From e8384c9cc74c7ef7a6df71fd4691b160a1fae795 Mon Sep 17 00:00:00 2001 From: Akemi Yagi Date: Jul 30 2019 20:43:07 +0000 Subject: c8 plus kernel: update to 4.18.0-80.7.1.el8_0; add 2 new plus patches Signed-off-by: Akemi Yagi --- diff --git a/SOURCES/centos-linux-4.18-drivers-drivers-net-e1000.patch-bug16284.patch b/SOURCES/centos-linux-4.18-drivers-drivers-net-e1000.patch-bug16284.patch new file mode 100644 index 0000000..250e6cd --- /dev/null +++ b/SOURCES/centos-linux-4.18-drivers-drivers-net-e1000.patch-bug16284.patch @@ -0,0 +1,86 @@ +From cf1acec008f8d7761aa3fd7c4bca7e17b2d2512d Mon Sep 17 00:00:00 2001 +From: Bo Chen +Date: Mon, 23 Jul 2018 09:01:29 -0700 +Subject: e1000: check on netif_running() before calling e1000_up() + +When the device is not up, the call to 'e1000_up()' from the error handling path +of 'e1000_set_ringparam()' causes a kernel oops with a null-pointer +dereference. The null-pointer dereference is triggered in function +'e1000_alloc_rx_buffers()' at line 'buffer_info = &rx_ring->buffer_info[i]'. + +This bug was reported by COD, a tool for testing kernel module binaries I am +building. This bug was also detected by KFI from Dr. Kai Cong. + +This patch fixes the bug by checking on 'netif_running()' before calling +'e1000_up()' in 'e1000_set_ringparam()'. + +Signed-off-by: Bo Chen +Acked-by: Alexander Duyck +Tested-by: Aaron Brown +Signed-off-by: Jeff Kirsher +--- + drivers/net/ethernet/intel/e1000/e1000_ethtool.c | 3 ++- + 1 file changed, 2 insertions(+), 1 deletion(-) + +diff --git a/drivers/net/ethernet/intel/e1000/e1000_ethtool.c b/drivers/net/ethernet/intel/e1000/e1000_ethtool.c +index bdb3f8e65ed4..c1e4e94f100f 100644 +--- a/drivers/net/ethernet/intel/e1000/e1000_ethtool.c ++++ b/drivers/net/ethernet/intel/e1000/e1000_ethtool.c +@@ -644,7 +644,8 @@ err_setup_rx: + err_alloc_rx: + kfree(txdr); + err_alloc_tx: +- e1000_up(adapter); ++ if (netif_running(adapter->netdev)) ++ e1000_up(adapter); + err_setup: + clear_bit(__E1000_RESETTING, &adapter->flags); + return err; +-- +cgit 1.2-0.3.lf.el7 + +From ee400a3f1bfe7004a3e14b81c38ccc5583c26295 Mon Sep 17 00:00:00 2001 +From: Bo Chen +Date: Mon, 23 Jul 2018 09:01:30 -0700 +Subject: e1000: ensure to free old tx/rx rings in set_ringparam() + +In 'e1000_set_ringparam()', the tx_ring and rx_ring are updated with new value +and the old tx/rx rings are freed only when the device is up. There are resource +leaks on old tx/rx rings when the device is not up. This bug is reported by COD, +a tool for testing kernel module binaries I am building. + +This patch fixes the bug by always calling 'kfree()' on old tx/rx rings in +'e1000_set_ringparam()'. + +Signed-off-by: Bo Chen +Reviewed-by: Alexander Duyck +Tested-by: Aaron Brown +Signed-off-by: Jeff Kirsher +--- + drivers/net/ethernet/intel/e1000/e1000_ethtool.c | 4 ++-- + 1 file changed, 2 insertions(+), 2 deletions(-) + +diff --git a/drivers/net/ethernet/intel/e1000/e1000_ethtool.c b/drivers/net/ethernet/intel/e1000/e1000_ethtool.c +index c1e4e94f100f..2569a168334c 100644 +--- a/drivers/net/ethernet/intel/e1000/e1000_ethtool.c ++++ b/drivers/net/ethernet/intel/e1000/e1000_ethtool.c +@@ -624,14 +624,14 @@ static int e1000_set_ringparam(struct net_device *netdev, + adapter->tx_ring = tx_old; + e1000_free_all_rx_resources(adapter); + e1000_free_all_tx_resources(adapter); +- kfree(tx_old); +- kfree(rx_old); + adapter->rx_ring = rxdr; + adapter->tx_ring = txdr; + err = e1000_up(adapter); + if (err) + goto err_setup; + } ++ kfree(tx_old); ++ kfree(rx_old); + + clear_bit(__E1000_RESETTING, &adapter->flags); + return 0; +-- +cgit 1.2-0.3.lf.el7 + diff --git a/SOURCES/centos-linux-4.18-drivers-net-e1000e-bug16284.patch b/SOURCES/centos-linux-4.18-drivers-net-e1000e-bug16284.patch new file mode 100644 index 0000000..2e037fb --- /dev/null +++ b/SOURCES/centos-linux-4.18-drivers-net-e1000e-bug16284.patch @@ -0,0 +1,304 @@ +From 88f3beae583682a992de2429992256666d70a40a Mon Sep 17 00:00:00 2001 +From: Miroslav Lichvar +Date: Tue, 23 Oct 2018 14:37:39 +0200 +Subject: e1000e: allow non-monotonic SYSTIM readings + +[ Upstream commit e1f65b0d70e9e5c80e15105cd96fa00174d7c436 ] + +It seems with some NICs supported by the e1000e driver a SYSTIM reading +may occasionally be few microseconds before the previous reading and if +enabled also pass e1000e_sanitize_systim() without reaching the maximum +number of rereads, even if the function is modified to check three +consecutive readings (i.e. it doesn't look like a double read error). +This causes an underflow in the timecounter and the PHC time jumps hours +ahead. + +This was observed on 82574, I217 and I219. The fastest way to reproduce +it is to run a program that continuously calls the PTP_SYS_OFFSET ioctl +on the PHC. + +Modify e1000e_phc_gettime() to use timecounter_cyc2time() instead of +timecounter_read() in order to allow non-monotonic SYSTIM readings and +prevent the PHC from jumping. + +Cc: Richard Cochran +Signed-off-by: Miroslav Lichvar +Acked-by: Jacob Keller +Tested-by: Aaron Brown +Signed-off-by: Jeff Kirsher +Signed-off-by: Sasha Levin +--- + drivers/net/ethernet/intel/e1000e/ptp.c | 13 ++++++++++--- + 1 file changed, 10 insertions(+), 3 deletions(-) + +diff --git a/drivers/net/ethernet/intel/e1000e/ptp.c b/drivers/net/ethernet/intel/e1000e/ptp.c +index 37c76945ad9b..e1f821edbc21 100644 +--- a/drivers/net/ethernet/intel/e1000e/ptp.c ++++ b/drivers/net/ethernet/intel/e1000e/ptp.c +@@ -173,10 +173,14 @@ static int e1000e_phc_gettime(struct ptp_clock_info *ptp, struct timespec64 *ts) + struct e1000_adapter *adapter = container_of(ptp, struct e1000_adapter, + ptp_clock_info); + unsigned long flags; +- u64 ns; ++ u64 cycles, ns; + + spin_lock_irqsave(&adapter->systim_lock, flags); +- ns = timecounter_read(&adapter->tc); ++ ++ /* Use timecounter_cyc2time() to allow non-monotonic SYSTIM readings */ ++ cycles = adapter->cc.read(&adapter->cc); ++ ns = timecounter_cyc2time(&adapter->tc, cycles); ++ + spin_unlock_irqrestore(&adapter->systim_lock, flags); + + *ts = ns_to_timespec64(ns); +@@ -232,9 +236,12 @@ static void e1000e_systim_overflow_work(struct work_struct *work) + systim_overflow_work.work); + struct e1000_hw *hw = &adapter->hw; + struct timespec64 ts; ++ u64 ns; + +- adapter->ptp_clock_info.gettime64(&adapter->ptp_clock_info, &ts); ++ /* Update the timecounter */ ++ ns = timecounter_read(&adapter->tc); + ++ ts = ns_to_timespec64(ns); + e_dbg("SYSTIM overflow check at %lld.%09lu\n", + (long long) ts.tv_sec, ts.tv_nsec); + +-- +cgit 1.2-0.3.lf.el7 + +From 49dd86f0f5ece4e7addc0f8db5e75a2fb404ede6 Mon Sep 17 00:00:00 2001 +From: Florian Fainelli +Date: Thu, 21 Feb 2019 20:09:28 -0800 +Subject: e1000e: Fix -Wformat-truncation warnings + +[ Upstream commit 135e7245479addc6b1f5d031e3d7e2ddb3d2b109 ] + +Provide precision hints to snprintf() since we know the destination +buffer size of the RX/TX ring names are IFNAMSIZ + 5 - 1. This fixes the +following warnings: + +drivers/net/ethernet/intel/e1000e/netdev.c: In function +'e1000_request_msix': +drivers/net/ethernet/intel/e1000e/netdev.c:2109:13: warning: 'snprintf' +output may be truncated before the last format character +[-Wformat-truncation=] + "%s-rx-0", netdev->name); + ^ +drivers/net/ethernet/intel/e1000e/netdev.c:2107:3: note: 'snprintf' +output between 6 and 21 bytes into a destination of size 20 + snprintf(adapter->rx_ring->name, + ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + sizeof(adapter->rx_ring->name) - 1, + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + "%s-rx-0", netdev->name); + ~~~~~~~~~~~~~~~~~~~~~~~~ +drivers/net/ethernet/intel/e1000e/netdev.c:2125:13: warning: 'snprintf' +output may be truncated before the last format character +[-Wformat-truncation=] + "%s-tx-0", netdev->name); + ^ +drivers/net/ethernet/intel/e1000e/netdev.c:2123:3: note: 'snprintf' +output between 6 and 21 bytes into a destination of size 20 + snprintf(adapter->tx_ring->name, + ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + sizeof(adapter->tx_ring->name) - 1, + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + "%s-tx-0", netdev->name); + ~~~~~~~~~~~~~~~~~~~~~~~~ + +Signed-off-by: Florian Fainelli +Signed-off-by: David S. Miller +Signed-off-by: Sasha Levin +--- + drivers/net/ethernet/intel/e1000e/netdev.c | 4 ++-- + 1 file changed, 2 insertions(+), 2 deletions(-) + +diff --git a/drivers/net/ethernet/intel/e1000e/netdev.c b/drivers/net/ethernet/intel/e1000e/netdev.c +index 3ba0c90e7055..e3945469b5c8 100644 +--- a/drivers/net/ethernet/intel/e1000e/netdev.c ++++ b/drivers/net/ethernet/intel/e1000e/netdev.c +@@ -2106,7 +2106,7 @@ static int e1000_request_msix(struct e1000_adapter *adapter) + if (strlen(netdev->name) < (IFNAMSIZ - 5)) + snprintf(adapter->rx_ring->name, + sizeof(adapter->rx_ring->name) - 1, +- "%s-rx-0", netdev->name); ++ "%.14s-rx-0", netdev->name); + else + memcpy(adapter->rx_ring->name, netdev->name, IFNAMSIZ); + err = request_irq(adapter->msix_entries[vector].vector, +@@ -2122,7 +2122,7 @@ static int e1000_request_msix(struct e1000_adapter *adapter) + if (strlen(netdev->name) < (IFNAMSIZ - 5)) + snprintf(adapter->tx_ring->name, + sizeof(adapter->tx_ring->name) - 1, +- "%s-tx-0", netdev->name); ++ "%.14s-tx-0", netdev->name); + else + memcpy(adapter->tx_ring->name, netdev->name, IFNAMSIZ); + err = request_irq(adapter->msix_entries[vector].vector, +-- +cgit 1.2-0.3.lf.el7 + +From b9f257e27890c462cc07c3e6d4fa7509730ea396 Mon Sep 17 00:00:00 2001 +From: Kai-Heng Feng +Date: Tue, 11 Dec 2018 15:59:37 +0800 +Subject: e1000e: Exclude device from suspend direct complete optimization + +[ Upstream commit 59f58708c5047289589cbf6ee95146b76cf57d1e ] + +e1000e sets different WoL settings in system suspend callback and +runtime suspend callback. + +The suspend direct complete optimization leaves e1000e in runtime +suspended state with wrong WoL setting during system suspend. + +To fix this, we need to disable suspend direct complete optimization to +let e1000e always use suspend callback to set correct WoL during system +suspend. + +Signed-off-by: Kai-Heng Feng +Tested-by: Aaron Brown +Signed-off-by: Jeff Kirsher +Signed-off-by: Sasha Levin +--- + drivers/net/ethernet/intel/e1000e/netdev.c | 2 ++ + 1 file changed, 2 insertions(+) + +diff --git a/drivers/net/ethernet/intel/e1000e/netdev.c b/drivers/net/ethernet/intel/e1000e/netdev.c +index 23edc1364487..8b11682ebba2 100644 +--- a/drivers/net/ethernet/intel/e1000e/netdev.c ++++ b/drivers/net/ethernet/intel/e1000e/netdev.c +@@ -7327,6 +7327,8 @@ static int e1000_probe(struct pci_dev *pdev, const struct pci_device_id *ent) + + e1000_print_device_info(adapter); + ++ dev_pm_set_driver_flags(&pdev->dev, DPM_FLAG_NEVER_SKIP); ++ + if (pci_dev_run_wake(pdev)) + pm_runtime_put_noidle(&pdev->dev); + +-- +cgit 1.2-0.3.lf.el7 + +From 5ec9ba494db252d8a5baaed4fdaf5b4bbbc201dd Mon Sep 17 00:00:00 2001 +From: Kai-Heng Feng +Date: Sun, 3 Feb 2019 01:40:16 +0800 +Subject: e1000e: Disable runtime PM on CNP+ + +[ Upstream commit 459d69c407f9ba122f12216555c3012284dc9fd7 ] + +There are some new e1000e devices can only be woken up from D3 one time, +by plugging Ethernet cable. Subsequent cable plugging does set PME bit +correctly, but it still doesn't get woken up. + +Since e1000e connects to the root complex directly, we rely on ACPI to +wake it up. In this case, the GPE from _PRW only works once and stops +working after that. Though it appears to be a platform bug, e1000e +maintainers confirmed that I219 does not support D3. + +So disable runtime PM on CNP+ chips. We may need to disable earlier +generations if this bug also hit older platforms. + +Bugzilla: https://bugzilla.kernel.org/attachment.cgi?id=280819 +Signed-off-by: Kai-Heng Feng +Tested-by: Aaron Brown +Signed-off-by: Jeff Kirsher +Signed-off-by: Sasha Levin +--- + drivers/net/ethernet/intel/e1000e/netdev.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/drivers/net/ethernet/intel/e1000e/netdev.c b/drivers/net/ethernet/intel/e1000e/netdev.c +index 8b11682ebba2..8cd339c92c1a 100644 +--- a/drivers/net/ethernet/intel/e1000e/netdev.c ++++ b/drivers/net/ethernet/intel/e1000e/netdev.c +@@ -7329,7 +7329,7 @@ static int e1000_probe(struct pci_dev *pdev, const struct pci_device_id *ent) + + dev_pm_set_driver_flags(&pdev->dev, DPM_FLAG_NEVER_SKIP); + +- if (pci_dev_run_wake(pdev)) ++ if (pci_dev_run_wake(pdev) && hw->mac.type < e1000_pch_cnp) + pm_runtime_put_noidle(&pdev->dev); + + return 0; +-- +cgit 1.2-0.3.lf.el7 + +From 8cff6598b3c03936022dc3998274dba43567cc05 Mon Sep 17 00:00:00 2001 +From: Konstantin Khlebnikov +Date: Wed, 17 Apr 2019 11:13:20 +0300 +Subject: e1000e: start network tx queue only when link is up + +commit d17ba0f616a08f597d9348c372d89b8c0405ccf3 upstream. + +Driver does not want to keep packets in Tx queue when link is lost. +But present code only reset NIC to flush them, but does not prevent +queuing new packets. Moreover reset sequence itself could generate +new packets via netconsole and NIC falls into endless reset loop. + +This patch wakes Tx queue only when NIC is ready to send packets. + +This is proper fix for problem addressed by commit 0f9e980bf5ee +("e1000e: fix cyclic resets at link up with active tx"). + +Signed-off-by: Konstantin Khlebnikov +Suggested-by: Alexander Duyck +Tested-by: Joseph Yasi +Tested-by: Aaron Brown +Tested-by: Oleksandr Natalenko +Signed-off-by: Jeff Kirsher +Signed-off-by: Greg Kroah-Hartman +--- + drivers/net/ethernet/intel/e1000e/netdev.c | 6 ++++-- + 1 file changed, 4 insertions(+), 2 deletions(-) + +diff --git a/drivers/net/ethernet/intel/e1000e/netdev.c b/drivers/net/ethernet/intel/e1000e/netdev.c +index 31ef42a031f2..a7b5a47ab83d 100644 +--- a/drivers/net/ethernet/intel/e1000e/netdev.c ++++ b/drivers/net/ethernet/intel/e1000e/netdev.c +@@ -4208,7 +4208,7 @@ void e1000e_up(struct e1000_adapter *adapter) + e1000_configure_msix(adapter); + e1000_irq_enable(adapter); + +- netif_start_queue(adapter->netdev); ++ /* Tx queue started by watchdog timer when link is up */ + + e1000e_trigger_lsc(adapter); + } +@@ -4584,6 +4584,7 @@ int e1000e_open(struct net_device *netdev) + pm_runtime_get_sync(&pdev->dev); + + netif_carrier_off(netdev); ++ netif_stop_queue(netdev); + + /* allocate transmit descriptors */ + err = e1000e_setup_tx_resources(adapter->tx_ring); +@@ -4644,7 +4645,6 @@ int e1000e_open(struct net_device *netdev) + e1000_irq_enable(adapter); + + adapter->tx_hang_recheck = false; +- netif_start_queue(netdev); + + hw->mac.get_link_status = true; + pm_runtime_put(&pdev->dev); +@@ -5266,6 +5266,7 @@ static void e1000_watchdog_task(struct work_struct *work) + if (phy->ops.cfg_on_link_up) + phy->ops.cfg_on_link_up(hw); + ++ netif_wake_queue(netdev); + netif_carrier_on(netdev); + + if (!test_bit(__E1000_DOWN, &adapter->state)) +@@ -5279,6 +5280,7 @@ static void e1000_watchdog_task(struct work_struct *work) + /* Link status message must follow this format */ + pr_info("%s NIC Link is Down\n", adapter->netdev->name); + netif_carrier_off(netdev); ++ netif_stop_queue(netdev); + if (!test_bit(__E1000_DOWN, &adapter->state)) + mod_timer(&adapter->phy_info_timer, + round_jiffies(jiffies + 2 * HZ)); +-- +cgit 1.2-0.3.lf.el7 + diff --git a/SOURCES/linux-kernel-test.patch b/SOURCES/linux-kernel-test.patch new file mode 100644 index 0000000..e69de29 --- /dev/null +++ b/SOURCES/linux-kernel-test.patch diff --git a/SPECS/kernel-plus.spec b/SPECS/kernel-plus.spec index 69b679b..540d564 100644 --- a/SPECS/kernel-plus.spec +++ b/SPECS/kernel-plus.spec @@ -34,10 +34,10 @@ Summary: The Linux kernel # %%define buildid .local %define rpmversion 4.18.0 -%define pkgrelease 80.4.2.el8_0 +%define pkgrelease 80.7.1.el8_0 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 80.4.2%{?dist} +%define specrelease 80.7.1%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -429,12 +429,17 @@ Patch10003: centos-linux-4.18-smartpqi-bug15801.patch Patch10004: centos-linux-4.18-elrepo-fusion-mptsas-mptspi-el8.patch Patch10005: centos-linux-4.18-elrepo-megaraid_sas-unremove-el8.patch Patch10006: centos-linux-4.18-elrepo-mpt3sas-unremove-el8.patch +Patch10007: centos-linux-4.18-drivers-drivers-net-e1000.patch-bug16284.patch +Patch10008: centos-linux-4.18-drivers-net-e1000e-bug16284.patch # end of plus mod Source9000: centos.pem # End of CentOS Modification +# empty final patch to facilitate testing of kernel patches +Patch999999: linux-kernel-test.patch + # END OF PATCH DEFINITIONS BuildRoot: %{_tmppath}/kernel-%{KVERREL}-root @@ -950,10 +955,14 @@ ApplyOptionalPatch centos-linux-4.18-smartpqi-bug15801.patch ApplyOptionalPatch centos-linux-4.18-elrepo-fusion-mptsas-mptspi-el8.patch ApplyOptionalPatch centos-linux-4.18-elrepo-megaraid_sas-unremove-el8.patch ApplyOptionalPatch centos-linux-4.18-elrepo-mpt3sas-unremove-el8.patch +ApplyOptionalPatch centos-linux-4.18-drivers-drivers-net-e1000.patch-bug16284.patch +ApplyOptionalPatch centos-linux-4.18-drivers-net-e1000e-bug16284.patch # end of plus mod # End of CentOS Modification +ApplyOptionalPatch linux-kernel-test.patch + # END OF PATCH APPLICATIONS # Any further pre-build tree manipulations happen here. @@ -994,7 +1003,15 @@ cp $RPM_SOURCE_DIR/kernel-*.config . cp %{SOURCE41} . VERSION=%{version} ./generate_all_configs.sh -%define make make %{?cross_opts} HOSTCFLAGS="${RPM_OPT_FLAGS}" HOSTLDFLAGS="%{__global_ldflags}" +# Note we need to disable these flags for cross builds because the flags +# from redhat-rpm-config assume that host == target so target arch +# flags cause issues with the host compiler. +%if !%{with_cross} +%define build_hostcflags ${RPM_OPT_FLAGS} +%define build_hostldflags %{__global_ldflags} +%endif + +%define make make %{?cross_opts} HOSTCFLAGS="%{?build_hostcflags}" HOSTLDFLAGS="%{?build_hostldflags}" # enable GCOV kernel config options if gcov is on %if %{with_gcov} @@ -2160,18 +2177,77 @@ fi # # %changelog -* Sun Jun 30 2019 Akemi Yagi [4.18.0-80.4.2.el8_0.centos.plus] +* Tue Jul 30 2019 Akemi Yagi [4.18.0-80.7.1.el8_0.centos.plus] - Apply debranding changes - Modify config file for x86_64 with extra features turned on including some network adapters, ReiserFS, TOMOYO - Apply patches from CentOS-7 plus kernel - Apply driver patches imported from ELRepo - -* Fri Jun 14 2019 Frantisek Hrbata [4.18.0-80.4.2.el8_0] +- Apply patches for e1000 and e1000e from kernel.org [bug#16284] + +* Mon Jun 24 2019 Frantisek Hrbata [4.18.0-80.7.1.el8_0] +- [x86] Update stepping values for Whiskey Lake U/Y (David Arcari) [1722372 1704801] +- [x86] x86/perf/amd: Resolve NMI latency issues for active PMCs (David Arcari) [1722367 1640238] +- [x86] x86/perf/amd: Resolve race condition when disabling PMC (David Arcari) [1722367 1640238] +- [edac] EDAC/amd64: Set maximum channel layer size depending on family (Gary Hook) [1722365 1690984] +- [edac] EDAC/amd64: Adjust printed chip select sizes when interleaved (Gary Hook) [1722365 1690984] +- [edac] EDAC/amd64: Recognize x16 symbol size (Gary Hook) [1722365 1690984] +- [edac] EDAC/amd64: Support more than two Unified Memory Controllers (Gary Hook) [1722365 1690984] +- [edac] EDAC/amd64: Use a macro for iterating over Unified Memory Controllers (Gary Hook) [1722365 1690984] +- [edac] EDAC, amd64: Add Family 17h, models 10h-2fh support (Gary Hook) [1722365 1690984] +- [edac] EDAC/amd64: Add Family 17h Model 30h PCI IDs (Aristeu Rozanski) [1722365 1696603] +- [x86] mark AMD Rome processors supported (David Arcari) [1721972 1520002] +- [x86] x86/mce: Handle varying MCA bank counts (David Arcari) [1721233 1668779] +- [iommu] iommu/vt-d: Disable ATS support on untrusted devices (Jerry Snitselaar) [1700376 1692246] +- [documentation] thunderbolt: Export IOMMU based DMA protection support to userspace (Jerry Snitselaar) [1700376 1692246] +- [iommu] iommu/vt-d: Do not enable ATS for untrusted devices (Jerry Snitselaar) [1700376 1692246] +- [iommu] iommu/vt-d: Force IOMMU on for platform opt in hint (Jerry Snitselaar) [1700376 1692246] +- [pci] PCI / ACPI: Identify untrusted PCI devices (Myron Stowe) [1700376 1704979] +- [acpi] ACPI / property: Allow multiple property compatible _DSD entries (Myron Stowe) [1700376 1537397] - [net] tcp: enforce tcp_min_snd_mss in tcp_mtu_probing() (Florian Westphal) [1719922 1719923] {CVE-2019-11479} - [net] tcp: add tcp_min_snd_mss sysctl (Florian Westphal) [1719922 1719923] {CVE-2019-11479} - [net] tcp: tcp_fragment() should apply sane memory limits (Florian Westphal) [1719857 1719858] {CVE-2019-11478} - [net] tcp: limit payload size of sacked skbs (Florian Westphal) [1719602 1719603] {CVE-2019-11477} +* Tue Jun 18 2019 Frantisek Hrbata [4.18.0-80.6.1.el8_0] +- [mm] mm: defer ZONE_DEVICE page initialization to the point where we init pgmap (Waiman Long) [1719635 1666538] +- [mm] mm: create non-atomic version of SetPageReserved for init use (Waiman Long) [1719635 1666538] +- [mm] mm: provide kernel parameter to allow disabling page init poisoning (Waiman Long) [1719635 1666538] +- [mm] mm, slub: restore the original intention of prefetch_freepointer() (Rafael Aquini) [1718237 1714671] +- [security] selinux: do not report error on connect(AF_UNSPEC) (Ondrej Mosnacek) [1717870 1707828] +- [security] selinux: Check address length before reading address family (Ondrej Mosnacek) [1717870 1707828] +- [powerpc] powerpc/tm: Fix stack pointer corruption (Desnes Augusto Nunes do Rosario) [1717869 1707635] +- [md] dm cache metadata: Fix loading discard bitset (Mike Snitzer) [1717868 1701618] +- [md] dm mpath: fix missing call of path selector type->end_io (Mike Snitzer) [1717804 1686227] +- [mm] mm/memory.c: do_fault: avoid usage of stale vm_area_struct ("Herton R. Krzesinski") [1717801 1684734] +- [net] sunrpc: fix 4 more call sites that were using stack memory with a scatterlist (Scott Mayhew) [1717800 1679183] +- [net] sunrpc: Don't use stack buffer with scatterlist (Scott Mayhew) [1717800 1679183] +- [scsi] scsi: mpt3sas: Fix kernel panic during expander reset (Tomas Henzl) [1717791 1677693] +- [security] selinux: always allow mounting submounts (Ondrej Mosnacek) [1717777 1647723] +- [drm] drm/bufs: Fix Spectre v1 vulnerability (Rob Clark) [1717382 1663467] +- [drm] drm/ioctl: Fix Spectre v1 vulnerabilities (Rob Clark) [1717382 1663467] +- [tools] perf annotate: Fix getting source line failure (Michael Petlan) [1716887 1614435] +- [iommu] iommu/amd: Set exclusion range correctly (Jerry Snitselaar) [1715336 1702766] +- [iommu] iommu/amd: Reserve exclusion range in iova-domain (Jerry Snitselaar) [1717344 1694835] +- [kvm] KVM: PPC: Book3S: Add count cache flush parameters to kvmppc_get_cpu_char() (Vitaly Kuznetsov) [1715018 1694456] +- [s390] kvm: s390: Fix potential spectre warnings (Thomas Huth) [1714754 1702344] +- [drm] drm/i915/gvt: Fix mmap range check (Alex Williamson) [1713572 1713573] {CVE-2019-11085} +- [scsi] scsi: megaraid_sas: return error when create DMA pool failed (Tomas Henzl) [1712862 1712863] {CVE-2019-11810} + +* Wed Jun 05 2019 Frantisek Hrbata [4.18.0-80.5.1.el8_0] +- [kernel] sched/fair: Limit sched_cfs_period_timer() loop to avoid hard lockup (Joel Savitz) [1715345 1695651] +- [kernel] sched/fair: Fix O(nr_cgroups) in the load balancing path (Phil Auld) [1715343 1685636] {CVE-2018-20784} +- [kernel] sched/fair: Fix insertion in rq->leaf_cfs_rq_list (Phil Auld) [1715343 1685636] {CVE-2018-20784} +- [kernel] sched/fair: Add tmp_alone_branch assertion (Phil Auld) [1715343 1685636] {CVE-2018-20784} +- [kernel] sched/fair: Fix infinite loop in update_blocked_averages() by reverting a9e7f6544b9c (Phil Auld) [1715343 1685636] {CVE-2018-20784} +- [rpmspec] apply linux-kernel-test.patch when building ("Herton R. Krzesinski") [1715340 1690534] +- [rpmspec] Fix cross builds (Jiri Olsa) [1715339 1694956] +- [kernel] sched/fair: Do not re-read ->h_load_next during hierarchical load calculation (Phil Auld) [1715337 1701762] +- [kvm] KVM: PPC: Book3S HV: Save/restore vrsave register in kvmhv_p9_guest_entry() (Suraj Jitindar Singh) [1714753 1700272] +- [powerpc] KVM: PPC: Book3S HV: Perserve PSSCR FAKE_SUSPEND bit on guest exit (Suraj Jitindar Singh) [1714751 1689768] +- [powerpc] powerpc/powernv/ioda: Fix locked_vm counting for memory used by IOMMU tables (David Gibson) [1714746 1674410] +- [char] ipmi_si: fix use-after-free of resource->name (Tony Camuso) [1714409 1714410] {CVE-2019-11811} +- [x86] Update stepping values for coffee lake desktop (David Arcari) [1711048 1704800] + * Thu May 16 2019 Frantisek Hrbata [4.18.0-80.4.1.el8_0] - [netdrv] ice: Do autoneg based on VSI state (Jonathan Toppins) [1709433 1687903] - [arm64] arm64: apply workaround on A64FX v1r0 (Mark Langsdorf) [1700901 1692306]