kernel/dracut-virt.conf

47 lines
1.2 KiB
Plaintext
Raw Normal View History

# generic + compressed please
hostonly="no"
compress="xz"
# VMs can't update microcode anyway
early_microcode="no"
# modules: basics
dracutmodules+=" base systemd systemd-initrd dracut-systemd dbus dbus-broker usrmount shutdown "
# modules: storage support
dracutmodules+=" dm lvm rootfs-block fs-lib "
# modules: tpm and crypto
kernel-5.14.0-512.el9 * Mon Sep 23 2024 Rado Vrbovsky <rvrbovsk@redhat.com> [5.14.0-512.el9] - cpufreq: intel_pstate: Use Meteor Lake EPPs for Arrow Lake (Steve Best) [RHEL-58617] - cpufreq: intel_pstate: Update Meteor Lake EPPs (Steve Best) [RHEL-58617] - tools/power/cpupower: Fix Pstate frequency reporting on AMD Family 1Ah CPUs (Steve Best) [RHEL-57711] - cpufreq: intel_pstate: Update Lunar Lake hybrid scaling factor (Steve Best) [RHEL-58615] - cpufreq: intel_pstate: Update Arrow Lake hybrid scaling factor (Steve Best) [RHEL-58615] - netfilter: flowtable: initialise extack before use (CKI Backport Bot) [RHEL-58544] {CVE-2024-45018} - tracing/osnoise: Fix build when timerlat is not enabled (Tomas Glozar) [RHEL-39968] - tracing/timerlat: Add interface_lock around clearing of kthread in stop_kthread() (Tomas Glozar) [RHEL-39968] - tracing/timerlat: Only clear timer if a kthread exists (Tomas Glozar) [RHEL-39968] - tracing/osnoise: Use a cpumask to know what threads are kthreads (Tomas Glozar) [RHEL-39968] - cpufreq: intel_pstate: Support Emerald Rapids OOB mode (Steve Best) [RHEL-58619] - ARM: dts: am33xx-l4: Add missing touchscreen clock properties (Joel Slebodnick) [RHEL-51597] - iio: adc: ti_am335x_adc: Add the scale information (Joel Slebodnick) [RHEL-51597] - iio: adc: ti_am335x_adc: Add a unit to the timeout delay (Joel Slebodnick) [RHEL-51597] - iio: adc: ti_am335x_adc: Gather the checks on the delays (Joel Slebodnick) [RHEL-51597] - iio: adc: ti_am335x_adc: Get rid of useless gotos (Joel Slebodnick) [RHEL-51597] - iio: adc: ti_am335x_adc: Fix style (Joel Slebodnick) [RHEL-51597] - iio: adc: ti_am335x_adc: Replace license text with SPDX tag (Joel Slebodnick) [RHEL-51597] - iio: adc: ti_am335x_adc: Wait the idle state to avoid stalls (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Drop unused definitions from the header (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Convert to platform remove callback returning void (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Use devm_platform_get_and_ioremap_resource() (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Fix spelling mistake "atleast" -> "at least" (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Support the correctly spelled DT property (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Add ADC1/magnetic reader support (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Introduce a helper to deal with the type of hardware (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Add a boolean to clarify the presence of a touchscreen (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Fix an error message (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Rename a variable (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Add TSC prefix in certain macros (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Drop useless definitions from the header (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Clarify the maximum values for DT entries (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Use BIT(), GENMASK() and FIELD_PREP() when relevant (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Replace the header license text with SPDX tag (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Fix header spacing (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Use the new HZ_PER_MHZ macro (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Rename the subsystem enable macro (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Gather the ctrl register logic in one place (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Reorder the initialization steps (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Always provide an idle configuration (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Drop useless variables from the driver structure (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Mimic the probe from resume() (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Use driver data (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Move the driver structure allocation earlier (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Simplify divisor calculation (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Don't search the tree for our clock (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Reword the comment explaining the dividers (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Drop extra spacing when declaring stack variables (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Get rid of useless gotos (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Fix style (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Replace license text with SPDX tag (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Ensure a balanced number of node get/put (Joel Slebodnick) [RHEL-51597] - mfd: ti_am335x_tscadc: Delete superfluous error message (Joel Slebodnick) [RHEL-51597] - uki: use systemd-pcrphase dracut module (Vitaly Kuznetsov) - selftests/thermel/intel: Add test to read workload hint (David Arcari) [RHEL-29349] - thermal: intel: int340x: Free MSI IRQ vectors on module exit (David Arcari) [RHEL-29349] - thermal: intel: int340x: Allow limited thermal MSI support (David Arcari) [RHEL-29349] - thermal: intel: int340x: Fix kernel warning during MSI cleanup (David Arcari) [RHEL-29349] - thermal: trip: Pass trip pointer to .set_trip_temp() thermal zone callback (David Arcari) [RHEL-29349] - thermal: helpers: Introduce thermal_trip_is_bound_to_cdev() (David Arcari) [RHEL-29349] - thermal: trip: Add conversion macros for thermal trip priv field (David Arcari) [RHEL-29349] - thermal: intel: int340x: Enable WLT and power floor support for Lunar Lake (David Arcari) [RHEL-29349] - thermal: intel: int340x: Support MSI interrupt for Lunar Lake (David Arcari) [RHEL-29349] - thermal: intel: int340x: Remove unnecessary calls to free irq (David Arcari) [RHEL-29349] - thermal: intel: int340x: Add DLVR support for Lunar Lake (David Arcari) [RHEL-29349] - thermal: intel: int340x: Capability to map user space to firmware values (David Arcari) [RHEL-29349] - thermal: intel: int340x: Cleanup of DLVR sysfs on driver remove (David Arcari) [RHEL-29349] - thermal: int340x: processor_thermal: Support shared interrupts (David Arcari) [RHEL-29349] - thermal: int3403: remove unused struct 'int3403_performance_state' (David Arcari) [RHEL-29349] - thermal: int3400: Use sizeof(*pointer) instead of sizeof(type) (David Arcari) [RHEL-29349] - thermal: intel: Add missing module description (David Arcari) [RHEL-29349] - thermal: intel: int340x_thermal: replace deprecated strncpy() with strscpy() (David Arcari) [RHEL-29349] - selftests:resctrl: Fix build failure on archs without __cpuid_count() (David Arcari) [RHEL-20790] - x86/resctrl: Update documentation with Sub-NUMA cluster changes (David Arcari) [RHEL-20790] - x86/resctrl: Fix arch_mbm_* array overrun on SNC (David Arcari) [RHEL-20790] - x86/resctrl: Detect Sub-NUMA Cluster (SNC) mode (David Arcari) [RHEL-20790] - selftests/resctrl: Remove test name comparing from write_bm_pid_to_resctrl() (David Arcari) [RHEL-20790] - selftests/resctrl: Remove mongrp from CMT test (David Arcari) [RHEL-20790] - selftests/resctrl: Remove mongrp from MBA test (David Arcari) [RHEL-20790] - selftests/resctrl: Convert ctrlgrp & mongrp to pointers (David Arcari) [RHEL-20790] - selftests/resctrl: Make some strings passed to resctrlfs functions const (David Arcari) [RHEL-20790] - selftests/resctrl: Simplify bandwidth report type handling (David Arcari) [RHEL-20790] - selftests/resctrl: Add ->init() callback into resctrl_val_param (David Arcari) [RHEL-20790] - selftests/resctrl: Add ->measure() callback to resctrl_val_param (David Arcari) [RHEL-20790] - selftests/resctrl: Simplify mem bandwidth file code for MBA & MBM tests (David Arcari) [RHEL-20790] - selftests/resctrl: Rename measure_vals() to measure_mem_bw_vals() & document (David Arcari) [RHEL-20790] - selftests/resctrl: Cleanup bm_pid and ppid usage & limit scope (David Arcari) [RHEL-20790] - selftests/resctrl: Use correct type for pids (David Arcari) [RHEL-20790] - selftests/resctrl: Consolidate get_domain_id() into resctrl_val() (David Arcari) [RHEL-20790] - selftests/resctrl: Make "bandwidth" consistent in comments & prints (David Arcari) [RHEL-20790] - selftests/resctrl: Calculate resctrl FS derived mem bw over sleep(1) only (David Arcari) [RHEL-20790] - selftests/resctrl: Fix closing IMC fds on error and open-code R+W instead of loops (David Arcari) [RHEL-20790] - selftests/resctrl: Fix non-contiguous CBM for AMD (David Arcari) [RHEL-20790] - selftests/resctrl: fix clang build warnings related to abs(), labs() calls (David Arcari) [RHEL-20790] - selftests/resctrl: fix clang build failure: use LOCAL_HDRS (David Arcari) [RHEL-20790] - selftests/resctrl: ksft_exit_skip() does not return (David Arcari) [RHEL-20790] - selftests/resctrl: Move cleanups out of individual tests (David Arcari) [RHEL-20790] - selftests/resctrl: Simplify cleanup in ctrl-c handler (David Arcari) [RHEL-20790] - selftests/resctrl: Add cleanup function to test framework (David Arcari) [RHEL-20790] - selftests/resctrl: Add non-contiguous CBMs CAT test (David Arcari) [RHEL-20790] - selftests/resctrl: Add resource_info_file_exists() (David Arcari) [RHEL-20790] - selftests/resctrl: Split validate_resctrl_feature_request() (David Arcari) [RHEL-20790] - selftests/resctrl: Add a helper for the non-contiguous test (David Arcari) [RHEL-20790] - selftests/resctrl: Add test groups and name L3 CAT test L3_CAT (David Arcari) [RHEL-20790] - selftests/resctrl: Get domain id from cache id (David Arcari) [RHEL-20790] - selftests/resctrl: Rename resource ID to domain ID (David Arcari) [RHEL-20790] - selftests/resctrl: Add helper to convert L2/3 to integer (David Arcari) [RHEL-20790] - selftests/resctrl: Pass write_schemata() resource instead of test name (David Arcari) [RHEL-20790] - selftests/resctrl: Introduce generalized test framework (David Arcari) [RHEL-20790] - selftests/resctrl: Create struct for input parameters (David Arcari) [RHEL-20790] - selftests/resctrl: Restore the CPU affinity after CAT test (David Arcari) [RHEL-20790] - selftests/resctrl: Rewrite Cache Allocation Technology (CAT) test (David Arcari) [RHEL-20790] - selftests/resctrl: Read in less obvious order to defeat prefetch optimizations (David Arcari) [RHEL-20790] - selftests/resctrl: Replace file write with volatile variable (David Arcari) [RHEL-20790] - selftests/resctrl: Open perf fd before start & add error handling (David Arcari) [RHEL-20790] - selftests/resctrl: Move cat_val() to cat_test.c and rename to cat_test() (David Arcari) [RHEL-20790] - selftests/resctrl: Convert perf related globals to locals (David Arcari) [RHEL-20790] - selftests/resctrl: Improve perf init (David Arcari) [RHEL-20790] - selftests/resctrl: Consolidate naming of perf event related things (David Arcari) [RHEL-20790] - selftests/resctrl: Remove nested calls in perf event handling (David Arcari) [RHEL-20790] - selftests/resctrl: Remove unnecessary __u64 -> unsigned long conversion (David Arcari) [RHEL-20790] - selftests/resctrl: Split show_cache_info() to test specific and generic parts (David Arcari) [RHEL-20790] - selftests/resctrl: Split measure_cache_vals() (David Arcari) [RHEL-20790] - selftests/resctrl: Exclude shareable bits from schemata in CAT test (David Arcari) [RHEL-20790] - selftests/resctrl: Create cache_portion_size() helper (David Arcari) [RHEL-20790] - selftests/resctrl: Mark get_cache_size() cache_type const (David Arcari) [RHEL-20790] - selftests/resctrl: Refactor get_cbm_mask() and rename to get_full_cbm() (David Arcari) [RHEL-20790] - selftests/resctrl: Refactor fill_buf functions (David Arcari) [RHEL-20790] - selftests/resctrl: Split fill_buf to allow tests finer-grained control (David Arcari) [RHEL-20790] - selftests/resctrl: Change function comments to say < 0 on error (David Arcari) [RHEL-20790] - selftests/resctrl: Don't use ctrlc_handler() outside signal handling (David Arcari) [RHEL-20790] - selftests/resctrl: Return -1 instead of errno on error (David Arcari) [RHEL-20790] - selftests/resctrl: Convert perror() to ksft_perror() or ksft_print_msg() (David Arcari) [RHEL-20790] - selftests/resctrl: Fix MBM test failure when MBA unavailable (David Arcari) [RHEL-20790] - selftests/resctrl: Move run_benchmark() to a more fitting file (David Arcari) [RHEL-20790] - selftests/resctrl: Fix schemata write error check (David Arcari) [RHEL-20790] - selftests/resctrl: Reduce failures due to outliers in MBA/MBM tests (David Arcari) [RHEL-20790] - selftests/resctrl: Fix feature checks (David Arcari) [RHEL-20790] - selftests/resctrl: Refactor feature check to use resource and feature name (David Arcari) [RHEL-20790] - selftests/resctrl: Move _GNU_SOURCE define into Makefile (David Arcari) [RHEL-20790] - selftests/resctrl: Remove duplicate feature check from CMT test (David Arcari) [RHEL-20790] - selftests/resctrl: Extend signal handler coverage to unmount on receiving signal (David Arcari) [RHEL-20790] - selftests/resctrl: Fix uninitialized .sa_flags (David Arcari) [RHEL-20790] - selftests/resctrl: Cleanup benchmark argument parsing (David Arcari) [RHEL-20790] - selftests/resctrl: Remove ben_count variable (David Arcari) [RHEL-20790] - selftests/resctrl: Make benchmark command const and build it with pointers (David Arcari) [RHEL-20790] - selftests/resctrl: Reorder resctrl FS prep code and benchmark_cmd init (David Arcari) [RHEL-20790] - selftests/resctrl: Simplify span lifetime (David Arcari) [RHEL-20790] - selftests/resctrl: Remove bw_report and bm_type from main() (David Arcari) [RHEL-20790] - selftests/resctrl: Correct benchmark command help (David Arcari) [RHEL-20790] - selftests/resctrl: Ensure the benchmark commands fits to its array (David Arcari) [RHEL-20790] - selftests/resctrl: Fix wrong format specifier (David Arcari) [RHEL-20790] - selftests/resctrl: Remove test type checks from cat_val() (David Arcari) [RHEL-20790] - selftests/resctrl: Pass the real number of tests to show_cache_info() (David Arcari) [RHEL-20790] - selftests/resctrl: Move CAT/CMT test global vars to function they are used in (David Arcari) [RHEL-20790] - selftests/resctrl: Don't use variable argument list for ->setup() (David Arcari) [RHEL-20790] - selftests/resctrl: Don't pass test name to fill_buf (David Arcari) [RHEL-20790] - selftests/resctrl: Improve parameter consistency in fill_buf (David Arcari) [RHEL-20790] - selftests/resctrl: Remove unnecessary startptr global from fill_buf (David Arcari) [RHEL-20790] - selftests/resctrl: Remove "malloc_and_init_memory" param from run_fill_buf() (David Arcari) [RHEL-20790] - selftests/resctrl: Remove duplicated preparation for span arg (David Arcari) [RHEL-20790] - selftests/resctrl: Express span internally in bytes (David Arcari) [RHEL-20790] - selftests/resctrl: Convert span to size_t (David Arcari) [RHEL-20790] - selftests/resctrl: Remove mum_resctrlfs from struct resctrl_val_param (David Arcari) [RHEL-20790] - selftests/resctrl: Refactor remount_resctrl(bool mum_resctrlfs) to mount_resctrl() (David Arcari) [RHEL-20790] - selftests/resctrl: Move resctrl FS mount/umount to higher level (David Arcari) [RHEL-20790] - selftests/resctrl: Unmount resctrl FS before starting the first test (David Arcari) [RHEL-20790] - selftests/resctrl: Close perf value read fd on errors (David Arcari) [RHEL-20790] - selftests/resctrl: Unmount resctrl FS if child fails to run benchmark (David Arcari) [RHEL-20790] - selftests/resctrl: Don't leak buffer in fill_cache() (David Arcari) [RHEL-20790] - selftests/resctrl: Add resctrl.h into build deps (David Arcari) [RHEL-20790] - selftests/resctrl: Fix incorrect error return on test complete (David Arcari) [RHEL-20790] - selftests/resctrl: Remove duplicate codes that clear each test result file (David Arcari) [RHEL-20790] - selftests/resctrl: Commonize the signal handler register/unregister for all tests (David Arcari) [RHEL-20790] - selftests/resctrl: Cleanup properly when an error occurs in CAT test (David Arcari) [RHEL-20790] - selftests/resctrl: Flush stdout file buffer before executing fork() (David Arcari) [RHEL-20790] - selftests/resctrl: Return MBA check result and make it to output message (David Arcari) [RHEL-20790] - selftests/resctrl: Fix set up schemata with 100%% allocation on first run in MBM test (David Arcari) [RHEL-20790] - selftests/resctrl: Use correct exit code when tests fail (David Arcari) [RHEL-20790] - selftests/resctrl: Correct get_llc_perf() param in function comment (David Arcari) [RHEL-20790] - selftests/resctrl: Use remount_resctrlfs() consistently with boolean (David Arcari) [RHEL-20790] - selftests/resctrl: Change name from CBM_MASK_PATH to INFO_PATH (David Arcari) [RHEL-20790] - selftests/resctrl: Change initialize_llc_perf() return type to void (David Arcari) [RHEL-20790] - selftests/resctrl: Replace obsolete memalign() with posix_memalign() (David Arcari) [RHEL-20790] - selftests/resctrl: Check for return value after write_schemata() (David Arcari) [RHEL-20790] - selftests/resctrl: Allow ->setup() to return errors (David Arcari) [RHEL-20790] - selftests/resctrl: Move ->setup() call outside of test specific branches (David Arcari) [RHEL-20790] - selftests/resctrl: Return NULL if malloc_and_init_memory() did not alloc mem (David Arcari) [RHEL-20790] - selftests/resctrl: Fix null pointer dereference on open failed (David Arcari) [RHEL-20790] - selftests/resctrl: Add missing SPDX license to Makefile (David Arcari) [RHEL-20790] - selftests/resctrl: Update README about using kselftest framework to build/run resctrl_tests (David Arcari) [RHEL-20790] - selftests/resctrl: Make resctrl_tests run using kselftest framework (David Arcari) [RHEL-20790] - selftests/resctrl: Fix resctrl_tests' return code to work with selftest framework (David Arcari) [RHEL-20790] - selftests/resctrl: Change the default limited time to 120 seconds (David Arcari) [RHEL-20790] - selftests/resctrl: Kill child process before parent process terminates if SIGTERM is received (David Arcari) [RHEL-20790] - selftests/resctrl: Print a message if the result of MBM&CMT tests is failed on Intel CPU (David Arcari) [RHEL-20790] - selftests/resctrl: Extend CPU vendor detection (David Arcari) [RHEL-20790] - x86/resctrl: Enable shared RMID mode on Sub-NUMA Cluster (SNC) systems (David Arcari) [RHEL-20790] - x86/resctrl: Make __mon_event_count() handle sum domains (David Arcari) [RHEL-20790] - x86/resctrl: Fill out rmid_read structure for smp_call*() to read a counter (David Arcari) [RHEL-20790] - x86/resctrl: Handle removing directories in Sub-NUMA Cluster (SNC) mode (David Arcari) [RHEL-20790] - x86/resctrl: Create Sub-NUMA Cluster (SNC) monitor files (David Arcari) [RHEL-20790] - x86/resctrl: Allocate a new field in union mon_data_bits (David Arcari) [RHEL-20790] - x86/resctrl: Refactor mkdir_mondata_subdir() with a helper function (David Arcari) [RHEL-20790] - x86/resctrl: Initialize on-stack struct rmid_read instances (David Arcari) [RHEL-20790] - x86/resctrl: Add a new field to struct rmid_read for summation of domains (David Arcari) [RHEL-20790] - x86/resctrl: Prepare for new Sub-NUMA Cluster (SNC) monitor files (David Arcari) [RHEL-20790] - x86/resctrl: Block use of mba_MBps mount option on Sub-NUMA Cluster (SNC) systems (David Arcari) [RHEL-20790] - x86/resctrl: Introduce snc_nodes_per_l3_cache (David Arcari) [RHEL-20790] - x86/resctrl: Add node-scope to the options for feature scope (David Arcari) [RHEL-20790] - x86/resctrl: Split the rdt_domain and rdt_hw_domain structures (David Arcari) [RHEL-20790] - x86/resctrl: Prepare for different scope for control/monitor operations (David Arcari) [RHEL-20790] - x86/resctrl: Prepare to split rdt_domain structure (David Arcari) [RHEL-20790] - x86/resctrl: Prepare for new domain scope (David Arcari) [RHEL-20790] - x86/resctrl: Don't try to free nonexistent RMIDs (David Arcari) [RHEL-20790] - x86/resctrl: Replace open coded cacheinfo searches (David Arcari) [RHEL-20790] - cacheinfo: Add function to get cacheinfo for a given CPU and cache level (David Arcari) [RHEL-20790] - cpu: Move CPU hotplug function declarations into their own header (David Arcari) [RHEL-20790] - x86/resctrl: Switch to new Intel CPU model defines (David Arcari) [RHEL-20790] - x86/resctrl: Add tracepoint for llc_occupancy tracking (David Arcari) [RHEL-20790] - x86/resctrl: Rename pseudo_lock_event.h to trace.h (David Arcari) [RHEL-20790] - x86/resctrl: Simplify call convention for MSR update functions (David Arcari) [RHEL-20790] - x86/resctrl: Pass domain to target CPU (David Arcari) [RHEL-20790] - x86/resctrl: Fix uninitialized memory read when last CPU of domain goes offline (David Arcari) [RHEL-20790] - x86/resctrl: Remove lockdep annotation that triggers false positive (David Arcari) [RHEL-20790] - x86/resctrl: Separate arch and fs resctrl locks (David Arcari) [RHEL-20790] - x86/resctrl: Move domain helper migration into resctrl_offline_cpu() (David Arcari) [RHEL-20790] - x86/resctrl: Add CPU offline callback for resctrl work (David Arcari) [RHEL-20790] - x86/resctrl: Allow overflow/limbo handlers to be scheduled on any-but CPU (David Arcari) [RHEL-20790] - x86/resctrl: Add CPU online callback for resctrl work (David Arcari) [RHEL-20790] - x86/resctrl: Add helpers for system wide mon/alloc capable (David Arcari) [RHEL-20790] - x86/resctrl: Make rdt_enable_key the arch's decision to switch (David Arcari) [RHEL-20790] - x86/resctrl: Move alloc/mon static keys into helpers (David Arcari) [RHEL-20790] - x86/resctrl: Make resctrl_mounted checks explicit (David Arcari) [RHEL-20790] - x86/resctrl: Allow arch to allocate memory needed in resctrl_arch_rmid_read() (David Arcari) [RHEL-20790] - x86/resctrl: Allow resctrl_arch_rmid_read() to sleep (David Arcari) [RHEL-20790] - x86/resctrl: Queue mon_event_read() instead of sending an IPI (David Arcari) [RHEL-20790] - x86/resctrl: Add cpumask_any_housekeeping() for limbo/overflow (David Arcari) [RHEL-20790] - x86/resctrl: Move CLOSID/RMID matching and setting to use helpers (David Arcari) [RHEL-20790] - x86/resctrl: Allocate the cleanest CLOSID by searching closid_num_dirty_rmid (David Arcari) [RHEL-20790] - x86/resctrl: Use __set_bit()/__clear_bit() instead of open coding (David Arcari) [RHEL-20790] - x86/resctrl: Track the number of dirty RMID a CLOSID has (David Arcari) [RHEL-20790] - x86/resctrl: Allow RMID allocation to be scoped by CLOSID (David Arcari) [RHEL-20790] - x86/resctrl: Access per-rmid structures by index (David Arcari) [RHEL-20790] - x86/resctrl: Track the closid with the rmid (David Arcari) [RHEL-20790] - x86/resctrl: Move RMID allocation out of mkdir_rdt_prepare() (David Arcari) [RHEL-20790] - x86/resctrl: Create helper for RMID allocation and mondata dir creation (David Arcari) [RHEL-20790] - x86/resctrl: Free rmid_ptrs from resctrl_exit() (David Arcari) [RHEL-20790] - x86/resctrl: Implement new mba_MBps throttling heuristic (David Arcari) [RHEL-20790] - x86/resctrl: Fix unused variable warning in cache_alloc_hsw_probe() (David Arcari) [RHEL-20790] - md/raid5: avoid BUG_ON() while continue reshape after reassembling (CKI Backport Bot) [RHEL-56203] {CVE-2024-43914} - tcp: move inet_twsk_schedule helper out of header (Florian Westphal) [RHEL-9279] - net: tcp: un-pin the tw_timer (Florian Westphal) [RHEL-9279] - net: tcp/dccp: prepare for tw_timer un-pinning (Florian Westphal) [RHEL-9279] - tcp: annotate data-races around tw->tw_ts_recent and tw->tw_ts_recent_stamp (Florian Westphal) [RHEL-9279] - md: fix deadlock between mddev_suspend and flush bio (Nigel Croxon) [RHEL-54757] {CVE-2024-43855} - rhel-only: selftests/bpf: add cpuv4 variant (Artem Savkov) [RHEL-50017] - PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (Maxim Levitsky) [RHEL-54308] - Input: serio - use sizeof(*pointer) instead of sizeof(type) (Maxim Levitsky) [RHEL-54308] - Drivers: hv: Cosmetic changes for hv.c and balloon.c (Maxim Levitsky) [RHEL-54308] - hv_balloon: Enable hot-add for memblock sizes > 128 MiB (Maxim Levitsky) [RHEL-54308] - hv_balloon: Use kernel macros to simplify open coded sequences (Maxim Levitsky) [RHEL-54308] - uio_hv_generic: Remove use of PAGE_SIZE (Maxim Levitsky) [RHEL-54308] - uio_hv_generic: Enable interrupt for low speed VMBus devices (Maxim Levitsky) [RHEL-54308] - uio_hv_generic: Query the ringbuffer size for device (Maxim Levitsky) [RHEL-54308] - Drivers: hv: vmbus: Add utility function for querying ring size (Maxim Levitsky) [RHEL-54308] - Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted (Maxim Levitsky) [RHEL-54308] - uio_hv_generic: Don't free decrypted memory (Maxim Levitsky) [RHEL-54308] - hv_netvsc: Don't free decrypted memory (Maxim Levitsky) [RHEL-54308] - Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (Maxim Levitsky) [RHEL-54308] - Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (Maxim Levitsky) [RHEL-54308] - hv: vmbus: Convert sprintf() family to sysfs_emit() family (Maxim Levitsky) [RHEL-54308] - mshyperv: Introduce hv_numa_node_to_pxm_info() (Maxim Levitsky) [RHEL-54308] - x86/hyperv: Cosmetic changes for hv_apic.c (Maxim Levitsky) [RHEL-54308] - x86/hyperv: Use Hyper-V entropy to seed guest random number generator (Maxim Levitsky) [RHEL-54308] - x86/hyperv: Cosmetic changes for hv_spinlock.c (Maxim Levitsky) [RHEL-54308] - hyperv-tlfs: Rename some HV_REGISTER_* defines for consistency (Maxim Levitsky) [RHEL-54308] - hv: vmbus: Convert to platform remove callback returning void (Maxim Levitsky) [RHEL-54308] - mshyperv: Introduce hv_get_hypervisor_version function (Maxim Levitsky) [RHEL-54308] - PCI: hv: Fix ring buffer size calculation (Maxim Levitsky) [RHEL-54308] - x86/hyperv: Use per cpu initial stack for vtl context (Maxim Levitsky) [RHEL-54308] - Drivers: hv: vmbus: make hv_bus const (Maxim Levitsky) [RHEL-54308] - x86/hyperv: Allow 15-bit APIC IDs for VTL platforms (Maxim Levitsky) [RHEL-54308] - x86/hyperv: Make encrypted/decrypted changes safe for load_unaligned_zeropad() (Maxim Levitsky) [RHEL-54308] - x86/mm: Regularize set_memory_p() parameters and make non-static (Maxim Levitsky) [RHEL-54308] - x86/hyperv: Use slow_virt_to_phys() in page transition hypervisor callback (Maxim Levitsky) [RHEL-54308] - Drivers: hv: vmbus: Update indentation in create_gpadl_header() (Maxim Levitsky) [RHEL-54308] - Drivers: hv: vmbus: Remove duplication and cleanup code in create_gpadl_header() (Maxim Levitsky) [RHEL-54308] - Drivers: hv: vmbus: Calculate ring buffer size for more efficient use of memory (Maxim Levitsky) [RHEL-54308] - hv_utils: Allow implicit ICTIMESYNCFLAG_SYNC (Maxim Levitsky) [RHEL-54308] - scsi: storvsc: Fix ring buffer size calculation (Maxim Levitsky) [RHEL-54308] - virtio/vsock: send credit update during setting SO_RCVLOWAT (Maxim Levitsky) [RHEL-54308] - redhat: kernel.spec: add missing sound/soc/sof/sof-audio.h to kernel-devel package (Jaroslav Kysela) [RHEL-16610] Resolves: RHEL-16610, RHEL-20790, RHEL-29349, RHEL-39968, RHEL-50017, RHEL-51597, RHEL-54308, RHEL-54757, RHEL-56203, RHEL-57711, RHEL-58544, RHEL-58615, RHEL-58617, RHEL-58619, RHEL-9279 Signed-off-by: Rado Vrbovsky <rvrbovsk@redhat.com>
2024-09-23 08:27:41 +00:00
dracutmodules+=" crypt crypt-loop tpm2-tss systemd-pcrphase "
kernel-5.14.0-276.el9 * Fri Feb 17 2023 Herton R. Krzesinski <herton@redhat.com> [5.14.0-276.el9] - blk-cgroup: don't update io stat for root cgroup (Ming Lei) [2167245] - sctp: do not check hb_timer.expires when resetting hb_timer (Xin Long) [2167094] - netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2159642] - redhat: Include Azure CVM specific udev rules into UKI's initramfs (Vitaly Kuznetsov) [2165913] - r8169: fix dmar pte write access is not set error (Jose Ignacio Tornos Martinez) [2159618] - r8169: move rtl_wol_enable_rx() and rtl_prepare_power_down() (Jose Ignacio Tornos Martinez) [2159618] - r8169: enable GRO software interrupt coalescing per default (Jose Ignacio Tornos Martinez) [2159618] - r8169: use tp_to_dev instead of open code (Jose Ignacio Tornos Martinez) [2159618] - drivers: net: convert to boolean for the mac_managed_pm flag (Jose Ignacio Tornos Martinez) [2159618] - r8169: add rtl_disable_rxdvgate() (Jose Ignacio Tornos Martinez) [2159618] - r8169: remove rtl_wol_shutdown_quirk() (Jose Ignacio Tornos Martinez) [2159618] - r8169: merge support for chip versions 10, 13, 16 (Jose Ignacio Tornos Martinez) [2159618] - r8169: remove not needed net_ratelimit() check (Jose Ignacio Tornos Martinez) [2159618] - r8169: remove useless PCI region size check (Jose Ignacio Tornos Martinez) [2159618] - r8169: remove comment about apparently non-existing chip versions (Jose Ignacio Tornos Martinez) [2159618] - r8169: merge handling of chip versions 12 and 17 (RTL8168B) (Jose Ignacio Tornos Martinez) [2159618] - net: ethernet: move from strlcpy with unused retval to strscpy (Jose Ignacio Tornos Martinez) [2159618] - r8169: fix accessing unset transport header (Jose Ignacio Tornos Martinez) [2159618] - net: phy: realtek: add support for RTL8365MB-VC internal PHYs (Jose Ignacio Tornos Martinez) [2159618] - cifs: refcount only the selected iface during interface update (Ronnie Sahlberg) [2151418] - cifs: drop the lease for cached directories on rmdir or rename (Ronnie Sahlberg) [2151418] - cifs: find and use the dentry for cached non-root directories also (Ronnie Sahlberg) [2151418] - cifs: enable caching of directories for which a lease is held (Ronnie Sahlberg) [2151418] - cifs: fix skipping to incorrect offset in emit_cached_dirents (Ronnie Sahlberg) [2151418] - cifs: store a pointer to a fid in the cfid structure instead of the struct (Ronnie Sahlberg) [2151418] - cifs: improve handlecaching (Ronnie Sahlberg) [2151418] - cifs: Make tcon contain a wrapper structure cached_fids instead of cached_fid (Ronnie Sahlberg) [2151418] - cifs: Add helper function to check smb1+ server (Ronnie Sahlberg) [2151418] - cifs: Use help macro to get the mid header size (Ronnie Sahlberg) [2151418] - cifs: Use help macro to get the header preamble size (Ronnie Sahlberg) [2151418] - cifs: Do not access tcon->cfids->cfid directly from is_path_accessible (Ronnie Sahlberg) [2151418] - cifs: Add constructor/destructors for tcon->cfid (Ronnie Sahlberg) [2151418] - cifs: Do not use tcon->cfid directly, use the cfid we get from open_cached_dir (Ronnie Sahlberg) [2151418] - cifs: Move cached-dir functions into a separate file (Ronnie Sahlberg) [2151418] - cifs: when insecure legacy is disabled shrink amount of SMB1 code (Ronnie Sahlberg) [2151418] - cifs: remove unnecessary locking of chan_lock while freeing session (Ronnie Sahlberg) [2151418] - cifs: avoid use of global locks for high contention data (Ronnie Sahlberg) [2151418] - cifs: add missing spinlock around tcon refcount (Ronnie Sahlberg) [2151418] - cifs: avoid deadlocks while updating iface (Ronnie Sahlberg) [2151418] - cifs: Use after free in debug code (Ronnie Sahlberg) [2151418] - cifs: during reconnect, update interface if necessary (Ronnie Sahlberg) [2151418] - cifs: fix race condition with delayed threads (Ronnie Sahlberg) [2151418] - cifs: change iface_list from array to sorted linked list (Ronnie Sahlberg) [2151418] - cifs: update cifs_ses::ip_addr after failover (Ronnie Sahlberg) [2151418] - cifs: avoid parallel session setups on same channel (Ronnie Sahlberg) [2151418] - cifs: fix potential deadlock in direct reclaim (Ronnie Sahlberg) [2151418] - smb3: remove unneeded null check in cifs_readdir (Ronnie Sahlberg) [2151418] - cifs: cache the dirents for entries in a cached directory (Ronnie Sahlberg) [2151418] Resolves: rhbz#2167245, rhbz#2167094, rhbz#2159642, rhbz#2165913, rhbz#2159618, rhbz#2151418 Signed-off-by: Herton R. Krzesinski <herton@redhat.com>
2023-02-17 00:33:35 +00:00
# WALinuxagent-cvm with CVM specific udev rules
dracutmodules+=" walinuxagentcvm "
kernel-5.14.0-490.el9 * Fri Aug 02 2024 Scott Weaver <scweaver@redhat.com> [5.14.0-490.el9] - redhat/dracut-virt.conf: add systemd-veritysetup module (Emanuele Giuseppe Esposito) [RHEL-45168] - redhat/uki_addons/virt: add common FIPS addon (Emanuele Giuseppe Esposito) [RHEL-45160] - redhat/kernel.spec: add uki_addons to create UKI kernel cmdline addons (Emanuele Giuseppe Esposito) [RHEL-45159] - gcc-plugins/stackleak: Avoid .head.text section (Bandan Das) [RHEL-39439] - x86/sev: Skip ROM range scans and validation for SEV-SNP guests (Bandan Das) [RHEL-39439] - x86/sev: Move early startup code into .head.text section (Bandan Das) [RHEL-39439] - x86/sme: Move early SME kernel encryption handling into .head.text (Bandan Das) [RHEL-39439] - x86/sev: Do the C-bit verification only on the BSP (Bandan Das) [RHEL-39439] - x86/sev: Fix kernel crash due to late update to read-only ghcb_version (Bandan Das) [RHEL-39439] - xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (CKI Backport Bot) [RHEL-48140] {CVE-2024-40959} - eeprom: at24: fix memory corruption race condition (Mark Salter) [RHEL-37020] {CVE-2024-35848} - eeprom: at24: Probe for DDR3 thermal sensor in the SPD case (Mark Salter) [RHEL-37020] {CVE-2024-35848} - eeprom: at24: Use dev_err_probe for nvmem register failure (Mark Salter) [RHEL-37020] {CVE-2024-35848} - eeprom: at24: Add support for 24c1025 EEPROM (Mark Salter) [RHEL-37020] {CVE-2024-35848} - eeprom: at24: remove struct at24_client (Mark Salter) [RHEL-37020] {CVE-2024-35848} - at24: Support probing while in non-zero ACPI D state (Mark Salter) [RHEL-37020] {CVE-2024-35848} - selftests: forwarding: devlink_lib: Wait for udev events after reloading (Mark Langsdorf) [RHEL-47652] {CVE-2024-39501} - drivers: core: synchronize really_probe() and dev_uevent() (Mark Langsdorf) [RHEL-47652] {CVE-2024-39501} - xhci: Handle TD clearing for multiple streams case (CKI Backport Bot) [RHEL-47892] {CVE-2024-40927} - PCI: pciehp: Retain Power Indicator bits for userspace indicators (Myron Stowe) [RHEL-41181] - sched: act_ct: take care of padding in struct zones_ht_key (Xin Long) [RHEL-50682] - net: bridge: xmit: make sure we have at least eth header len bytes (cki-backport-bot) [RHEL-44297] {CVE-2024-38538} - hugetlb: force allocating surplus hugepages on mempolicy allowed nodes (Aristeu Rozanski) [RHEL-38605] - USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (CKI Backport Bot) [RHEL-47558] {CVE-2024-40904} - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory (CKI Backport Bot) [RHEL-47535] {CVE-2024-40901} - vmxnet3: update to version 9 (Izabela Bakollari) [RHEL-50675] - vmxnet3: add command to allow disabling of offloads (Izabela Bakollari) [RHEL-50675] - vmxnet3: add latency measurement support in vmxnet3 (Izabela Bakollari) [RHEL-50675] - vmxnet3: prepare for version 9 changes (Izabela Bakollari) [RHEL-50675] - vmxnet3: disable rx data ring on dma allocation failure (Izabela Bakollari) [RHEL-50675] - vmxnet3: Fix missing reserved tailroom (Izabela Bakollari) [RHEL-50675] - maple_tree: fix mas_empty_area_rev() null pointer dereference (Aristeu Rozanski) [RHEL-39862] {CVE-2024-36891} - rbd: don't assume rbd_is_lock_owner() for exclusive mappings (Ilya Dryomov) [RHEL-50366] - rbd: don't assume RBD_LOCK_STATE_LOCKED for exclusive mappings (Ilya Dryomov) [RHEL-50366] - rbd: rename RBD_LOCK_STATE_RELEASING and releasing_wait (Ilya Dryomov) [RHEL-50366] - scsi: qedf: Set qed_slowpath_params to zero before use (John Meneghini) [RHEL-25193] - scsi: qedf: Wait for stag work during unload (John Meneghini) [RHEL-25193] - scsi: qedf: Don't process stag work during unload and recovery (John Meneghini) [RHEL-25193] - scsi: qedf: Use FC rport as argument for qedf_initiate_tmf() (John Meneghini) [RHEL-25193] - net: fix __dst_negative_advice() race (Xin Long) [RHEL-41185] {CVE-2024-36971} - net: annotate data-races around sk->sk_dst_pending_confirm (Xin Long) [RHEL-41185] - scsi: qla2xxx: Fix off by one in qla_edif_app_getstats() (Ewan D. Milne) [RHEL-39719] {CVE-2024-36025} - igb: Remove redundant runtime resume for ethtool_ops (Corinna Vinschen) [RHEL-17487] - net: intel: implement modern PM ops declarations (Corinna Vinschen) [RHEL-17487] - igb: simplify pci ops declaration (Corinna Vinschen) [RHEL-17487] - igb: Fix missing time sync events (Corinna Vinschen) [RHEL-17487] - intel: make module parameters readable in sys filesystem (Corinna Vinschen) [RHEL-17487 RHEL-25998] - net: adopt skb_network_offset() and similar helpers (Corinna Vinschen) [RHEL-17487] - igb: extend PTP timestamp adjustments to i211 (Corinna Vinschen) [RHEL-17487] - net: intel: igb: Use linkmode helpers for EEE (Corinna Vinschen) [RHEL-17487] - igb: Fix string truncation warnings in igb_set_fw_version (Corinna Vinschen) [RHEL-17487 RHEL-38454] {CVE-2024-36010} - intel: legacy: field get conversion (Corinna Vinschen) [RHEL-17487] - intel: legacy: field prep conversion (Corinna Vinschen) [RHEL-17487] - intel: add bit macro includes where needed (Corinna Vinschen) [RHEL-17487] - igb: Use FIELD_GET() to extract Link Width (Corinna Vinschen) [RHEL-17487] - netdevsim: fix rtnetlink.sh selftest (CKI Backport Bot) [RHEL-50016] - selinux: avoid dereference of garbage after mount failure (Ondrej Mosnacek) [RHEL-37187] {CVE-2024-35904} - calipso: fix memory leak in netlbl_calipso_add_pass() (Ondrej Mosnacek) [RHEL-37044] {CVE-2023-52698} - powerpc/pseries: Whitelist dtl slub object for copying to userspace (Mamatha Inamdar) [RHEL-51242] {CVE-2024-41065} - tcp: Fix shift-out-of-bounds in dctcp_update_alpha(). (CKI Backport Bot) [RHEL-44414] {CVE-2024-37356} - tty: add the option to have a tty reject a new ldisc (John W. Linville) [RHEL-48254] {CVE-2024-40966} - irqchip/gic-v3-its: Prevent double free on error (Charles Mirabile) [RHEL-37024] {CVE-2024-35847} - usb-storage: alauda: Check whether the media is initialized (CKI Backport Bot) [RHEL-43714] {CVE-2024-38619} - scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool (Ewan D. Milne) [RHEL-38285] {CVE-2023-52811} - gfs2: Fix potential glock use-after-free on unmount (Andreas Gruenbacher) [RHEL-44155] {CVE-2024-38570} - gfs2: simplify gdlm_put_lock with out_free label (Andreas Gruenbacher) [RHEL-44155] {CVE-2024-38570} - gfs2: Remove ill-placed consistency check (Andreas Gruenbacher) [RHEL-44155] {CVE-2024-38570} - openvswitch: Set the skbuff pkt_type for proper pmtud support. (Aaron Conole) [RHEL-37650] - scsi: mpi3mr: Driver version update to 8.8.1.0.50 (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Update MPI Headers to revision 31 (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Debug ability improvements (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Set the WriteSame Divert Capability in the IOCInit MPI Request (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Clear ioctl blocking flag for an unresponsive controller (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Set MPI request flags appropriately (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Block devices are not removed even when VDs are offlined (Ewan D. Milne) [RHEL-30580] - x86/retpoline: Add NOENDBR annotation to the SRSO dummy return thunk (Waiman Long) [RHEL-31230] - x86/retpoline: Do the necessary fixup to the Zen3/4 srso return thunk for !SRSO (Waiman Long) [RHEL-31230] - x86/bugs: Fix the SRSO mitigation on Zen3/4 (Waiman Long) [RHEL-31230] - redhat/configs: Rename x86 CPU mitigations config entries (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_RETHUNK => CONFIG_MITIGATION_RETHUNK (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CPU_SRSO => CONFIG_MITIGATION_SRSO (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CPU_IBRS_ENTRY => CONFIG_MITIGATION_IBRS_ENTRY (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CPU_UNRET_ENTRY => CONFIG_MITIGATION_UNRET_ENTRY (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_SLS => CONFIG_MITIGATION_SLS (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_RETPOLINE => CONFIG_MITIGATION_RETPOLINE (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_PAGE_TABLE_ISOLATION => CONFIG_MITIGATION_PAGE_TABLE_ISOLATION (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CALL_DEPTH_TRACKING => CONFIG_MITIGATION_CALL_DEPTH_TRACKING (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CPU_IBPB_ENTRY => CONFIG_MITIGATION_IBPB_ENTRY (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_GDS_FORCE_MITIGATION => CONFIG_MITIGATION_GDS_FORCE (Waiman Long) [RHEL-31230] - kbuild: use objtool-args-y to clean up objtool arguments (Waiman Long) [RHEL-31230] - kbuild: do not create *.prelink.o for Clang LTO or IBT (Waiman Long) [RHEL-31230] - kbuild: replace $(linked-object) with CONFIG options (Waiman Long) [RHEL-31230] Resolves: RHEL-17487, RHEL-25193, RHEL-25998, RHEL-30580, RHEL-31230, RHEL-37020, RHEL-37024, RHEL-37044, RHEL-37187, RHEL-37650, RHEL-38285, RHEL-38454, RHEL-38605, RHEL-39439, RHEL-39719, RHEL-39862, RHEL-41181, RHEL-41185, RHEL-43714, RHEL-44155, RHEL-44297, RHEL-44414, RHEL-45159, RHEL-45160, RHEL-45168, RHEL-47535, RHEL-47558, RHEL-47652, RHEL-47892, RHEL-48140, RHEL-48254, RHEL-50016, RHEL-50366, RHEL-50675, RHEL-50682, RHEL-51242, RHEL-37025, RHEL-38286, RHEL-39720, RHEL-39863, RHEL-37021, RHEL-44156, RHEL-38455, RHEL-44298, RHEL-43715, RHEL-37045, RHEL-37188, RHEL-41186, RHEL-47536, RHEL-47559, RHEL-47893, RHEL-48141, RHEL-47653, RHEL-48255, RHEL-44415 Signed-off-by: Scott Weaver <scweaver@redhat.com>
2024-08-02 15:47:19 +00:00
# modules: root disk integrity protection
dracutmodules+=" systemd-veritysetup "
kernel-5.14.0-549.el9 * Thu Jan 09 2025 Rado Vrbovsky <rvrbovsk@redhat.com> [5.14.0-549.el9] - usb: typec: fix potential array underflow in ucsi_ccg_sync_control() (Desnes Nunes) [RHEL-72346] {CVE-2024-53203} - workqueue: Fix another htmldocs build warning (Robert Foss) [RHEL-53569] - workqueue: Don't call va_start / va_end twice (Robert Foss) [RHEL-53569] - workqueue: Add interface for user-defined workqueue lockdep map (Robert Foss) [RHEL-53569] - workqueue: Change workqueue lockdep map to pointer (Robert Foss) [RHEL-53569] - workqueue: Split alloc_workqueue into internal function and lockdep init (Robert Foss) [RHEL-53569] - backlight: Add BACKLIGHT_POWER_ constants for power states (Robert Foss) [RHEL-53569] - fault-inject: improve build for CONFIG_FAULT_INJECTION=n (Robert Foss) [RHEL-53569] - string: add mem_is_zero() helper to check if memory area is all zeros (Robert Foss) [RHEL-53569] - kernel: remove platform_has() infrastructure (Robert Foss) [RHEL-53569] - drm/i915/pciids: switch to xe driver style PCI ID macros (Robert Foss) [RHEL-53569] - devcoredump: Add dev_coredumpm_timeout() (Robert Foss) [RHEL-53569] - devcoredump: Add dev_coredump_put() (Robert Foss) [RHEL-53569] - dma-buf/heaps: Correct the types of fd_flags and heap_flags (Robert Foss) [RHEL-53569] - lib/string_choices: Add str_plural() helper (Robert Foss) [RHEL-53569] - cpumask: introduce for_each_cpu_or (Robert Foss) [RHEL-53569] - seq_buf: Make DECLARE_SEQ_BUF() usable (Robert Foss) [RHEL-53569] - seq_buf: Introduce DECLARE_SEQ_BUF and seq_buf_str() (Robert Foss) [RHEL-53569] - PM: runtime: Simplify pm_runtime_get_if_active() usage (Robert Foss) [RHEL-53569] - uki: enable FIPS mode (Vitaly Kuznetsov) [RHEL-37109] - tools/power turbostat: Add initial support for GraniteRapids-D (David Arcari) [RHEL-29355] - intel_idle: add Granite Rapids Xeon D support (David Arcari) [RHEL-20164] - tracing: Free buffers when a used dynamic event is removed (CKI Backport Bot) [RHEL-63666] {CVE-2022-49006} - net/mlx5e: Remove workaround to avoid syndrome for internal port (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SD, Use correct mdev to build channel param (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS: Properly set bwc queue locks lock classes (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS: Fix memory leak in mlx5hws_definer_calc_layout (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Ensure active slave attachment to the bond IB device (Benjamin Poirier) [RHEL-52869] - RDMA/core: Implement RoCE GID port rescan and export delete function (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Call dev_put() after the blocking notifier (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Disable loopback self-test on multi-PF netdev (Benjamin Poirier) [RHEL-52869] - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (Benjamin Poirier) [RHEL-52869 RHEL-69680] {CVE-2024-53120} - net/mlx5e: clear xdp features on non-uplink representors (Benjamin Poirier) [RHEL-52869] - net/mlx5e: kTLS, Fix incorrect page refcounting (Benjamin Poirier) [RHEL-52869] - net/mlx5: fs, lock FTE when checking if active (Benjamin Poirier) [RHEL-52869 RHEL-69658] {CVE-2024-53121} - net/mlx5: Fix msix vectors to respect platform limit (Benjamin Poirier) [RHEL-52869] - net/mlx5: E-switch, unload IB representors when unloading ETH representors (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Don't call cleanup on profile rollback failure (Benjamin Poirier) [RHEL-52869] - net/mlx5: Unregister notifier on eswitch init failure (Benjamin Poirier) [RHEL-52869] - net/mlx5: Fix command bitmask initialization (Benjamin Poirier) [RHEL-52869] - net/mlx5: Check for invalid vector index on EQ creation (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, use lock classes for bwc locks (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, don't destroy more bwc queue locks than allocated (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, fixed double free in error flow of definer layout (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, removed wrong access to a number of rules variable (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Fix overflow of hd_per_wq (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, changed E2BIG error to a negative return code (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, fixed double-free in error flow of creating SQ (Benjamin Poirier) [RHEL-52869] - net/mlx5: Fix wrong reserved field in hca_cap_2 in mlx5_ifc (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (Benjamin Poirier) [RHEL-52869] - net/mlx5: Added cond_resched() to crdump collection (Benjamin Poirier) [RHEL-52869] - net/mlx5: Fix error path in multi-packet WQE transmit (Benjamin Poirier) [RHEL-52869] - net/mlx5: Support throttled commands from async API (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Use IB set_netdev and get_netdev functions (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Initialize phys_port_cnt earlier in RDMA device creation (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Obtain upper net device only when needed (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Check RoCE LAG status before getting netdev (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Consider the query_vuid cap for data_direct (Benjamin Poirier) [RHEL-52869] - net/mlx5: Handle memory scheme ODP capabilities (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Add implicit MR handling to ODP memory scheme (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Add handling for memory scheme page fault events (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Split ODP mkey search logic (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Add new ODP memory scheme eqe format (Benjamin Poirier) [RHEL-52869] - net/mlx5: Expose HW bits for Memory scheme ODP (Benjamin Poirier) [RHEL-52869] - net/mlx5: Expand mkey page size to support 6 bits (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Fix MR cache temp entries cleanup (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Fix counter update on MR cache mkey creation (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Drop redundant work canceling from clean_keys() (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Enable ATS when allocating kernel MRs (Benjamin Poirier) [RHEL-52869] - IB/mlx5: Fix UMR pd cleanup on error flow of driver init (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Remove two unused declarations (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Introduce GET_DATA_DIRECT_SYSFS_PATH ioctl (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Add support for DMABUF MR registrations with Data-direct (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Add the initialization flow to utilize the 'data direct' device (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Introduce the 'data direct' driver (Benjamin Poirier) [RHEL-52869] - net/mlx5: Add IFC related stuff for data direct (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Expose vhca id for all ports in multiport mode (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, check the correct variable in hws_send_ring_alloc_sq() (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Match cleanup order in mlx5e_free_rq in reverse of mlx5e_alloc_rq (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Add no-split ethtool counters for header/data split (Benjamin Poirier) [RHEL-52869] - net/mlx5: Add NOT_READY command return status (Benjamin Poirier) [RHEL-52869] - net/mlx5: Allow users to configure affinity for SFs (Benjamin Poirier) [RHEL-52869] - net/mlx5: Skip HotPlug check on sync reset using hot reset (Benjamin Poirier) [RHEL-52869] - net/mlx5: Add support for sync reset using hot reset (Benjamin Poirier) [RHEL-52869] - net/mlx5: Add device cap for supporting hot reset in sync reset flow (Benjamin Poirier) [RHEL-52869] - net/mlx5: fs, add support for no append at software level (Benjamin Poirier) [RHEL-52869] - net/mlx5: fs, separate action and destination into distinct struct (Benjamin Poirier) [RHEL-52869] - net/mlx5: fs, remove unused member (Benjamin Poirier) [RHEL-52869] - net/mlx5: fs, move hardware fte deletion function reset (Benjamin Poirier) [RHEL-52869] - net/mlx5: fs, make get_root_namespace API function (Benjamin Poirier) [RHEL-52869] - net/mlx5: fs, move steering common function to fs_cmd.h (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, fixed error flow return values of some functions (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, updated API functions comments to kernel doc (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added API and enabled HWS support (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added send engine and context handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added debug dump and internal headers (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added backward-compatible API handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added memory management handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added vport handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added modify header pattern and args handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added FW commands handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added matchers functionality (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added definers handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added rules handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added tables handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: HWS, added actions handling (Benjamin Poirier) [RHEL-52869] - net/mlx5: Added missing definitions in preparation for HW Steering (Benjamin Poirier) [RHEL-52869] - net/mlx5: Added missing mlx5_ifc definition for HW Steering (Benjamin Poirier) [RHEL-52869] - net/mlx5: E-Switch, Remove unused declarations (Benjamin Poirier) [RHEL-52869] - net/mlx5: Use cpumask_local_spread() instead of custom code (Benjamin Poirier) [RHEL-52869] - eth: mlx5: allow disabling queues when RSS contexts exist (Benjamin Poirier) [RHEL-52869] - net/mlx5e: CT: Update connection tracking steering entries (Benjamin Poirier) [RHEL-52869] - net/mlx5e: CT: 'update' rules instead of 'replace' (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use extack in get module eeprom by page callback (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use extack in set coalesce callback (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use extack in get coalesce callback (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use extack in set ringparams callback (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Be consistent with bitmap handling of link modes (Benjamin Poirier) [RHEL-52869] - net/mlx5e: TC, Offload rewrite and mirror to both internal and external dests (Benjamin Poirier) [RHEL-52869] - net/mlx5e: TC, Offload rewrite and mirror on tunnel over ovs internal port (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Enable remove flow for hard packet limit (Benjamin Poirier) [RHEL-52869] - net/mlx5: E-Switch, Increase max int port number for offload (Benjamin Poirier) [RHEL-52869] - net/mlx5: Implement PTM cross timestamping support (Benjamin Poirier) [RHEL-52869] - net/mlx5: Add support for enabling PTM PCI capability (Benjamin Poirier) [RHEL-52869] - net/mlx5: Add support for MTPTM and MTCTR registers (Benjamin Poirier) [RHEL-52869] - net/mlx5: Reclaim max 50K pages at once (Benjamin Poirier) [RHEL-52869] - net/mlx5: Fix bridge mode operations when there are no VFs (Benjamin Poirier) [RHEL-52869] - net/mlx5: Verify support for scheduling element and TSAR type (Benjamin Poirier) [RHEL-52869] - net/mlx5: Add missing masks and QoS bit masks for scheduling elements (Benjamin Poirier) [RHEL-52869] - net/mlx5: Explicitly set scheduling element and TSAR type (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Add missing link mode to ptys2ext_ethtool_map (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Add missing link modes to ptys2ethtool_map (Benjamin Poirier) [RHEL-52869] - net/mlx5: Fix IPsec RoCE MPV trace call (Benjamin Poirier) [RHEL-52869] - net/mlx5e: XPS, Fix oversight of Multi-PF Netdev changes (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Release in progress headers (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Fix page leak (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Fix queue stats access to non-existing channels splat (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Correctly report errors for ethtool rx flows (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Take state lock during tx timeout reporter (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Increase timeout to improve latency (Benjamin Poirier) [RHEL-52869] - net/mlx5: SD, Do not query MPIR register if no sd_group (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Require mlx5 tc classifier action support for IPsec prio capability (Benjamin Poirier) [RHEL-52869] - net/mlx5: Lag, don't use the hardcoded value of the first port (Benjamin Poirier) [RHEL-52869] - net/mlx5: DR, Fix 'stack guard page was hit' error in dr_rule (Benjamin Poirier) [RHEL-52869] - net/mlx5: Fix error handling in irq_pool_request_irq (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Support per-plane port IB counters by querying PPCNT register (Benjamin Poirier) [RHEL-52869 RHEL-52874] - net/mlx5: mlx5_ifc update for accessing ppcnt register of plane ports (Benjamin Poirier) [RHEL-52869 RHEL-52874] - RDMA/mlx5: Add plane index support when querying PTYS registers (Benjamin Poirier) [RHEL-52869 RHEL-52874] - RDMA/mlx5: Support plane device and driver APIs to add and delete it (Benjamin Poirier) [RHEL-52869 RHEL-52874] - RDMA/mlx5: Add support to multi-plane device and port (Benjamin Poirier) [RHEL-52869 RHEL-52874] - net/mlx5: mlx5_ifc update for multi-plane support (Benjamin Poirier) [RHEL-52869 RHEL-52874] - RDMA/mlx5: Send UAR page index as ioctl attribute (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Set mkeys for dmabuf at PAGE_SIZE (Benjamin Poirier) [RHEL-52869] - net/mlx5: Expose SFs IRQs (Benjamin Poirier) [RHEL-52869 RHEL-52876] - RDMA/mlx5: Add Qcounters req_transport_retries_exceeded/req_rnr_retries_exceeded (Benjamin Poirier) [RHEL-52869] - IB/mlx5: Allocate resources just before first QP/SRQ is created (Benjamin Poirier) [RHEL-52869] - IB/mlx5: Create UMR QP just before first reg_mr occurs (Benjamin Poirier) [RHEL-52869] - net/mlx5: Reimplement write combining test (Benjamin Poirier) [RHEL-52869] - eth: mlx5: expose NETIF_F_NTUPLE when ARFS is compiled out (Benjamin Poirier) [RHEL-52869] - net/mlx5: Use set number of max EQs (Benjamin Poirier) [RHEL-52869] - net/mlx5: Set default max eqs for SFs (Benjamin Poirier) [RHEL-52869] - net/mlx5: Set sf_eq_usage for SF max EQs (Benjamin Poirier) [RHEL-52869] - net/mlx5: IFC updates for SF max IO EQs (Benjamin Poirier) [RHEL-52869] - net/mlx5e: CT: Initialize err to 0 to avoid warning (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Add missing aggregate counter (Benjamin Poirier) [RHEL-52869] - net/mlx5: DR, Remove definer functions from SW Steering API (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Approximate IPsec per-SA payload data bytes count (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Present succeeded IPsec SA bytes and packet (Benjamin Poirier) [RHEL-52869] - net/mlx5: Use max_num_eqs_24b when setting max_io_eqs (Benjamin Poirier) [RHEL-52869] - net/mlx5: Use max_num_eqs_24b capability if set (Benjamin Poirier) [RHEL-52869] - net/mlx5: IFC updates for changing max EQs (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Add per queue netdev-genl stats (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Add txq to sq stats mapping (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Support SWP-mode offload L4 csum calculation (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use tcp_v[46]_check checksum helpers (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Fix outdated comment in features check (Benjamin Poirier) [RHEL-52869] - net/mlx5: Replace strcpy with strscpy (Benjamin Poirier) [RHEL-52869] - net/mlx5: CT: Separate CT and CT-NAT tuple entries (Benjamin Poirier) [RHEL-52869] - net/mlx5: Correct TASR typo into TSAR (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Coalesce skb fragments to page size (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Re-enable HW-GRO (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Use KSMs instead of KLMs (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Add header-only ethtool counters for header data split (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Drop rx_gro_match_packets counter (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Make GRO counters more precise (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Skipping on duplicate flush of the same SHAMPO SKB (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Specialize mlx5e_fill_skb_data() (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Simplify header page release in teardown (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Disable gso_size for non GRO packets (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Fix FCS config when HW GRO on (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Fix incorrect page release (Benjamin Poirier) [RHEL-52869] - net/mlx5e: SHAMPO, Use net_prefetch API (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Do not use ptp structure for tx ts stats when not initialized (Benjamin Poirier) [RHEL-52869] - net/mlx5: Do not query MPIR on embedded CPU function (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Remove NULL check before dev_{put, hold} (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Track DCT, DCI and REG_UMR QPs as diver_detail resources. (Benjamin Poirier) [RHEL-52869] - net/mlx5: Remove unused msix related exported APIs (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Modifying channels number and updating TX queues (Benjamin Poirier) [RHEL-52869] - net/mlx5: Enable 8 ports LAG (Benjamin Poirier) [RHEL-52869] - net/mlx5e: flower: check for unsupported control flags (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Implement ethtool callbacks for supporting per-queue coalescing (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Support updating coalescing configuration without resetting channels (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Dynamically allocate DIM structure for SQs/RQs (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use DIM constants for CQ period mode parameter (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Move DIM function declarations to en/dim.h (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Acquire RTNL lock before RQs/SQs activation/deactivation (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use channel mdev reference instead of global mdev instance for coalescing (Benjamin Poirier) [RHEL-52869] - net/mlx5: SD, Handle possible devcom ERR_PTR (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Expose the VF/SF RX drop counter on the representor (Benjamin Poirier) [RHEL-52869] - net/mlx5: fix possible stack overflows (Benjamin Poirier) [RHEL-52869] - net/mlx5: Disallow SRIOV switchdev mode when in multi-PF netdev (Benjamin Poirier) [RHEL-52869] - docs: networking: fix indentation errors in multi-pf-netdev (Benjamin Poirier) [RHEL-52869] - mlx5/core: Support max_io_eqs for a function (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Implement ethtool hardware timestamping statistics (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Introduce timestamps statistic counter for Tx DMA layer (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Introduce lost_cqe statistic counter for PTP Tx port timestamping CQ (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Un-expose functions in en.h (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Support FEC settings for 100G/lane modes (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Extract checking of FEC support for a link mode (Benjamin Poirier) [RHEL-52869] - net/mlx5: Don't call give_pages() if request 0 page (Benjamin Poirier) [RHEL-52869] - net/mlx5: Skip pages EQ creation for non-page supplier function (Benjamin Poirier) [RHEL-52869] - net/mlx5: Support matching on l4_type for ttc_table (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Add support for 800Gbps link modes (Benjamin Poirier) [RHEL-52869] - net/mlx5: Convert uintX_t to uX (Benjamin Poirier) [RHEL-52869] - net/mlx5e: XDP, Fix an inconsistent comment (Benjamin Poirier) [RHEL-52869] - net/mlx5e: debugfs, Add reset option for command interface stats (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Make stats group fill_stats callbacks consistent with the API (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use ethtool_sprintf/puts() to fill stats strings (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use ethtool_sprintf/puts() to fill selftests strings (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Use ethtool_sprintf/puts() to fill priv flags strings (Benjamin Poirier) [RHEL-52869] - RDMA/mlx5: Delete unused mlx5_ib_copy_pas prototype (Benjamin Poirier) [RHEL-52869] - Documentation: networking: Add description for multi-pf netdev (Benjamin Poirier) [RHEL-52869] - net/mlx5: Enable SD feature (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Block TLS device offload on combined SD netdev (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Support per-mdev queue counter (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Support cross-vhca RSS (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Let channels be SD-aware (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Create EN core HW resources for all secondary devices (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Create single netdev per SD group (Benjamin Poirier) [RHEL-52869] - net/mlx5: SD, Add debugfs (Benjamin Poirier) [RHEL-52869] - net/mlx5: SD, Add informative prints in kernel log (Benjamin Poirier) [RHEL-52869] - net/mlx5: SD, Implement steering for primary and secondaries (Benjamin Poirier) [RHEL-52869] - net/mlx5: SD, Implement devcom communication and primary election (Benjamin Poirier) [RHEL-52869] - net/mlx5: SD, Implement basic query and instantiation (Benjamin Poirier) [RHEL-52869] - net/mlx5: SD, Introduce SD lib (Benjamin Poirier) [RHEL-52869] - net/mlx5: Add MPIR bit in mcam_access_reg (Benjamin Poirier) [RHEL-52869] - net/mlx5e: link NAPI instances to queues and IRQs (Benjamin Poirier) [RHEL-52869] - net/mlx5e: XDP, Exclude headroom and tailroom from memory calculations (Benjamin Poirier) [RHEL-52869] - net/mlx5e: XSK, Exclude tailroom from non-linear SKBs memory calculations (Benjamin Poirier) [RHEL-52869] - net/mlx5: DR, Change SWS usage to debug fs seq_file interface (Benjamin Poirier) [RHEL-52869] - net/mlx5: Change missing SyncE capability print to debug (Benjamin Poirier) [RHEL-52869] - net/mlx5: Remove initial segmentation duplicate definitions (Benjamin Poirier) [RHEL-52869] - net/mlx5: Return specific error code for timeout on wait_fw_init (Benjamin Poirier) [RHEL-52869] - net/mlx5: remove fw reporter dump option for non PF (Benjamin Poirier) [RHEL-52869] - net/mlx5: remove fw_fatal reporter dump option for non PF (Benjamin Poirier) [RHEL-52869] - net/mlx5: Rename mlx5_sf_dev_remove (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Delete obsolete IPsec code (Benjamin Poirier) [RHEL-52869] - net/mlx5e: Connect mlx5 IPsec statistics with XFRM core (Benjamin Poirier) [RHEL-52869] - net/mlx5: DPLL, Implement lock status error value (Benjamin Poirier) [RHEL-52869] - Documentation: mlx5.rst: Add note for eswitch MD (Benjamin Poirier) [RHEL-52869] - x86: KVM: Advertise CPUIDs for new instructions in Clearwater Forest (Maxim Levitsky) [RHEL-64444] - KVM: x86/mmu: Avoid reacquiring RCU if TDP MMU fails to allocate an SP (Maxim Levitsky) [RHEL-64444] - KVM: x86/mmu: Unnest TDP MMU helpers that allocate SPs for eager splitting (Maxim Levitsky) [RHEL-64444] - KVM: x86/mmu: Hard code GFP flags for TDP MMU eager split allocations (Maxim Levitsky) [RHEL-64444] - KVM: x86/mmu: Always drop mmu_lock to allocate TDP MMU SPs for eager splitting (Maxim Levitsky) [RHEL-64444] - KVM: selftests: Add test for configure of x86 APIC bus frequency (Maxim Levitsky) [RHEL-64444] - KVM: selftests: Add guest udelay() utility for x86 (Maxim Levitsky) [RHEL-64444] - KVM: x86: Add a capability to configure bus frequency for APIC timer (Maxim Levitsky) [RHEL-64444] - KVM: x86: Make nanoseconds per APIC bus cycle a VM variable (Maxim Levitsky) [RHEL-64444] - KVM: x86: hyper-v: Calculate APIC bus frequency for Hyper-V (Maxim Levitsky) [RHEL-64444] - tools/include: Sync uapi/linux/kvm.h with the kernel sources (Maxim Levitsky) [RHEL-64444] - KVM: x86/mmu: Check that root is valid/loaded when pre-faulting SPTEs (Maxim Levitsky) [RHEL-64444] - KVM: guest_memfd: abstract how prepared folios are recorded (Maxim Levitsky) [RHEL-64444] - KVM: x86: disallow pre-fault for SNP VMs before initialization (Maxim Levitsky) [RHEL-64444] - KVM: selftests: x86: Add test for KVM_PRE_FAULT_MEMORY (Maxim Levitsky) [RHEL-64444] - KVM: x86: Implement kvm_arch_vcpu_pre_fault_memory() (Maxim Levitsky) [RHEL-64444] - KVM: x86/mmu: Make kvm_mmu_do_page_fault() return mapped level (Maxim Levitsky) [RHEL-64444] - KVM: x86/mmu: Account pf_{fixed,emulate,spurious} in callers of "do page fault" (Maxim Levitsky) [RHEL-64444] - KVM: x86/mmu: Bump pf_taken stat only in the "real" page fault handler (Maxim Levitsky) [RHEL-64444] - KVM: Add KVM_PRE_FAULT_MEMORY vcpu ioctl to pre-populate guest memory (Maxim Levitsky) [RHEL-64444] - KVM: Document KVM_PRE_FAULT_MEMORY ioctl (Maxim Levitsky) [RHEL-64444] - KVM: x86: Don't re-setup empty IRQ routing when KVM_CAP_SPLIT_IRQCHIP (Maxim Levitsky) [RHEL-64444] - KVM: Setup empty IRQ routing when creating a VM (Maxim Levitsky) [RHEL-64444] - KVM: x86: Bury guest_cpuid_is_amd_or_hygon() in cpuid.c (Maxim Levitsky) [RHEL-64444] - KVM: x86: Open code vendor_intel() in string_registers_quirk() (Maxim Levitsky) [RHEL-64444] - KVM: x86: Allow SYSENTER in Compatibility Mode for all Intel compat vCPUs (Maxim Levitsky) [RHEL-64444] - KVM: SVM: Emulate SYSENTER RIP/RSP behavior for all Intel compat vCPUs (Maxim Levitsky) [RHEL-64444] - KVM: x86: Use "is Intel compatible" helper to emulate SYSCALL in !64-bit (Maxim Levitsky) [RHEL-64444] - KVM: x86: Inhibit code #DBs in MOV-SS shadow for all Intel compat vCPUs (Maxim Levitsky) [RHEL-64444] - KVM: x86: Apply Intel's TSC_AUX reserved-bit behavior to Intel compat vCPUs (Maxim Levitsky) [RHEL-64444] - KVM: x86/pmu: Squash period for checkpointed events based on host HLE/RTM (Maxim Levitsky) [RHEL-64444] - KVM: SEV: Update KVM_AMD_SEV Kconfig entry and mention SEV-SNP (Maxim Levitsky) [RHEL-64444] - KVM: x86/mmu: Bug the VM if KVM tries to split a !hugepage SPTE (Maxim Levitsky) [RHEL-64444] - KVM: selftests: Require KVM_CAP_USER_MEMORY2 for tests that create memslots (Maxim Levitsky) [RHEL-64444] - KVM: selftests: Re-enable hyperv_evmcs/hyperv_svm_test on bare metal (Maxim Levitsky) [RHEL-64444] - KVM: selftests: Move Hyper-V specific functions out of processor.c (Maxim Levitsky) [RHEL-64444] - KVM: X86: Remove unnecessary GFP_KERNEL_ACCOUNT for temporary variables (Maxim Levitsky) [RHEL-64444] - KVM: Fix a goof where kvm_create_vm() returns 0 instead of -ENOMEM (Maxim Levitsky) [RHEL-64444] - KVM: VMX: Remove unused declaration of vmx_request_immediate_exit() (Maxim Levitsky) [RHEL-64444] - KVM: selftests: Increase robustness of LLC cache misses in PMU counters test (Maxim Levitsky) [RHEL-64444] - KVM: selftests: Rework macros in PMU counters test to prep for multi-insn loop (Maxim Levitsky) [RHEL-64444] - KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (Maxim Levitsky) [RHEL-64444] - KVM: x86: Forcibly leave nested if RSM to L2 hits shutdown (Maxim Levitsky) [RHEL-64444] - KVM: SVM: Don't advertise Bus Lock Detect to guest if SVM support is missing (Maxim Levitsky) [RHEL-64444] - KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS (Maxim Levitsky) [RHEL-64444] - KVM: x86: Suppress MMIO that is triggered during task switch emulation (Maxim Levitsky) [RHEL-64444] - KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory (Maxim Levitsky) [RHEL-64444] - KVM: VMX: reset the segment cache after segment init in vmx_vcpu_reset() (Maxim Levitsky) [RHEL-64444] - KVM: x86: Drop unused check_apicv_inhibit_reasons() callback definition (Maxim Levitsky) [RHEL-64444] - KVM: x86: Make x2APIC ID 100%% readonly (Maxim Levitsky) [RHEL-64444] - x86/kvm: Override default caching mode for SEV-SNP and TDX (Maxim Levitsky) [RHEL-64444] - KVM: VMX: Set PFERR_GUEST_{FINAL,PAGE}_MASK if and only if the GVA is valid (Maxim Levitsky) [RHEL-64444] - KVM: Harden guest memory APIs against out-of-bounds accesses (Maxim Levitsky) [RHEL-64444] - KVM: Write the per-page "segment" when clearing (part of) a guest page (Maxim Levitsky) [RHEL-64444] - KVM: SVM: Disallow guest from changing userspace's MSR_AMD64_DE_CFG value (Maxim Levitsky) [RHEL-64444] - KVM: nVMX: Honor userspace MSR filter lists for nested VM-Enter/VM-Exit (Maxim Levitsky) [RHEL-64444] - KVM: x86: Advertise AVX10.1 CPUID to userspace (Maxim Levitsky) [RHEL-64444] - KVM: x86: WARN if a vCPU gets a valid wakeup that KVM can't yet inject (Maxim Levitsky) [RHEL-64444] - KVM: nVMX: Fold requested virtual interrupt check into has_nested_events() (Maxim Levitsky) [RHEL-64444] - KVM: nVMX: Check for pending posted interrupts when looking for nested events (Maxim Levitsky) [RHEL-64444] - KVM: VMX: Split out the non-virtualization part of vmx_interrupt_blocked() (Maxim Levitsky) [RHEL-64444] - KVM: nVMX: Request immediate exit iff pending nested event needs injection (Maxim Levitsky) [RHEL-64444] - KVM: nVMX: Add a helper to get highest pending from Posted Interrupt vector (Maxim Levitsky) [RHEL-64444] - KVM: VMX: Move posted interrupt descriptor out of VMX code (Maxim Levitsky) [RHEL-64444] - KVM: VMX: Switch __vmx_exit() and kvm_x86_vendor_exit() in vmx_exit() (Maxim Levitsky) [RHEL-64444] - KVM: VMX: Remove unnecessary INVEPT[GLOBAL] from hardware enable path (Maxim Levitsky) [RHEL-64444] - KVM: nVMX: Update VMCS12_REVISION comment to state it should never change (Maxim Levitsky) [RHEL-64444] - KVM: VMX: Move out vmx_x86_ops to 'main.c' to dispatch VMX and TDX (Maxim Levitsky) [RHEL-64444] - netfilter: ipset: Fix for recursive locking warning (Phil Sutter) [RHEL-35897] - net: tcp: Add noinline_for_tracing annotation for tcp_drop_reason() (Antoine Tenart) [RHEL-68063] - compiler_types: Add noinline_for_tracing annotation (Antoine Tenart) [RHEL-68063] - net: vxlan: replace VXLAN_INVALID_HDR with VNI_NOT_FOUND (Antoine Tenart) [RHEL-68063] - net: vxlan: use kfree_skb_reason() in encap_bypass_if_local() (Antoine Tenart) [RHEL-68063] - net: vxlan: use kfree_skb_reason() in vxlan_encap_bypass() (Antoine Tenart) [RHEL-68063] - net: vxlan: use kfree_skb_reason() in vxlan_mdb_xmit() (Antoine Tenart) [RHEL-68063] - net: vxlan: add drop reasons support to vxlan_xmit_one() (Antoine Tenart) [RHEL-68063] - net: vxlan: use kfree_skb_reason() in vxlan_xmit() (Antoine Tenart) [RHEL-68063] - net: vxlan: make vxlan_set_mac() return drop reasons (Antoine Tenart) [RHEL-68063] - net: vxlan: make vxlan_snoop() return drop reasons (Antoine Tenart) [RHEL-68063] - net: vxlan: make vxlan_remcsum() return drop reasons (Antoine Tenart) [RHEL-68063] - net: vxlan: add skb drop reasons to vxlan_rcv() (Antoine Tenart) [RHEL-68063] - net: tunnel: make skb_vlan_inet_prepare() return drop reasons (Antoine Tenart) [RHEL-68063] - net: tunnel: add pskb_inet_may_pull_reason() helper (Antoine Tenart) [RHEL-68063] - net: skb: add pskb_network_may_pull_reason() helper (Antoine Tenart) [RHEL-68063] - net: ovs: fix ovs_drop_reasons error (Antoine Tenart) [RHEL-68063] - net/core: Introduce netdev_core_stats_inc() (Antoine Tenart) [RHEL-68063] - thermal: intel: intel_tcc_cooling: Use a model-specific bitmask for TCC offset (David Arcari) [RHEL-66569] - thermal: intel: intel_tcc: Add model checks for temperature registers (David Arcari) [RHEL-66569] - redhat/configs: enable CONFIG_INTEL_TCC_COOLING for RHEL (David Arcari) [RHEL-66569] - hwmon: (coretemp) Extend the bitmask to read temperature to 0xff (David Arcari) [RHEL-66569] - thermal: core: Free tzp copy along with the thermal zone (David Arcari) [RHEL-63761] {CVE-2024-50027} - thermal: core: Reference count the zone in thermal_zone_get_by_id() (David Arcari) [RHEL-63849] {CVE-2024-50028} - efi/x86: Free EFI memory map only when installing a new one. (Vitaly Kuznetsov) [RHEL-33045] - x86/sev: Convert shared memory back to private on kexec (Vitaly Kuznetsov) [RHEL-33045] - x86/mm: Refactor __set_clr_pte_enc() (Vitaly Kuznetsov) [RHEL-33045] - x86/boot: Skip video memory access in the decompressor for SEV-ES/SNP (Vitaly Kuznetsov) [RHEL-33045] - smb: client: fix potential race in cifs_put_tcon() (Paulo Alcantara) [RHEL-70959] - smb: client: don't try following DFS links in cifs_tree_connect() (Paulo Alcantara) [RHEL-70959] - smb: client: allow reconnect when sending ioctl (Paulo Alcantara) [RHEL-70959] - smb: client: get rid of @nlsc param in cifs_tree_connect() (Paulo Alcantara) [RHEL-70959] - smb: client: allow more DFS referrals to be cached (Paulo Alcantara) [RHEL-70959] Resolves: RHEL-20164, RHEL-29355, RHEL-33045, RHEL-35897, RHEL-37109, RHEL-52869, RHEL-52874, RHEL-52876, RHEL-53569, RHEL-63666, RHEL-63761, RHEL-63849, RHEL-64444, RHEL-66569, RHEL-68063, RHEL-69658, RHEL-69680, RHEL-70959, RHEL-72346 Signed-off-by: Rado Vrbovsky <rvrbovsk@redhat.com>
2025-01-09 17:03:20 +00:00
# modules: FIPS
dracutmodules+=" fips "
# FIPS mode requires early crypto drivers test
drivers+=" =crypto "
# drivers: virtual buses, pci
drivers+=" virtio-pci virtio-mmio " # qemu-kvm
drivers+=" hv-vmbus pci-hyperv " # hyperv
drivers+=" xen-pcifront " # xen
# drivers: storage
drivers+=" ahci nvme sd_mod sr_mod " # generic
drivers+=" virtio-blk virtio-scsi " # qemu-kvm
drivers+=" hv-storvsc " # hyperv
drivers+=" xen-blkfront " # xen
# root encryption
drivers+=" dm_crypt "
kernel-5.14.0-490.el9 * Fri Aug 02 2024 Scott Weaver <scweaver@redhat.com> [5.14.0-490.el9] - redhat/dracut-virt.conf: add systemd-veritysetup module (Emanuele Giuseppe Esposito) [RHEL-45168] - redhat/uki_addons/virt: add common FIPS addon (Emanuele Giuseppe Esposito) [RHEL-45160] - redhat/kernel.spec: add uki_addons to create UKI kernel cmdline addons (Emanuele Giuseppe Esposito) [RHEL-45159] - gcc-plugins/stackleak: Avoid .head.text section (Bandan Das) [RHEL-39439] - x86/sev: Skip ROM range scans and validation for SEV-SNP guests (Bandan Das) [RHEL-39439] - x86/sev: Move early startup code into .head.text section (Bandan Das) [RHEL-39439] - x86/sme: Move early SME kernel encryption handling into .head.text (Bandan Das) [RHEL-39439] - x86/sev: Do the C-bit verification only on the BSP (Bandan Das) [RHEL-39439] - x86/sev: Fix kernel crash due to late update to read-only ghcb_version (Bandan Das) [RHEL-39439] - xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (CKI Backport Bot) [RHEL-48140] {CVE-2024-40959} - eeprom: at24: fix memory corruption race condition (Mark Salter) [RHEL-37020] {CVE-2024-35848} - eeprom: at24: Probe for DDR3 thermal sensor in the SPD case (Mark Salter) [RHEL-37020] {CVE-2024-35848} - eeprom: at24: Use dev_err_probe for nvmem register failure (Mark Salter) [RHEL-37020] {CVE-2024-35848} - eeprom: at24: Add support for 24c1025 EEPROM (Mark Salter) [RHEL-37020] {CVE-2024-35848} - eeprom: at24: remove struct at24_client (Mark Salter) [RHEL-37020] {CVE-2024-35848} - at24: Support probing while in non-zero ACPI D state (Mark Salter) [RHEL-37020] {CVE-2024-35848} - selftests: forwarding: devlink_lib: Wait for udev events after reloading (Mark Langsdorf) [RHEL-47652] {CVE-2024-39501} - drivers: core: synchronize really_probe() and dev_uevent() (Mark Langsdorf) [RHEL-47652] {CVE-2024-39501} - xhci: Handle TD clearing for multiple streams case (CKI Backport Bot) [RHEL-47892] {CVE-2024-40927} - PCI: pciehp: Retain Power Indicator bits for userspace indicators (Myron Stowe) [RHEL-41181] - sched: act_ct: take care of padding in struct zones_ht_key (Xin Long) [RHEL-50682] - net: bridge: xmit: make sure we have at least eth header len bytes (cki-backport-bot) [RHEL-44297] {CVE-2024-38538} - hugetlb: force allocating surplus hugepages on mempolicy allowed nodes (Aristeu Rozanski) [RHEL-38605] - USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (CKI Backport Bot) [RHEL-47558] {CVE-2024-40904} - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory (CKI Backport Bot) [RHEL-47535] {CVE-2024-40901} - vmxnet3: update to version 9 (Izabela Bakollari) [RHEL-50675] - vmxnet3: add command to allow disabling of offloads (Izabela Bakollari) [RHEL-50675] - vmxnet3: add latency measurement support in vmxnet3 (Izabela Bakollari) [RHEL-50675] - vmxnet3: prepare for version 9 changes (Izabela Bakollari) [RHEL-50675] - vmxnet3: disable rx data ring on dma allocation failure (Izabela Bakollari) [RHEL-50675] - vmxnet3: Fix missing reserved tailroom (Izabela Bakollari) [RHEL-50675] - maple_tree: fix mas_empty_area_rev() null pointer dereference (Aristeu Rozanski) [RHEL-39862] {CVE-2024-36891} - rbd: don't assume rbd_is_lock_owner() for exclusive mappings (Ilya Dryomov) [RHEL-50366] - rbd: don't assume RBD_LOCK_STATE_LOCKED for exclusive mappings (Ilya Dryomov) [RHEL-50366] - rbd: rename RBD_LOCK_STATE_RELEASING and releasing_wait (Ilya Dryomov) [RHEL-50366] - scsi: qedf: Set qed_slowpath_params to zero before use (John Meneghini) [RHEL-25193] - scsi: qedf: Wait for stag work during unload (John Meneghini) [RHEL-25193] - scsi: qedf: Don't process stag work during unload and recovery (John Meneghini) [RHEL-25193] - scsi: qedf: Use FC rport as argument for qedf_initiate_tmf() (John Meneghini) [RHEL-25193] - net: fix __dst_negative_advice() race (Xin Long) [RHEL-41185] {CVE-2024-36971} - net: annotate data-races around sk->sk_dst_pending_confirm (Xin Long) [RHEL-41185] - scsi: qla2xxx: Fix off by one in qla_edif_app_getstats() (Ewan D. Milne) [RHEL-39719] {CVE-2024-36025} - igb: Remove redundant runtime resume for ethtool_ops (Corinna Vinschen) [RHEL-17487] - net: intel: implement modern PM ops declarations (Corinna Vinschen) [RHEL-17487] - igb: simplify pci ops declaration (Corinna Vinschen) [RHEL-17487] - igb: Fix missing time sync events (Corinna Vinschen) [RHEL-17487] - intel: make module parameters readable in sys filesystem (Corinna Vinschen) [RHEL-17487 RHEL-25998] - net: adopt skb_network_offset() and similar helpers (Corinna Vinschen) [RHEL-17487] - igb: extend PTP timestamp adjustments to i211 (Corinna Vinschen) [RHEL-17487] - net: intel: igb: Use linkmode helpers for EEE (Corinna Vinschen) [RHEL-17487] - igb: Fix string truncation warnings in igb_set_fw_version (Corinna Vinschen) [RHEL-17487 RHEL-38454] {CVE-2024-36010} - intel: legacy: field get conversion (Corinna Vinschen) [RHEL-17487] - intel: legacy: field prep conversion (Corinna Vinschen) [RHEL-17487] - intel: add bit macro includes where needed (Corinna Vinschen) [RHEL-17487] - igb: Use FIELD_GET() to extract Link Width (Corinna Vinschen) [RHEL-17487] - netdevsim: fix rtnetlink.sh selftest (CKI Backport Bot) [RHEL-50016] - selinux: avoid dereference of garbage after mount failure (Ondrej Mosnacek) [RHEL-37187] {CVE-2024-35904} - calipso: fix memory leak in netlbl_calipso_add_pass() (Ondrej Mosnacek) [RHEL-37044] {CVE-2023-52698} - powerpc/pseries: Whitelist dtl slub object for copying to userspace (Mamatha Inamdar) [RHEL-51242] {CVE-2024-41065} - tcp: Fix shift-out-of-bounds in dctcp_update_alpha(). (CKI Backport Bot) [RHEL-44414] {CVE-2024-37356} - tty: add the option to have a tty reject a new ldisc (John W. Linville) [RHEL-48254] {CVE-2024-40966} - irqchip/gic-v3-its: Prevent double free on error (Charles Mirabile) [RHEL-37024] {CVE-2024-35847} - usb-storage: alauda: Check whether the media is initialized (CKI Backport Bot) [RHEL-43714] {CVE-2024-38619} - scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool (Ewan D. Milne) [RHEL-38285] {CVE-2023-52811} - gfs2: Fix potential glock use-after-free on unmount (Andreas Gruenbacher) [RHEL-44155] {CVE-2024-38570} - gfs2: simplify gdlm_put_lock with out_free label (Andreas Gruenbacher) [RHEL-44155] {CVE-2024-38570} - gfs2: Remove ill-placed consistency check (Andreas Gruenbacher) [RHEL-44155] {CVE-2024-38570} - openvswitch: Set the skbuff pkt_type for proper pmtud support. (Aaron Conole) [RHEL-37650] - scsi: mpi3mr: Driver version update to 8.8.1.0.50 (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Update MPI Headers to revision 31 (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Debug ability improvements (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Set the WriteSame Divert Capability in the IOCInit MPI Request (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Clear ioctl blocking flag for an unresponsive controller (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Set MPI request flags appropriately (Ewan D. Milne) [RHEL-30580] - scsi: mpi3mr: Block devices are not removed even when VDs are offlined (Ewan D. Milne) [RHEL-30580] - x86/retpoline: Add NOENDBR annotation to the SRSO dummy return thunk (Waiman Long) [RHEL-31230] - x86/retpoline: Do the necessary fixup to the Zen3/4 srso return thunk for !SRSO (Waiman Long) [RHEL-31230] - x86/bugs: Fix the SRSO mitigation on Zen3/4 (Waiman Long) [RHEL-31230] - redhat/configs: Rename x86 CPU mitigations config entries (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_RETHUNK => CONFIG_MITIGATION_RETHUNK (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CPU_SRSO => CONFIG_MITIGATION_SRSO (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CPU_IBRS_ENTRY => CONFIG_MITIGATION_IBRS_ENTRY (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CPU_UNRET_ENTRY => CONFIG_MITIGATION_UNRET_ENTRY (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_SLS => CONFIG_MITIGATION_SLS (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_RETPOLINE => CONFIG_MITIGATION_RETPOLINE (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_PAGE_TABLE_ISOLATION => CONFIG_MITIGATION_PAGE_TABLE_ISOLATION (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CALL_DEPTH_TRACKING => CONFIG_MITIGATION_CALL_DEPTH_TRACKING (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_CPU_IBPB_ENTRY => CONFIG_MITIGATION_IBPB_ENTRY (Waiman Long) [RHEL-31230] - x86/bugs: Rename CONFIG_GDS_FORCE_MITIGATION => CONFIG_MITIGATION_GDS_FORCE (Waiman Long) [RHEL-31230] - kbuild: use objtool-args-y to clean up objtool arguments (Waiman Long) [RHEL-31230] - kbuild: do not create *.prelink.o for Clang LTO or IBT (Waiman Long) [RHEL-31230] - kbuild: replace $(linked-object) with CONFIG options (Waiman Long) [RHEL-31230] Resolves: RHEL-17487, RHEL-25193, RHEL-25998, RHEL-30580, RHEL-31230, RHEL-37020, RHEL-37024, RHEL-37044, RHEL-37187, RHEL-37650, RHEL-38285, RHEL-38454, RHEL-38605, RHEL-39439, RHEL-39719, RHEL-39862, RHEL-41181, RHEL-41185, RHEL-43714, RHEL-44155, RHEL-44297, RHEL-44414, RHEL-45159, RHEL-45160, RHEL-45168, RHEL-47535, RHEL-47558, RHEL-47652, RHEL-47892, RHEL-48140, RHEL-48254, RHEL-50016, RHEL-50366, RHEL-50675, RHEL-50682, RHEL-51242, RHEL-37025, RHEL-38286, RHEL-39720, RHEL-39863, RHEL-37021, RHEL-44156, RHEL-38455, RHEL-44298, RHEL-43715, RHEL-37045, RHEL-37188, RHEL-41186, RHEL-47536, RHEL-47559, RHEL-47893, RHEL-48141, RHEL-47653, RHEL-48255, RHEL-44415 Signed-off-by: Scott Weaver <scweaver@redhat.com>
2024-08-02 15:47:19 +00:00
# root disk integrity protection
drivers+=" dm_verity overlay "
# filesystems
filesystems+=" vfat ext4 xfs overlay "