diff --git a/Makefile.rhelver b/Makefile.rhelver index 1c0df2c..79258fc 100644 --- a/Makefile.rhelver +++ b/Makefile.rhelver @@ -12,7 +12,7 @@ RHEL_MINOR = 1 # # Use this spot to avoid future merge conflicts. # Do not trim this comment. -RHEL_RELEASE = 142 +RHEL_RELEASE = 143 # # ZSTREAM @@ -66,4 +66,4 @@ ifneq ("$(ZSTREAM)", "yes") endif endif -RTBUILD:=.142 +RTBUILD:=.143 diff --git a/kernel-rt-x86_64-debug-rhel.config b/kernel-rt-x86_64-debug-rhel.config index 99b438c..3e50fe8 100644 --- a/kernel-rt-x86_64-debug-rhel.config +++ b/kernel-rt-x86_64-debug-rhel.config @@ -774,6 +774,8 @@ CONFIG_CPU_FREQ_GOV_USERSPACE=y CONFIG_CPU_FREQ_STAT=y CONFIG_CPU_FREQ=y # CONFIG_CPU_HOTPLUG_STATE_CONTROL is not set +CONFIG_CPU_IBPB_ENTRY=y +CONFIG_CPU_IBRS_ENTRY=y CONFIG_CPU_IDLE_GOV_HALTPOLL=y # CONFIG_CPU_IDLE_GOV_LADDER is not set CONFIG_CPU_IDLE_GOV_MENU=y @@ -784,6 +786,7 @@ CONFIG_CPU_LITTLE_ENDIAN=y CONFIG_CPUMASK_OFFSTACK=y CONFIG_CPUSETS=y # CONFIG_CPU_THERMAL is not set +CONFIG_CPU_UNRET_ENTRY=y CONFIG_CRAMFS_BLOCKDEV=y # CONFIG_CRAMFS is not set # CONFIG_CRAMFS_MTD is not set @@ -4335,6 +4338,7 @@ CONFIG_RESET_CONTROLLER=y # CONFIG_RESET_QCOM_PDC is not set # CONFIG_RESET_TI_SYSCON is not set CONFIG_RESOURCE_KUNIT_TEST=m +CONFIG_RETHUNK=y CONFIG_RETPOLINE=y # CONFIG_RFD77402 is not set # CONFIG_RFD_FTL is not set @@ -5011,6 +5015,7 @@ CONFIG_SLIP=m # CONFIG_SLIP_MODE_SLIP6 is not set CONFIG_SLIP_SMART=y # CONFIG_SLOB is not set +# CONFIG_SLS is not set # CONFIG_SLUB_CPU_PARTIAL is not set # CONFIG_SLUB_DEBUG_ON is not set CONFIG_SLUB_DEBUG=y @@ -5480,6 +5485,7 @@ CONFIG_SP5100_TCO=m CONFIG_SPARSE_IRQ=y CONFIG_SPARSEMEM_MANUAL=y CONFIG_SPARSEMEM_VMEMMAP=y +CONFIG_SPECULATION_MITIGATIONS=y # CONFIG_SPI_ALTERA is not set CONFIG_SPI_AMD=y # CONFIG_SPI_AXI_SPI_ENGINE is not set @@ -6566,6 +6572,7 @@ CONFIG_X86_INTEL_PSTATE=y CONFIG_X86_INTEL_TSX_MODE_OFF=y # CONFIG_X86_INTEL_TSX_MODE_ON is not set CONFIG_X86_IOPL_IOPERM=y +# CONFIG_X86_KERNEL_IBT is not set CONFIG_X86_MCE_AMD=y CONFIG_X86_MCE_INJECT=m CONFIG_X86_MCE_INTEL=y diff --git a/kernel-rt-x86_64-rhel.config b/kernel-rt-x86_64-rhel.config index 4aaebff..ef50cdd 100644 --- a/kernel-rt-x86_64-rhel.config +++ b/kernel-rt-x86_64-rhel.config @@ -774,6 +774,8 @@ CONFIG_CPU_FREQ_GOV_USERSPACE=y CONFIG_CPU_FREQ_STAT=y CONFIG_CPU_FREQ=y # CONFIG_CPU_HOTPLUG_STATE_CONTROL is not set +CONFIG_CPU_IBPB_ENTRY=y +CONFIG_CPU_IBRS_ENTRY=y CONFIG_CPU_IDLE_GOV_HALTPOLL=y # CONFIG_CPU_IDLE_GOV_LADDER is not set CONFIG_CPU_IDLE_GOV_MENU=y @@ -784,6 +786,7 @@ CONFIG_CPU_LITTLE_ENDIAN=y CONFIG_CPUMASK_OFFSTACK=y CONFIG_CPUSETS=y # CONFIG_CPU_THERMAL is not set +CONFIG_CPU_UNRET_ENTRY=y CONFIG_CRAMFS_BLOCKDEV=y # CONFIG_CRAMFS is not set # CONFIG_CRAMFS_MTD is not set @@ -4314,6 +4317,7 @@ CONFIG_RESET_CONTROLLER=y # CONFIG_RESET_QCOM_PDC is not set # CONFIG_RESET_TI_SYSCON is not set CONFIG_RESOURCE_KUNIT_TEST=m +CONFIG_RETHUNK=y CONFIG_RETPOLINE=y # CONFIG_RFD77402 is not set # CONFIG_RFD_FTL is not set @@ -4990,6 +4994,7 @@ CONFIG_SLIP=m # CONFIG_SLIP_MODE_SLIP6 is not set CONFIG_SLIP_SMART=y # CONFIG_SLOB is not set +# CONFIG_SLS is not set # CONFIG_SLUB_CPU_PARTIAL is not set # CONFIG_SLUB_DEBUG_ON is not set CONFIG_SLUB_DEBUG=y @@ -5457,6 +5462,7 @@ CONFIG_SP5100_TCO=m CONFIG_SPARSE_IRQ=y CONFIG_SPARSEMEM_MANUAL=y CONFIG_SPARSEMEM_VMEMMAP=y +CONFIG_SPECULATION_MITIGATIONS=y # CONFIG_SPI_ALTERA is not set CONFIG_SPI_AMD=y # CONFIG_SPI_AXI_SPI_ENGINE is not set @@ -6543,6 +6549,7 @@ CONFIG_X86_INTEL_PSTATE=y CONFIG_X86_INTEL_TSX_MODE_OFF=y # CONFIG_X86_INTEL_TSX_MODE_ON is not set CONFIG_X86_IOPL_IOPERM=y +# CONFIG_X86_KERNEL_IBT is not set CONFIG_X86_MCE_AMD=y CONFIG_X86_MCE_INJECT=m CONFIG_X86_MCE_INTEL=y diff --git a/kernel.spec b/kernel.spec index afa53e6..7813871 100755 --- a/kernel.spec +++ b/kernel.spec @@ -121,13 +121,13 @@ Summary: The Linux kernel %define kversion 5.14 %define rpmversion 5.14.0 -%define pkgrelease 142.rt21.142.el9 +%define pkgrelease 143.rt21.143.el9 # This is needed to do merge window version magic %define patchlevel 14 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 142.rt21.142%{?buildid}%{?dist} +%define specrelease 143.rt21.143%{?buildid}%{?dist} %define pkg_release %{specrelease} @@ -707,7 +707,7 @@ BuildRequires: lld # exact git commit you can run # # xzcat -qq ${TARBALL} | git get-tar-commit-id -Source0: linux-5.14.0-142.rt21.142.el9.tar.xz +Source0: linux-5.14.0-143.rt21.143.el9.tar.xz Source1: Makefile.rhelver @@ -1422,8 +1422,8 @@ ApplyOptionalPatch() fi } -%setup -q -n kernel-5.14.0-142.rt21.142.el9 -c -mv linux-5.14.0-142.rt21.142.el9 linux-%{KVERREL} +%setup -q -n kernel-5.14.0-143.rt21.143.el9 -c +mv linux-5.14.0-143.rt21.143.el9 linux-%{KVERREL} cd linux-%{KVERREL} cp -a %{SOURCE1} . @@ -3147,6 +3147,160 @@ fi # # %changelog +* Fri Aug 05 2022 Luis Claudio R. Goncalves [5.14.0-143.rt21.143.el9] +- [rt] build kernel-rt-5.14.0-143.rt21.143.el9 [2061574] +- sched, cpuset: Fix dl_cpu_busy() panic due to empty cs->cpus_allowed (Waiman Long) [2104946] +- intel_idle: Fix false positive RCU splats due to incorrect hardirqs state (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- tools headers cpufeatures: Sync with the kernel sources (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- um: Add missing apply_returns() (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- KVM: emulate: do not adjust size of fastop and setcc subroutines (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/kvm: fix FASTOP_SIZE when return thunks are enabled (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- efi/x86: use naked RET on mixed mode call wrapper (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Remove apostrophe typo (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/speculation: Use DECLARE_PER_CPU for x86_spec_ctrl_current (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/entry: Remove UNTRAIN_RET from native_irq_return_ldt (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Mark retbleed_strings static (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/asm/32: Fix ANNOTATE_UNRET_SAFE use on 32-bit (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/static_call: Serialize __static_call_fixup() properly (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/speculation: Disable RRSBA behavior (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/kexec: Disable RET on kexec (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Do not enable IBPB-on-entry when IBPB is not supported (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/entry: Move PUSH_AND_CLEAR_REGS() back into error_entry (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Add Cannon lake to RETBleed affected CPU list (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- redhat/configs: Add new mitigation configs for RetBleed CVEs (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/retbleed: Add fine grained Kconfig knobs (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/cpu/amd: Enumerate BTC_NO (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/common: Stamp out the stepping madness (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- KVM: VMX: Prevent RSB underflow before vmenter (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/speculation: Fill RSB on vmexit for IBRS (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- KVM: VMX: Fix IBRS handling after vmexit (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- KVM: VMX: Prevent guest RSB poisoning attacks with eIBRS (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- KVM: VMX: Convert launched argument to flags (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- KVM: VMX: Flatten __vmx_vcpu_run() (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- objtool: Re-add UNWIND_HINT_{SAVE_RESTORE} (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/speculation: Remove x86_spec_ctrl_mask (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/speculation: Use cached host SPEC_CTRL value for guest entry/exit (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/speculation: Fix SPEC_CTRL write on SMT state change (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/speculation: Fix firmware entry SPEC_CTRL handling (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/speculation: Fix RSB filling with CONFIG_RETPOLINE=n (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/cpu/amd: Add Spectral Chicken (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Do IBPB fallback check only once (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Add retbleed=ibpb (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/xen: Add UNTRAIN_RET (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/xen: Rename SYS* entry points (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- objtool: Update Retpoline validation (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- intel_idle: Disable IBRS during long idle (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Report Intel retbleed vulnerability (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Split spectre_v2_select_mitigation() and spectre_v2_user_select_mitigation() (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/speculation: Add spectre_v2=ibrs option to support Kernel IBRS (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Optimize SPEC_CTRL MSR writes (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/entry: Add kernel IBRS implementation (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Keep a per-CPU IA32_SPEC_CTRL value (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Enable STIBP for JMP2RET (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Add AMD retbleed= boot parameter (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bugs: Report AMD retbleed vulnerability (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- objtool: skip non-text sections when adding return-thunk sites (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86: Add magic AMD return-thunk (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- objtool: Treat .text.__x86.* as noinstr (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/entry: Avoid very early RET (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86: Use return-thunk in asm code (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/sev: Avoid using __x86_return_thunk (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/vsyscall_emu/64: Don't use RET in vsyscall emulation (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/kvm: Fix SETcc emulation for return thunks (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/bpf: Use alternative RET encoding (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/ftrace: Use alternative RET encoding (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86,static_call: Use alternative RET encoding (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86,objtool: Create .return_sites (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86: Undo return-thunk damage (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/retpoline: Use -mfunction-return (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/retpoline: Swizzle retpoline thunk (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/retpoline: Cleanup some #ifdefery (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/cpufeatures: Move RETPOLINE flags to word 11 (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/kvm/vmx: Make noinstr clean (Waiman Long) [2090232] {CVE-2022-23816 CVE-2022-23825 CVE-2022-29900 CVE-2022-29901} +- x86/entry: Fix register corruption in compat syscall (Waiman Long) [2090232] +- x86/entry: Remove skip_r11rcx (Waiman Long) [2090232] +- x86/entry: Use PUSH_AND_CLEAR_REGS for compat (Waiman Long) [2090232] +- x86/entry: Simplify entry_INT80_compat() (Waiman Long) [2090232] +- x86/entry: Don't call error_entry() for XENPV (Waiman Long) [2090232] +- x86/entry: Move CLD to the start of the idtentry macro (Waiman Long) [2090232] +- x86/entry: Move PUSH_AND_CLEAR_REGS out of error_entry() (Waiman Long) [2090232] +- x86/entry: Switch the stack after error_entry() returns (Waiman Long) [2090232] +- x86/traps: Use pt_regs directly in fixup_bad_iret() (Waiman Long) [2090232] +- x86/retpoline: Add ANNOTATE_NOENDBR for retpolines (Waiman Long) [2090232] +- x86/static_call: Add ANNOTATE_NOENDBR to static call trampoline (Waiman Long) [2090232] +- objtool: Fix SLS validation for kcov tail-call replacement (Waiman Long) [2090232] +- x86,static_call: Fix __static_call_return0 for i386 (Waiman Long) [2090232] +- crypto: x86/poly1305 - Fixup SLS (Waiman Long) [2090232] +- kvm/emulate: Fix SETcc emulation for ENDBR (Waiman Long) [2090232] +- x86/ibt: Annotate text references (Waiman Long) [2090232] +- x86/alternative: Simplify int3_selftest_ip (Waiman Long) [2090232] +- x86/ibt,kvm: Add ENDBR to fastops (Waiman Long) [2090232] +- x86/ibt,entry: Sprinkle ENDBR dust (Waiman Long) [2090232] +- x86/ibt,xen: Sprinkle the ENDBR (Waiman Long) [2090232] +- x86/entry: Cleanup PARAVIRT (Waiman Long) [2090232] +- x86/ibt: Add ANNOTATE_NOENDBR (Waiman Long) [2090232] +- redhat/configs: Disable CONFIG_X86_KERNEL_IBT (Waiman Long) [2090232] +- x86/ibt: Base IBT bits (Waiman Long) [2090232] +- objtool,efi: Update __efi64_thunk annotation (Waiman Long) [2090232] +- objtool: Fix truncated string warning (Waiman Long) [2090232] +- redhat/configs: Disable CONFIG_SLS (Waiman Long) [2090232] +- x86: Add straight-line-speculation mitigation (Waiman Long) [2090232] +- x86/alternative: Relax text_poke_bp() constraint (Waiman Long) [2090232] +- objtool: Add straight-line-speculation validation (Waiman Long) [2090232] +- x86: Prepare inline-asm for straight-line-speculation (Waiman Long) [2090232] +- x86: Prepare asm files for straight-line-speculation (Waiman Long) [2090232] +- x86/mce: Reduce number of machine checks taken during recovery (Waiman Long) [2090232] +- x86/lib/atomic64_386_32: Rename things (Waiman Long) [2090232] +- x86: Use -mindirect-branch-cs-prefix for RETPOLINE builds (Waiman Long) [2090232] +- x86: Move RETPOLINE*_CFLAGS to arch Makefile (Waiman Long) [2090232] +- x86/xen: Add xenpv_restore_regs_and_return_to_usermode() (Waiman Long) [2090232] +- x86/entry: Use the correct fence macro after swapgs in kernel CR3 (Waiman Long) [2090232] +- x86/entry: Add a fence for kernel entry SWAPGS in paranoid_entry() (Waiman Long) [2090232] +- objtool: Fix pv_ops noinstr validation (Waiman Long) [2090232] +- static_call,x86: Robustify trampoline patching (Waiman Long) [2090232] +- x86/xen: switch initial pvops IRQ functions to dummy ones (Waiman Long) [2090232] +- bpf,x86: Respect X86_FEATURE_RETPOLINE* (Waiman Long) [2090232] +- x86/alternative: Add debug prints to apply_retpolines() (Waiman Long) [2090232] +- x86/alternative: Try inline spectre_v2=retpoline,amd (Waiman Long) [2090232] +- x86/alternative: Handle Jcc __x86_indirect_thunk_\reg (Waiman Long) [2090232] +- x86/alternative: Implement .retpoline_sites support (Waiman Long) [2090232] +- x86/retpoline: Create a retpoline thunk array (Waiman Long) [2090232] +- x86/retpoline: Move the retpoline thunk declarations to nospec-branch.h (Waiman Long) [2090232] +- x86/asm: Fixup odd GEN-for-each-reg.h usage (Waiman Long) [2090232] +- x86/asm: Fix register order (Waiman Long) [2090232] +- x86/retpoline: Remove unused replacement symbols (Waiman Long) [2090232] +- objtool,x86: Replace alternatives with .retpoline_sites (Waiman Long) [2090232] +- objtool: Shrink struct instruction (Waiman Long) [2090232] +- objtool: Explicitly avoid self modifying code in .altinstr_replacement (Waiman Long) [2090232] +- objtool: Classify symbols (Waiman Long) [2090232] +- objtool: Remove reloc symbol type checks in get_alt_entry() (Waiman Long) [2090232] +- objtool: print out the symbol type when complaining about it (Waiman Long) [2090232] +- objtool: Teach get_alt_entry() about more relocation types (Waiman Long) [2090232] +- kbuild: reuse $(cmd_objtool) for cmd_cc_lto_link_modules (Waiman Long) [2090232] +- kbuild: detect objtool update without using .SECONDEXPANSION (Waiman Long) [2090232] +- kbuild: factor out OBJECT_FILES_NON_STANDARD check into a macro (Waiman Long) [2090232] +- kbuild: store the objtool command in *.cmd files (Waiman Long) [2090232] +- kbuild: rename __objtool_obj and reuse it for cmd_cc_lto_link_modules (Waiman Long) [2090232] +- kbuild: move objtool_args back to scripts/Makefile.build (Waiman Long) [2090232] +- x86/mce: Drop copyin special case for #MC (Waiman Long) [2090232] +- objtool: Support pv_opsindirect calls for noinstr (Waiman Long) [2090232] +- x86/xen: Rework the xen_{cpu,irq,mmu}_opsarrays (Waiman Long) [2090232] +- objtool: Handle __sanitize_cov*() tail calls (Waiman Long) [2090232] +- objtool: Introduce CFI hash (Waiman Long) [2090232] +- kbuild: clean up objtool_args slightly (Waiman Long) [2090232] +- kbuild: remove stale *.symversions (Waiman Long) [2090232] +- kbuild: remove unused quiet_cmd_update_lto_symversions (Waiman Long) [2090232] +- kbuild: Fix TRIM_UNUSED_KSYMS with LTO_CLANG (Waiman Long) [2090232] +- Makefile: remove stale cc-option checks (Waiman Long) [2090232] +- x86/build: Remove stale cc-option checks (Waiman Long) [2090232] +- xen: assume XENFEAT_mmu_pt_update_preserve_ad being set for pv guests (Waiman Long) [2090232] +- dmaengine: idxd: Fixup upstream merge conflict resolution (Jerry Snitselaar) [2100482] +- dmaengine: idxd: skip clearing device context when device is read-only (Jerry Snitselaar) [2100482] +- dmaengine: idxd: add RO check for wq max_transfer_size write (Jerry Snitselaar) [2100482] +- dmaengine: idxd: add RO check for wq max_batch_size write (Jerry Snitselaar) [2100482] +- dmaengine: idxd: fix device cleanup on disable (Jerry Snitselaar) [2100482] +- Revert "dmaengine: idxd: Separate user and kernel pasid enabling" (Jerry Snitselaar) [2100482] + * Thu Aug 04 2022 Luis Claudio R. Goncalves [5.14.0-142.rt21.142.el9] - [rt] build kernel-rt-5.14.0-142.rt21.142.el9 [2061574] - sit: do not call ipip6_dev_free() from sit_init_net() (Hangbin Liu) [2089080] diff --git a/sources b/sources index 2e6d993..61ea794 100644 --- a/sources +++ b/sources @@ -1,4 +1,4 @@ SHA512 (kernel-abi-whitelists-5.13.0-1.tar.bz2) = ceba454e1f590c1e4ef4115a75463ae3ac2c2aa7ec85fa14a2669d666c421483a38225ee19d7d72b4ac7032375741408b23543e43588538c80161ec0cf57051c -SHA512 (linux-5.14.0-142.rt21.142.el9.tar.xz) = bb764982a7597f9e59ffe5affbdc08834f1379131c1444f57b568134bf1b2d53dd491536a9d09b4ef00702233e159687e85575b9854b775867aaf004a1238945 -SHA512 (kernel-abi-stablelists-5.14.0-142.rt21.142.el9.tar.bz2) = b26d43f27d7ba6ffdb2416e58eb8d4498a981abcbd2db2453067f17a83be83af3cb5774000b89196e29795fc1922fe245bac5e438903a26c26d74d455bd64691 -SHA512 (kernel-kabi-dw-5.14.0-142.rt21.142.el9.tar.bz2) = 565f812fa83a756ef7b91219031cfe80b1e853f22b4ed38ada76aed482caaf89df35e4d220f45728392765a757f8b0798e3b5a57fee0114e1d0379e887772578 +SHA512 (linux-5.14.0-143.rt21.143.el9.tar.xz) = 6fa250da11949539fdbda17193c0b8b88691f6779334e2af0c48c12be851fa8e7c765bbe63cc9247903fca53de372b11f72f9912f875fe2265d84d74e98ca59b +SHA512 (kernel-abi-stablelists-5.14.0-143.rt21.143.el9.tar.bz2) = e9c6470a1efff07f36d518d479e8df06b06f29064482b6a6dfc394f0c98eb4303a137b4e78f7246ee1573bd5661ed2df80eb468d54f8d36cbb63754419b8ed84 +SHA512 (kernel-kabi-dw-5.14.0-143.rt21.143.el9.tar.bz2) = 565f812fa83a756ef7b91219031cfe80b1e853f22b4ed38ada76aed482caaf89df35e4d220f45728392765a757f8b0798e3b5a57fee0114e1d0379e887772578