Группа :: Система/Ядро и оборудование
Пакет: kernel-image-centos
Главная Изменения Спек Патчи Sources Загрузить Gear Bugs and FR Repocop
25 сентября 2023 Alexey Gladkov <legion at altlinux.ru> 5.14.0.368-alt1.el9
- Updated to kernel-5.14.0-368.el9 (fixes: CVE-2022-45934):
+ Bluetooth: L2CAP: Fix u8 overflow
+ Draft: Merge tag 'kernel-5.14.0-362.4.1.el9_3' from 9.3
+ Expose TPMI interface for SST
+ Merge commit '77fd6b887cd98bac29adffaa04362d033174698e'
+ Merge commit 'ba2e0054d2bb347988c85b4429ef30077cfdc431'
+ Merge tag 'kernel-5.14.0-362.4.1.el9_3' from 9.3
+ arm64: dts: qcom: sa8775p: Backport four commits to silence bogus error messages due to probe deferrals
+ crypto: Backport fixes to eliminate running crypto selftests when FIPS is disabled for automotive
+ drm/amd/display: fix the white screen issue when >= 64GB DRAM
+ net: macsec: fix performance regression between RHEL8 and RHEL9
+ nfsd: fix change_info in NFSv4 RENAME replies
+ perf: sync with upstream v6.5
+ power: TPMI UFS (Uncore Frequency Scaling) Driver
+ power: Update RAPL driver to use TPMI
+ power: pmc: Add PMC driver support for IOE die
+ redhat: add additional gating boot tests
+ sched/nohz: Make nohz_full play nice with cfs bandwidth
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-366.el9:
+ Backport cgroup tests
+ Bluetooth: Add VID/PID 0489/e0e0 for MediaTek MT7921
+ Draft: Merge tag 'kernel-5.14.0-362.3.1.el9_3' from 9.3
+ Enable the Intel TPMI Driver
+ Merge commit '91b73247ecdef17b0792979d292766106fea489a'
+ Merge commit 'd6933a64e07cce40669787cd9e25cec6b112f545'
+ Merge tag 'kernel-5.14.0-362.3.1.el9_3' from 9.3
+ Update kernel's PCI subsystem to v6.4
+ blk-cgroup: two fixes
+ pwm: imx-tpm: driver updates
+ redhat/kernel.spec.template: Add global compression variables
+ redhat: self-test fixes
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-364.el9 (fixes: CVE-2023-3776):
+ Draft: Merge tag 'kernel-5.14.0-362.2.1.el9_3' from 9.3
+ Fixes for tracing subsystem
+ Merge commit '22c722feb2234cc45732b4461007d11563119595'
+ Merge tag 'kernel-5.14.0-362.2.1.el9_3' from 9.3
+ PCI: hv: Fix a crash in hv_pci_restore_msi_msg() during hibernation
+ amd64_edac: add support for F19h models 0x60 - 0x7f (Ryzen)
+ arm64: dts: qcom: sa8775p: add the PMU node
+ bonding: update port speed when getting bond speed
+ bpf: sockmap: Remove preempt_disable in sock_map_sk_acquire
+ gpio: davinci: Stop using ARCH_NR_GPIOS
+ gpio: remove MODULE_LICENSE in non-modules
+ iio: adc: imx93: fix a signedness bug in imx93_adc_read_raw()
+ locking: revert comment from KRTS JiraReadiness exercise
+ net/sched: cls_fw: Fix improper refcount update leads to use-after-free
+ pinctrl: qcom: Add intr_target_width field to support increased number of interrupt targets
+ rhel: Re-add can-dev features that were removed accidentally
+ scsi: libfc: Remove get_cpu() semantics in fc_exch_em_alloc()
+ scsi: st: Add third party poweron reset handling
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-363.el9:
+ Backport the erofs filesystem support for chunk-based file on-disk format
+ Draft: Merge tag 'kernel-5.14.0-362.1.1.el9_3' from 9.3
+ Fix Thunderbolt 3 display flickering issue on 2nd hot plug onwards
+ Merge commit '0a495f582c7d925e3d24ff5775d761858302a22f'
+ Merge tag 'kernel-5.14.0-362.1.1.el9_3' from 9.3
+ Revert MR 2687: firmware subsystem rebase up to v6.3
+ [s390]: [IBM 9.3 FEAT] Secure Execution APQN binding and IBK association - kernel part
+ cgroup/cpuset: Provide better cpuset API to enable creation of isolated partition
+ dlm: fix plock lookup when using multiple lockspaces
+ redhat: bump RHEL_MINOR for 9.4
+ redhat: change default dist suffix for RHEL 9.3
+ redhat: configs: Disable CONFIG_CRYPTO_STATS since performance issue for storage
+ redhat: enable zstream release numbering for rhel 9.3
+ redhat: list Z-Jiras in the changelog before Y-Jiras
+ sched/core: Use empty mask to reset cpumasks in sched_setaffinity()
+ x86/cpu: Enable STIBP on AMD if Automatic IBRS is enabled
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-362.el9 (fixes: CVE-2023-4128):
+ A kernel panic occurred: kernel BUG at fs/gfs2/glock.c:670!
+ Requesting a merge of 6 critical Broadcom patches into the lpfc inbox driver.
+ ext4: drop dio overwrite only flag and associated warning
+ ice: Fix NULL pointer deref during VF reset
+ net/sched Bind logic fixes for cls_fw, cls_u32 and cls_route
+ openvswitch: use kfree_skb_reason for ovs drops
+ sched/core: Add __always_inline to schedule_loop()
+ smb: client: fix null auth
+ x86/kasan: fix on-demand shadow mapping of percpu CEA pages
- Updated to kernel-5.14.0-361.el9 (fixes: CVE-2023-30456, CVE-2023-4194):
+ Backport KVM fixes from upstream 6.5
+ Backport MANA updates and bug fixes
+ Fix memory leak in watch_queue
+ KVM: nVMX: add missing consistency checks for CR0 and CR4
+ MLX5: Add upstream patch for MLX5 thermal
+ Update tree for CI (kpet-db) to autosd-rt from autosd-rhivos-rt
+ dm cache policy smq: ensure IO doesn't prevent cleaner policy progress
+ drm/nouveau/nvkm/dp: Add workaround to fix DP 1.3+ DPCD issues
+ firmware subsystem rebase up to v6.3
+ gfs2: Fix filesystem freeze deadlocks
+ locking: 9.3 KRTS JiraReadiness exercise
+ redhat/configs: enable CONFIG_INET_DIAG_DESTROY
+ redhat/configs: enable Tegra114 SPI controller
+ redhat/configs: turn on the framework for SPI NOR for ARM
+ redhat: add IMA certificates
+ redhat: stop tainting the kernel with virtio-mem
+ scsi: storvsc: Limit max_sectors for virtual Fibre Channel devices and fix duplicate commit
+ selftests: fix mptcp_join test
+ tun/tap: set sk_uid from current_fsuid()
+ vdpa/mlx5: backport fix for vdpa
+ vxlan: fix segmentation and GRO for VXLAN-GPE
+ x86/mm: Ease W^X enforcement back to just a warning
+ x86/sev: Do not try to parse for the CC blob on non-AMD hardware
- Updated to kernel-5.14.0-358.el9 (fixes: CVE-2023-1380, CVE-2023-1855, CVE-2023-3390, CVE-2023-3773, CVE-2023-4004, CVE-2023-4147, CVE-2023-4155):
+ CVE-2023-1855 kernel: use-after-free bug in remove function xgene_hwmon_remove [rhel-9]
+ Fix power logic to improve DGPU performance on a desktop system that doesn't report having a power supply
+ KVM: SEV: only access GHCB fields once (CVE-2023-4155)
+ Merge commit '254b93df441bd8e37780eedf85f0d2395ab2ad81' from documentation
+ netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHAIN_ID
+ netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
+ netfilter: nft_set_pipapo: fix improper element removal
+ tpm: Enable SPI TPM for NVIDIA Grace
+ wireless: base for the MR including dependencies
+ wireless: update to v6.4 + bugfixes
+ xfrm: out-of-bounds read of XFRMA_MTIMER_THRESH nlattr
+ Various changes and improvements that are poorly described in merge.
- Enable apparmor.
- Updated to kernel-5.14.0-357.el9 (fixes: CVE-2022-40982, CVE-2023-0597, CVE-2023-3389, CVE-2023-3772, CVE-2023-4273):
+ Add MC client for Tegra234 GPU
+ Add interconnect support for DRAM scaling in Tegra234
+ Add support for HTE subsystem and Tegra GTE
+ CNB: net: extend drop reasons for multiple subsystems
+ DRM Stable Backport 9.3 from v6.3.13
+ Increase the maximum number of dynamic misc devices to 1048448
+ KVM: arm64: Last Round of fixes up to v6.5
+ MLX5 driver upgrade - kernel v6.3
+ PCI VPD and PME fixes
+ Revert "PCI: tegra194: Enable support for 256 Byte payload"
+ Synchronize virtio ring, net, blk and scsi with upstream
+ [RHEL-9.3] EFA driver update to 6.3
+ [s390]: RHEL9.0 - zfcp: defer fc_rport blocking until after ADISC response
+ crypto: rng - Fix lock imbalance in crypto_del_rng
+ drm/simpledrm: Support the XB24/AB24 format
+ exfat: check if filename entries exceeds max filename length
+ fuse: optional supplementary group in create requests
+ hwmon: (ina3221) fix and enable driver
+ i2c: tegra: add GPCDMA support and allocate DMA memory for DMA engine
+ io_uring: pull in fixes from upstream
+ irqchip: arm: update arm gic code to upstream v6.4-rc5
+ kernel: x86/mm: Randomize per-cpu entry area [rhel-9]
+ net: deprecate PF_KEY
+ net: stmmac: tegra: Properly allocate clock bulk data
+ nvme: tcp&rdma: fix potential io hang during reconnection
+ redhat: Switch UKI to using its own SecureBoot cert
+ scsi: storvsc: Fix handling of virtual Fibre Channel timeouts
+ watch_queue: Fix NULL dereference in error cleanup
+ x86/speculation: Add Gather Data Sampling (GDS) mitigation (CVE-2022-40982)
+ xfrm: add NULL check in xfrm_update_ae_params
- Updated to kernel-5.14.0-354.el9 (fixes: CVE-2023-1206):
+ Backport fixes for qcom-snps-femto-v2 PHY driver
+ Enable Nvidia backlight EC support to resolve backlight control issues
+ KEYS: use kfree_sensitive with key
+ Merge commit '4b8b6ef90ba2ddba3bfd9cd15310634040e3ab37'
+ Revert "x86/PAT: Have pat_enabled() properly reflect state when running on Xen"
+ Sync vDPA with upstream for RHEL 9.3
+ VMCI: Use threaded irqs instead of tasklets
+ drm/simpledrm: Pending patches required to support HDMI on the NVIDIA Orin
+ ext4: Fix generic/622 failure
+ fuse: add "expire only" mode to FUSE_NOTIFY_INVAL_ENTRY
+ i40e: Wait for pending VF reset in VF set callbacks
+ ipv4: Backport upstream fixes.
+ ipv6: fix locking issues with loops over idev->addr_list
+ mm/nvdimm: fix failure to install os on some ppc systems
+ net: Enable HSR and PRP
+ netfilter: nf_tables: Support resetting state in rules and set elements
+ netfilter: nf_tables: add reschedule during chain loop detection
+ pinctrl: tegra: Add Tegra234 pinctrl driver to RHEL9 kernel
+ rbd: exclusive lock blocklisting and osd_request_timeout handling fixes
+ redhat/configs: Remove CONFIG_DRM_I915_GVT & CONFIG_DRM_I915_GVT_KVMGT
+ tcp: Reduce chance of collisions in inet6_hashfn().
+ update cpufreq subsystem to v6.3
+ virtio_transport: temporarily do not depend on ANY_LAYOUT support
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-350.el9 (fixes: CVE-2023-1998, CVE-2023-20593, CVE-2023-3141, CVE-2023-3268):
+ ACPI: Avoid breaking S3 wakeup due to might_sleep()
+ Interrupted internal reads from gfs2 cause the gfs_fsck_stress test to fail.
+ Merge commit 'b404d59080284fb93d4a49e5109b790084b15212' from documentation
+ PCI: hv: Enable PCI pass-thru devices in Confidential VMs
+ Revert "NFSv4: Retry LOCK on OLD_STATEID during delegation return"
+ Revert "cgroup: cgroup-v1: do not exclude cgrp_dfl_root"
+ Tunnel: fix gre/geneve tos inheriting issues
+ Updates for powerpc ibmvnic reset
+ bpf, xdp: backports from upstream (phase 2)
+ fs: dlm: plock fixes
+ i2c: tegra: Fix PEC support for SMBUS block read
+ i2c: tegra: Set ACPI node as primary fwnode
+ memstick: r592: Fix UAF bug in r592_remove due to race condition
+ mlxsw: Update mlxsw driver to the upstream 6.3
+ perf: arm_cspmu: fixes
+ redhat/configs: enable TEGRA186_GPC_DMA driver
+ relayfs: fix out-of-bounds access in relay_file_read
+ s390x: Implement IBK insertion in the UV Device Driver
+ sa8775p-ride: backport ethernet support
+ sched/core: Provide sched_rtmutex() and expose sched work helpers
+ scsi: storvsc: Handle SRB status value 0x30
+ selinux: make labeled NFS work when mounted before policy load
+ tools/power/x86/intel-speed-select: Support more than 8 sockets.
+ tracing: bpf: use struct trace_entry in struct syscall_tp_t
+ vmstat: skip periodic vmstat update for isolated CPUs
+ x86/cpu/amd: Zenbleed kernel workaround (CVE-2023-20593)
+ x86/speculation: Allow enabling STIBP with legacy IBRS
+ xfs: block reservation too large for minleft allocation
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-347.el9 (fixes: CVE-2023-3090, CVE-2023-31248, CVE-2023-35001, CVE-2023-35788):
+ Backport afs and rxrpc fixes
+ Enable STUSB160X driver for rhel on aarch64
+ Fix ACPI brightness adjustment on Dell laptops
+ Merge commit '573a82531128e2dd563c427eb8bcb27c006df382' from documentation
+ PM/devfreq: governor: Add a private governor_data for governor
+ Updates for powerpc hcall
+ Updates for powerpc mmap lock
+ [RHEL for Edge] updates for drivers/gpio fully supports SystemReady IR
+ ceph: fix use-after-free bug for inodes when flushing capsnaps
+ clk: imx8m: driver updates
+ ext4: Fix files not being shown in nfs exports after creation
+ i2c: imx: driver updates
+ iavf: bug fixes July 2023
+ ice: bug fixes July 2023
+ iio: adc: add imx93 adc support
+ ipvlan:Fix out-of-bounds caused by unclear skb->cb
+ irqchip/imx driver updates
+ libceph: harden msgr2.1 frame segment length checks
+ net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
+ netfilter: nf_tables: do not ignore genmask when looking up chain by id
+ netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
+ redhat/configs: Enable CONFIG_TCG_VTPM_PROXY
+ redhat/configs: disable CONFIG_USB_DWC2 and CONFIG_USB_DWC3 on x86
+ s390x KVM fixes from kernel v6.2 up to v6.5-rc1
+ selftests/ftrace: Stop tracing while reading the trace file by default
+ update drivers/cpuidle to match v6.3
+ wwan: enable Qualcomm driver
+ wwan: enable t7xx driver
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-344.el9 (fixes: CVE-2023-3212):
+ ALSA: Add audio support for Dell SKU 0BDA and 0B34
+ IPv6: 9.3 P2 backports from upstream
+ MLX4 driver upgrade - kernel v6.3
+ Merge commit '9db75894fd7f696bbfe39887bb50e6782c0d073c' from documentation
+ Merge remote-tracking branch 'origin/merge-requests/2571' into arm9.3.1
+ Monitor lost after replug WD19TBS to SUT port wiith VGA/DVI to type-C dongle
+ Revert "wifi: mark the support for WiFi on aarch64 architecture as tech preview"
+ SEV-SNP Guest Support Updates
+ Update RHEL9.3 USB And Thunderbolt to linux_v6.3
+ Update drivers/power in order to support Arm SystemReady IR platforms
+ [RHEL for Edge] enable SERIAL_TEGRA UART
+ amd-pstate: take select fixes
+ arm64: rebase arm core code to upstream v6.3
+ backport the JOBCTL_TRACED changes to reconcile CONFIG_PREEMPT_RT with ptrace
+ cgroup: Update cgroup code base to v6.2
+ cgroup: cgroup-v1: do not exclude cgrp_dfl_root
+ clk: imx: updates
+ drivers/perf: update arm PMU drivers to upstream v6.3
+ drivers: net: can: Add updates to ensure drivers/net/can fully supports SystemReady IR
+ dt-bindings: can: fsl,flexcan: add imx93 compatible
+ dt-bindings: gpio: Remove FSI domain ports on Tegra234
+ ext4: allow concurrent unaligned dio overwrites
+ gfs2: Don't deref jdesc in evict
+ igb: Driver Update
+ input/hid subsystem rebase to v6.3
+ kernfs: switch global kernfs_rwsem lock to per-fs lock
+ mptcp: phase-2 backports for RHEL-9.3
+ net/other: phase-2 backports for RHEL-9.3
+ net/sched: phase-2 backports for RHEL-9.3
+ net: backport macsec fixes from upstream
+ net: openvswitch: add support for l4 symmetric hashing
+ net: openvswitch: fix upcall counter access before allocation
+ net: tunnels: Backport upstream fixes to RHEL 9.
+ netfilter: backport fixes from upstream
+ netfilter: conntrack: allow insertion clash of gre protocol
+ nvme-pci: clamp max_hw_sectors based on DMA optimized limitation
+ nvme-pci: fix DMA direction of unmapping integrity data
+ pinctrl: amd: update to upstream
+ redhat/configs: enable CONFIG_MEDIA_SUPPORT for RHEL on aarch64
+ redhat/configs: turn on i.MX8MP interconnect driver
+ redhat: make libperf-devel require libperf 5.14.0.368-alt1.el9
+ scsi: sd: Add "probe_type" module parameter to allow synchronous probing
+ seccomp: Move copy_seccomp() to no failure path.
+ sfc: fix XDP queues mode with legacy IRQ
+ soc/tegra: pmc: Support software wake-up for SPE, PMIC and MGBE
+ soc: imx: gpcv2: driver updates
+ tipc: backports from upstream, 2nd phase
+ tls: backport fixes from upstream
+ update drivers/base to Linux v6.3
+ writeback: fix dereferencing NULL mapping->host on writeback_page_template
+ wwan: enable iosm driver
+ x86/retbleed: Call depth tracking mitigation
+ xfs-dax: followup to xfs-dax sync to v6.0
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-340.el9 (fixes: CVE-2023-3161):
+ Add PMT support for MTL-P
+ Backport kernel audit enhancements and fixes up to upstream v6.4
+ KVM/ARM rebase (2nd round)
+ KVM: SVM: Add IA32_FLUSH_CMD guest support
+ KVM: x86: too many kworkers created during VM boot
+ MLX5 driver upgrade - kernel v6.2
+ NFSv4.1: freeze the session table upon receiving NFS4ERR_BADSESSION
+ Team: 9.3 P2 backports from upstream
+ arm64: kaslr: don't pretend KASLR is enabled if offset < MIN_KIMG_ALIGN
+ blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none
+ bnxt_en: Add auxiliary driver support
+ bonding: do not assume skb mac_header is set
+ cifs: sync to upstream 6.3
+ crypto: ccp - Update CCP drivers upto v6.4
+ dm: fix outstanding device-mapper bugs submitted to upstream
+ drm/ast: Fix ARM compatibility
+ fbcon: Check font dimension limits
+ fuse: fix deadlock between atomic O_TRUNC and page invalidation
+ igbvf: Driver Update
+ igc: Driver Update
+ interconnect: qcom: update to kernel v6.3
+ kernel/rh_messages.c: Another gcc12 warning on redundant NULL test
+ net: xfrm: backport fixes from upstream
+ netfilter: snat: evict closing tcp entries on reply tuple collision
+ nfs: don't report STATX_BTIME in ->getattr
+ redhat/Makefile: Fix RHJOBS grep warning
+ sched/fair: Don't balance task to its current running CPU
+ scsi: hyper-v: storvsc: driver update for RHEL-9.3
+ sctp: backports from upstream, 2nd phase
+ sfc: use budget for TX completions
+ soc/tegra: fuse: Remove nvmem root only access
+ virt/sev-guest: Make the driver auto-load
+ x86/bugs: Workaround for incorrectly set X86_BUG_RETBLEED under VMware
- Updated to kernel-5.14.0-337.el9:
+ ALSA - update drivers for 9.3
+ ALSA: hda: Add NVIDIA codec IDs a3 through a7 to patch table
+ Allow to enroll custom IMA keys
+ Merge commit '8ba3d007f0f6681e59877369bbb9b8435edb27af' from documentation
+ Misc tracing backports for rtla [rhel-9]
+ RHEL for Edge ARM enable/support Bluetooth
+ Revert "RDMA/core: Refactor rdma_bind_addr"
+ Revert "RDMA/umem: remove FOLL_FORCE usage"
+ Support sub-NUMA clustering on UV
+ [s390]: [IBM 9.3 FEAT] Support for List-Directed dump from ECKD DASD - kernel part
+ cdc-ether & r8152 update
+ ceph: backport mainline changes up to v6.4 for RHEL 9.3
+ cpufreq: intel_pstate: Fix scaling for hybrid-capable systems with disabled E-cores
+ fuse: allow non-extending parallel direct writes on the same file
+ ipvlan: fix bound dev checking for IPv6 l3s mode
+ irq_work: use kasan_record_aux_stack_noalloc() record callstack
+ net: core: stable backport form upstream for 9.3 phase 2
+ net: improve skb hash stability when net.core.txrehash=0
+ nvme-core: fix memory leaks exposed through blktests
+ nvme-tcp: fence TCP socket on receive error
+ selftests: 9.2 P3 backports from upstream
+ tcp: stable backport for 9.3 phase 2
+ udp: stable backport for 9.3 phase 2
+ vhost_vdpa: backport bug fix for vdpa device
+ x86/MCE/AMD: Clear DFR errors found in THR handler
+ xfs-dax: sync to upstream v6.0
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-334.el9:
+ ACPI: processor idle: avoid call to raw_local_irq_disable() from acpi_safe_halt()
+ KVM: Rebase KVM common and x86 to upstream 6.3
+ NFS/NFSD/SUNRPC fixes rollup for RHEL 9.3
+ Revert "Disable idmapped mounts"
+ docs: admin-guide: Add information about intel_pstate active mode
+ net: stmmac: propagate feature flags to vlan
+ nfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net
+ platform/x86: intel-uncore-freq: add Emerald Rapids support
- Updated to kernel-5.14.0-333.el9:
+ DRM backport 9.3 from v6.3
+ PCI: hv: fix crash/hang Issues due to fast VF add/remove events
+ Proactively Backport MM fixes for el9.3
+ RDMA: Add support for MANA_INFINIBAND driver
+ arm64: Update nvidia tegra-related devicetree files
+ bpf, xdp: update to 6.3
+ mm/memcg: Free percpu stats memory of dying memcg's
+ redhat: include the information about builtin symbols into kernel-uki-virt package too
+ redhat: rpminspect: update config
- Updated to kernel-5.14.0-332.el9:
+ Enable the amd-pstate-ut driver for testing
+ Improve the error messages in the case where the MP2 driver fails to load
+ Merge commit 'b8bb931ba6cb48e877961f4744cd498226b79d30' from documentation
+ Qualcomm SPI updates for sa8775p
+ Update k10temp driver
+ [RHEL-9] backport rtla hwnoise
+ locking/rwbase: Mitigate indefinite writer starvation.
+ perf: Sync with upstream v6.3
+ scsi: scsi_transport_fc: Add an additional flag to fc_host_fpin_rcv()
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-331.el9 (fixes: CVE-2023-1989, CVE-2023-2235):
+ Backport support for sa8775p reboot mode driver
+ Backports for sa8775p : I2C, GPUCC, QMP
+ Block: two misc fixes
+ Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition
+ Bring amd-pmc up-to-date with upstream 6.3
+ CNB: net: adopt u64_stats_t & remove obsolete u64_stats_fetch_*_irq() functions
+ Compile s390x KVM selftests with -march=z10 and fix problem with async teardown
+ Create rv package
+ EDAC: add support for Emerald Rapids
+ Fix problems fetching TBT3 DROM from AMD USB4 routers
+ Proactively backport generic kernel-core fixes from upstream
+ RDMA/irdma: Report the correct link speed
+ Revert "cpuidle, intel_idle: Fix CPUIDLE_FLAG_IRQ_ENABLE *again*"
+ Revert "softirq: Let ksoftirqd do its job"
+ Update Octeontx2 networking drivers to RHEL 9.3
+ Update UFS to 6.3
+ Update intel-speed-select driver and tool
+ [RHEL-9] backport timerlat auto analysis
+ [s390] : RHEL9.3 - Additional non-IBM QETH fixes for RHEL 9.3
+ [s390]: RHEL9.0 - PCI: s390: Fix use-after-free of PCI resources on re-configure
+ [s390]: RHEL9.0 - s390/dasd: Use correct lock while counting channel queue length
+ [s390]: [IBM 9.3 FEAT] Support for new IBM Z Hardware (IBM z16) - Reset DAT-Protection facility support
+ arm64: dts: qcom: sa8540p-ride: Specify ethernet phy OUI
+ backport vsock patches for RHEL-9.3
+ block: two block layer core fixes and one null_blk fix
+ bnxt_en: driver update for RHEL 9.3
+ can: flexcan: add auto stop mode for IMX93
+ config: wifi: enable RTL8852 card
+ crypto: jitter - correct health test during initialization
+ drivers/rtc: Rebase to upstream Linux v6.3-rc7
+ e1000e: Disable TSO on i219-LM card to increase speed
+ epoll: use refcount to reduce ep_mutex contention
+ fanotify: Allow user space to pass back additional audit info
+ fs: don't audit the capability check in simple_xattr_list()
+ hwmon: (coretemp) avoid RDMSR interrupts to isolated CPUs
+ ice: make writes to /dev/gnssX synchronous
+ ixgbevf: driver update for RHEL 9.3
+ kernel.spec: Fix UKI naming to comply with BLS
+ kernel.spec: package unstripped test_progs-no_alu32
+ lockd: fix races that can result in stuck filelocks
+ loop: LOOP_CONFIGURE: send uevents for partitions
+ lpfc update for rhel-9.3
+ net: Remove spurious warning in sk_stream_kill_queues()
+ net: sync skb free reasons
+ netfilter: 9.3 backports from upstream
+ netfilter: conntrack: fix possible bug_on with enable_hooks=1
+ netfilter: ip6t_rpfilter: Fix regression with VRF interfaces
+ objtool updates for 9.3
+ osnoise: backport options file required to rtla hwnoise
+ perf: Fix check before add_event_to_groups() in perf_group_detach()
+ perf: Sync with upstream v6.2
+ phy: freescale: imx8m-pcie: driver updates
+ platform/x86: ISST: Remove 8 socket limit
+ qcom: scm: backport latest changes
+ qede: fix interrupt coalescing configuration
+ rbd: avoid fast-diff corruption in snapshot-based mirroring
+ redhat/configs: turn on lpuart serial port support Driver
+ redhat: don't enforce WERROR for out of tree modules
+ regulator: update to 6.4-rc5
+ rtnetlink: a couple of fixes in linkmsg validation
+ selinux: Implement mptcp_add_subflow hook
+ stmmac: fix changing mac address
+ thermal subsystem rebase up to v6.3
+ vfio/pci: demote hiding ecap messages to debug level
+ virtio-net: fix for skb_over_panic inside big mode
+ x86/cpu: Add Xeon Emerald Rapids to list of CPUs that support PPIN
+ x86/mm: Avoid incomplete Global INVLPG flushes
+ x86/show_trace_log_lvl: Ensure stack pointer is aligned, again
- Updated to kernel-5.14.0-325.el9 (fixes: CVE-2023-1637, CVE-2023-2124):
+ CNB: bridge and switchdev update to v6.3
+ CNB: netlink: add support for bulk delete / flush operations
+ CNB: rtnetlink: add extack support in fdb del handlers
+ Merge commit '9b28b5a3bb6c252886f0486a3ae6afde17218dc6' from documentation
+ UFS enablement for sa8775p-ride
+ Update amd_pstate to upstream 6.3
+ XFS: sync to upstream v6.0
+ [s390] : [IBM 9.3 FEAT] Upgrade the SMC driver to latest from upstream, e.g. kernel 6.3
+ arm64: dts: updates
+ atlantic: driver update to v6.3
+ blk-mq: don't submit passthrough request via scheduler
+ bonding: fix send_peer_notif overflow
+ cifs: update to approx 6.2
+ device-dax: Fix duplicate 'hmem' device registration
+ drivers: perf: Add LLC-TAD perf counter support
+ kernel: save/restore speculative MSRs during S3 suspend/resume [rhel-9]
+ netfilter: handle ipv6 jumbo packets properly for bridge ovs and tc
+ nfsd: make a copy of struct iattr before calling notify_change
+ platform/x86/intel/ifs: Annotate work queue on stack so object debug does not complain
+ redhat/configs: turn off IMX93 ADC Driver
+ redhat/configs: turn on I3C drivers
+ sfc: Fix module EEPROM reporting for QSFP modules
+ tpm: Backport upstream fixes
+ xfs: verify buffer contents when we skip log replay
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-322.el9 (fixes: CVE-2022-3594, CVE-2023-0458, CVE-2023-1079, CVE-2023-2002, CVE-2023-2194, CVE-2023-2483, CVE-2023-32233):
+ acpi-cpufreq: Skip initializtion if a cpufreq driver exists
+ Add PINNED_HARD mode for realtime hrtimers
+ ALSA: hda/realtek: Add quirk for ThinkPad P1 Gen 6
+ arm64: dts: qcom: sa8775p: add the watchdog node
+ autofs: fix wait name hash calculation in autofs_wait()
+ Backport NFS fscache netfs conversion patches
+ Backport SELinux/LSM/Netlabel patches up to kernel v6.3
+ Backport USB support for sa8775p-ride
+ block: do not reverse request order when flushing plug list
+ bluetooth: Perform careful capability checks in hci_sock_ioctl()
+ bonding: fix ns validation on backup slaves
+ CNB: clk: Provide new devm_clk helpers for prepared and enabled clocks
+ CNB: net: flow_offload: provision conntrack info in ct_metadata
+ CNB: netlink: provide an ability to set default extack message
+ cpufreq: intel_pstate: Enable HWP IO boost for all servers
+ Enable EMAC3 for sa8540p-ride
+ erspan: get the proto with the md version for collect_md
+ gpio: imx-scu: add imx-scu GPIO driver
+ HID: asus: fixes a use-after-free in asus_kbd_backlight_set()
+ ice: Driver Update up to kernel v6.3
+ ice: Remove LAG+SRIOV mutual exclusion
+ Introduce Array Scan test to IFS
+ ixgbe: driver update for RHEL 9.3
+ kexec: Remove unnecessary arch hook
+ Merge commit '4a04b9571eac8a3d14c77a0b8b81c1c589a7a764' from documentation
+ Merge commit 'c6b15576e8bd8b55ff8aa34ebf793edc1d56aaf5' from documentation
+ mm/memcg: Allow OOM eventfd notifications under PREEMPT_RT
+ net: enable IPV6 SEG6
+ netfilter: nf_tables: deactivate anonymous set from preparation phase
+ net: qcom/emac: Fix use after free bug in emac_remove due to race condition
+ nvme: do not let the user delete a ctrl before a complete initialization
+ nvme: fix two discard related issues
+ ovs: stable backports for 9.3 phase 1
+ prlimit: do_prlimit needs to have a speculation check
+ r8152: Rate limit overflow messages
+ redhat/genlog.py: add support to list/process zstream Jira tickets
+ [redhat] kernel.spec: fix libperf-debuginfo content
+ RHEL-9.3 ISH intel sensor hub updates and fixes
+ [RHEL9] i2c: xgene-slimpro: Fix out-of-bounds bug in xgene_slimpro_i2c_xfer()
+ s390/kfence: fix page fault reporting
+ scsi: fixe kernel panic on scsi_device's iorequest_cnt
+ scsi: mpi3mr: driver update
+ selftests/bpf: Do not use sign-file as testcase
+ smartpqi updates
+ SUNRPC: Fix encoding of accepted but unsuccessful RPC replies
+ Support and fixes for nftables ingress/egress hook
+ tipc: fix the mtu update in link mtu negotiation
+ tools/power/x86/intel-speed-select: Add Emerald Rapid quirk
+ update ACPI to match Linux v6.3
+ Update RHEL9.3's USB/Thunderbolt to linux_v6.2
+ Update soc/tegra related code to upstream v6.3
+ Update the RHEL 9.3 inbox lpfc driver to 14.2.0.12
+ virtiofs: sync to upstream v6.0
+ vmxnet3: use gro callback when UPT is enabled
+ Wireless core and drivers rebase to v6.3
+ x86/fpu: update to v6.2
+ x86/kprobes: Fix kprobes instruction boudary check with CONFIG_RETHUNK
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-316.el9 (fixes: CVE-2023-2248, CVE-2023-28466, CVE-2023-31436):
+ Add Marvell CN10k DDR PMU driver Support
+ arch/x86: Update to 5.17
+ Backport register read/write tracing support
+ Backport smem and socinfo patches for sa8775p
+ Bonding: add option per-port priority
+ Bonding: rebase to linux v6.3
+ bpf, xdp: update to 6.2
+ cacheinfo: Fix sleep in atomic context on PREEMPT_RT kernels
+ cgroup/cpuset: Fix CLONE_INTO_CGROUP cpu affinity problem
+ CNB: IPv6/GRO: generic helper to remove temporary HBH/jumbo header in driver
+ CNB: net: add support for managed neighbor entries
+ CNB: Update TC subsystem to upstream v6.3
+ config: Enable WiFI on aarch64 architecture
+ CVE-2023-28466: net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ dm: sync with upstream 6.4
+ Documentation: rtla: Correct command line example
+ enable io_uring
+ enic: driver update from v6.3
+ hwrng: imx-rngc - driver updates
+ i2c: imx-lpi2c: driver updates
+ iavf driver update
+ IPsec packet offload
+ iRDMA: bug fixes
+ iSCSI update to 6.3
+ kernel.spec: skip kernel meta package when building without up
+ KVM: aarch64: Rebase (first round towards v6.3)
+ livepatch: selected fixes for rhel-9.3
+ MDRAID - Update to the latest upstream
+ Merge commit 'db7b42de90525a108c02796cbfbf63836088cabb' from documentation
+ Merge remote-tracking branch 'stream9/merge-requests/2284' into bz2178699
+ mmc: sdhci-esdhc-imx: driver updates
+ mm/demotion: Memory tiers and demotion
+ mm: hugetlbfs: return proper error when accessing a poisoned hugetlbfs file page from page cache
+ mm: RHEL-9.3 HMM update
+ net: core: stable backports for 9.3 phase 1
+ net: mptcp: rebase to latest net-next
+ net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg
+ net: support ipv4 big tcp
+ NFSD: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop
+ NFSD: RHEL-only bug introduced in fix for COMMIT and NFS4ERR_DELAY loop
+ PCI/PM: Extend D3hot delay for NVIDIA HDA controllers
+ perf c2c: Add report option to show false sharing in adjacent cachelines
+ perf/imx_ddr driver updates
+ PM / devfreq: imx-bus: driver updates
+ Provide linux kernel support for performing In-Field Scan (IFS)
+ pwm: imx1: Implement .apply callback
+ pwm: imx27: Simplify using devm_pwmchip_add()
+ pwm: imx-tpm: Don't check the return code of pwmchip_remove()
+ RDMA: Add support for Soft-RoCE driver
+ redhat/configs: Enable Dell privacy drivers
+ redhat/configs: Fix incorrect configs location and content
+ [redhat] kernel.spec: create libperf subpackage
+ remoteproc: imx_dsp_rproc: driver updates
+ remoteproc: imx_rproc: driver updates
+ Remove the unnecessary unicode character
+ [s390]: [IBM 9.3 FEAT] DASD autoquiesce support
+ [s390]: [IBM 9.3 FEAT] Support for List-Directed IPL and re-IPL from ECKD DASD - kernel part
+ [s390]: [IBM 9.3 FEAT] Upgrade the QETH driver to latest from upstream, e.g. kernel 6.3
+ [s390]: [IBM 9.3 FEAT] Upgrade the zFCP driver to latest from upstream, kernel 6.3
+ [s390]: RHEL9.0 net/iucv: Fix size of interrupt data
+ sched/debug: Put sched/domains files under the verbose flag
+ Sched/psi: updates to v6.3-rc1
+ sched/rt: Fix bad task migration for rt tasks
+ Scheduler uclamp and asym updates to v6.3-rc1
+ Scheduler updates for 9.3
+ scsi: megaraid_sas: driver update
+ scsi: mpt3sas: driver update
+ sctp: backports from upstream
+ sfc: correctly advertise tunneled IPv6 segmentation
+ soc: imx: i.MX8M blk-ctrl driver updates
+ softirq: Wake ktimers thread also in softirq.
+ tcp: stable backport for 9.3 phase 1
+ thermal/drivers/imx8mm_thermal: driver updates
+ thermal/drivers/imx: Use generic thermal_zone_get_trip() function
+ Update intel_idle to match upstream 6.3
+ Update intel_pstate to upstream 6.3
+ Update NFS/NFSD/SUNRPC/LOCKD to upstream v6.3
+ Update Omni-Path Architecture (OPA) hfi1 kernel driver
+ Updates for NUMA node distance table
+ Updates for powerpc selftests
+ Updates for powerpc VDSO
+ Updates to reset RCU watchdogs after a LPM
+ update turbostat to match upstream 6.3
+ VFIO update to v6.3
+ watchdog: imx2_wdg: driver updates
+ wdat_wdt: avoid watchdog timeout during reboot
+ x86: small memory clearing enhancements
+ xfrm: add extack support
+ xfrm: backport fixes from upstream
+ xfs: don't use BMBT btree split workers for IO completion
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-309.el9:
+ ata: driver update
+ e1000e: driver update for RHEL-9.3.0
+ ipvlan: phase-1 backports for RHEL-9.3
+ macvlan: Allow some packets to bypass broadcast queue
+ net/other: phase-1 backports for RHEL-9.3
+ net: tunnels: Backport upstream fixes to RHEL 9.
+ redhat: configs: fix CONFIG_WERROR replace in build_configs
+ redhat: Remove editconfig
+ [RHEL-9.3.0] dmaengine updates
+ [RHEL-9.3.0] IOMMU and DMA API Updates for 9.3
+ RHEL9 consolidated CXL update from 6.2
+ rtnetlink: advertise allmulti counter
+ scsi: ses: a bugfix
+ SCSI updates for 9.3
+ sfc: update to 6.3
- Updated to kernel-5.14.0-307.el9:
+ Add support for QoS Features
+ clk: imx: add i.MX93 clk gate
+ crypto: jitter - permanent and intermittent health errors
+ ice: no busy waiting in GNSS thread and for SQ commands
+ netfilter: netfilter: conntrack: unify established states for SCTP paths
+ redhat: Rename configs/ark to configs/rhel
+ tg3: driver update for RHEL-9.3.0
- Updated to kernel-5.14.0-304.el9 (fixes: CVE-2023-1652):
+ dm: discard IOs on striped or snap LVs can trigger data corruption
+ interconnect: imx: driver updates
+ net/sched: act_tunnel_key: add support for TUNNEL_DONT_FRAGMENT
+ NFSD: fix use-after-free in nfsd4_ssc_setup_dul()
+ NFSv4: Fix hangs when recovering open state after a server reboot
+ perf/x86/intel: Add Cooper Lake stepping to isolation_ucodes[]
+ rtc: bbnsm: Add the bbnsm rtc support
+ sched/core: Fix arch_scale_freq_tick() on tickless systems
+ scsi: ses: A few fixes to prevent from out of bounds accesses
+ vmxnet3: move rss code block under eop descriptor
- Updated to kernel-5.14.0-303.el9 (fixes: CVE-2023-26545):
+ arch/x86: Update to 5.16
+ arm64: rebase arm core code to upstream v6.2
+ blk-mq: directly poll requests
+ cnic: update cnic driver to latest upstream
+ cpuidle: psci: Do not suspend topology CPUs on PREEMPT_RT
+ crypto: qat: Update QAT drivers upto v6.2
+ Ignore VAS update for DLPAR
+ ipv4: First round of upstream fixes for RHEL 9.3.
+ ipv6: Make sockopt IPV6_TCLASS behave like IP_TOS
+ net: Let sockets explicitely choose between task and sock page_frag.
+ net: mpls: fix stale pointer if allocation fails during device rename
+ nfs42: do not fail with EIO if ssc returns NFS4ERR_OFFLOAD_DENIED
+ PCI: Fix use-after-free in pci_bus_release_domain_nr()
+ Remove unneeded kABI hack from 9.3 file locking code
+ [s390]: RHEL9.0 - kernel: fix __clear_user() inline assembly constraints
+ [s390]: RHEL9.0 - s390/qeth: NET2016 - fix use-after-free in HSCI
+ SUNRPC: Fix a server shutdown leak
+ tracing/hwlat: Replace sched_setaffinity with set_cpus_allowed_ptr
- Updated to kernel-5.14.0-301.el9:
+ Backport multichannel updates from upstream
+ Backport small patches to bring us close to 6.1
+ block: don't set GD_NEED_PART_SCAN if scan partition failed
+ CNB: ethtool: update ethtool core to latest upstream
+ CNB: net/sched: Extend action skbedit to RX queue mapping
+ Fix crashdumping on s390x
+ kbuild: add fixes to scripts/Makefile.build to fix /bin/sh: Argument list too long build error
+ kernel.spec: gcov: make gcov subpackages per variant
+ Merge commit 'c52201bfc7be5cff56cbae3a9f3287f296ecb173' from documentation
+ redhat/kernel.spec.template: fix installonlypkg for meta package
+ wifi: iwlwifi: mvm: protect TXQ list manipulation
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-300.el9 (fixes: CVE-2023-0386, CVE-2023-1252):
+ Add support for Interrupt Message Storage (IMS)
+ blk-mq: fix bad queue mapping created by blk_mq_map_queues()
+ cifs: fix regression in very old smb1 mounts
+ clk: imx: imx93: driver updates
+ CNB: hwrng: core: Misc updates
+ CNB: netfilter: flowtable updates for unidirectional udp hardware offload
+ CNB: rebase/update netdevsim for RHEL 9.3
+ dm: discard IOs on striped or snap LVs can trigger data corruption
+ Draft: Merge tag 'kernel-5.14.0-284.10.1.el9_2' from 9.2
+ Draft: Merge tag 'kernel-5.14.0-284.9.1.el9_2' from 9.2
+ io_uring: update to v5.19
+ ipvs: add sysctl_run_estimation to support disable estimation
+ kernel-rt: config: disable KGDB in the production and development variants
+ kernel-rt: config: disable SLUB_CPU_PARTIAL for real time kernels
+ KVM: VMX: Fix crash due to uninitialized current_vmcs
+ Merge tag 'kernel-5.14.0-284.10.1.el9_2' from 9.2
+ Merge tag 'kernel-5.14.0-284.9.1.el9_2' from 9.2
+ mm/filemap: fix page end in filemap_get_read_batch
+ mm: Remember a/d bits for migration entries
+ nvme: Update the nvme drivers
+ ovl: fail on invalid uid/gid mapping at copy up
+ ovl: fix use after free in struct ovl_aio_req
+ remoteproc: imx_rproc: updates for NXP i.MX93 support
+ [RHEL-9.3] IPMI updates and bug fixes
+ scsi: target: update the target driver
+ sfc: Change VF mac via PF as first preference if available.
+ soc: imx: imx93-pd and imx93-src updates to not set device_driver owner
+ Update cpumask and bitmask operations
+ Update locking code to upstream 6.1 + follow up fixes
+ Update RHEL9.3 USB And Thunderbolt to linux_v6.1
+ Updates for powerpc radix
+ watchdog: imx7ulp: Use devm_clk_get_enabled() helper
+ x86/cpu: Support AMD autoIBRS in Genoa
- Updated to kernel-5.14.0-297.el9:
+ CNB: net: rename reference+tracking helpers
+ Draft: Merge tag 'kernel-5.14.0-284.8.1.el9_2' from 9.2
+ iavf: fix hang on reboot with ice
+ igb: conditionalize I2C bit banging on external thermal sensor support
+ kernel-rt: config: adjust MAX_LOCKDEP_ENTRIES and MAX_LOCKDEP_CHAINS for RT
+ macsec: rebase to upstream
+ Merge commit '0d4d2d5d4c69a285d379337fc2e674935573f8a6' into 9.2
+ Merge tag 'kernel-5.14.0-284.8.1.el9_2' from 9.2
+ Rebase VFIO and IOMMUFD up to v6.2
+ [redhat] add symbols to stablelist and enable check-kabi
+ Reinstate "GFS2: free disk inode which is deleted by remote node -V2"
+ Updates for PLPKS
+ vfs: file locking fixes and cleanups for 9.3
+ x86/tsc: Add option to force frequency recalibration with HW timer
+ xfs: fix off-by-one-block in xfs_discard_folio()
- Updated to kernel-5.14.0-296.el9:
+ Backport net/rxrpc changes from upstream
+ Draft: Merge tag 'kernel-5.14.0-284.7.1.el9_2' from 9.2
+ Fixes for rpm changes
+ fs: backport idmapped mounts fixes
+ i40e: Fix for VF MAC address 0
+ Merge commit '0d4d2d5d4c69a285d379337fc2e674935573f8a6'
+ Merge tag 'kernel-5.14.0-284.7.1.el9_2' from 9.2
+ net: allow out-of-order netdev unregistration
+ powerclamp: Enable Low Power Mode (LPM mode) in Meteor Lake
+ sched deadline updates for 9.3
+ Updates for hvcs drivers
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-295.el9 (fixes: CVE-2022-2196, CVE-2022-42895, CVE-2022-4744):
+ arm64: updates for NXP i.MX93 support
+ Backport afs updates and fixes from upstream
+ blk-mq: fix "bad unlock balance detected" on q->srcu in __blk_mq_run_dispatch_ops
+ block: bio-integrity: Copy flags when bio_integrity_payload is cloned
+ Bluetooth: L2CAP: Fix attempting to access uninitialized memory
+ bpf/selftests: disable get_branch_snapshot test
+ bpf/xdp: stable backports from upstream for 9.2
+ bpf, xdp: update to 6.1
+ ceph: blocklist the kclient when receiving corrupted snap trace
+ CNB: genetlink: start to validate reserved header bytes
+ CNB: genetlink: support per op type policies
+ CNB: netlink: add support for formatted extack messages
+ CNB: netlink: support reporting missing attributes
+ CNB: net: move from strlcpy with unused retval to strscpy
+ CNB: rtnetlink: verify rate parameters for calls to ndo_set_vf_rate
+ CNB: timers: Provide timer_shutdown[_sync]()
+ dm: sync with upstream 6.3
+ Draft: Merge tag 'kernel-5.14.0-284.6.1.el9_2' from 9.2
+ Fix the random kdump kernel panic with call trace tick_handle_periodic
+ ice: fix lost multicast packets in promisc mode
+ kernel-rt: config: disable saa6588, saa6752hs and snd-soc-sdw-mockup to match stock kernel
+ kernel-rt: config: enable DEBUG_PREEMPT in the production kernel
+ KVM: VMX: Execute IBPB on emulated VM-exit when guest has IBRS
+ Merge commit '920f6ac650b20db91b11d5b435376c276c4ab47c' from documentation
+ Merge commit '920f6ac650b20db91b11d5b435376c276c4ab47c' into 9.2
+ Merge tag 'kernel-5.14.0-284.5.1.el9_2' from 9.2
+ Merge tag 'kernel-5.14.0-284.6.1.el9_2' from 9.2
+ MM changes for RHEL 9.3
+ mm/debug: use valid physical memory for pmd/pud tests
+ netfilter: conntrack: Fix data-races around ct mark
+ net: use indirect calls helpers for sk_exit_memory_pressure()
+ NFS: Correct timing for assigning access cache timestamp
+ nfsd: don't replace page in rq_pages if it's a continuation of last page
+ platform/x86: ISST: PUNIT device mapping with Sub-NUMA clustering
+ pmem 9.3 update
+ powerpc/eeh: Set channel state after notifying the drivers
+ rcu: Backport upstream RCU commits up to v6.1
+ redhat/configs: Revert "enable DAMON configs"
+ redhat: Fix kernel-rt-kvm scripts
+ redhat: fix trivial syntax error in 64k-debug modules signing
+ RHEL-only: Build CXL code as modules
+ sched/deadline: Add more reschedule cases to prio_changed_dl()
+ scsi: qla2xxx: Perform lockless command completion in abort path
+ tun: avoid double free in tun_free_netdev
+ Update kernel's PCI subsystem to v6.2
+ Update kernel's PCI subsystem to v6.3
+ x86/nmi: Make register_nmi_handler() more robust
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-291.el9:
+ Backport Core MapleTree Framework
+ gfs2: file corruption in large data files
+ intel_idle: add Emerald Rapids Xeon support
+ Merge tag 'kernel-5.14.0-284.4.1.el9_2' from 9.2
+ powercap: intel_rapl: add support for Emerald Rapids
+ redhat/configs: Disable CONFIG_GCC_PLUGINS
+ redhat/configs: Revert "enable DAMON configs"
- Updated to kernel-5.14.0-290.el9:
+ block: update with upstream v6.3
+ cifs: improve checking if we actually got a directory lease or not
+ Draft: Merge tag 'kernel-5.14.0-284.3.1.el9_2' from 9.2
+ Drivers: vmbus: Check for channel allocation before looking up relids
+ Hyper-V: Misc driver updates for RHEL9.3
+ livepatch: selected s390x fixes for rhel-9.3
+ Merge commit 'dd7c5cb0f8ab998d09b29d884d940881e05bd662' into 9.2
+ Merge tag 'kernel-5.14.0-284.3.1.el9_2' from 9.2
+ nfsd fixes up to v6.3 for RHEL9.2
+ ptp: vclock: use mutex to fix "sleep on atomic" bug
+ Stop trying to set boost MSRs on CPUs that don't support boost.
+ x86: hyperv: x86_64 updates for RHEL 9.3
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-289.el9:
+ Backport latest fixes and memory reclaiming feature from upstream s390x KVM for the RHEL 9.3 kernel
+ crypto: rng - Use a different crypto_rng for reseeding
+ Enable the pinctrl driver for Meteor Lake
+ Fix frequency issues related to hybrid cpus
+ hyper-v: VMBus driver updates for RHEL9.3
+ i2c: i801: Add support for Intel Meteor Lake-P
+ ice: ptp fixes
+ l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()
+ Merge commit '583da4e8ca925647df26119a65075c5fb53d346f' into 9.2
+ Merge tag 'kernel-5.14.0-284.2.1.el9_2' from 9.2
+ mfd: intel-lpss: Add Intel Meteor Lake-P PCI IDs
+ mlx5: Mgmt VF rep support in OVN-k
+ net: hv_netvsc: Hyper-V NetVSC driver update for RHEL9.3
+ net: introduce rps_default_mask
+ net: mana: Fix IRQ name - add PCI and queue number
+ net: mana: MANA driver updates for RHEL9.3
+ net/mlx5e: Fix crash unsetting rx-vlan-filter in switchdev mode
+ net/mlx5: Serialize module cleanup with reload and remove
+ nouveau: Backport nouveau mmu fixes
+ platform/x86: intel/pmc/core: Add Meteor Lake mobile support
+ powercap: intel_rapl: add support for Meteor Lake
+ redhat: Fix debug variants modsign
+ redhat: update rpminspect config for patches and debuginfo
+ [s390]: RHEL9.0 - s390/boot: simplify and fix kernel memory layout setup
+ [s390]: RHEL9.0 - s390/dcssblk: fix deadlock when adding a DCSS
+ [s390]: RHEL9.0 - s390/extmem: return correct segment type in __segment_load()
+ srcu: Delegate work to the boot cpu if using SRCU_SIZE_SMALL
+ tools/power turbostat: Add support for MeteorLake platforms
+ Updates for powerpc selftests
+ Update the MSI code in RHEL
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-287.el9:
+ arch/x86: Update to 5.15
+ Merge documentation commit '0b4eefcb92b601122e3d51e77d2c968ba2d051e0'
+ Updates for kexec file
+ Updates for powerpc/pseries: hotplug cpu
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-286.el9 (fixes: CVE-2022-4379):
+ clocksource: hyper-v: Updates for RHEL9.3
+ Draft: Merge tag 'kernel-5.14.0-284.1.1.el9_2' from 9.2
+ kernel.spec: make rhel depend on systemd-boot-unsigned
+ l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()
+ Merge documentation commit '7e13f7dd9689f6fa503c23e515edaa46e7d38ce5' into c9s
+ Merge tag 'kernel-5.14.0-284.1.1.el9_2' from 9.2
+ NFSD: fix use-after-free in __nfs42_ssc_open()
+ NFS fixes rollup through kernel v6.2
+ Pull OCP patches forward from 8.6
+ redhat: Bump RHEL_MINOR for 9.3
+ redhat: change default dist suffix for RHEL 9.2
+ redhat: enable zstream release numbering for rhel 9.2
+ [RHEL 9.3] Merge PREEMPT_RT and build kernel-rt as sub-package
+ [s390]: RHEL9.0 - diag288_wdt: do not use stack buffers for hardware data
+ x86/cpu: Add CPU model numbers for Meteor Lake
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-284.el9:
+ kernel.spec: move modules.builtin to kernel-core
- Updated to kernel-5.14.0-283.el9 (fixes: CVE-2022-33743, CVE-2022-3564, CVE-2022-43750, CVE-2022-4378, CVE-2023-0179, CVE-2023-0590):
+ [9.2] DRM backport part 3: stable backport
+ Add Important AMD BZs to RHEL9.2
+ Add taint flag for partner supported GPL modules
+ [ADL-S] Enable Real-time TSN support on ADL-S platform
+ ALSA: AMD - adjust the gain for PDM microphones
+ arm64-64k: Increase max NR_IRQS from 64+8192 to 2^^19
+ arm64: tegra: Add PWM fan for Jetson AGX Orin
+ arm-smmu-qcom: update to 6.2-rc5
+ atlantic: fix hibernation issues
+ Attend warnings with gcc 11&12 when building kernel and modules
+ Backport i2c-qcom-geni to 6.2
+ backport QDrive3 device tree and drivers/phy/qualcomm (6.2-rc2)
+ Backport QDrive 3 subsystem into CS9: pcie (6.2-rc2)
+ Backport QDrive 3 subsystem into CS9: pinctrl (6.2-rc5)
+ Backport QDrive 3 subsystem into CS9: serial
+ be2net: Fix buffer overflow in be_get_module_eeprom
+ blk-cgroup: don't update io stat for root cgroup
+ Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu
+ cifs: backport directory caching from upstream
+ cifs: fix potential double free during failed mount
+ cifs: serialize all mount attempts
+ cpufreq: Enable CPUFREQ thermal cooling for NVIDIA Orin
+ cpufreq: intel_pstate: Add Sapphire Rapids support in no-HWP mode
+ crypto: jitter - consider 32 LSB for APT
+ CVE-2022-43750 kernel: memory corruption in usbmon driver
+ Disable CPPC+FIE on ARM64 machines with PCC trapping
+ docs: networking: Fix bridge documentation URL
+ drm/ast: Fix start address computation
+ dt-bindings: arm: qcom: 6.1 updates for QDrive3
+ EDAC/amd64: Handle three rank interleaving mode
+ Enable kAFS and it's dependancies in RHEL
+ etherdevice: Adjust ether_addr* prototypes to silence -Wstringop-overead
+ Fix stack overflow in do_proc_dointvec and proc_skip_spaces
+ futex: Resend potentially swallowed owner death notification
+ iavf: Fix long delays when creating multiple VFs
+ ice: fix handling of burst Tx timestamps
+ icmp: Add counters for rate limits
+ [Intel 9.2 FEAT] igb: Driver Update
+ ipv6: remove max_size check inline with ipv4
+ IPv6: RHEL9.2 P2 backports from upstream
+ kernel.spec: allow to package some binaries as unstripped
+ kernfs: fix use-after-free in __kernfs_remove
+ Kself: RHEL9.2 P2 backports from upstream
+ KVM: arm64: GICv4.1: Fix race with doorbell on VPE activation/deactivation
+ KVM: x86: Backport SMM related fixes
+ Merge remote-tracking branch 'centos-stream-9/merge-requests/1484' into orin/pwm-fan-v0
+ missing tee/optee and lib/test_scanf commits for CS9
+ MLX4 driver upgrade - kernel 6.0
+ [mlx5] add support for offloading check_pkt_len
+ mlx5 v6.2 fixes
+ mmc: patches to support NVIDIA Orin
+ mm/kmemleak: Fix a UAF problem in kmemleak
+ netfilter: backports for 9.2 phase 2
+ netfilter: conntrack: handle tcp challenge acks during connection reuse
+ netfilter: flowtable_offload: fix using __this_cpu_add in preemptible
+ netfilter: nf_tables: honor set timeout and garbage collection updates
+ netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits
+ net: gso: fix panic on frag_list with mixed head alloc types
+ net: mana: Fix accessing freed irq affinity_hint
+ net: sched: fix race condition in qdisc_graft()
+ net-sysfs: add check for netdevice being present to speed_show
+ nfsd: don't destroy global nfs4_file table in per-net shutdown
+ octeontx2: add Admin/Physical/Virtual Function drivers
+ pci: tegra: add fixes to sound/pci for NVIDIA Orin Support
+ perf: arm_cspmu: Add support for ARM CoreSight PMU driver
+ perf vendor events power10: Fix hv-24x7 metric events
+ Provide support for SPI on Arm SystemReady IR devices (imx8 and nvidia orin)
+ r8169: update the driver
+ RDMA/irdma: Cap MSIX used to online CPUs + 1
+ redhat: Add sub-RPM with a EFI unified kernel image for virtual machines
+ redhat: add support for Jira issues in changelog
+ redhat: fix duplicate jira issues in the resolves line
+ redhat: Include Azure CVM specific udev rules into UKI's initramfs
+ redhat/kernel.spec.template: Parallelize compression
+ remoteproc: qcom: pas: bring 6.0 hw support and fixes
+ Revert "block: freeze the queue earlier in del_gendisk"
+ Revert "ethernet: Remove vf rate limit check for drivers"
+ Revert "vdpa/mlx5: Add RX MAC VLAN filter support"
+ [RHEL for Edge] add changes to enable USB support on NVIDIA Orin
+ [RHEL for Edge] Add devicetree bindings for drivers/dma on NVIDIA Orin
+ [RHEL for Edge] add fixes to drivers/tty/serial to support NVIDIA Orin
+ rtc: efi: Enable SET/GET WAKEUP services as optional
+ rtmutex: Add acquire semantics for rtmutex lock acquisition slow path
+ sctp: backports from upstream, 2nd phase
+ sctp: do not check hb_timer.expires when resetting hb_timer
+ selftests/net: give more time to udpgro bg processes to complete startup
+ selftests: net: update udpgso_bench test
+ soc: qcom: bring up to 6.2rc1
+ [SPR] perf: Workaround the UPI intel_uncore_has_discovery_tables issue on SPR MCC and LCC
+ tegra: Upstream DLA commits to support NVIDIA Orin
+ The Neoverse N2/A710 self hosted trace errata, and updated coresight and spe subsystem
+ thunderbolt: Fix DP tunneling out of resource
+ Update cpufreq/cpufreq-dt-platdev to 6.1
+ update drivers/clk/qcom to 6.2-rc2
+ Update drivers/power in order to support Arm SystemReady IR platforms
+ update drivers/regulator/qcom to 6.2-rc2
+ userfaultfd: add /dev/userfaultfd for fine grained access control
+ vfio migration support
+ virtio_console: break out of buf poll on remove
+ virtio_net: notify MAC address change on device initialization
+ x86/hyperv: Remove unregister syscore call from Hyper-V cleanup
+ x86/module: Fix the paravirt vs alternative order
+ xen-netfront: restore __skb_queue_tail() positioning in xennet_get_responses()
+ xfs: estimate post-merge refcounts correctly
+ xfs, iomap: fix data corrupton due to stale cached iomap
- Updated to kernel-5.14.0-265.el9 (fixes: CVE-2022-3522, CVE-2022-3619, CVE-2022-41674, CVE-2022-4269, CVE-2022-42720, CVE-2022-42721, CVE-2022-42722):
+ aio: fix mremap after fork null-deref
+ ALSA: Add Intel RaptorLake-P support
+ arm64: Add kernel variant for 64K page-sized ARM64
+ Bluetooth: L2CAP: Fix memory leak in vhci_write
+ bnxt: Driver update for RHEL9.2
+ clks: tegra: add fixes to drivers/clks for NVIDIA Orin Support
+ CNB: net: add netdev_sw_irq_coalesce_default_on()
+ crypto: ccp: update ccp driver upto v6.2-rc6
+ ena: Driver Update
+ Fix kselftests build after changes from bz2162116 (ipv4 backports)
+ Fix outstanding device-mapper bugs from upstream 6.1 and 6.2 an dm-cache cleanup issue
+ Fix the broken CPPC check for non-X86 systems
+ ipv6: Document that max_size sysctl is deprecated
+ ixgbevf: Driver update for RHEL9.2
+ Merge commit 'refs/merge-requests/1690/head' of gitlab.com:redhat/centos-stream/src/kernel/centos-stream-9 into RHEL-9.2-bnxt.update.04.MR1690
+ mm/hugetlb: address race condition in hugetlb_no_page()
+ net: add helper support in tc act_ct for ovs offloading
+ net: openvswitch: Add support to count upcall packets
+ net/other: phase-2 backports for RHEL-9.2
+ net: Return errno in sk->sk_prot->get_port().
+ net/sched: use the backlog for nested mirred ingress
+ nvme: backport fixes to RHEL9.2
+ ovs: backorts P2 for 9.2
+ panic, kexec: make __crash_kexec() NMI safe
+ RDMA: Add support of RDMA dmabuf for mlx5 driver
+ Recognize new Phoenix IDs for AMD-PMC driver
+ Revert "mm/compaction: fix set skip in fast_find_migrateblock"
+ [RHEL9.2 BZ2144376] IDXD driver fixes
+ [RHEL for Edge] add fixes to drivers/net/ethernet to support NVIDIA Orin
+ sched: Always inline is_percpu_thread()
+ tegra: BPMP patchs to support NVIDIA Orin
+ Update Marvell OcteonTX2 device drivers to v6.1-rc1
+ vhost/net: Clear the pending messages when the backend is removed
+ vlan: fix a netdev refcnt leak for QinQ
+ Wireless core and drivers rebase to v6.1
+ xfs: add selinux labels to whiteout inodes
+ xfs: reserve quota for dir expansion when linking/unlinking files
- Updated to kernel-5.14.0-259.el9 (fixes: CVE-2021-33655, CVE-2023-0266, CVE-2023-0394):
+ ALSA: backport upstream fixes for 9.2
+ arm64: Update core arch code to v5.19
+ cifs: fix use-after-free caused by invalid pointer `hostname`
+ crypto: testmgr - disallow certain DRBG hash functions in FIPS mode
+ dmaengine: Fix double increment of client_count in dma_chan_get()
+ ext4, jbd2: Stable update and fixes for RHEL 9.2
+ Fix: kernel: sending malicious data to kernel by ioctl FBIOPUT_VSCREENINFO may cause out of bounds write memory
+ Fix obscure ACPI crash on debug kernels
+ fs: replace ll_rw_block()
+ ice: Add missing commits
+ ice: Enable GNSS write capability
+ Input and HID backport to 6.0.x
+ ip tunnels: Fix erroneous calls to RT_TOS().
+ ipv4: Secound round of upstream fixes for RHEL 9.2.
+ ipv6: raw: Deduct extension header length in rawv6_push_pending_frames
+ ipvlan/macvlan: phase-2 backports for RHEL-9.2
+ iwlwifi: fix AC9560 firmware crash and remove previous workaround
+ KVM: aarch64: Rebase to v6.0
+ KVM: SVM: Only dump VMSA to klog at KERN_DEBUG level
+ l2tp: Fix race conditions at tunnel creation time.
+ mailbox: qcom-ipcc: flag IRQ NO_THREAD
+ Merge commit 'refs/merge-requests/1690/head' of https://gitlab.com/redhat/centos-stream/src/kernel/centos-stream-9 into 6.0_patches_with_devlink
+ MLX5 driver upgrade - kernel 6.0
+ mptcp: phase-2 backports for RHEL-9.2
+ netfilter: conntrack: ignore overly delayed tcp packets
+ net: Fix return value of qdisc ingress handling on success
+ net: mana: Fix race on per-CQ variable napi work_done
+ net/sched: phase-2 backports for RHEL-9.2
+ nfsd: don't free files unconditionally in __nfsd_file_cache_purge
+ RDMA/siw: Always consume all skbuf data in sk_data_ready() upcall.
+ [RHEL for Edge] NVIDIA Orin support, Tegra DRM and host1x
+ rtla: Fix exit status when returning from calls to usage()
+ scsi: storvsc: Fix swiotlb bounce buffer leak in confidential VM
+ statx: add direct I/O alignment information
+ sync vdpa with upstream
+ tcp: stable backports for 9.2 phase 2
+ tdx: add the attestation driver
+ tipc: backports from upstream, 2nd phase
+ update cpufreq to v6.0
+ Update thermal/drivers/qcom for Qdrive3
+ Upgrade drivers/net/can in order to support Arm SystemReady IR
+ vfio: Fix sr-iov mdev regression, PCI reset regression, complete baseline migration support
- Updated to kernel-5.14.0-247.el9:
+ ALSA: add AMD Pink Sardine DMIC driver
+ bnxt_re: Driver update to v6.0
+ CNB: genirq/msi: Use a named struct for PCI/MSI attributes and other PCI/MSI cleanups
+ CNB: rebase/update devlink for RHEL 9.2
+ config: Enable Security Path
+ gitlab-ci: use CI templates from production branch
+ nvme: fix SRCU protection of nvme_ns_head list
+ perf hv_gpci events fails with not supported error
+ powerpc/perf: Fix branch_filter support for multiple filters
+ [redhat] Enable CONFIG_GPIO_CDEV_V1
+ [s390]: RHEL9 - s390/kexec: fix ipl report address for kdump
+ Support for decoding CPER CXL protocol error sections
+ update Chrome and Mellanox platform drivers to v6.0
+ Update cpuidle to match Linux v6.0
- Updated to kernel-5.14.0-243.el9:
+ aquantia: Do not purge addresses when setting the number of rings
+ arm64: Update drivers/soc/tegra to v6.0
+ blk-cgroup: Fix potential lockup in blkcg_rstat_flush()
+ DG2 DRM Backport
+ drm/amd: Delay removal of the firmware framebuffer
+ Fix call trace from create_trace_option_files in kernel/trace/trace.c
+ Fix for CSB.V bit never becomes valid for NX Gzip job during LPAR migration
+ Follow-up fixes for nfsd for 9.2
+ fs/exec: switch timens when a task gets a new mm
+ ixgbe: Driver update for RHEL9.2
+ mailbox: qcom-ipcc: update qcom-ipcc
+ net: Backport data race annotations in the networking stack (part 2)
+ perf test: Fix "all PMU test" to skip parametrized events
+ perf tools: Fix empty version number when building outside of a git repo
+ powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe()
+ redhat: ignore rpminspect runpath report on urandom_read selftest binaries
+ rtla: Add License to spec file and sync summary text with upstream
+ [s390]: RHEL9 - dasd: fix no record found for raw_track_access
+ [s390]: RHEL9 - s390/cio: add dev_busid sysfs entry for each subchannel
+ selftests/bpf: test_stacktrace_build_id: use kprobe/urandom_read
+ Update intel_idle to upstream 6.0
+ vsock: backport latest commits for RHEL-9-2
+ xfrm: Fix oops in __xfrm_state_delete()
- Updated to kernel-5.14.0-238.el9:
+ MLX5 driver upgrade - kernel 5.19
+ [RHEL 9.2] Update stmicro ethernet driver
- Updated to kernel-5.14.0-236.el9 (fixes: CVE-2022-2964, CVE-2022-4139):
+ [9.2] MEI Backport for Intel DG2 support
+ Add support for second RPL-S CPUID
+ ADL-N: Fix multiple packages shown on a single-package system
+ bpf, xdp: update to 6.0
+ cpu/hotplug: Fix some cpuhp->target issues
+ crypto: xts - drop xts_check_key()
+ drm/i915: fix TLB invalidation for Gen12 video and compute engines
+ During DLPAR operations in shared mode and dedicated mode with smt loop, device tree entries are not getting populated
+ fs: add mode_strip_sgid() helper
+ KVM: nVMX: Inject #GP, not #UD, if "generic" VMXON CR0/CR4 check fails
+ mmc: bcm2835: stop setting chan_config->slave_id
+ net: skb free reason sync part 2
+ net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup
+ net: vrf: determine the dst using the original ifindex for multicast
+ pNFS/filelayout: Fix coalescing test for single DS
+ Revert "nvme: warn about shared namespaces without CONFIG_NVME_MULTIPATH"
+ sched/core: Fix bugs in user_cpus_ptr handling
+ scsi: target: core: Fix hard lockup when executing a compare-and-write command
+ [SPR] CPU: AMX: Improve the init_fpstate setup code
+ tracing: Add linear buckets to histogram logic
+ vmxnet3: correctly report csum_level for encapsulated packet
+ vxlan: Backport vxlan file split
+ x86: remove vendor checks from prefer_mwait_c1_over_halt
- Updated to kernel-5.14.0-233.el9:
+ TDX core kernel enabling (support running Linux as guest)
- Updated to kernel-5.14.0-232.el9:
+ arm64: kdump: Support crashkernel=X fall back to reserve region above DMA zones
+ cifs: fix NULL ptr dereference in refresh_mounts()
+ ice: Add devlink port split support
+ perf: Please add new perf-stat metricgroup "pipeline" for the AMD CPUs
+ s390: fix double free of GS and RI CBs on fork() failure
+ Use MFST GUID instead of AMD GUID
- Updated to kernel-5.14.0-231.el9:
+ net: Backport data race annotations in the networking stack (part 1).
- Updated to kernel-5.14.0-230.el9:
+ aarch64: support HP watchdog
+ ip_gre: do not report erspan version on GRE interface
+ x86/cpu: Add several Intel server CPU model numbers
- Updated to kernel-5.14.0-229.el9 (fixes: CVE-2022-4129):
+ eBPF enhancements in kernel for Power
+ hwmon: (coretemp) Check for null before removing sysfs attrs
+ l2tp: Serialize access to sk_user_data with sk_callback_lock
+ RHEL: ALSA: add kunit module soc-utils-test to mod-internal.list
+ [s390]: RHEL9 - zfcp: fix double free of FSF request when qdio send fails
+ scsi: target: iscsi: Fix a race condition between login_work and the login thread
- Updated to kernel-5.14.0-228.el9:
+ Bluetooth misc fixes
+ cpufreq: ACPI: Defer setting boost MSRs
+ crypto: pcrypt - Delay write to padata->info
+ EDAC/mc_sysfs: Increase legacy channel support to 12
+ kernel/rh_messages.c: gcc12 warning on redundant NULL test
+ netfs: Fix missing xas_retry() calls in xarray iteration
+ NFS: Allow setting rsize / wsize to a multiple of PAGE_SIZE and fix
+ perf/x86/amd/uncore: Fix memory leak for events array
+ SUNRPC: Don't disable preemption while calling svc_pool_for_cpu()
+ virtio_console: Introduce an ID allocator for virtual console numbers
- Updated to kernel-5.14.0-226.el9 (fixes: CVE-2022-21505, CVE-2022-3628, CVE-2022-42896):
+ Backport Aspeed conversion to shmem
+ block: Do not reread partition table on exclusively open device
+ Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM
+ bonding: driver update to v6.1
+ CNB: ipsec: be explicit with XFRM offload direction
+ hwmon: (pwm-fan) Refactor fan power on/off
+ iavf driver update
+ igbvf: Driver Update
+ lib/irq_poll: Prevent softirq pending leak in irq_poll_cpu_dead()
+ lockdown: Fix kexec lockdown bypass with ima policy
+ macsec: backports from upstream
+ net: tls: rebase to 6.0+
+ net/tunnel: wait until all sk_user_data reader finish before releasing the sock
+ [s390]: RHEL9 - KVM: s390: pv: don't allow userspace to set the clock under PV
+ tipc: re-fetch skb cb after tipc_msg_validate
+ v5.18 backports for s390 expolines
+ wifi: brcmfmac: Fix potential buffer overflow in brcmf_fweh_event_worker()
+ wireless: update to v6.0
+ wireless update to v6.0: base with all dependencies
+ x86/bugs: Add late bug fixes to x86 speculation bugs
- Updated to kernel-5.14.0-222.el9:
+ bpf, xdp: update to 5.19
+ Update drivers/base to match Linux v6.0
+ Update net/bluetooth and drivers/bluetooth to upstream v6.0
- Updated to kernel-5.14.0-219.el9 (fixes: CVE-2022-2873):
+ Add fixes to drivers/misc/sram to support NVIDIA Orin
+ Bring MD code the latest upstream
+ CNB: fortify: Provide a memcpy trap door for sharp corners
+ CNB: tracing/events: Add __vstring() and __assign_vstr() helper macros
+ crypto: backport wireguard s390 fix
+ hyper-v: Video and HID driver updates for RHEL-9.2
+ i2c: ismt: Fix an out-of-bounds bug in ismt_access()
+ kernfs: switch global kernfs_rwsem lock to per-fs lock
+ powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address
+ redhat/configs: Enable CONFIG_CRYPTO_CURVE25519
+ Redo missing uapi/linux/stddef.h: Add include guards
+ vmxnet3: driver update to v6.0
+ x86/fpu: Drop fpregs lock before inheriting FPU permissions
- Updated to kernel-5.14.0-217.el9 (fixes: CVE-2022-2959, CVE-2022-43945):
+ arm64: dts: imx93-pinfunc: drop execution permission
+ Drivers: hv: vmbus: Updates for 9.2
+ drm/vc4: update to 5.18
+ dt-bindings: soc: adds for i.MX93 SRC, mediamix blk ctrl, i2c-imx-lpi2c
+ Enable the GNSS subsystem
+ Fix a problem with the time handling of nested KVM guests
+ hwmon: Handle failure to register sensor with thermal zone correctly
+ i40e: driver update
+ igc: Driver Update
+ NFSD/SUNRPC - fix send buffer overflow
+ ovs: backports P1 for 9.2
+ PCI: hv: Updates for RHEL 9.2
+ pinctrl: amd: Don't save/restore interrupt status and wake status bits
+ pipe: Fix missing lock in pipe_resize_ring()
+ redhat: configs: disable vDPA on all archs except x86_64
+ redhat/Makefile: Drop message about BUILDID deprecation
+ scsi: qla2xxx: Fix crash when I/O abort times out
+ scsi: storvsc: Fix handling of srb_status and capacity change events
+ sfc: driver update to v6.0
+ tcp: Add listening address to SYN flood message
+ UFS backport fixups
+ Update amd-pstate cpufrequency driver
+ Update drivers/mailbox for Arm SystemReady IR platforms
+ Update DTS bindings for Tegra234 (NVIDIA Orin)
+ Volume Management Device (VMD) driver fixes
+ x86: hyperv: Updates for RHEL 9.2
- Updated to kernel-5.14.0-212.el9:
+ ceph: backport mainline changes up to v6.0 for RHEL 9.2
+ powercap: intel_rapl: support new layout of Psys PowerLimit Register
+ udp: some performance optimizations
- Updated to kernel-5.14.0-211.el9:
+ Add fixes to drivers/clksrc for NVIDIA Orin
+ Backport Aspeed conversion to shmem
+ Backport DFS related fixes from upstream.
+ clocksource: hyper-v: Updates for RHEL 9.2
+ misc: rtsx: Rework runtime power management flow
+ net: hyper-v: netvsc driver updates for RHEL-9.2
+ net: mana: Microsoft Azure Network Adapter (MANA) driver updates
+ RDMA: Bug fixes from v6.1
+ vgacon: Propagate console boot parameters before calling `vc_resize'
- Updated to kernel-5.14.0-210.el9:
+ ALSA: backport for RHEL 9.2
+ bonding: fix ICMPv6 header handling when receiving IPv6 messages
+ EDAC/ghes: Set the DIMM label unconditionally
+ fs: dlm: fix race in lowcomms
+ mmc: sdhci-tegra: Updates
+ [RHEL-9] NFSD: Mark exports of NFS as unsupported
+ rv: Add Runtime Verification (RV) interface
- Updated to kernel-5.14.0-208.el9:
+ crypto: Provide support for RFC 7919 FFDHE group parameters (CRYPTO_DH_RFC7919_GROUPS)
+ livepatch: rebase to linux v5.19
+ scsi: hyper-v: storvsc: driver update for RHEL-9.2
- Updated to kernel-5.14.0-207.el9:
+ [9.2] DRM backport part 2: main backport
+ block: fix direct io device mapper errors
+ CNB: ptp: introduce helpers to adjust by scaled parts per million
+ dt-bindings: gpio: gpio-vf610: Updates
+ dt-bindings: serial: fsl-lpuart: Updates
+ fs: allow cross-vfsmount reflink/dedupe
+ fuse: add file_modified() to fallocate
+ ice: Driver Update to 6.0
+ ISH updates and bug fixes
+ Merge commit '4fc3237d0cf85530cfd3c73be94441ea20ab2df3'
+ mm: migrate: fix THP's mapcount on isolation
+ ping: convert to RCU lookups, get rid of rwlock
+ Rebase selftests/rseq to v6.0
+ redhat/configs: Change the amd-pstate driver from builtin to loadable
+ skx_common: use driver decoder when possible
+ spec: Update bpftool versioning scheme
+ x86/sgx: update sgx subsystem upto v6.0
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-205.el9:
+ Add rtla subpackage for kernel-tools
+ arm64: dts: freescale: Add i.MX93 SoC-level information support
+ ata: libata-core: Print timeout value when internal command times
+ Backport fbcon to fix race condition in fbcon
+ build: Fix generating BTF with pahole >=1.24
+ clk: imx: add i.MX93 clk
+ CNB: ethtool: add header/data split indication
+ CNB: ipv6: Use ipv6_only_sock() helper in condition
+ CNB: net: remove noblock parameter from skb_recv_datagram()
+ CNB: net: wrap the wireless pointers in struct net_device in an ifdef
+ CNB: PM: core: Remove static qualifier in DEFINE_SIMPLE_DEV_PM_OPS macro
+ CNB: slab: Introduce kmalloc_size_roundup()
+ CNB: usb: remove third argument of usb_maxpacket()
+ CXL update from 5.18
+ drm: Move nomodeset kernel parameter to the DRM subsystem
+ dt-bindings: mailbox: imx-mu: Add bindings for i.MX93
+ dt-bindings: mmc: imx-esdhc: Updates
+ e1000e: Driver update for RHEL-9.2.0
+ ext4: Use folio_invalidate()
+ gpio: vf610: remove the SOC_VF610 dependency for GPIO_VF610
+ iavf: Add waiting for response from PF in set mac
+ ice: Driver Update to 5.19
+ intel_idle: Add AlderLake-N support
+ locking: rwsem & other locking code updates
+ Merge commit '6e39eb8ca7100c27aa42409b0491592be0d67a0d'
+ Merge commit 'aa830fac8952cf6440f19c00317847b311f00214'
+ Merge remote-tracking branch 'centos-stream-9/merge-requests/1372' into therm-v0
+ nfp: driver update to kernel version 5.19
+ NFS / NFSD fixes rollup for 9.2
+ percpu_ref_init(): clean ->percpu_count_ref on failure
+ perf: internal-testsuite instruction-decoder-new-instructions failed
+ pinctrl: imx93: updates for pinctrl driver support
+ platform/x86/intel/pmt: Sapphire Rapids PMT errata fix
+ powerpc/64/kdump: Limit kdump base to 512MB
+ powerpc: Don't select HAVE_IRQ_EXIT_ON_IRQ_STACK
+ Rebase rhel9 kernel kexec/kdump code to upstream kernel 6.0
+ Revert "powerpc/rtas: Implement reentrant rtas call"
+ s390/block: fix add disk warning
+ [s390]: RHEL9 - boot: Add secure boot trailer
+ [s390]: RHEL9 - kernel: missing exception table entries
+ smartpqi updates
+ sunrpc: Set sk_allocation to GFP_NOFS to avoid using current->task_frag.
+ udp: backports from upstream
+ Update drivers/thermal in order to support Arm SystemReady IR
+ Update kernel's PCI subsystem to v6.1
+ Update mlxsw driver to upstream v5.19
+ update powerpc/fadump
+ x86/ftrace: remove return_to_handler SYM_FUNC_END macro
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-201.el9:
+ CNB: Update TC subsystem to upstream v6.0
+ CNB: vdpa: Add support for querying vendor statistics
+ fix compile_comands.json generation
+ fuse: fix readdir cache race
+ Merge commit '27dadcb8127ff8b29517cedc0388c4e718e37c66'
+ perf: Sync with upstream v6.0
+ rpminspect: disable kmidiff and abidiff
+ sctp: backports from upstream
+ Updates for automotive_full pipeline
+ vdpa_sim_blk: backport latests features [rhel-9.2.0]
+ XFS update to v5.16
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-200.el9:
+ arm64: kdump: Reimplement crashkernel=X fixup
+ bnx2x: driver updates
+ BPF and XDP rebase to v5.18
+ ipvlan/macvlan: phase-1 backports for RHEL-9.2
+ net: raw: Convert to raw sockets to RCU.
+ qed*: driver update
+ soc: imx: add i.MX93 SRC power domain and media blk ctrl drivers
- Updated to kernel-5.14.0-198.el9:
+ Add fixes to drivers/firmware for NVIDIA Orin support
+ atlantic: fix deadlock at aq_nic_stop
+ CNB: net: add skb_[inner_]tcp_all_headers helpers
+ crypto: ccp - Add support for new CCP/PSP device ID
+ megaraid_sas: driver update
+ Merge remote-tracking branch 'origin/merge-requests/1372' into bz2115520
+ mm, oom: do not trigger out_of_memory from the #PF
+ powerpc/pseries: Enable POWER Architecture Platform Watchdog Driver
+ sched: Persistent user requested cpu affinity
+ Scheduler updates for 9.2
+ scsi: mpi3mr: driver update
+ scsi: mpt3sas: driver update
+ tcp: BIG TCP implementation
+ tg3: Driver update for RHEL-9.2.0
+ Update drivers/powercap to enable support for Arm SystemReady IR platforms
- Updated to kernel-5.14.0-196.el9:
+ blk-mq: avoid double ->queue_rq() because of early timeout
+ cifs: bring us close to 6.0
+ CNB: devlink: Add support for line cards
+ CNB: flow_dissector: add support to dissect PPPoE fields and number of VLAN tags
+ CNB: net: drop the weight argument from netif_napi_add
+ dm: sync with upstream 6.1
+ Fix KVM selftests build failure on s390x
+ fs: dlm: -EINVAL, queue_work() race and DLM_LKF_VALBLK
+ gfs2: Register fs after creating workqueues
+ [IBM 9.2 FEAT] KVM: Crypto Passthrough Hotplug - kernel part
+ lpfc updates for centos-stream / rh9.2
+ Merge commit '8d69da5faaf1b2150e78b7b6227e7d46a3cacfdf'
+ Merge commit 'a5bd923742456b8cc6b55261868d65fc643532b9'
+ mmc: sdhci-esdhc-imx: updates for SDHCI Freescale eSDHC/uSDHC i.MX controller
+ mm/kmemleak: Fix kmemleak hang problem
+ mm: Proactive Fixes for 9.2
+ netfilter: nft_fib: Fix for rpath check with VRF devices
+ net/mptcp: phase-1 rebase for RHEL-9.2
+ scsi: core: Fix a use-after-free
+ scsi: qla2xxx: update driver to latest upstream
+ soc: qcom: update to v6.0-rc3
+ Sync rtla with upstream v5.19
+ tcp: phase-1 backports for RHEL-9.2
+ vdpa_sim_blk: set number of address spaces and virtqueue groups
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-192.el9 (fixes: CVE-2022-2663, CVE-2022-3028, CVE-2022-42703):
+ af_key: Do not call xfrm_probe_algs in parallel
+ audit: backport fixes and cleanups up to upstream v6.1
+ Backport fs v6.0 and earlier commits for kernel-rt
+ block: update with v6.1-rc2
+ CNB: ethernet: add a helper for assigning port addresses
+ CNB: inet: Separate DSCP from ECN bits and use dscp_t for TOS fields
+ CNB: net: disambiguate the TSO and GSO limits
+ CNB: net: HW counters for soft devices
+ CNB: net/sched: act_police: allow 'continue' action offload
+ crypto: xts - restrict key lengths to approved values in FIPS mode
+ drm: fix duplicated code in drm_connector_register
+ drm/mgag200: Fix PLL setup for G200_SE_A rev >=4
+ Enable the RTC rv8803 driver
+ Fix and stabilize vm selftests results before including in CI
+ iavf: Fix adminq error handling
+ iomap update to v5.16
+ io_uring: update to v5.16
+ io_uring: update to v5.17
+ io_uring: update to v5.18
+ ipv4: Backport upstream fixes.
+ kselftests 9.2 P1 backport
+ KVM on s390x resync, Protected dump, Enhanced Interpretation for PCI Functions and CPU topology
+ KVM: selftests: replace assertion with warning in access_tracking_perf_test
+ KVM: VMX: fully disable SGX if SECONDARY_EXEC_ENCLS_EXITING unavailable
+ memcg: Add memory.reclaim support
+ memcg: Backport some useful upstream patches
+ Merge commit '0e769f75b4fb40e853ac8c3a8974516424a57c23'
+ Merge commit '5df889efab934c03c35799d3338d36bd722e093c'
+ mm/rmap: Fix use-after-free related to leaf anon_vma double reuse (CVE-2022-42703)
+ mm: slub: fix flush_cpu_slab()/__free_slab() invocations in task context.
+ netfilter: 9.2 phase 1 backports
+ netfilter: fix message handling flaw
+ net: team: Unsync device addresses on ndo_stop
+ NFS/SUNRPC: Client needs to handle session trunking group membership changes
+ owners: Remove Inaki Malerba from the owner's list as he is leaving the company
+ PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time
+ perf/arm-cmn: cmn updates, cmn650/700 support
+ perf: Sync with upstream v5.19
+ powerpc/pseries: Use lparcfg to reconfig VAS windows for DLPAR CPU
+ powerpc/pseries/vas: Pass hw_cpu_id to node associativity HCALL
+ redhat: create /boot symvers link if it doesn't exist
+ redhat: fix the branch we pull from the documentation tree
+ redhat/Makefile: Rename LOCALVERSION to DISTLOCALVERSION
+ remoteproc: imx_rproc : updates
+ [RHEL-9.2] iommu: amd: Updates for 9.2
+ scsi: fix mpi3mr: for rt-kernels
+ scsi: iscsi: driver updates
+ scsi: qedi: update driver to latest upstream
+ scsi: scsi_transport_fc: Use %u for dev_loss_tmo
+ selftests/bpf: Limit unroll_count for pyperf600 test
+ spec: fix path to `installing_core` stamp file for subpackages
+ tipc: backports from upstream
+ Update ACPI to match Linux v6.0
+ Update drivers/rtc for known edge platforms
+ Update kernel's PCI subsystem to v6.0
+ Update objtool to v5.19
+ Update USB And Thunderbolt to v6.0
+ watchdog: imx7ulp: updates
+ x86/fpu: Do not leak fpstate pointer on fork
+ x86/fpu: Prevent FPU state corruption
+ xfrm: backports from upstream
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-184.el9:
+ DRM 6.0 backport dependencies
+ MDRAID - Update to the latest upstream
+ platform/x86/intel: pmc/core: Add Raptor Lake support to pmc core driver
+ powercap: intel_rapl: Add support for RAPTORLAKE_P
+ [RHEL 9.2] IOMMU and DMA Mapping Updates
- Updated to kernel-5.14.0-183.el9:
+ cgroup/cpuset: Add isolated partition type for disabling load balancing
+ crypto: ccp: update ccp driver upto v6.0
+ Follow on fixes for bz2120352
+ IPv6: 9.2 P1 backport from upstream
+ iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue
+ KVM: x86: Rebase to upstream 6.0
+ selftests: bpf: test_kmod.sh: Pass parameters to the module
+ Support for EFI confidential computing secret area in AMD SEV guests
+ tracing: Disable interrupt or preemption before acquiring arch_spinlock_t
- Updated to kernel-5.14.0-181.el9 (fixes: CVE-2022-1462, CVE-2022-1882, CVE-2022-30594, CVE-2022-39188):
+ ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel systems
+ amd64_edac: add support for systems with different types of memory modules
+ arm64: kexec_file: use more system keyrings to verify kernel image signature
+ arm64/kexec: Fix missing extra range for crashkres_low
+ Backport selected PM commits for kernel-rt
+ block: update with upstream v6.0
+ cgroup: cgroup_get_from_id() must check the looked-up kn is a directory
+ crypto: cryptd - Protect per-CPU resource by disabling BH
+ dmaengine: Updates for 9.2
+ exfat: Stable update and fixes
+ fix pinctrl errors on Raspberry Pi 4
+ Fix UAF error in watch_queue
+ intel_idle: make SPR C1 and C1E be independent
+ io_uring: update to v5.15
+ irqdomain: Export irq_domain_disconnect_hierarchy()
+ Merge remote-tracking branch 'centos-stream-9/merge-requests/1299' into temporary-branch
+ Merge remote-tracking branch 'origin/merge-requests/1116' into HEAD
+ mm changes through v5.18 for 9.2
+ mm: prevent page_frag_alloc() from corrupting the memory
+ mmu_gather: Fix munmap() & unmap_mapping_range() race (CVE-2022-39188)
+ net: add skb drop reasons
+ net: stable backports for 9.2
+ nfp: driver update to kernel version 5.18
+ NFS refresh for RHEL-9.2
+ nvme update to v6.0
+ perf test: Record only user callchains on the "Check Arm64 callgraphs are complete in fp mode" test
+ ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
+ RDMA: update to v6.0
+ redhat/configs: enable UINPUT on aarch64
+ redhat/Makefile: Remove hardcoded BUILD_TARGET entries
+ replace CONFIG_PTE_MARKER with CONFIG_PTE_MARKER_UFFD_WP
+ [s390]: [IBM 9.2 FEAT] Support Processor Activity Instrumentation Extension 1 (IBM z16) - kernel part
+ [s390]: [IBM 9.2 FEAT] Transparent DASD PPRC (Peer-to-Peer Remote Copy) handling - kernel part
+ [s390]: ['[IBM 9.2 FEAT] Upgrade the QETH driver to latest from upstream', ' e.g. kernel 5.20']
+ scsi: bnx2fc: update driver to latest upstream
+ scsi: qedf: update driver to latest upstream
+ SCSI updates for RHEL 9.2
+ tty: fix possible race condition in drivers/tty/tty_buffers.c
+ Update drivers/i2c for known edge platforms
+ Update drivers/phy to support Arm SystemReady IR
+ Update DTS bindings for known edge platforms
+ Updates to drivers/perf to support Arm SystemReady IR
+ VFIO 9.2 backports
+ wireguard: netlink: avoid variable-sized memcpy on sockaddr
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-177.el9:
+ Backport printk v5.19 and earlier commits for kernel-rt
+ cpufreq: intel_pstate: Support Sapphire Rapids OOB mode
+ crypto: disallow plain DH and ECDH usage in FIPS mode
+ FS fixes for 9.2 on inotify
+ random: trigger reseeding DRBG on more occasions
+ target: Update to the latest upstream version
+ Update drivers/pinctrl for use with Arm SystemReady IR and other Edge platforms
+ Update turbostat to upstream 6.0
+ watchdog: Fix SBSA watchdog accesses
- Updated to kernel-5.14.0-175.el9 (fixes: CVE-2021-26341):
+ bpf: Use bpf_capable() instead of CAP_SYS_ADMIN for blinding decision
+ Cleanup int3400 thermal OSC handling
+ crypto: qat: Update QAT drivers upto v6.1-rc1
+ gfs2: Use TRY lock in gfs2_inode_lookup for UNLINKED inodes
+ IPMI updates and bug fixes
+ Merge tag 'kernel-5.14.0-162.6.1.el9_1'
+ netfilter: late backports from upstream
+ nvme-tcp: handle number of queue changes
+ Raspberry Pi: fix irq-bcm2835/36 build errors
+ redhat: change default dist suffix for RHEL 9.1
+ redhat: fix elf got hardening for vm tools
+ [redhat] kabi: add symbols to stablelist
+ [redhat] kabi: re-enable build-time kabi-checks
+ redhat: Update directory with ARK changes
+ [s390]: [IBM 9.2 FEAT] Support IBM z16 Processor-Activity-Instrumentation Facility - kernel part
+ sfc: fix TX channel offset when using legacy interrupts
+ x86,config: Enable straight-line-speculation fix
+ xfs: sync to upstream v5.15
- Updated to kernel-5.14.0-171.el9:
+ Add Device IDs for Raptor Lake and Raptor Lake S
+ bonding: fixes for 9.2
+ drm/bochs: fix blanking
+ irqchip/qcom-pdc: update to v5.19-rc4
+ opp: backport changes from v5.19-rc8
- Updated to kernel-5.14.0-170.el9:
+ Backport scheduler related v5.19 and earlier commits for kernel-rt
+ bonding: fix NULL deref in bond_rr_gen_slave_id
+ configs: enable CONFIG_HP_ILO for aarch64
+ iwlwifi: limit fw version for AC9560 to avoid fw crash
+ Merge tag 'kernel-5.14.0-162.4.1.el9_1'
+ NFSv4.1+ session trunking discovery
+ [s390]: RHEL9.2 - KVM: PV: ext call delivered twice when receiver in PSW wait
+ [s390]: RHEL9.2 - s390/hugetlb: fix prepare_hugepage_range() check for 2 GB
+ [s390]: RHEL9.2 - s390/mm: do not trigger write fault when vma does not allow
- Updated to kernel-5.14.0-168.el9 (fixes: CVE-2022-20141, CVE-2022-3077):
+ ACPI: Improve fwnode serial multi-instantiate driver
+ assoc_array: Fix BUG_ON during garbage collect
+ Backport fscache/cachefiles rework for 9.2
+ BPF and XDP rebase to v5.17
+ drm/amdgpu: Only disable prefer_shadow on hawaii
+ drm/hyperv : Removing the restruction of VRAM allocation with PCI bar size
+ drm/nouveau/kms/nv140-: Disable interlacing
+ i2c: ismt: prevent memory corruption in ismt_access()
+ i40e: Fix kernel crash during module removal
+ ice: Allow operation with reduced device MSI-X
+ igmp: Add ip_mc_list lock in ip_check_mc_rcu
+ ixgbe: Add locking to prevent panic when setting sriov_numvfs to zero
+ Merge tag 'kernel-5.14.0-162.3.1.el9'
+ nohz/full, sched/rt: Fix missed tick-reenabling bug in dequeue_task_rt()
+ NUMA related scheduler improvements
+ nvme-fc: fix the fc_appid_store return value
+ powerpc/mobility: Extend the NMI watchdog timer during the LPM
+ powerpc/perf: Optimize clearing the pending PMI and remove WARN_ON for PMI check in power_pmu_disable
+ rcu: Update RCU code base to v5.19 for 9.2 RT
+ Revert "net: macsec: update SCI upon MAC address change."
+ [s390]: [IBM 9.2 FEAT] Static PIE Support - kernel part
+ [s390]: RHEL9.0 - zfcp: fix missing auto port scan and thus missing target ports
+ sched/fair: Introduce SIS_UTIL to search idle CPU based on sum of util_avg
+ scsi: restore setting of scmd->scsi_done() in EH and reset ioctl paths
+ sysctl: returns -EINVAL when a negative value is passed to proc_doulongvec_minmax
+ x86/boot: Don't propagate uninitialized boot_params->cc_blob_address
- Updated to kernel-5.14.0-164.el9:
+ Fix null pointer reference in nvmem_unregister
+ iavf: bug fixes August 2022
+ platform/x86/intel: pmc/core add support for ADL-N
+ Update Intel Platform Monitoring Technology
+ Update kernel's PCI subsystem to v5.19
+ Use final upstream fix for DMAR_UNITS_SUPPORTED
+ vfio/type1: Unpin zero pages
- Updated to kernel-5.14.0-163.el9:
+ CNB: rebase/update devlink for RHEL 9.2 to upstream v5.18
+ New device IDs for RPL-S: NPK
+ [s390]: [IBM 9.1 FEAT] Long Kernel Commmand Line for s390x - kernel part
+ Upgrade drivers/firmware to support Arm SystemReady IR
+ Upgrade drivers/gpio to support Arm SystemReady IR
+ vdpa/mlx5: Update Control VQ callback information
+ x86/cpu: Add new Raptor Lake CPU model number
- Updated to kernel-5.14.0-162.el9 (fixes: CVE-2022-2585):
+ Fix: posix cpu timer use-after-free
+ Revert "ixgbevf: Add support for new mailbox communication between PF and VF"
- Updated to kernel-5.14.0-161.el9:
+ Fixes for bz-2121368
+ random: allow reseeding DRBG with getrandom
+ redhat: remove GL_DISTGIT_USER, RHDISTGIT and unify dist-git cloning
- Updated to kernel-5.14.0-160.el9 (fixes: CVE-2022-1679, CVE-2022-26373):
+ ath9k: fix use-after-free in ath9k_hif_usb_rx_cb
+ Chelsio FCoE Initiator Driver (csiostor) update to upstream 5.19-rc4
+ iavf: Fix VLAN_V2 addition/rejection
+ net: qcom/emac: Fix improper merge resolution in device_get_mac_address
+ nvme-fc: restart admin queue if the caller needs to restart queue
+ Pull updated changes for gve driver from upstream
+ x86/speculation: Post-barrier Return Stack Buffer Predictions (CVE-2022-26373)
- Updated to kernel-5.14.0-159.el9:
+ crypto: allow algs only in specific constructions in FIPS mode
+ i2c: qcom-geni: Pull up to v5.19-rc5
+ wireless: stack & drivers bugfixes update from v5.18
- Updated to kernel-5.14.0-158.el9:
+ [9.1] DRM stable backport up 5.18.13
+ clk: qcom: add SC8280XP GCC
+ drm/nouveau: recognise GA103
+ interconnect: qcom: add sc8280xp support
+ iommu/arm-smmu-qcom: Add SC8280XP support
+ phy: qcom: update to v5.19-rc4
+ pinctrl: qcom: update to v5.19-rc3
+ Rebase mlx5 up to kernel 5.18
+ scsi: ufs: update to v5.19-rc4
+ soc: qcom: llcc: update to v5.19-rc6
+ soc: qcom: rpmhpd: update to 5.19-rc5
+ soc: qcom: smem: update to v5.19-rc6
+ spi: spi-geni-qcom: Pull up to v5.19-rc5
- Updated to kernel-5.14.0-155.el9 (fixes: CVE-2022-2586, CVE-2022-36946):
+ ALSA: AMD - fix the ACPI tables to detect correctly Lenovo products using the DMIC (digital microphone)
+ be2net: Driver Update
+ i40e: Fix tunnel checksum offload with fragmented traffic
+ iavf: Fix deadlock in initialization
+ ice: bug fixes August 2022
+ KVM: nVMX: Inject #UD if VMXON is attempted with incompatible CR0/CR4
+ mm: Fix PASID use-after-free issue
+ netfilter: nf_queue: do not allow packet truncation below transport header offset
+ netfilter: nf_tables: do not allow to reference objects in foreign tables
+ raid1: ensure write behind bio has less than BIO_MAX_VECS sectors
+ redhat: update kabi tooling
+ selftests: mptcp: make sendfile selftest work
+ sfc: fix use after free when disabling sriov
+ wait: Fix __wait_event_hrtimeout for RT/DL tasks
- Updated to kernel-5.14.0-154.el9:
+ AMD Secure Nested Paging (SEV-SNP) Guest Support
- Updated to kernel-5.14.0-153.el9:
+ Driver upgrade for mlx4
+ netfilter: nf_log_syslog: Don't ignore unknown protocols
+ netfilter: nf_tables: fix crash when nf_trace is enabled
+ redhat: Use redhatsecureboot701 for ppc64le
+ Upgrade drivers/base/property.c to support Arm SystemReady IR
- Updated to kernel-5.14.0-152.el9:
+ Rebase mlx5 up to kernel 5.17
+ Upgrade drivers/of to support Arm SystemReady IR
- Updated to kernel-5.14.0-150.el9 (fixes: CVE-2022-2590):
+ CNB: rebase/update netdevsim for RHEL 9.1
+ Documentation: Describe net.ipv4.tcp_reflect_tos.
+ drm/amd/display: Fix new dmub notification enabling in DM
+ fs: dlm: fix potential recursive spinlock issue
+ In ACPI v5.18, revert explicit ghes_init() calls to avoid conflict with edac
+ KVM: selftests: Disable rseq_test for all architectures
+ KVM: x86: nSVM: implement nested VMLOAD/VMSAVE
+ megaraid: fix for a cpu hotplug
+ mm: Fix CVE-2022-2590 by reverting "mm/shmem: unconditionally set pte dirty in mfill_atomic_install_pte"
+ netfilter: conntrack: rebase to 5.19
+ nfsd: eliminate the NFSD_FILE_BREAK_* flags
+ nfs: fix hung DIO writes in -ENOSPC conditions
+ sfc: fix kernel panic when creating VF
+ SUNRPC don't resend a task on an offlined transport
+ vmxnet3: do not reschedule napi for rx processing
- Updated to kernel-5.14.0-148.el9 (fixes: CVE-2022-21499):
+ fs: dlm: change posix lock sigint handling
+ fs: dlm: make dlm_callback_resume quite
+ lockdown: also lock down previous kgdb use
+ perf: fix endless loop in BPF tests
+ scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection
+ vdpasim: control virtqueue support
- Updated to kernel-5.14.0-147.el9:
+ ALSA: backport fixes for RHEL 9.1
+ ALSA: backport for RHEL 9.1
- Updated to kernel-5.14.0-146.el9:
+ bnxt_en: additional commits for RHEL9.1
+ Chelsio iWARP (iw_cxgb4) update to upstream 5.19-rc4
+ Chelsio NIC (cxgb4/cxgb4vf/libcxgb) update to upstream 5.19-rc4
+ igc: Driver Update
+ KVM: x86: stable fixes since 5.18
+ mpt3sas: fix a problem with shutdown
+ qede: Reduce verbosity of ptp tx timestamp
+ redhat: nvme/tcp mistakenly uses blk_mq_tag_to_rq(nvme_tcp_tagset(queue))
+ update cpufreq to v5.18
+ Update Marvell OcteonTX2 device drivers to v5.18
+ virtio_ring: sync the vritio_ring with upstream
- Updated to kernel-5.14.0-144.el9 (fixes: CVE-2022-1184):
+ ena: update driver to v5.18
+ ext4: fix use-after-free and memory errors when working with a corrupted directory
+ Fix outstanding device-mapper bugs from upstream 5.19 and 6.0
+ ipmi: When handling send message responses, don't process the message
+ NFS: Fix initialisation of nfs_client cl_flags field
+ opp: fix broken DT boot on Nvidia Jetson
+ scsi: qla2xxx: Fix imbalance vha->vref_count
+ smartpqi updates
+ xfs: Ensure important RHEL8 fixes are present in RHEL9
- Updated to kernel-5.14.0-143.el9 (fixes: CVE-2022-23816, CVE-2022-23825, CVE-2022-29900, CVE-2022-29901):
+ Documentation: add a description for net.core.high_order_alloc_disable
+ net: ping6: Fix memleak in ipv6_renew_options().
+ rebase the input and HID stack in RHEL 9.1
+ [RHEL 9.1.0 BZ 2015209] A couple dma fixes
+ [RHEL9.1 BZ2100482] Revert dmaengine: idxd: Separate user and kernel pasid enabling
+ sched, cpuset: Fix dl_cpu_busy() panic due to empty cs->cpus_allowed
+ sit: do not call ipip6_dev_free() from sit_init_net()
+ x86: Fix RETBleed Vulnerabilities
- Updated to kernel-5.14.0-141.el9:
+ ACPI: VIOT: Fix ACS setup
+ Documentation: Add an explanation of NFSv4 client identifiers
+ Documentation: filesystems: proc: update meminfo section
+ iommu/vt-d: A couple of late landing fixes
+ mm: make slab and vmalloc allocators __GFP_NOLOCKDEP aware
+ mm/munlock: Fix sleeping function called from invalid context bug
+ powercap: intel_rapl: add support for ALDERLAKE_N
+ ppc64le: bpf: bpf_perf_event.h field 'regs' has incomplete type (perf:)
+ scsi: qla2xxx: Fix excessive I/O error messages by default
+ Update ACPI to match Linux v5.18
- Updated to kernel-5.14.0-140.el9:
+ ibmvnic: Properly dispose of all skbs during a failover.
+ Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together
+ perf stat report segfaults
+ powerpc/fadump: save CPU reg data in vmcore when PHYP terminates LPAR
- Updated to kernel-5.14.0-139.el9:
+ cgroup: Miscellaneous bug fixes and enhancements
+ drm/mgag200: Add FB damage clips and gamma support
+ Fix kvm/selftests/rseq_test failure
+ net: mld: fix reference count leak in mld_{query | report}_work()
+ RDMA: Bug fixes from v5.19
+ update the non-x86 portions of drivers/platform to v5.18
+ vsock: backport latest commits for RHEL-9-1
- Updated to kernel-5.14.0-138.el9:
+ Add support for MaxLinear NICs (GPY115/21x/24x driver)
+ blk-mq: don't create hctx debugfs dir until q->debugfs_dir is created
+ block: Fix handling of offline queues in blk_mq_alloc_request_hctx()
+ bonding: bugfix series from v5.19
+ Bring MD kernel up to date
+ CNB: net: Don't include filter.h from net/sock.h
+ crypto: qat: Update QAT drivers upto v5.19
+ Documentation: fix udp_wmem_min in ip-sysctl.rst
+ e1000e: Driver update for RHEL9.1
+ Enable MediaTek BT Support for RHEL-9 and bug fixes
+ fscache: Avoid ASSERTCMP if two threads race into fscache_disable_cookie
+ netdevsim: don't overwrite read only ethtool parms
+ NFSv4.1 support for NFS4_OPEN_RESULT_PRESERVE_UNLINKED
+ nvme: fix RCU hole that allowed for endless looping in multipath round robin
+ redhat/configs/common: Enable CONFIG_LZ4_COMPRESS
+ redhat: workaround CKI cross compilation for scripts
+ RHEL-9 nfsd server post_wcc fixes - clients see increased revalidations
+ sfc: fix efx_separate_tx_channels=y
+ tools/testing/nvdimm: Fix security_init() symbol collision
+ Update intel_idle with SPR and ADL support
+ Update USB and Thunderbolt to v5.19-rc5
+ vdpa/mlx5: Fix ethtool can not set combined numbers in vm when the vcpu < vqs
+ XDP/Networking BPF: 9.1 P2 backports from upstream
- Updated to kernel-5.14.0-136.el9:
+ arm64: update GIC interrupt controller driver to v5.18 level
+ bpftool: Enable libbpf's strict mode by default
+ drivers/base: fix userspace break from using bin_attributes for cpumap and cpulist
+ ipv4: backport upstream fixes
+ nfsd: destroy percpu stats counters after reply cache shutdown
+ x86/kexec: fix memory leak of elf header buffer
+ xfs: fallocate doesn't drop privileges or capabilities
- Updated to kernel-5.14.0-135.el9 (fixes: CVE-2022-34918):
+ ACPI, PCI: Power Management fixes
+ Additional SCSI updates for 9.1
+ audit: backport from upstream v5.18 to v5.19-rc3
+ block drivers: fix build warning on not checking add_disk*
+ IPv6: 9.1 P2 backports from upstream
+ kselftest: backport from upstream P2
+ Make signature verification FIPS compliant
+ mptcp: backports for 9.1p2
+ net: backport upstream fixes for IP tunnels
+ netfilter: 9.1 P2 backports
+ netfilter: nf_tables: stricter validation of element data
+ net: openvswitch: fix misuse of the cached connection on tuple changes
+ net/other: backports for 9.1 p2
+ net/sched: backports for 9.1 p2
+ redhat: fix kernel_variant_package option definition
+ tcp: fix possible divide-by-zero
+ tipc: backports from upstream, 2nd phase
+ tipc: move bc link creation back to tipc_node_create
- Updated to kernel-5.14.0-133.el9 (fixes: CVE-2022-0854, CVE-2022-21123, CVE-2022-21125, CVE-2022-21166, CVE-2022-28893):
+ arm64: Update core arch code to upstream v5.18
+ dlm: fix missing lkb refcount handling
+ fix swiotlb information leak with DMA_FROM_DEVICE
+ igb: Driver Update
+ kdump: round up the total memory size to 128M for crashkernel reservation
+ lockd: set fl_owner when unlocking files
+ lpfc cs9 (rhel9.1) update to 14.2.0.5
+ nfs: reexport documentation
+ ovs: backports for 9.1 P2
+ remoteproc: updates for build issues
+ scsi: target: pscsi: Set SCF_TREAT_READ_AS_NORMAL flag only if there is valid data
+ SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
+ update cpuidle to v5.18
+ Update drivers/base to v5.18
+ x86/speculation/mmio: Fix Processor MMIO Stale Data Vulnerabilities
- Updated to kernel-5.14.0-130.el9:
+ CNB: bpf: Let bpf_warn_invalid_xdp_action() report more info
+ mm: folio backports part 2
+ redhat: make kernel-zfcpdump-core to not provide kernel-core/kernel
+ scsi: csiostor: Add module softdep on cxgb4
+ scsi: iscsi: iSCSI transport bugfixes
- Updated to kernel-5.14.0-129.el9:
+ DRM 5.18 backport
+ ext4,jbd2: Backport fixes from 5.18
+ iRDMA: Driver update to v5.19
+ Make NFSv4 OPEN(CREATE) less brittle
+ net/core: backport fixes from upstream for 9.1 P2
+ redhat/configs: enable CONFIG_SAMPLE_VFIO_MDEV_MTTY
+ spec: Keep .BTF section in modules
+ virtiofs: Add support for SELinux
- Updated to kernel-5.14.0-128.el9:
+ block: kill warning of 'Directory XXXXX with parent 'block' already present!'
+ CNB: gro: get out of core files
+ sched: Fix balance_push() vs __sched_setscheduler()
+ selftests, xsk: Fix bpf_res cleanup test
- Updated to kernel-5.14.0-127.el9:
+ aarch64: Enable NVIDIA Jetson Xavier SoCs
+ fs: dlm: filter messages case to avoid kernel crash
+ hyperv: Add support for AMD SEV-SNP for Azure/Hyper-V
+ igbvf: Driver Update
+ perf: Support Cstate PMU on SPR
+ powercap: intel_rapl: add support for RaptorLake
+ r8169: driver update
+ x86/sme: fix boot failure when memory encryption is enabled
- Updated to kernel-5.14.0-126.el9:
+ cxl: Update CXL code from upstream 5.17.
+ kvm/arm64 rebase for RHEL9.1
+ mm/page_alloc: always attempt to allocate at least one page during bulk allocation
- Updated to kernel-5.14.0-125.el9:
+ bnxt: Driver update for RHEL9.1
+ CIFS, backport two patches that fixes issues in smb2_compound_op
+ gfs2: Make sure FITRIM minlen is rounded up to fs block size
+ i40e: Driver Update
+ iavf: Driver update to upstream 5.18
+ ice: Driver update to upstream 5.18
+ time: Handle negative seconds correctly in timespec64_to_ns()
- Updated to kernel-5.14.0-124.el9:
+ ceph: wait on async create before checking caps for syncfs
+ CNB: lib: bitmap: Introduce node-aware alloc API
+ dm: sync with upstream 5.19
+ scsi: ibmvfc: Allocate/free queue resource only during probe/remove
- Updated to kernel-5.14.0-123.el9:
+ exec: Force single empty string when argv is empty
+ net: backport netdevice and netns refcount tracking and enable them for debug kernels
+ nfs: fix broken handling of the softreval mount option
+ powerpc: Enable execve syscall exit tracepoint
+ rcu: Fix rcu_tasks_verify_self_tests failure
+ scsi: ibmvfc: Store vhost pointer during subcrq allocation
- Updated to kernel-5.14.0-122.el9:
+ Add MEI support for ADL-N
+ Backport fixes for ucounts
+ bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers
+ exec: Force single empty string when argv is empty
+ Intel SDSi: fix issue reading state certificate
+ iwlwifi: fix use-after-free
+ mptcp: fix checksum byte order
+ net: hyper-v: NetVSC driver updates for 9.1
+ [PATCHv3 00/28] support reserving crashkernel above 4G on arm64 kdump
+ s390/crypto: add SIMD implementation for ChaCha20
- Updated to kernel-5.14.0-121.el9:
+ arm64: Update core arch code to upstream v5.16
+ crypto: fips - make proc files report fips module name and version
+ fuse: allow sharing existing sb
+ gfs2: File corruption with large writes when memory is tight
+ kbuild: Enable -std=gnu11
+ redhat/configs: Set CONFIG_VIRTIO_IOMMU on x86_64
+ redhat/kernel.spec.template: fix standalone tools build
- Updated to kernel-5.14.0-120.el9 (fixes: CVE-2022-1998, CVE-2022-2078):
+ block: update with 5.18 for rhel 9.1
+ fanotify: Fix stale file descriptor in copy_event_to_user()
+ netfilter: nf_tables: sanitize nft_set_desc_concat_parse()
+ ntb: update from upstream v5.17
+ redhat: spec: trigger dracut when modules are installed separately
+ [s390] s390/zcrypt: Add admask to zcdn
+ scsi: mpi3mr: Add bsg device support
+ tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.
+ vmxnet3: Update network driver for RHEL 9.1
- Updated to kernel-5.14.0-119.el9:
+ mt76: mt7921: Fix the error handling path of mt7921_pci_probe()
+ powerpc/pseries: Added support for differentiated memory equivalent to ACPI special purpose memory (SPM) (SCM/pmem)
+ revert bus: Make remove callback return void
+ [s390] drivers/s390/char: Add Ultravisor io device
+ [s390] [IBM 9.1 FEAT] Upgrade the SMC driver to latest from upstream, e.g. kernel 5.18
+ tg3: Driver update for RHEL9.1
+ wireless: stack & drivers update to v5.18
- Updated to kernel-5.14.0-118.el9:
+ ixgbe: Driver update for RHEL9.1
+ sfc: update to upstream v5.18
+ SGX updates from v5.17
- Updated to kernel-5.14.0-117.el9:
+ Enable verbose error logging support for nvme
+ ionic: update driver to v5.18
+ Make DMAR_UNITS_SUPPORTED configurable
+ powerpc/rtas: rtas_busy_delay() improvements
+ [s390] zcrypt DD: Exploitation Support of new IBM Z Crypto Hardware - kernel part
+ scripts/pahole-flags.sh: use exit instead of return at the top level
+ Update kernel's PCI subsystem to v5.18
+ XDP and networking eBPF rebase to v5.16
+ xfs: validate inode fork size against fork format
- Updated to kernel-5.14.0-116.el9:
+ CNB: Update TC subsystem to upstream v5.18
+ hv: vmbus: Driver updates for 9.1
+ ixgbevf: Driver update for RHEL9.1
+ [RHEL9.1] IOMMU/DMA Updates
+ video: fbdev: hyperv_fb: Allow resolutions with size > 64 MB for Gen1
+ x86/fpu: KVM: Set the base guest FPU uABI size to sizeof(struct kvm_xsave)
- Updated to kernel-5.14.0-114.el9 (fixes: CVE-2022-1729):
+ block: ignore RWF_HIPRI hint for sync dio
+ lpfc cs9 (rhel9.1) update
+ perf: Fix sys_perf_event_open() race against self
+ redhat/configs: Drop outdated CRYPTO_ECDH and unify CRYPTO_USER configs
+ [s390] Upgrade the zfcp driver to latest from upstream, e.g. kernel 5.18
+ Update ext4 and jbd2 to upstream v5.17
- Updated to kernel-5.14.0-113.el9:
+ bpf update v5.16
+ netfilter: nat: really support inet nat without l3 address
+ netfilter: nf_tables: double hook unregistration in netns path
+ powerpc/rtas: Keep MSR[RI] set when calling RTAS
+ [s390] - s390/dasd: Fix read inconsistency and failure for ESE devices
+ Update ACPI subsystem to match Linux 5.17
+ Watchdog driver (sp5100_tco) support for AMD Family 17 and Family 19 CPUs
- Updated to kernel-5.14.0-112.el9:
+ iio: updates
+ net: mana: MANA driver updates for RHEL 9.1
+ PCI: Hyper-V: PCI driver updates for RHEL 9.1
+ [s390] s390/dasd: Fix data corruption for ESE devices
+ VMCI: Update driver and enable ARM64 build
- Updated to kernel-5.14.0-111.el9 (fixes: CVE-2022-1966):
+ Add pinctrl support for ADL-N
+ block, loop: support partitions without scanning
+ [Intel 9.1 FEAT] [RPL-P] perf: PerfMon support
+ ipv4: do not use per netns icmp sockets
+ netfilter: nf_tables: disallow non-stateful expression in sets earlier
+ remoteproc: updates
+ scsi: fnic: Finish scsi_cmnd before dropping the spinlock
+ turbostat: fix PC6 displaying on some systems
- Updated to kernel-5.14.0-110.el9:
+ ACPI: sysfs: Fix BERT error region memory mapping
+ CNB: net: disable NET_RX_BUSY_POLL on PREEMPT_RT
+ Hyper-V: x86: x86_64 Updates for RHEL 9.1
+ KVM: x86: Rebase to v5.18
+ topology: make core_mask include at least cluster_siblings
- Updated to kernel-5.14.0-109.el9:
+ Backport latest fixes from upstream s390x KVM for the RHEL 9.1 kernel
+ Brush up s390x/zfcpdump/ configs
+ CNB: net: consolidate neif_rx() and make it callable from any context
+ mptcp: better window sharing
+ ovs: 9.1 P1 backports
+ powerpc: Support for reporting NVDIMM performance stats (HMS/SCM/pmem)
+ redhat/configs: enable interconnect for NXP i.MX 8M
+ [s390] s390/cpumf: add new extended counter set for IBM z16
+ [s390] s390/perf: obtain sie_block from the right address
+ x86/split_lock: Enable the split lock feature on Raptor Lake
- Updated to kernel-5.14.0-108.el9:
+ ahci: Add a generic 'controller2' RAID id
+ bnx2x: fix napi API usage sequence
+ CNB: net: add netif_set_real_num_queues() for device reconfig
+ interconnect: updates
+ net/af_packet: add VLAN support for AF_PACKET SOCK_RAW GSO
+ net: openvswitch: fix leak of nested actions
+ NFSv4: Fix free of uninitialized nfs4_label on referral lookup.
+ regulator: updates
+ rpmsg: updates
+ Scheduler late arriving fixes for 9.1
+ scsi: scsi_dh_alua: Properly handle the ALUA transitioning state
+ selftests/bpf: Fix btf_dump test under new clang
+ spmi: updates
+ vdpa: mlx5: prevent cvq work from hogging CPU
- Updated to kernel-5.14.0-106.el9 (fixes: CVE-2022-24448):
+ clk: qcom: rpmhcc: add sc8280xp support to the RPMh clock controller
+ Documentation: add description for net.core.gro_normal_batch
+ Documentation/sysctl: document max_rcu_stall_to_panic
+ drivers/char: fix unused variable warning in mem.c
+ Fixes for nfs_atomic_open()
+ mm, compaction: fast_find_migrateblock() should return pfn in the target zone
+ PTP: backport fixes from upstream
+ [RHEL 9.1.0] IDXD fixes
+ [s390] Upgrade the qeth driver to latest from upstream
- Updated to kernel-5.14.0-105.el9:
+ Add Alderlake and Raptorlake CPU model numbers
+ Documentation/sysctl: document page_lock_unfairness
+ iommu/virtio: Support bypass domains
+ NFSv4.2: Fix up an invalid combination of memory allocation flags
+ Update bluetooth to upstream 5.17-rc5
+ Update thermal/int340x for RPL
+ XDP and networking eBPF rebase to v5.15
- Updated to kernel-5.14.0-104.el9:
+ bonding: driver update for 9.1
+ mptcp: fix subflow accounting on close
+ redhat: enable CONFIG_NET_ACT_CTINFO (as a module)
+ update qedi driver to latest upstream
- Updated to kernel-5.14.0-103.el9:
+ dlm: fix plock invalid read
+ ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()
+ MMIO support for SMBus and ASF controller in AMD APU/CPU
+ mpt3sas: driver update
+ powerpc/pseries/vas: Use QoS credits from the userspace
+ powerpc: support for perf sampling tests (PMU/performance counters/perf) [FEAT]
+ s390/cio: verify the driver availability for path_event call
+ [s390] RDMA/mlx5: Fix number of allocated XLT entries
+ [s390] s390/hypfs: include z/VM guests with access control group set
+ [s390] s390/tape: fix timer initialization in tape_std_assign()
+ scsi: mpi3mr: driver update
+ Sync osnoise/timerlat tracers with v5.17 upstream
+ tcp: stable backports for rhel 9.1 phase 1
+ vfs: make sync_filesystem return errors from ->sync_fs
- Updated to kernel-5.14.0-102.el9:
+ Enable INTEL_HFI_THERMAL
+ livepatch: rebase to linux v5.17
+ perf: sync with upstream v5.17
+ thunderx nic: mark device as unmaintained
+ xfs: Fix the free logic of state in xfs_attr_node_hasname
- Updated to kernel-5.14.0-101.el9:
+ mm: Backport upstream mm commits for kernel-rt
+ redhat: Exclude cpufreq.h from kernel-headers
+ tools: Fix radix-tree test build failure
- Updated to kernel-5.14.0-100.el9:
+ bpf: update to v5.15
+ KVM: Enable storage key checking for intercepted instruction
+ PCI: vmd: IRQ domain assignment to sub devices
- Updated to kernel-5.14.0-99.el9:
+ ceph: backport mainline changes up to v5.18 for RHEL 9.1
+ [EHL] Intel Sensor Hub (ISH): EClite driver enabling
+ Enable virtio-mem as tech-preview for aarch64
+ intel_idle: updates
+ megaraid_sas: driver update
+ net: drop_monitor: support drop reason
+ selftests: RHEL 9.1 backports from upstream
+ update tools/cpupower
- Updated to kernel-5.14.0-98.el9:
+ hv_balloon: rate-limit "Unhandled message" warning
+ KVM: s390: pv: make use of ultravisor AIV support
+ update qla2xxx driver to latest upstream
- Updated to kernel-5.14.0-97.el9 (fixes: CVE-2022-1012, CVE-2022-27666):
+ bridge: update bridge and switchdev to upstream v5.18
+ cifs: truncate the inode and mapping when we simulate fcollapse
+ Enable VM kselftests
+ net: esp: fix out-of-bounds writes (CVE-2022-27666)
+ quota: make dquot_quota_sync return errors from ->sync_fs
+ redhat/configs: enable GUP_TEST in debug kernel
+ ses: fix a fan issue
+ Sync SELinux/LSM code with upstream up to v5.18-rc5
+ tcp: Increase randomness for source port generation.
- Updated to kernel-5.14.0-96.el9 (fixes: CVE-2022-28390):
+ can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path
+ powerpc/ibmvnic: Upgrade ibmvnic device driver to latest from upstream, e.g. kernel 5.18
+ powerps/pseries/dma: Add support for 2M IOMMU page size
+ soc/tegra: Add devm_tegra_core_dev_init_opp_table_common()
+ VFIO refresh to v5.18
- Updated to kernel-5.14.0-95.el9:
+ mm: create a new system state and fix core_kernel_text()
+ openvswitch: Fix setting ipv6 fields causing hw csum failure
+ vmxnet3: Update network driver for RHEL 9.1
- Updated to kernel-5.14.0-94.el9:
+ arch/arm64: Fix topology initialization for core scheduling
+ arm64: enable CONFIG_MEMORY_HOTREMOVE
+ arm64: Fix KPTI disabling on ThunderX
+ CNB: eth: fwnode: remove the addr len from mac helpers
+ CNB: rebase/update devlink for RHEL 9.1
+ dm integrity: fix memory corruption when tag_size is less than digest size
+ drivers/char/random.c: Update for kernel-rt
+ efi: Allow to enable EFI runtime services by default on RT
+ ipvlan/macvlan: phase-1 updates for 9.1
+ locking: Backport upstream v5.18 locking/rcu commits for kernel-rt
+ md: fix NULL pointer deref with nowait but no mddev->queue
+ mptcp: rebase code to 5.18-net-next
+ net: backport core fixes from upstream
+ netfilter: phase 1 backports from upstream
+ netfilter: revert "kernel: lack of port sanity checking in natd and netfilter leads to exploit of OpenVPN clients"
+ NFSv4 only print the label when its queried
+ ntb_hw_amd: Add NTB PCI ID for new gen CPU
+ nvme: tp-8010 support
+ post upstream v5.14 backports for kprobes and arm64
+ scsi: target: update LIO to the latest version
+ xfs: punch out data fork delalloc blocks on COW writeback failure
- Updated to kernel-5.14.0-92.el9:
+ aarch64: Enable NXP i.MX8M SoCs
+ ahci: update to latest
+ genirq/affinity: Consider that CPUs on nodes can be unbalanced
+ platform/x86: Add AMD system management interface
+ RDMA: update to v5.18-rc6
+ SCSI updates for 9.1
+ update qedf driver to latest upstream
- Updated to kernel-5.14.0-90.el9:
+ bareudp: use ipv6_mod_enabled to check if IPv6 enabled
+ ip tunnels: backport upstream fixes
+ ipv4: Backport upstream fixes.
+ net: mpls: Fix notifications when deleting a device
+ Nvme misc fixes and quirks
+ other: backports from upstream
+ platform/x86/intel: Fix 'rmmod pmt_telemetry' panic
+ scsi: target: Allow changing dbroot if there are no registered devices
+ sctp: backports from upstream
+ tipc: backports from upstream
+ xfs: check sb_meta_uuid for dabuf buffer recovery
- Updated to kernel-5.14.0-89.el9:
+ CNB: net: use eth_hw_addr_set()
+ Merge remote-tracking branch 'origin/merge-requests/627' into bz2069275
+ Merge remote-tracking branch 'origin/merge-requests/671' into bz2069275
+ Merge remote-tracking branch 'origin/merge-requests/673' into bz2069275
+ net: cipso: fix warnings in netlbl_cipsov4_add_std
+ sched/deadline: code cleanup
+ Scheduler header clean up
+ Scheduler RT prerequisites
+ wireguard: 9.1 P1 backports
- Updated to kernel-5.14.0-88.el9:
+ mpt3sas: a bugfix
+ oom_kill.c: futex: delay the OOM reaper to allow time for proper futex cleanup
+ qed*: driver updates
+ sched/isolation: Split housekeeping cpumask per isolation features
+ Update ACPI code to match Linux v5.16
+ Update USB and Thunderbolt to v5.17
+ vrf: 9.1 P1 backports
- Updated to kernel-5.14.0-87.el9 (fixes: CVE-2022-0617, CVE-2022-1353):
+ af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register
+ Bring cifs.ko up to 5.16 plus some additional patches
+ cifs: destage any unwritten data to the server before calling copychunk_write
+ CNB: net: make use of helper netif_is_bridge_master()
+ CNB: xsk: Move tmp desc array from driver to pool
+ cpufreq: intel_pstate: updates
+ DAMON support
+ drivers/base/memory: determine and store zone for single-zone memory blocks
+ Fix CVE-2022-0617
+ General updates for kernel-rt
+ Information about perf-iostat is missing
+ macsec: backport fixes from upstream
+ mm: Optimize list lru memory consumption
+ proc/vmcore: pull back upstream commits to RHEL9
+ Redhat: enable Kfence on production servers
+ sctp: check asoc strreset_chunk in sctp_generate_reconf_event
+ tls: backport fixes from upstream
+ xfrm: backport fixes from upstream
- Updated to kernel-5.14.0-86.el9:
+ cifs: fix NULL ptr dereference in smb2_ioctl_query_info()
+ CNB: skbuff: introduce skb_pull_data
+ CNB: stddef: Introduce DECLARE_FLEX_ARRAY() helper
+ CNB: virtchnl: Add support for new VLAN capabilities
+ configs: enable LOGITECH_FF
+ IDXD driver update for 9.1.0
+ perf: Sync with upstream v5.15
+ ping: a couple of fixes in ping_lookup
+ [RHEL-9.1.0 BZ 2068207] redhat: configs: Enable CONFIG_INTEL_IOMMU_DEBUGFS
+ veth: Ensure eth header is in skb's linear part
- Updated to kernel-5.14.0-85.el9 (fixes: CVE-2022-1015, CVE-2022-1016):
+ bnx2x: driver updates
+ CNB: net: annotate accesses to dev->gso_max_* fields
+ CNB: net_tstamp: add new flag HWTSTAMP_FLAG_BONDED_PHC_INDEX
+ CNB: string.h: Introduce memset_after and memset_startat helpers
+ DRM 5.18 backport dependencies
+ Fix for two recent CVEs
+ Fix SCTP client-side peeloff issues with SELinux
+ ipv6: 9.1 P1 stable backports from upstream
+ mm: backport folio support
+ netfilter: conntrack: Add and use nf_ct_set_auto_assign_helper_warned()
+ net: mana: Add handling of CQE_RX_TRUNCATED
+ redhat/configs: Enable CONFIG_NFT_SYNPROXY
+ redhat/configs: enable CONFIG_RANDOMIZE_KSTACK_OFFSET_DEFAULT
+ [RHEL-9.1.0] IPMI update to kernel v5.17
+ Update kernel's PCI subsystem to v5.17
- Updated to kernel-5.14.0-83.el9:
+ Add the amd_pstate driver
+ CNB: net: make dev_watchdog() less intrusive
+ net: fix NULL pointer reference in cipso_v4_doi_free
+ powerpc/pseries: Enable an interface to represent PAPR firmware attributes
+ redhat/configs: aarch64: enable CPU_FREQ_GOV_SCHEDUTIL
+ redhat: configs: Disable CONFIG_MPLS for s390x/zfcpdump
+ x86: intel_epb: Allow model specific normal EPB value
+ x86/platform/uv: UV Kernel support for UV5
- Updated to kernel-5.14.0-82.el9:
+ bpf, test_offload.py: Skip base maps without names
+ CNB: Remove PDE_DATA() and replace by pde_data()
+ dmaengine: ptdma: Initial driver for the AMD PTDMA
+ e1000e: Add support for RPL-S
+ mm: lru_cache_disable: replace work queue synchronization with synchronize_rcu
+ mm/page_owner: Report memory cgroup info
+ mt76: mt7921e: fix possible probe failure after reboot
+ pci: fix multiple definition error when CONFIG_RHEL_DIFFERENCES is not set
+ perf: Fix typos in error messages
+ powerpc/lib/sstep: Don't use __{get/put}_user() on kernel addresses
+ Scheduler updates and fixes
+ selftests/bpf: Make test_lwt_ip_encap more stable and faster
+ Support PREEMPT_DYNAMIC on aarch64
+ ucounts: Backport fixes for ucount rlimits
- Updated to kernel-5.14.0-81.el9:
+ Add LPSS support for RPL-S
+ Enable i2c-i801 support for RPL-S
+ kABI: Prepare mm SST for kABI Lockdown
+ pinctrl: Add support for RPL-S
+ powerpc/pseries/vas: Enable NX-GZIP support with DLPAR and LPM operations
+ pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init
+ RDMA/qedr: Fix reporting max_{send/recv}_wr attrs
+ s390/kexec: fix memory leak of ipl report buffer
+ selftests: xsk: Make packet validation more robust
+ smartpqi updates
+ x86: Introduce Intel SDSi
- Updated to kernel-5.14.0-80.el9 (fixes: CVE-2022-1015, CVE-2022-25636):
+ gfs2: Fix bugs revealed by the dct tool
+ Merge tag 'kernel-5.14.0-70.13.1.el9_0' from 9.0
+ netfilter: heap out of bounds write in nf_dup_netdev.c since 5.4
+ netfilter: nf_tables: validate registers coming from userspace.
+ redhat/configs: Enable CONFIG_RCU_SCALE_TEST & CONFIG_RCU_REF_SCALE_TEST
+ redhat: disable uncommon media device infrastructure
+ redhat: Enable KASAN on all ELN debug kernels
+ Sched/numa: fix allowed numa imbalance
+ scsi: iscsi: iSCSI Offload regression fixes
+ Update thermal/drivers/int340x
- Updated to kernel-5.14.0-79.el9 (fixes: CVE-2020-36516):
+ audit: backport from upstream v5.13-rc1 to v5.16-rc6
+ block: update to v5.17
+ bpf/selftests: Fix namespace mount setup in tc_redirect
+ CNB: ipv6: separate ndisc_ns_create() from ndisc_send_ns()
+ Drivers: hv: Propagate VMBus coherence for performance
+ drivers/net: mark several as unmaintained
+ Fix panic while looking up a symlink due to NULL i_op->get_link
+ Fix "TSC Calibration failed" error
+ ibmvnic: fix race between xmit and reset
+ ice: bonding bug fixes
+ integrity: general upstream bugfixes
+ ipv4: avoid using shared IP generator for connected sockets
+ Merge tag 'kernel-5.14.0-70.11.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.12.1.el9_0' from 9.0
+ Merge up tags kernel-5.14.0-70.11.1.el9_0 to kernel-5.14.0-70.12.1.el9_0
+ mlxsw: Refactor parsing configuration
+ powerpc: fix some vm kernel selftests failures ( userfaultfd | userfaultfd_hugetlb | map_fixed_noreplace) [P10][DD2][Denali]
+ powerpc: P10 hardware counter (PMU/performance counters/perf:) Enhancements [FEAT]
+ powerpc: Support to handle control memory access error [FEAT]
+ powerpc/xive: Export XIVE IPI information for online-only processors.
+ Preallocate pgdat struct for all nodes during boot
+ rcu: Backport upstream RCU related commits up to v5.17
+ RDMA: update to v5.17
+ redhat/configs: disable CONFIG_CAN_SOFTING
+ redhat/configs: Enable WDT devices used by qemu VMs
+ Revert "xfs: actually bump warning counts when we send warnings"
+ Update kernel's PCI subsystem to v5.16
- Updated to kernel-5.14.0-78.el9 (fixes: CVE-2022-0995, CVE-2022-1011, CVE-2022-23960):
+ arm64: Spectre-BHB mitigation (CVE-2022-23960)
+ block: release rq qos structures for queue without disk
+ cifs: modefromsids must add an ACE for authenticated users
+ configs: enable CONFIG_RMI4_F3A
+ crypto: fips - Add algorithm-specific limits for FIPS
+ fuse: fix pipe buffer lifetime for direct_io
+ integrity: enable policy rule for restricting hash algo
+ KVM: SVM: Allow AVIC support on system w/ physical APIC ID > 255
+ Merge branch 'main' into nic_rdma
+ Merge branch 'net-doc' into nic_rdma
+ Merge commit '3801d2d30749ddab3e04e4998145b29bce09ac9a' into 9.0
+ Merge tag 'kernel-5.14.0-70.10.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.6.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.7.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.8.1.el9_0' from 9.0
+ Merge tag 'kernel-5.14.0-70.9.1.el9_0' from 9.0
+ Merge up tags kernel-5.14.0-70.6.1.el9_0 to kernel-5.14.0-70.10.1.el9_0
+ NFS: Don't loop forever in nfs_do_recoalesce()
+ perf symbols: Fix symbol size calculation condition
+ perf/x86/intel/uncore: Make uncore_discovery clean for 64 bit addresses
+ redhat: Add parallel processing of configs in dist-configs
+ redhat/configs: drop some config options for rhel 9
+ redhat/configs: remove unnecessary GPIO Kconfig options
+ redhat/Makefile: Fix dist-dump-variables target
+ [RHEL9.0 BZ2053219] amd/iommu: Fix I/O page table memory leak and recover from event log overflow
+ [RHEL9 BZ2061621] iommu/vt-d: Fix double list_add when enabling VMD in scalable mode
+ s390/mm: fix 2KB pgtable release race
+ scsi: iscsi: offload sync session regression impacting qedi
+ watch_queue: Fix filter limit check
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-77.el9 (fixes: CVE-2021-26401, CVE-2022-0001, CVE-2022-0002):
+ 2032117 - tpm: fix lpar crash when running on kexec with VTPM2.0 enabled [P10]
+ CNB: ethtool: update ethtool core to upstream v5.16
+ crypto: ccp: update ccp drivers upto v5.17
+ drm/i915/audio: Use BIOS provided value for RKL HDA link
+ Enable KVM AMX on SPR
+ futex: Fix PREEMPT_RT build
+ genirq: Provide new interfaces for affinity hints
+ ibmvnic: fix a race in ibmvnic_probe()
+ [Intel 9.1 Bug] SPR PMU Support: Uncore Events not enabled
+ KVM: use __vcalloc for very large allocations
+ lib/sbitmap: kill 'depth' from sbitmap_word
+ Merge tag 'kernel-5.14.0-70.5.1.el9_0' from 9.0
+ mm/memcg: Fix a lockdep splat in memory cgroup
+ mm: proactively backport MM fixes for RHEL-9.1
+ NFSD size, offset, and count sanity
+ perf tests attr: Add missing topdown metrics events
+ powerpc: Hard lockups are observed while running stress-ng and LPAR hangs [P8][P9][P10]
+ powerpc/papr_scm: Implement initial support for injecting smart errors
+ powerpc/pseries: Fix use after free panic
+ powerpc/smp: Update cpu_core_map on all PowerPc systems
+ redhat/configs: aarch64: Enable ARM_SPE_PMU
+ redhat: configs: Change aarch64 default dma domain to lazy
+ redhat: configs: Disable TPM 1.2 device drivers
+ redhat/configs: make SHA512_arch algos and CRYPTO_USER built-ins
+ redhat: fix make {distg-brew,distg-koji}
+ rename c9s pipeline from centos-stream-9 to c9s
+ SPR PMU Support: Uncore Events not enabled
+ Update kernel's PCI subsystem to v5.15
+ Update nvme to upstream 5.17-rc8
+ x86/speculation: Spectre-v2 BHI mitigation (CVE-2022-0001, CVE-2022-0002)
- Updated to kernel-5.14.0-76.el9:
+ cifs: fix double free race when mount fails in cifs_get_root()
+ copy_process(): Move fd_install() out of sighand->siglock critical section
+ kernel/futex: backport new futex_waitv(2) system call
+ Merge tag 'kernel-5.14.0-70.4.1.el9_0' from 9.0
+ Move Intel PMT drivers into their own directory
+ Sync vDPA with upstream for RHEL9
+ tick/rcu: fix NOHZ tick-stop when performing DLPAR proc remove on ppc64le [P10]
+ x86/hyperv: Output host build info as normal Windows version number
- Updated to kernel-5.14.0-75.el9 (fixes: CVE-2022-0742, CVE-2022-22942):
+ drm/ast: Create threshold values for AST2600
+ drm/vmwgfx: Fix stale file descriptors on failed usercopy
+ Fix FPU bugs that crash guest kernel after migration between newer->older cpu
+ gfs2: Fix fault_in_safe_writeable() for s390x
+ ipv6: fix skb drops in igmp6_event_query() and igmp6_event_report()
+ Merge tag 'kernel-5.14.0-70.3.1.el9_0' from 9.0
+ netfilter: nf_queue: fix socket refcount bugs
+ powerpc: drivers/char: Enable DLPAR operations with systems that have Guest Secure Boot and lockdown enabled
+ powerpc/pseries/ddw: Revert "Extend upper limit for huge DMA window for persistent memory"
+ redhat/configs: aarch64: Fix PAC/BTI config settings
+ redhat/configs: Disable KVM on POWER
+ redhat/configs: Disable watchdog components
+ RHEL9.0: arch_hw Update CONFIG_MOUSE_VSXXXAA=m
+ Sched: Fix fork versus cgroup race
+ scsi: mpi3mr: bug fixes
+ x86/cpu: Add Xeon Icelake-D to list of CPUs that support PPIN
- Updated to kernel-5.14.0-74.el9:
+ Fix bad page state in process qemu-kvm when using TDP_MMU
+ powerpc/ibmvnic: DLPAR fix kernel Oops when add of vNIC device
+ redhat: rpminspect: disable 'patches' check for known empty patch files
- Updated to kernel-5.14.0-73.el9 (fixes: CVE-2022-0516, CVE-2022-0847):
+ Add definition for RAPTOR_LAKE
+ block: kabi: reserve padding space for public structure
+ crypto: Make CRYPTO_EC* algos built-in
+ dm: fix crash and DM IO accounting
+ [EDAC] backport patches needed to support Genoa
+ Enable mellanox platform drivers to support LED, fan & watchdog devices
+ Fix edpc warning message
+ igb/igc: fix XDP registration
+ KVM: s390: Return error on SIDA memop on normal guest
+ lib/iov_iter: initialize "flags" in new pipe_buffer
+ Merge tag 'kernel-5.14.0-70.2.1.el9_0' from 9.0
+ nvmet-tcp: fix missing tech preview messages
+ powerpc: fix kernel panic on boot of PowerVM systems that are running on shared processing mode [Hash]
+ redhat: change default dist suffix for RHEL 9.0
+ redhat/configs: Enable CONFIG_ACER_WIRELESS
+ redhat: prepare to enter into zstream and adjust support for kabi
+ scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop
+ scsi: mpt3sas: driver fixes
+ virtio-net: fix pages leaking when building skb in big mode
- Updated to kernel-5.14.0-72.el9:
+ Merge tag 'kernel-5.14.0-70.1.1.el9_0' from 9.0
+ redhat/configs: Disable CONFIG_SURFACE_PLATFORMS
+ redhat/configs: Enable CONFIG_INTEL_PCH_THERMAL for x86
+ redhat: use centos x509.genkey file if building under centos
+ Revert 8dffe2b6 "Merge: kabi: add lib ACKed symbols"
+ SCSI host-managed SMR drive support in RHEL 9 is unmaintained and needs kernel warning message
+ spec: Fix separate tools build
+ spec: make linux-firmware weak(er) dependency
- Updated to kernel-5.14.0-71.el9:
+ MDRAID - Update to the latest upstream
+ redhat: Bump RHEL_MINOR for 9.1
- Updated to kernel-5.14.0-70.el9 (fixes: CVE-2022-0435, CVE-2022-0492, CVE-2022-24122):
+ Backport fixes for ucounts
+ bpf, arm64: Use emit_addr_mov_i64() for BPF_PSEUDO_FUNC
+ cgroup-v1: Require capabilities to set release_agent (CVE-2022-0492)
+ mm: fix invalid page pointer returned with FOLL_PIN gups
+ net: stmmac: Fix excessive swiotlb memory in nic driver
+ tipc: improve size validations for received domain records
- Updated to kernel-5.14.0-69.el9:
+ wireless update to v5.16+
- Updated to kernel-5.14.0-68.el9 (fixes: CVE-2021-22600, CVE-2021-4028, CVE-2022-0330):
+ drm/i915: Flush TLBs before releasing backing store
+ ena: update elastic network adapter to the latest upstream
+ ext4: fix remount with 'abort' option
+ kernel/sched/sched.h: Exclude cpuidle from KABI
+ kernel.spec: Add glibc-static build requirement
+ libbpf: Use dynamically allocated buffer when receiving netlink messages
+ netfilter: nf_conntrack incorrectly checking SEQ on syn-ack packets
+ net/packet: rx_owner_map depends on pg_vec
+ powerpc: security: Lock down the kernel if booted in secure boot mode
+ RDMA/cma: Do not change route.addr.src_addr.ss_family
+ redhat/configs: Disable arch_hw disabled CONFIGS
+ redhat/configs: Disable CONFIG_SENSORS_NCT6683 in RHEL for arm/aarch64
+ sfc: update to v5.16
+ Thunderbolt: various fixes
- Updated to kernel-5.14.0-67.el9:
+ block: fix for recent update to v5.16
+ ice: westport channel GPIO and SDP support
+ kabi: add lib ACKed symbols
+ redhat: switch the vsyscall config to CONFIG_LEGACY_VSYSCALL_XONLY=y
+ usb: xhci: Enable runtime-pm by default on AMD Yellow Carp platform
- Updated to kernel-5.14.0-66.el9:
+ Update NFS to upstream v5.16
- Updated to kernel-5.14.0-65.el9:
+ ALSA: backport for RHEL 9.0
- Updated to kernel-5.14.0-64.el9 (fixes: CVE-2021-3753):
+ EDAC/i10nm: Retrieve and print retry_rd_err_log registers
+ ice: bugfix update for 9.0
+ igc: driver update for 9.0
+ nvme-fabrics: fix state check in nvmf_ctlr_matches_baseopts()
+ scsi: reserve space in structures for KABI
+ vt_kdsetmode: extend console locking
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-63.el9:
+ ionic: driver update for 9.0
+ wireguard: 9.0 P2 backports from upstream
- Updated to kernel-5.14.0-62.el9 (fixes: CVE-2021-43389):
+ Backport page unpoisoning fixes
+ blktrace: switch trace spinlock to a raw spinlock
+ cgroup/cpuset: Fix RCU lockdep splat
+ CNB: net: create netdev->dev_addr assignment helpers
+ ext4: fix potential NULL pointer dereference in ext4_fill_super()
+ firmware: smccc: Fix check for ARCH_SOC_ID not implemented
+ ibmvnic: fix ethtool -L causing system to hang
+ ibmvnic: Update driver return codes
+ igb: driver update for 9.0
+ isdn: cpai: check ctr->cnr to avoid array index out of bound
+ netfilter: ipset: Emit deprecation warning at set creation time
+ NFSv4.1: handle NFS4ERR_NOSPC by CREATE_SESSION
+ powerpc/fadump: fix "seek error: kernel virtual address: c0000027f5e19000" observed while running crash tool on vmcore captured during fadump
+ rcu: Tighten rcu_advance_cbs_nowake() checks
+ redhat/configs: Disable CONFIG_MACINTOSH_DRIVERS
+ redhat/configs: Enable CONFIG_TEST_BPF
+ redhat: move CONFIG_ARM64_MTE to aarch64 config directory
+ s390/pv: fix the forcing of the swiotlb
+ scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put()
+ scsi: vmw_pvscsi: Set residual data length conditionally
+ tipc: backports from upstream, 2nd phase
+ Two small SELinux fixes
- Updated to kernel-5.14.0-61.el9 (fixes: CVE-2021-4197, CVE-2021-4203, CVE-2022-0264):
+ bpf: Fix kernel address leakage in atomic fetch
+ cgroup: Use open-time credentials for process migraton perm checks
+ Enable KUNIT for CI Testing
+ IB/rdmavt: Validate remote_addr during loopback atomic tests
+ netfilter: P2 backports from upstream
+ nvme: fix a possible use-after-free in controller reset during load
+ ovs: backports P2 for 9.0
+ redhat/configs: enable CONFIG_CMA on aarch64 as tech-preview
+ [s390] s390/cpumf: Support for CPU Measurement Facility CSVN 7
+ [s390] scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices
+ tracing: Fix trace_percpu_buffer
+ x86: add ITBM support for AlderLake
- Updated to kernel-5.14.0-60.el9 (fixes: CVE-2021-4083):
+ bnx2x: Fix enabling network interfaces without VFs
+ bonding: driver update or RHEL 9.0
+ Change "-auto" suffix to fix CI automotive pipeline issues
+ crypto: jitter - add oversampling of noise source
+ fget: check that the fd still exists after getting a ref to it
+ igbvf: driver update for 9.0
+ ipv6: 9.0 P2 backports from upstream
+ nfsd: fix use-after-free due to delegation race
+ NVMe command id changes for use-after-free CQE detection
+ Revert "ipv6: Honor all IPv6 PIO Valid Lifetime values"
+ sctp: backports from upstream, 2nd phase
+ tun: fix bonding active backup with arp monitoring
+ udp: backports from upstream, 2nd phase
- Updated to kernel-5.14.0-59.el9:
+ gfs2: Upstream backports for mmap and deadlock fixes
+ x86/sgx: Update SGX subsystem code upto v5.16-rc5
- Updated to kernel-5.14.0-58.el9 (fixes: CVE-2022-0185):
+ CI updates
+ Fix load tracking WARNINGs
+ Fix RTC based wakeup for Barcelo
+ Handle warning of allocation failure on DMA zone w/o managed pages
+ ipv4: stable backports for rhel 9.0 (phase 2)
+ KVM: x86: Fix Win11 guests with Hyper-V role + hv_evmcs
+ netfilter: nft_reject_bridge: Fix for missing reply from prerouting
+ PCI: hv: Add arm64 Hyper-V vPCI support
+ pinctrl: amd: Fix wakeups when IRQ is shared with SCI
+ [s390] s390/pci: move pseudo-MMIO to prevent MIO overlap
+ selftests/bpf: Enlarge select() timeout for test_maps
+ vfs: fs_context: fix up param length parsing in legacy_parse_param
- Updated to kernel-5.14.0-57.el9 (fixes: CVE-2021-44733):
+ aacraid: add new messaging
+ arch/x86: KABI structs and array padding
+ dmaengine: idxd: Add wq occupancy information to sysfs attribute
+ dm: sync with upstream 5.17 and fix io accounting issue
+ fix use-after-free in tee driver
+ hpsa: add new messaging
+ lpfc: Add new messaging
+ mpi3mr: driver update
+ mpt3sas, megaraid_sas, mptsas: Add new messaging
+ mptcp: disable by default
+ net/sched: phase-2 stable backports for rhel9
+ NVMe/FC bug fixes for centos-stream-9
+ qla2xxx: Add new messaging
+ redhat: switch the kernel package to use certs from system-sb-certs
+ vrf: Reset IPCB/IP6CB when processing outbound pkts in vrf dev xmit
- Updated to kernel-5.14.0-56.el9:
+ clocksource: Backport upstream fix for hpet fallback problem
+ CNB: pci: Make pci_enable_ptm() accessible for drivers
+ configs: disable CONFIG_CRAMFS
+ iommu/vt-d: Fix unmap_pages support
+ KVM: VMX: switch blocked_vcpu_on_cpu_lock to raw spinlock
+ Merge remote-tracking branch 'gitlab/rh/centos-stream-9/merge-requests/338' into cs9/bz2041931/kfree-skb-reason
+ net: backports before kABI freeze
+ PCI: Add kABI extensions for the kernel's PCI subsystem
+ ppp: ensure minimum packet size in ppp_write()
+ [RHEL-9.0] IPMI Add RH_KABI_RESERVE to kABI sensitive structs
+ x86/hyperv: Properly deal with empty cpumasks in hyperv_flush_tlb_multi()
- Updated to kernel-5.14.0-55.el9:
+ nvme: drop scan_lock and always kick requeue list when removing namespaces
+ redhat/configs: Cleanup pending-common directory
+ redhat/configs: Enable CONFIG_PCI_P2PDMA
+ Resolve cpufreq errors on Alder Lake-S (ADL-S)
+ selftests: 9.0 P2 backport from upstream
- Updated to kernel-5.14.0-54.el9:
+ Wireless stack and drivers update to v5.15
- Updated to kernel-5.14.0-53.el9 (fixes: CVE-2021-40490):
+ ext4, jbd2 update for RHEL9.0
- Updated to kernel-5.14.0-52.el9:
+ KVM: AArch64: Rebase to v5.15
- Updated to kernel-5.14.0-51.el9:
+ Add packaged but empty /lib/modules/<kver>/systemtap
+ Add support for new AMD Family 19h models
+ irdma: Bug fixes from v5.16
+ powerpc/bpf: Update ldimm64 instructions during extra pass
+ RDMA: Bug fixes from v5.16
+ redhat: configs: add CONFIG_NTB and related items
+ redhat/configs: Enable CONFIG_DM_MULTIPATH_HST
+ Scheduler KABI padding
+ selftests: bpf: Fix bind on used port
+ tipc: backports from upstream
- Updated to kernel-5.14.0-50.el9:
+ CNB: bridge: update bridge and switchdev to the latest upstream
+ CNB: rebase/update devlink for RHEL 9.0
+ kernel: Add redhat code
+ kernel/rh_taint.c: Update to new messaging
+ mptcp: rebase to 5.16 net-next
- Updated to kernel-5.14.0-49.el9 (fixes: CVE-2021-3773, CVE-2021-4155, CVE-2021-4203):
+ adding support for c9s automotive coverage build
+ Add 'redhat/rhdocs/' from commit '8d40464cf1fcc46e23510dd722f9ec747a2ff432'
+ af_unix: fix races in sk_peer_pid and sk_peer_cred accesses
+ CNB: net: Remove redundant if statements
+ ip6_vti: initialize __ip6_tnl_parm struct in vti6_siocdevprivate
+ KVM: x86: Wait for IPIs to be delivered when handling Hyper-V TLB flush hypercall
+ netfilter: nat: force port remap to prevent shadowing well-known ports
+ net: introduce kfree_skb_reason
+ net: vlan: fix a UAF in vlan_dev_real_dev()
+ powerpc/cacheinfo: fix bigcores causing irq imbalance with irqbalance
+ powerpc: fix frame size warnings during kernel compilation with larger NR_CPUS value
+ powerpc: handle kdump appropriately with crash_kexec_post_notifiers option
+ powerpc/pseries: Fix memblock warning on bootup
+ redhat: Add documentation subtree
+ selftests/powerpc: fix security tests
+ xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate
+ Various changes and improvements that are poorly described in merge.
- Updated to kernel-5.14.0-48.el9:
+ net: mana: More MANA driver updates for RHEL 9.0
+ ibmvnic: fix error when allocating long term buffer during reset
+ [s390] Upgrade the qeth driver for s390x to latest
+ [s390] GLIBC: Support for new IBM Z Hardware - kernel part
+ ima: silence measurement list hexdump during kexec
+ scsi: lpfc: Update lpfc version to 14.0.0.4
+ scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO
+ mm/memcg: Exclude mem_cgroup pointer from kABI signature computation
+ NFS: Default change_attr_type to NFS4_CHANGE_TYPE_IS_UNDEFINED
- Updated to kernel-5.14.0-47.el9 (fixes: CVE-2021-4001):
+ nvmet: make discovery NQN configurable
+ nitro_enclaves: Use get_user_pages_unlocked() call to handle mmap assert
+ include/linux/pci.h: Exclude struct hotplug_slot from KABI
+ net/vsock: backport vsock fixes for RHEL-9.0
+ include/linux/irq*.h: Pad irq structs for KABI
+ include/linux/fwnode.h: Exclude fwnode structs from KABI
+ bpf: Fix toctou on read-only map's constant scalar tracking
+ ACPI: tables: FPDT: Do not print FW_BUG message if record types are reserved
+ virtio: support virtio-mem on x86-64 as tech-preview
- Updated to kernel-5.14.0-46.el9:
+ crypto: qat: Update QAT drivers upto v5.15
- Workqueue update for RT prerequisites
- nvme: avoid race in shutdown namespace removal
- powerpc/xmon: Dump XIVE information for online-only processors.
- CVE-2021-20322 - ipv4: make exception cache less predictible
- [s390] s390/cio: make ccw_device_dma_* more robust
- [s390] s390/pci: add s390_iommu_aperture kernel parameter
- [s390] s390/pci: cleanup resources only if necessary
- [s390] s390/sclp: fix Secure-IPL facility detection
- Revert "[redhat] Generate a crashkernel.default for each kernel build"
- ibmvnic: fix kdump over nfs when auto priority disabled for ibmvnic
- ibmvnic: don't stop queue in xmit
- bpf/selftests: allow disabling tests
- kernel/crash_core: suppress unknown crashkernel parameter warning
- mm: fix memory onlining under the debug kernel
- Fixing CVE-2021-3752 for RHEL-9
- zstd: Sync with upstream 5.16 fixes and improvements
- dm: sync with upstream 5.16 fixes and improvements
- redhat: Pull in openssl-devel as a build dependency correctly
- platform/x86: think-lmi: add debug_cmd
- include/linux/timer.h: Pad timer_list struct for KABI
- kernel: Include RHEL Ecosystem message
- include/linux/ioport.h: Pad resource struct for KABI
- include/linux/hrtimer.h: Pad hrtimer struct for KABI
- redhat/configs: Enable Zstandard compression
- Enable iSER on s390x
- mm: fix for "CoW after fork()" "GUP after fork()" bug
- powerpc/xive: Change IRQ domain to a tree domain
- net: core stable backport for rhel 9.0
- vhost_net: fix OoB on sendmsg() failure.
- printk changes for kernel-rt
- smartpqi updates
- powerpc/module_64: Fix livepatching for RO modules
- net-sysfs: try not to restart the syscall if it will fail eventually
- CI: Cleanup residue from ARK and enable RT check baselines
- redhat: tune rpminspect configuration for upstream and badfuncs tests
- redhat/configs: Enable CONFIG_CRYPTO_BLAKE2B
- netfilter: conntrack: switch to siphash and include zone id in hash again
- redhat: configs: increase CONFIG_DEBUG_KMEMLEAK_MEM_POOL_SIZE
- iommu/dma: Fix incorrect error return on iommu deferred attach
- RDMA/siw: Mark Software iWARP Driver as tech-preview
- genirq changes for kernel-rt
- af_unix: Return errno instead of NULL in unix_create1()
- ftrace: do CPU checking after preemption disabled
- redhat: build and include memfd to kernel-selftests-internal
- netfilter: stable backports for rhel 9.0
- netfilter: ipvs: make global sysctl readonly in non-init netns
- netfilter: ipvs: make global sysctl readonly in non-init netns
- net/sched: 9.0 P1 backports from upstream
- redhat/configs/evaluate_configs: Add find dead configs option
- Replace deprecated CPU-hotplug functions for kernel-rt
- Input: i8042 - Add quirk for Fujitsu Lifebook T725
- sctp: backports from upstream
- sctp: enhancements for the verification tag
- Fix CVE-2020-27820
- redhat/configs: NFS: disable UDP, insecure enctypes
- cpuidle: pseries: Fixup CEDE0 latency only for POWER10 onwards
- powerpc/mce: Fix access error in mce handler
- powerpc/pseries/mobility: ignore ibm, platform-facilities updates
- KVM: SVM: Do not terminate SEV-ES guests on GHCB validation failure
- redhat/configs: enable DWARF5 feature if toolchain supports it
- init: make unknown command line param message clearer
- Enable BT WCN6855 2.1 module
- cgroup: Make rebind_subsystems() disable v2 controllers all at once
- bnxt_en: PTP related commits for inclusion in RHEL 9.0
- Enable AMX(TMUL) for Sapphire Rapids
- drm/hyperv: Fix device removal on Gen1 VMs
- redhat/configs: Always enable CONFIG_PCI_IOV for RHEL on s390x
- wireguard: device: reset peer src endpoint when netns exits
- NVMe-TCP fixes
- ovl: fix missing negative dentry check in ovl_rename()
- selftests/bpf: Fix some issues for selftest test_xdp_redirect_multi.sh
- block: update to v5.16
- mm: update generic MM code to upstream v5.15
- Disable CONFIG_DEBUG_PREEMPT to restore performance
- tcp: phase 1 stable backport for rhel 9.0
- ibmvnic: Fixes for check failover_pending
- kernfs: upstream kernfs concurrency improvement series
- drm/hyperv: Fix double mouse pointers
- Revert "watchdog: iTCO_wdt: Account for rebooting on second timeout"
- redhat/kernel.spec.template: enable dependencies generation
- redhat: configs: Update configs for vmware
- redhat/configs: Enable CONFIG_DRM_VMWGFX on aarch64
- Rebase KVM x86 to 5.15
- hrtimer updates for RT prerequisites
- Backport v5.15 rcu/locking/cgroup dependencies for kernel-rt
- x86: change default to spec_store_bypass_disable=prctl spectre_v2_user=prctl
- Provide and Configure DYNAMIC_PREEMPT
- x86/sgx: mark tech preview
- net: ipv6 p1 stable backport from upstream
- ipv4: stable backports for rhel 9.0
- crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()
- net/l2tp: Fix reference count leak in l2tp_udp_recv_core
- megaraid_sas: driver update
- tpm: Avoid error message when process gets signal while waiting and other upstream fixes
- Add 9p modules.
- ceph: bring ceph client code up to v5.16-rc1
- fix '/proc/pid/wchan is always "0"'
- powerpc/bpf: Fix write protecting JIT code
- vfs: check fd has read access in kernel_read_file_from_fd()
- Disable idmapped mounts
- Sync s390x KVM code with upstream kernel v5.15
- redhat/configs: Remove CONFIG_INFINIBAND_I40IW
- perf test: Handle fd gaps in test__dso_data_reopen
- perf tests vmlinux-kallsyms: Ignore hidden symbols
- perf script: Fix PERF_SAMPLE_WEIGHT_STRUCT support
- redhat/kernel.spec.template: Link perf with --export-dynamic
- xfs: fix I_DONTCACHE
- Fix virtio problem on s390x with raw DASD devices
- net/tls: backport fixes from 5.15
- x86: hv: Hyper-V x86-64 updates for Centos Stream 9
- Upgrade the SMC driver for s390x to latest from upstream
- cifs: enable SMB_DIRECT in RHEL9
- mpt3sas: driver update
- Support DMA implementation of Offload Service Engine (OSE) for Elkhart Lake
- vmxnet3: Update network driver for RHEL 9.0
- CNB: pci: add several VPD helpers
- Add automotive CI jobs
- post 5.14 scheduler fixes
- Add files needed for kbuild.
- clocksource: Workaround the hpet fallback problem
- scsi: target: Fix the pgr/alua_support_store functions
- redhat: fix typo and make the output more silent for dist-git sync
- Improve performace of AMD C3 entry for Family 17h and later
- lpfc updates for centos-9 14.0.0.3
- x86/Kconfig: Do not enable AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT automatically
- ucounts: Fix signal ucount refcounting
- x86/cpu: Fix migration safety with X86_BUG_NULL_SEL
- net: gre: fix csum validation for gre4 and gre6
- redhat/configs: enable KEXEC_SIG for aarch64
- kernel.spec: add bpf_testmod.ko to kselftests/bpf
- netfilter: Add deprecation notices for xtables
- powerpc/svm: Don't issue ultracalls if !mem_encrypt_active() (Herton R. Krzesinski)
- First build for ALTLinux.