bpf: Enlarge select() timeout for test_maps
+ vfs: fs_context: fix up param length parsing in legacy_parse_param
- Updated to kernel-5.14.0-57.el9 (fixes: CVE-2021-44733):
+ aacraid: add new messaging
+ arch/x86: KABI structs and array padding
+ dmaengine: idxd: Add wq occupancy information to sysfs attribute
+ dm: sync with upstream 5.17 and fix io accounting issue
+ fix use-after-free in tee driver
+ hpsa: add new messaging
+ lpfc: Add new messaging
+ mpi3mr: driver update
+ mpt3sas, megaraid_sas, mptsas: Add new messaging
+ mptcp: disable by default
+ net/sched: phase-2 stable backports for rhel9
+ NVMe/FC bug fixes for centos-stream-9
+ qla2xxx: Add new messaging
+ redhat: switch the kernel package to use certs from system-sb-certs
+ vrf: Reset IPCB/IP6CB when processing outbound pkts in vrf dev xmit
- Updated to kernel-5.14.0-56.el9:
+ clocksource: Backport upstream fix for hpet fallback problem
+ CNB: pci: Make pci_enable_ptm() accessible for drivers
+ configs: disable CONFIG_CRAMFS
+ iommu/vt-d: Fix unmap_pages support
+ KVM: VMX: switch blocked_vcpu_on_cpu_lock to raw spinlock
+ Merge remote-tracking branch 'gitlab/rh/centos-stream-9/merge-requests/338' into cs9/bz2041931/kfree-skb-reason
+ net: backports before kABI freeze
+ PCI: Add kABI extensions for the kernel's PCI subsystem
+ ppp: ensure minimum packet size in ppp_write()
+ [RHEL-9.0] IPMI Add RH_KABI_RESERVE to kABI sensitive structs
+ x86/hyperv: Properly deal with empty cpumasks in hyperv_flush_tlb_multi()
- Updated to kernel-5.14.0-55.el9:
+ nvme: drop scan_lock and always kick requeue list when removing namespaces
+ redhat/configs: Cleanup pending-common directory
+ redhat/configs: Enable CONFIG_PCI_P2PDMA
+ Resolve cpufreq errors on Alder Lake-S (ADL-S)
+ selftests: 9.0 P2 backport from upstream
- Updated to kernel-5.14.0-54.el9:
+ Wireless stack and drivers update to v5.15
- Updated to kernel-5.14.0-53.el9 (fixes: CVE-2021-40490):
+ ext4, jbd2 update for RHEL9.0
- Updated to kernel-5.14.0-52.el9:
+ KVM: AArch64: Rebase to v5.15
- Updated to kernel-5.14.0-51.el9:
+ Add packaged but empty /lib/modules/<kver>/systemtap
+ Add support for new AMD Family 19h models
+ irdma: Bug fixes from v5.16
+ powerpc/bpf: Update ldimm64 instructions during extra pass
+ RDMA: Bug fixes from v5.16
+ redhat: configs: add CONFIG_NTB and related items
+ redhat/configs: Enable CONFIG_DM_MULTIPATH_HST
+ Scheduler KABI padding
+ selftests: bpf: Fix bind on used port
+ tipc: backports from upstream
- Updated to kernel-5.14.0-50.el9:
+ CNB: bridge: update bridge and switchdev to the latest upstream
+ CNB: rebase/update devlink for RHEL 9.0
+ kernel: Add redhat code
+ kernel/rh_taint.c: Update to new messaging
+ mptcp: rebase to 5.16 net-next
- Updated to kernel-5.14.0-49.el9 (fixes: CVE-2021-3773, CVE-2021-4155, CVE-2021-4203):
+ adding support for c9s automotive coverage build
+ Add 'redhat/rhdocs/' from commit '8d40464cf1fcc46e23510dd722f9ec747a2ff432'
+ af_unix: fix races in sk_peer_pid and sk_peer_cred accesses
+ CNB: net: Remove redundant if statements
+ ip6_vti: initialize __ip6_tnl_parm struct in vti6_siocdevprivate
+ KVM: x86: Wait for IPIs to be delivered when handling Hyper-V TLB flush hypercall
+ netfilter: nat: force port remap to prevent shadowing well-known ports
+ net: introduce kfree_skb_reason
+ net: vlan: fix a UAF in vlan_dev_real_dev()
+ powerpc/cacheinfo: fix bigcores causing irq imbalance with irqbalance
+ powerpc: fix frame size warnings during kernel compilation with larger NR_CPUS value
+ powerpc: handle kdump appropriately with crash_kexec_post_notifiers option
+ powerpc/pseries: Fix memblock warning on bootup
+ redhat: Add documentation subtree
+ selftests/powerpc: fix security tests
+ xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-48.el9:
+ net: mana: More MANA driver updates for RHEL 9.0
+ ibmvnic: fix error when allocating long term buffer during reset
+ [s390] Upgrade the qeth driver for s390x to latest
+ [s390] GLIBC: Support for new IBM Z Hardware - kernel part
+ ima: silence measurement list hexdump during kexec
+ scsi: lpfc: Update lpfc version to 14.0.0.4
+ scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO
+ mm/memcg: Exclude mem_cgroup pointer from kABI signature computation
+ NFS: Default change_attr_type to NFS4_CHANGE_TYPE_IS_UNDEFINED
- Updated to kernel-5.14.0-47.el9 (fixes: CVE-2021-4001):
+ nvmet: make discovery NQN configurable
+ nitro_enclaves: Use get_user_pages_unlocked() call to handle mmap assert
+ include/linux/pci.h: Exclude struct hotplug_slot from KABI
+ net/vsock: backport vsock fixes for RHEL-9.0
+ include/linux/irq*.h: Pad irq structs for KABI
+ include/linux/fwnode.h: Exclude fwnode structs from KABI
+ bpf: Fix toctou on read-only map's constant scalar tracking
+ ACPI: tables: FPDT: Do not print FW_BUG message if record types are reserved
+ virtio: support virtio-mem on x86-64 as tech-preview
- Updated to kernel-5.14.0-46.el9:
+ crypto: qat: Update QAT drivers upto v5.15
- Workqueue update for RT prerequisites
- nvme: avoid race in shutdown namespace removal
- powerpc/xmon: Dump XIVE information for online-only processors.
- CVE-2021-20322 - ipv4: make exception cache less predictible
- [s390] s390/cio: make ccw_device_dma_* more robust
- [s390] s390/pci: add s390_iommu_aperture kernel parameter
- [s390] s390/pci: cleanup resources only if necessary
- [s390] s390/sclp: fix Secure-IPL facility detection
- Revert "[redhat] Generate a crashkernel.default for each kernel build"
- ibmvnic: fix kdump over nfs when auto priority disabled for ibmvnic
- ibmvnic: don't stop queue in xmit
- bpf/selftests: allow disabling tests
- kernel/crash_core: suppress unknown crashkernel parameter warning
- mm: fix memory onlining under the debug kernel
- Fixing CVE-2021-3752 for RHEL-9
- zstd: Sync with upstream 5.16 fixes and improvements
- dm: sync with upstream 5.16 fixes and improvements
- redhat: Pull in openssl-devel as a build dependency correctly
- platform/x86: think-lmi: add debug_cmd
- include/linux/timer.h: Pad timer_list struct for KABI
- kernel: Include RHEL Ecosystem message
- include/linux/ioport.h: Pad resource struct for KABI
- include/linux/hrtimer.h: Pad hrtimer struct for KABI
- redhat/configs: Enable Zstandard compression
- Enable iSER on s390x
- mm: fix for "CoW after fork()" "GUP after fork()" bug
- powerpc/xive: Change IRQ domain to a tree domain
- net: core stable backport for rhel 9.0
- vhost_net: fix OoB on sendmsg() failure.
- printk changes for kernel-rt
- smartpqi updates
- powerpc/module_64: Fix livepatching for RO modules
- net-sysfs: try not to restart the syscall if it will fail eventually
- CI: Cleanup residue from ARK and enable RT check baselines
- redhat: tune rpminspect configuration for upstream and badfuncs tests
- redhat/configs: Enable CONFIG_CRYPTO_BLAKE2B
- netfilter: conntrack: switch to siphash and include zone id in hash again
- redhat: configs: increase CONFIG_DEBUG_KMEMLEAK_MEM_POOL_SIZE
- iommu/dma: Fix incorrect error return on iommu deferred attach
- RDMA/siw: Mark Software iWARP Driver as tech-preview
- genirq changes for kernel-rt
- af_unix: Return errno instead of NULL in unix_create1()
- ftrace: do CPU checking after preemption disabled
- redhat: build and include memfd to kernel-selftests-internal
- netfilter: stable backports for rhel 9.0
- netfilter: ipvs: make global sysctl readonly in non-init netns
- netfilter: ipvs: make global sysctl readonly in non-init netns
- net/sched: 9.0 P1 backports from upstream
- redhat/configs/evaluate_configs: Add find dead configs option
- Replace deprecated CPU-hotplug functions for kernel-rt
- Input: i8042 - Add quirk for Fujitsu Lifebook T725
- sctp: backports from upstream
- sctp: enhancements for the verification tag
- Fix CVE-2020-27820
- redhat/configs: NFS: disable UDP, insecure enctypes
- cpuidle: pseries: Fixup CEDE0 latency only for POWER10 onwards
- powerpc/mce: Fix access error in mce handler
- powerpc/pseries/mobility: ignore ibm, platform-facilities updates
- KVM: SVM: Do not terminate SEV-ES guests on GHCB validation failure
- redhat/configs: enable DWARF5 feature if toolchain supports it
- init: make unknown command line param message clearer
- Enable BT WCN6855 2.1 module
- cgroup: Make rebind_subsystems() disable v2 controllers all at once
- bnxt_en: PTP related commits for inclusion in RHEL 9.0
- Enable AMX(TMUL) for Sapphire Rapids
- drm/hyperv: Fix device removal on Gen1 VMs
- redhat/configs: Always enable CONFIG_PCI_IOV for RHEL on s390x
- wireguard: device: reset peer src endpoint when netns exits
- NVMe-TCP fixes
- ovl: fix missing negative dentry check in ovl_rename()
- selftests/bpf: Fix some issues for selftest test_xdp_redirect_multi.sh
- block: update to v5.16
- mm: update generic MM code to upstream v5.15
- Disable CONFIG_DEBUG_PREEMPT to restore performance
- tcp: phase 1 stable backport for rhel 9.0
- ibmvnic: Fixes for check failover_pending
- kernfs: upstream kernfs concurrency improvement series
- drm/hyperv: Fix double mouse pointers
- Revert "watchdog: iTCO_wdt: Account for rebooting on second timeout"
- redhat/kernel.spec.template: enable dependencies generation
- redhat: configs: Update configs for vmware
- redhat/configs: Enable CONFIG_DRM_VMWGFX on aarch64
- Rebase KVM x86 to 5.15
- hrtimer updates for RT prerequisites
- Backport v5.15 rcu/locking/cgroup dependencies for kernel-rt
- x86: change default to spec_store_bypass_disable=prctl spectre_v2_user=prctl
- Provide and Configure DYNAMIC_PREEMPT
- x86/sgx: mark tech preview
- net: ipv6 p1 stable backport from upstream
- ipv4: stable backports for rhel 9.0
- crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()
- net/l2tp: Fix reference count leak in l2tp_udp_recv_core
- megaraid_sas: driver update
- tpm: Avoid error message when process gets signal while waiting and other upstream fixes
- Add 9p modules.
- ceph: bring ceph client code up to v5.16-rc1
- fix '/proc/pid/wchan is always "0"'
- powerpc/bpf: Fix write protecting JIT code
- vfs: check fd has read access in kernel_read_file_from_fd()
- Disable idmapped mounts
- Sync s390x KVM code with upstream kernel v5.15
- redhat/configs: Remove CONFIG_INFINIBAND_I40IW
- perf test: Handle fd gaps in test__dso_data_reopen
- perf tests vmlinux-kallsyms: Ignore hidden symbols
- perf script: Fix PERF_SAMPLE_WEIGHT_STRUCT support
- redhat/kernel.spec.template: Link perf with --export-dynamic
- xfs: fix I_DONTCACHE
- Fix virtio problem on s390x with raw DASD devices
- net/tls: backport fixes from 5.15
- x86: hv: Hyper-V x86-64 updates for Centos Stream 9
- Upgrade the SMC driver for s390x to latest from upstream
- cifs: enable SMB_DIRECT in RHEL9
- mpt3sas: driver update
- Support DMA implementation of Offload Service Engine (OSE) for Elkhart Lake
- vmxnet3: Update network driver for RHEL 9.0
- CNB: pci: add several VPD helpers
- Add automotive CI jobs
- post 5.14 scheduler fixes
- Add files needed for kbuild.
- clocksource: Workaround the hpet fallback problem
- scsi: target: Fix the pgr/alua_support_store functions
- redhat: fix typo and make the output more silent for dist-git sync
- Improve performace of AMD C3 entry for Family 17h and later
- lpfc updates for centos-9 14.0.0.3
- x86/Kconfig: Do not enable AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT automatically
- ucounts: Fix signal ucount refcounting
- x86/cpu: Fix migration safety with X86_BUG_NULL_SEL
- net: gre: fix csum validation for gre4 and gre6
- redhat/configs: enable KEXEC_SIG for aarch64
- kernel.spec: add bpf_testmod.ko to kselftests/bpf
- netfilter: Add deprecation notices for xtables
- powerpc/svm: Don't issue ultracalls if !mem_encrypt_active() (Herton R. Krzesinski)
- First build for ALTLinux.