The Linux kernel
2d7f955cc6
* Mon Nov 11 2024 Rado Vrbovsky <rvrbovsk@redhat.com> [5.14.0-528.el9] - net: Fix an unsafe loop on the list (CKI Backport Bot) [RHEL-63844] {CVE-2024-50024} - serial: protect uart_port_dtr_rts() in uart_shutdown() too (CKI Backport Bot) [RHEL-63838] {CVE-2024-50058} - net/sched: accept TCA_STAB only for root qdisc (CKI Backport Bot) [RHEL-63814] {CVE-2024-50039} - s390/crypto: Display Query and Query Authentication Information in sysfs (Mete Durlu) [RHEL-56382] - s390/crypto: Add Support for Query Authentication Information (Mete Durlu) [RHEL-56382] - s390/crypto: Rework RRE and RRF CPACF inline functions (Mete Durlu) [RHEL-56382] - s390/crypto: Add KDSA CPACF Instruction (Mete Durlu) [RHEL-56382] - s390/cpacf: Make use of invalid opcode produce a link error (Mete Durlu) [RHEL-56382] - s390/cpacf: Split and rework cpacf query functions (Mete Durlu) [RHEL-56382] - dma-mapping: fix tracing dma_alloc/free with vmalloc'd memory (Jerry Snitselaar) [RHEL-61942] - mmc: core: Only set maximum DMA segment size if DMA is supported (Jerry Snitselaar) [RHEL-61942] - dma-mapping: fix DMA API tracing for chained scatterlists (Jerry Snitselaar) [RHEL-61942] - dma-mapping: report unlimited DMA addressing in IOMMU DMA path (Jerry Snitselaar) [RHEL-61942] - dma-mapping: fix vmap and mmap of noncontiougs allocations (Jerry Snitselaar) [RHEL-61942] - iommu/dma: remove most stubs in iommu-dma.h (Jerry Snitselaar) [RHEL-61942] - dma-mapping: reflow dma_supported (Jerry Snitselaar) [RHEL-61942] - dma-mapping: reliably inform about DMA support for IOMMU (Jerry Snitselaar) [RHEL-61942] - dma-mapping: add tracing for dma-mapping API calls (Jerry Snitselaar) [RHEL-61942] - dma-mapping: use IOMMU DMA calls for common alloc/free page calls (Jerry Snitselaar) [RHEL-61942] - dma-direct: optimize page freeing when it is not addressable (Jerry Snitselaar) [RHEL-61942] - dma-mapping: clearly mark DMA ops as an architecture feature (Jerry Snitselaar) [RHEL-61942] - vdpa_sim: don't select DMA_OPS (Jerry Snitselaar) [RHEL-61942] - arm64: mm: keep low RAM dma zone (Jerry Snitselaar) [RHEL-61942] - dma-mapping: don't return errors from dma_set_max_seg_size (Jerry Snitselaar) [RHEL-61942] - dma-mapping: don't return errors from dma_set_seg_boundary (Jerry Snitselaar) [RHEL-61942] - dma-mapping: don't return errors from dma_set_min_align_mask (Jerry Snitselaar) [RHEL-61942] - scsi: check that busses support the DMA API before setting dma parameters (Jerry Snitselaar) [RHEL-61942] - arm64: mm: fix DMA zone when dma-ranges is missing (Jerry Snitselaar) [RHEL-61942] - dma-mapping: direct calls for dma-iommu (Jerry Snitselaar) [RHEL-61942] - dma-mapping: call ->unmap_page and ->unmap_sg unconditionally (Jerry Snitselaar) [RHEL-61942] - arm64: support DMA zone above 4GB (Jerry Snitselaar) [RHEL-61942] - dma-mapping: replace zone_dma_bits by zone_dma_limit (Jerry Snitselaar) [RHEL-61942] - dma-mapping: use bit masking to check VM_DMA_COHERENT (Jerry Snitselaar) [RHEL-61942] - iommu: Set iommu_attach_handle->domain in core (Jerry Snitselaar) [RHEL-61942] - iommufd: Avoid duplicated __iommu_group_set_core_domain() call (Jerry Snitselaar) [RHEL-61942] - iommufd: Protect against overflow of ALIGN() during iova allocation (Jerry Snitselaar) [RHEL-61942] - iommufd: Reorder struct forward declarations (Jerry Snitselaar) [RHEL-61942] - iommufd: Check the domain owner of the parent before creating a nesting domain (Jerry Snitselaar) [RHEL-61942] - iommufd/device: Enforce reserved IOVA also when attached to hwpt_nested (Jerry Snitselaar) [RHEL-55215] - iommufd/selftest: Fix buffer read overrrun in the dirty test (Jerry Snitselaar) [RHEL-61942] - iommufd: Reorder include files (Jerry Snitselaar) [RHEL-61942] - iommu: Allow ATS to work on VFs when the PF uses IDENTITY (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Test for PAGING domains before freeing a domain (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Add kernel parameters to limit V1 page-sizes (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Do not set the D bit on AMD v2 table entries (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Correct the reported page sizes from the V1 table (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Remove the confusing dummy iommu_flush_ops tlb ops (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Fix typo of , instead of ; (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Remove conditions from domain free paths (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Narrow the use of struct protection_domain to invalidation (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Store the nid in io_pgtable_cfg instead of the domain (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Remove amd_io_pgtable::pgtbl_cfg (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Rename struct amd_io_pgtable iopt to pgtbl (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Remove the amd_iommu_domain_set_pt_root() and related (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Remove amd_iommu_domain_update() from page table freeing (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Set the pgsize_bitmap correctly (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Allocate the page table root using GFP_KERNEL (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Move allocation of the top table into v1_alloc_pgtable (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Make amd_iommu_dev_update_dte() static (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Rework amd_iommu_update_and_flush_device_table() (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Make amd_iommu_domain_flush_complete() static (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Make amd_iommu_dev_flush_pasid_all() static (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Handle error path in amd_iommu_probe_device() (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Remove unused DTE_GCR3_INDEX_* macros (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Make amd_iommu_is_attach_deferred() static (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Update event log pointer as soon as processing is complete (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Update PASID, GATS, GLX, SNPAVICSUP feature related macros (Jerry Snitselaar) [RHEL-61942] - iommu/amd: Add blocked domain support (Jerry Snitselaar) [RHEL-61942] - sizes.h: Add entries between SZ_32G and SZ_64T (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Introduce batched cache invalidation (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Add qi_batch for dmar_domain (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Refactor IOTLB and Dev-IOTLB flush for batching (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Factor out invalidation descriptor composition (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Unconditionally flush device TLB for pasid table updates (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Move PCI PASID enablement to probe path (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Cleanup si_domain (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Add support for static identity domain (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Factor out helpers from domain_context_mapping_one() (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Remove has_iotlb_device flag (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Always reserve a domain ID for identity setup (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Remove identity mappings from si_domain (Jerry Snitselaar) [RHEL-61942] - iommu/vt-d: Require DMA domain if hardware not support passthrough (Jerry Snitselaar) [RHEL-61942] - hsr: Simplify code for announcing HSR nodes timer setup (Felix Maurer) [RHEL-63082] - net: annotate data-races around dev->if_port (Ivan Vecera) [RHEL-62123] - inet: bring NLM_DONE out to a separate recv() again (Ivan Vecera) [RHEL-62123] - rtnetlink: provide RCU protection to rtnl_fill_prop_list() (Ivan Vecera) [RHEL-62123] - rtnetlink: make rtnl_fill_link_ifmap() RCU ready (Ivan Vecera) [RHEL-62123] - inet: switch inet_dump_fib() to RCU protection (Ivan Vecera) [RHEL-62123] - nexthop: allow nexthop_mpath_fill_node() to be called without RTNL (Ivan Vecera) [RHEL-62123] - inet: allow ip_valid_fib_dump_req() to be called with RTNL or RCU (Ivan Vecera) [RHEL-62123] - ipv6: switch inet6_dump_ifinfo() to RCU protection (Ivan Vecera) [RHEL-62123] - rtnetlink: add RTNL_FLAG_DUMP_UNLOCKED flag (Ivan Vecera) [RHEL-62123] - rtnetlink: change nlk->cb_mutex role (Ivan Vecera) [RHEL-62123] - netlink: hold nlk->cb_mutex longer in __netlink_dump_start() (Ivan Vecera) [RHEL-62123] - netlink: fix netlink_diag_dump() return value (Ivan Vecera) [RHEL-62123] - ipv6: use xarray iterator to implement inet6_dump_ifinfo() (Ivan Vecera) [RHEL-62123] - ipv6: prepare inet6_fill_ifinfo() for RCU protection (Ivan Vecera) [RHEL-62123] - ipv6: prepare inet6_fill_ifla6_attrs() for RCU (Ivan Vecera) [RHEL-62123] - rtnetlink: prepare nla_put_iflink() to run under RCU (Ivan Vecera) [RHEL-62123] - net: free altname using an RCU callback (Ivan Vecera) [RHEL-62123] - net: fix removing a namespace with conflicting altnames (Ivan Vecera) [RHEL-62123] - selftests: net: add very basic test for netdev names and namespaces (Ivan Vecera) [RHEL-62123] - net: move altnames together with the netdevice (Ivan Vecera) [RHEL-62123] - net: avoid UAF on deleted altname (Ivan Vecera) [RHEL-62123] - net: check for altname conflicts when changing netdev's netns (Ivan Vecera) [RHEL-62123] - net: fix ifname in netlink ntf during netns move (Ivan Vecera) [RHEL-62123] - net: move from strlcpy with unused retval to strscpy (Ivan Vecera) [RHEL-62123] - ipv6: make mc_forwarding atomic (Ivan Vecera) [RHEL-62123] - net: introduce a function to check if a netdev name is in use (Ivan Vecera) [RHEL-62123] - RDMA/bnxt_re: Fix the GID table length (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Change the sequence of updating the CQ toggle value (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix an error path in bnxt_re_add_device (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Avoid CPU lockups due fifo occupancy check loop (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix a possible NULL pointer dereference (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Return more meaningful error (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix incorrect dereference of srq in async event (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix out of bound check (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix the max CQ WQEs for older adapters (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix the max WQEs used in Static WQE mode (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Add a check for memory allocation (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix incorrect AVID type in WQE structure (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix a possible memory leak (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Remove the unused variable en_dev (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Recover the device when FW error is detected (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Group all operations under add_device and remove_device (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Use the aux device for L2 ULP callbacks (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Change aux driver data to en_info to hold more information (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix the max WQE size for static WQE support (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix the compatibility flag for variable size WQE (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Add support for MR Relaxed Ordering (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Avoid an extra hwrm per MR creation (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Rename a variable (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Update HW interface headers (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Share a page to expose per SRQ info with userspace (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Refactor the BNXT_RE_METHOD_GET_TOGGLE_MEM method (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Get the toggle bits from SRQ events (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Enable variable size WQEs for user space applications (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Handle variable WQE support for user applications (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix the table size for PSN/MSN entries (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Get the WQE index from slot index while completing the WQEs (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Add support for Variable WQE in Genp7 adapters (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Disable doorbell moderation if hardware register read fails (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Enable DB moderation for genP7 adapters (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Update the correct DB FIFO depth and mask for GenP7 (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Fix the max msix vectors macro (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Expose the MSN table capability for user library (Mohammad Heib) [RHEL-52759 RHEL-54646] - RDMA/bnxt_re: Allow MSN table capability check (Mohammad Heib) [RHEL-52759 RHEL-54646] - sch/netem: fix use after free in netem_dequeue (CKI Backport Bot) [RHEL-59498] {CVE-2024-46800} - net: bridge: br_fdb_external_learn_add(): always set EXT_LEARN (Jamie Bainbridge) [RHEL-57739] - selftests: net: bridge_vlan_aware: test that other TPIDs are seen as untagged (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: skip if kernel not support setting bridge fdb learning limit (Jamie Bainbridge) [RHEL-57739] - net: bridge: mst: Check vlan state for egress decision (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Make vxlan-bridge-1d pass on debug kernels (Jamie Bainbridge) [RHEL-57739] - selftests: libs: Expand "$@" where possible (Jamie Bainbridge) [RHEL-57739] - net: bridge: fix an inconsistent indentation (Jamie Bainbridge) [RHEL-57739] - selftests: net: lib: set 'i' as local (Jamie Bainbridge) [RHEL-57739] - selftests/net: use tc rule to filter the na packet (Jamie Bainbridge) [RHEL-57739] - selftests: net: use upstream mtools (Jamie Bainbridge) [RHEL-57739] - net: bridge: switchdev: Improve error message for port_obj_add/del functions (Jamie Bainbridge) [RHEL-57739] - net: bridge: fix corrupted ethernet header on multicast-to-unicast (Jamie Bainbridge) [RHEL-57739] - net: bridge: fix multicast-to-unicast with fraglist GSO (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: add ability to assemble NETIFS array by driver name (Jamie Bainbridge) [RHEL-57739] - net: bridge: remove redundant check of f->dst (Jamie Bainbridge) [RHEL-57739] - bridge/br_netlink.c: no need to return void function (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: bail_on_lldpad() should SKIP (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: lib.sh: Validate NETIFS (Jamie Bainbridge) [RHEL-57739] - selftests: net: Unify code of busywait() and slowwait() (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Support for performance sensitive tests (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Convert log_test() to recognize RET values (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Have RET track kselftest framework constants (Jamie Bainbridge) [RHEL-57739] - selftests: lib: Define more kselftest exit codes (Jamie Bainbridge) [RHEL-57739] - selftests/net: add variable NS_LIST for lib.sh (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: README: Document customization (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding.config.sample: Move overrides to lib.sh (Jamie Bainbridge) [RHEL-57739] - selftests: net: libs: Change variable fallback syntax (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Make VXLAN ECN encap tests more robust (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Make vxlan-bridge-1q pass on debug kernels (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Parametrize mausezahn delay (Jamie Bainbridge) [RHEL-57739] - net: bridge: Exit if multicast_init_stats fails (Jamie Bainbridge) [RHEL-57739] - net: bridge: constify the struct device_type usage (Jamie Bainbridge) [RHEL-57739] - bridge: vlan: use synchronize_net() when holding RTNL (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Add missing multicast routing config entries (Jamie Bainbridge) [RHEL-57739] - selftests/net/forwarding: add slowwait functions (Jamie Bainbridge) [RHEL-57739] - net: bridge: Use KMEM_CACHE instead of kmem_cache_create (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Remove duplicated lib.sh content (Jamie Bainbridge) [RHEL-57739] - selftests: bonding: Add net/forwarding/lib.sh to TEST_INCLUDES (Jamie Bainbridge) [RHEL-57739] - selftests: team: Add shared library scripts to TEST_INCLUDES (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Redefine relative_path variable (Jamie Bainbridge) [RHEL-57739] - selftests: forwarding: Add missing config entries (Jamie Bainbridge) [RHEL-57739] - net: bridge: Do not allocate stats in the driver (Jamie Bainbridge) [RHEL-57739] - fscrypt: remove mention of symlink st_size quirk from documentation (Ian Kent) [RHEL-33888] - MAINTAINERS: update idmapping tree (Ian Kent) [RHEL-33888] - Add Seth Forshee as co-maintainer for idmapped mounts (Ian Kent) [RHEL-33888] - ceph: allow idmapped setattr inode op (Ian Kent) [RHEL-33888] - ceph: pass idmap to __ceph_setattr (Ian Kent) [RHEL-33888] - nfsd: use vfs setgid helper (Ian Kent) [RHEL-33888] - nfs: use vfs setgid helper (Ian Kent) [RHEL-33888] - xfs: use consistent uid/gid when grabbing dquots for inodes (Ian Kent) [RHEL-33888] - ovl: fix null pointer dereference in ovl_permission() (Ian Kent) [RHEL-33888] - evm: Complete description of evm_inode_setattr() (Ian Kent) [RHEL-33888] - smb: client: Fix -Wstringop-overflow issues (Ian Kent) [RHEL-33888] - ovl: fix null pointer dereference in ovl_get_acl_rcu() (Ian Kent) [RHEL-33888] - fs: move mnt_idmap (Ian Kent) [RHEL-33888] - MAINTAINERS: add entry for idmapped mounts (Ian Kent) [RHEL-33888] - fs: port vfs{g,u}id helpers to mnt_idmap (Ian Kent) [RHEL-33888] - fs: port fs{g,u}id helpers to mnt_idmap (Ian Kent) [RHEL-33888] - fs: port i_{g,u}id_into_vfs{g,u}id() to mnt_idmap (Ian Kent) [RHEL-33888] - fs: port i_{g,u}id_{needs_}update() to mnt_idmap (Ian Kent) [RHEL-33888] - quota: port to mnt_idmap (Ian Kent) [RHEL-33888] - fs: port privilege checking helpers to mnt_idmap (Ian Kent) [RHEL-33888] - f2fs: port to vfs{g,u}id_t and associated helpers (Ian Kent) [RHEL-33888] - fs: port inode_owner_or_capable() to mnt_idmap (Ian Kent) [RHEL-33888] - fs: port inode_init_owner() to mnt_idmap (Ian Kent) [RHEL-33888] - nilfs2: fix use-after-free bug of struct nilfs_root (Ian Kent) [RHEL-33888] - fs: port acl to mnt_idmap (Ian Kent) [RHEL-33888] - fs: port xattr to mnt_idmap (Ian Kent) [RHEL-33888] - fs: port ->permission() to pass mnt_idmap (Ian Kent) [RHEL-33888] - may_linkat(): constify path (Ian Kent) [RHEL-33888] - fs: port ->fileattr_set() to pass mnt_idmap (Ian Kent) [RHEL-33888] - ovl: support idmapped layers (Ian Kent) [RHEL-33888] - ovl: handle idmappings in layer open helpers (Ian Kent) [RHEL-33888] - ovl: handle idmappings in ovl_permission() (Ian Kent) [RHEL-33888] - ovl: handle idmappings for layer fileattrs (Ian Kent) [RHEL-33888] - ovl: use ovl_lookup_upper() wrapper (Ian Kent) [RHEL-33888] - exportfs: support idmapped mounts (Ian Kent) [RHEL-33888] - fs: port ->set_acl() to pass mnt_idmap (Ian Kent) [RHEL-33888] - fs: port ->get_acl() to pass mnt_idmap (Ian Kent) [RHEL-33888] - fs: port ->tmpfile() to pass mnt_idmap (Ian Kent) [RHEL-33888] - fuse: implement ->tmpfile() (Ian Kent) [RHEL-33888] - fs: port ->mknod() to pass mnt_idmap (Ian Kent) [RHEL-33888] - fs: port ->rename() to pass mnt_idmap (Ian Kent) [RHEL-33888] - selftests/filesystems: grant executable permission to run_fat_tests.sh (Ian Kent) [RHEL-33888] - selftests/filesystems: add a vfat RENAME_EXCHANGE test (Ian Kent) [RHEL-33888] - fat: add renameat2 RENAME_EXCHANGE flag support (Ian Kent) [RHEL-33888] - fat: factor out reusable code in vfat_rename() as helper functions (Ian Kent) [RHEL-33888] - fat: add a vfat_rename2() and make existing .rename callback a helper (Ian Kent) [RHEL-33888] - fs: port ->mkdir() to pass mnt_idmap (Ian Kent) [RHEL-33888] - fs: port ->symlink() to pass mnt_idmap (Ian Kent) [RHEL-33888] - autofs: remove unused ino field inode (Ian Kent) [RHEL-33888] - autofs: add comment about autofs_mountpoint_changed() (Ian Kent) [RHEL-33888] - autofs: use dentry info count instead of simple_empty() (Ian Kent) [RHEL-33888] - autofs: make dentry info count consistent (Ian Kent) [RHEL-33888] - autofs: use inode permission method for write access (Ian Kent) [RHEL-33888] - fs: port ->create() to pass mnt_idmap (Ian Kent) [RHEL-33888] - fs: port ->getattr() to pass mnt_idmap (Ian Kent) [RHEL-33888] - erofs: support idmapped mounts (Ian Kent) [RHEL-33888] - ubifs: Fix AA deadlock when setting xattr for encrypted file (Ian Kent) [RHEL-33888] - ubifs: report correct st_size for encrypted symlinks (Ian Kent) [RHEL-33888] - proc: report open files as size in stat() for /proc/pid/fd (Ian Kent) [RHEL-33888] - f2fs: report correct st_size for encrypted symlinks (Ian Kent) [RHEL-33888] - fs: port ->setattr() to pass mnt_idmap (Ian Kent) [RHEL-33888] - fs: port vfs_*() helpers to struct mnt_idmap (Ian Kent) [RHEL-33888] - f2fs: project ids aren't idmapped (Ian Kent) [RHEL-33888] - acl: conver higher-level helpers to rely on mnt_idmap (Ian Kent) [RHEL-33888] - fs: introduce dedicated idmap type for mounts (Ian Kent) [RHEL-33888] - linux/mount.h: trim includes (Ian Kent) [RHEL-33888] - fs: unset MNT_WRITE_HOLD on failure (Ian Kent) [RHEL-33888] - mount_setattr(): clean the control flow and calling conventions (Ian Kent) [RHEL-33888] - fs: clean up mount_setattr control flow (Ian Kent) [RHEL-33888] - fs: don't open-code mnt_hold_writers() (Ian Kent) [RHEL-33888] - fs: add mnt_allow_writers() and simplify mount_setattr_prepare() (Ian Kent) [RHEL-33888] - fs: remove unused idmapping helpers (Ian Kent) [RHEL-33888] - filelocks: use mount idmapping for setlease permission check (Ian Kent) [RHEL-33888] - ovl: port to vfs{g,u}id_t and associated helpers (Ian Kent) [RHEL-33888] - ima: use type safe idmapping helpers (Ian Kent) [RHEL-33888] - ima: add gid support (Ian Kent) [RHEL-33888] - ima: fix uid code style problems (Ian Kent) [RHEL-33888] - apparmor: use type safe idmapping helpers (Ian Kent) [RHEL-33888] - LSM: Remove double path_rename hook calls for RENAME_EXCHANGE (Ian Kent) [RHEL-33888] - landlock: Format with clang-format (Ian Kent) [RHEL-33888] - caps: use type safe idmapping helpers (Ian Kent) [RHEL-33888] - fs: use type safe idmapping helpers (Ian Kent) [RHEL-33888] - bprm_fill_uid(): don't open-code file_inode() (Ian Kent) [RHEL-33888] - mnt_idmapping: add missing helpers (Ian Kent) [RHEL-33888] - fs: use consistent setgid checks in is_sxid() (Ian Kent) [RHEL-33888] - attr: use consistent sgid stripping checks (Ian Kent) [RHEL-33888] - attr: add setattr_should_drop_sgid() (Ian Kent) [RHEL-33888] - fs: move should_remove_suid() (Ian Kent) [RHEL-33888] - attr: add in_group_or_capable() (Ian Kent) [RHEL-33888] - posix_acl: Fix the type of sentinel in get_acl (Ian Kent) [RHEL-33888] - orangefs: fix mode handling (Ian Kent) [RHEL-33888] - ovl: call posix_acl_release() after error checking (Ian Kent) [RHEL-33888] - evm: remove dead code in evm_inode_set_acl() (Ian Kent) [RHEL-33888] - cifs: check whether acl is valid early (Ian Kent) [RHEL-33888] - acl: make vfs_posix_acl_to_xattr() static (Ian Kent) [RHEL-33888] - acl: remove a slew of now unused helpers (Ian Kent) [RHEL-33888] - 9p: use stub posix acl handlers (Ian Kent) [RHEL-33888] - cifs: use stub posix acl handlers (Ian Kent) [RHEL-33888] - ovl: use stub posix acl handlers (Ian Kent) [RHEL-33888] - ecryptfs: use stub posix acl handlers (Ian Kent) [RHEL-33888] - evm: remove evm_xattr_acl_change() (Ian Kent) [RHEL-33888] - xattr: use posix acl api (Ian Kent) [RHEL-33888] - fuse: fixes after adapting to new posix acl api (Ian Kent) [RHEL-33888] - fuse: port to vfs{g,u}id_t and associated helpers (Ian Kent) [RHEL-33888] - ovl: use posix acl api (Ian Kent) [RHEL-33888] - ovl: implement set acl method (Ian Kent) [RHEL-33888] - ovl: implement get acl method (Ian Kent) [RHEL-33888] - ovl: improve ovl_get_acl() if POSIX ACL support is off (Ian Kent) [RHEL-33888] - ecryptfs: implement set acl method (Ian Kent) [RHEL-33888] - ecryptfs: implement get acl method (Ian Kent) [RHEL-33888] - acl: add vfs_remove_acl() (Ian Kent) [RHEL-33888] - acl: add vfs_get_acl() (Ian Kent) [RHEL-33888] - fs/posix_acl.c: avoid -Wempty-body warning (Ian Kent) [RHEL-33888] - acl: add vfs_set_acl() (Ian Kent) [RHEL-33888] - internal: add may_write_xattr() (Ian Kent) [RHEL-33888] - evm: add post set acl hook (Ian Kent) [RHEL-33888] - integrity: implement get and set acl hook (Ian Kent) [RHEL-33888] - smack: implement get, set and remove acl hook (Ian Kent) [RHEL-33888] - Smack: fix W=1 build warnings (Ian Kent) [RHEL-33888] - selinux: implement get, set and remove acl hook (Ian Kent) [RHEL-33888] - security: add get, remove and set acl hook (Ian Kent) [RHEL-33888] - 9p: implement set acl method (Ian Kent) [RHEL-33888] - 9p: implement get acl method (Ian Kent) [RHEL-33888] - cifs: implement set acl method (Ian Kent) [RHEL-33888] - cifs: implement get acl method (Ian Kent) [RHEL-33888] - fs: add new get acl method (Ian Kent) [RHEL-33888] - fs: rename current get acl method (Ian Kent) [RHEL-33888] - fs: pass dentry to set acl method (Ian Kent) [RHEL-33888] - f2fs: support idmapped mounts (Ian Kent) [RHEL-33888] - orangefs: rework posix acl handling when creating new filesystem objects (Ian Kent) [RHEL-33888] - xattr: always us is_posix_acl_xattr() helper (Ian Kent) [RHEL-33888] - acl: fix the comments of posix_acl_xattr_set (Ian Kent) [RHEL-33888] - xattr: constify value argument in vfs_setxattr() (Ian Kent) [RHEL-33888] - ovl: use vfs_set_acl_prepare() (Ian Kent) [RHEL-33888] - acl: move idmapping handling into posix_acl_xattr_set() (Ian Kent) [RHEL-33888] - acl: add vfs_set_acl_prepare() (Ian Kent) [RHEL-33888] - acl: return EOPNOTSUPP in posix_acl_fix_xattr_common() (Ian Kent) [RHEL-33888] - open: always initialize ownership fields (Ian Kent) [RHEL-33888] - acl: handle idmapped mounts for idmapped filesystems (Ian Kent) [RHEL-33888] - ovl: handle idmappings in ovl_get_acl() (Ian Kent) [RHEL-33888] - acl: make posix_acl_clone() available to overlayfs (Ian Kent) [RHEL-33888] - ovl: enable RCU'd ->get_acl() (Ian Kent) [RHEL-33888] - vfs: add rcu argument to ->get_acl() callback (Ian Kent) [RHEL-33888] - acl: port to vfs{g,u}id_t (Ian Kent) [RHEL-33888] - acl: move idmapped mount fixup into vfs_{g,s}etxattr() (Ian Kent) [RHEL-33888] - mnt_idmapping: align kernel doc and parameter order (Ian Kent) [RHEL-33888] - mnt_idmapping: return false when comparing two invalid ids (Ian Kent) [RHEL-33888] - attr: fix kernel doc (Ian Kent) [RHEL-33888] - attr: port attribute changes to new types (Ian Kent) [RHEL-33888] - quota: port quota helpers mount ids (Ian Kent) [RHEL-33888] - fs: port to iattr ownership update helpers (Ian Kent) [RHEL-33888] - fs: introduce tiny iattr ownership update helpers (Ian Kent) [RHEL-33888] - fs: use mount types in iattr (Ian Kent) [RHEL-33888] - docs: Add small intro to idmap examples (Ian Kent) [RHEL-33888] - fs: remove unused low-level mapping helpers (Ian Kent) [RHEL-33888] - docs: update mapping documentation (Ian Kent) [RHEL-33888] - doc: give a more thorough id handling explanation (Ian Kent) [RHEL-33888] Resolves: RHEL-33888, RHEL-52759, RHEL-54646, RHEL-55215, RHEL-56382, RHEL-57739, RHEL-59498, RHEL-61942, RHEL-62123, RHEL-63082, RHEL-63814, RHEL-63838, RHEL-63844 Signed-off-by: Rado Vrbovsky <rvrbovsk@redhat.com> |
||
---|---|---|
.gitignore | ||
check-kabi | ||
cpupower.config | ||
cpupower.service | ||
dracut-virt.conf | ||
filter-aarch64.sh.rhel | ||
filter-armv7hl.sh.rhel | ||
filter-modules.sh.rhel | ||
filter-ppc64le.sh.rhel | ||
filter-s390x.sh.rhel | ||
filter-x86_64.sh.rhel | ||
gating.yaml | ||
generate_all_configs.sh | ||
kernel-aarch64-64k-debug-rhel.config | ||
kernel-aarch64-64k-rhel.config | ||
kernel-aarch64-debug-rhel.config | ||
kernel-aarch64-rhel.config | ||
kernel-aarch64-rt-debug-rhel.config | ||
kernel-aarch64-rt-rhel.config | ||
kernel-local | ||
kernel-ppc64le-debug-rhel.config | ||
kernel-ppc64le-rhel.config | ||
kernel-s390x-debug-rhel.config | ||
kernel-s390x-rhel.config | ||
kernel-s390x-zfcpdump-rhel.config | ||
kernel-x86_64-debug-rhel.config | ||
kernel-x86_64-rhel.config | ||
kernel-x86_64-rt-debug-rhel.config | ||
kernel-x86_64-rt-rhel.config | ||
kernel.changelog | ||
kernel.spec | ||
kvm_stat.logrotate | ||
linux-kernel-test.patch | ||
Makefile.rhelver | ||
merge.pl | ||
mod-denylist.sh | ||
mod-extra.list.rhel | ||
mod-internal.list | ||
mod-kvm.list | ||
mod-partner.list | ||
mod-sign.sh | ||
Module.kabi_aarch64 | ||
Module.kabi_dup_aarch64 | ||
Module.kabi_dup_ppc64le | ||
Module.kabi_dup_s390x | ||
Module.kabi_dup_x86_64 | ||
Module.kabi_ppc64le | ||
Module.kabi_s390x | ||
Module.kabi_x86_64 | ||
nvidiagpuoot001.x509 | ||
parallel_xz.sh | ||
partial-kgcov-snip.config | ||
patch-5.14-redhat.patch | ||
process_configs.sh | ||
README.rst | ||
rheldup3.x509 | ||
rhelima_centos.x509 | ||
rhelima.x509 | ||
rhelimaca1.x509 | ||
rhelkpatch1.x509 | ||
rpminspect.yaml | ||
sources | ||
uki_addons.json | ||
uki_create_addons.py | ||
update_scripts.sh | ||
x509.genkey.centos | ||
x509.genkey.rhel |
=================== The Kernel dist-git =================== The kernel is maintained in a `source tree`_ rather than directly in dist-git. The specfile is maintained as a `template`_ in the source tree along with a set of build scripts to generate configurations, (S)RPMs, and to populate the dist-git repository. The `documentation`_ for the source tree covers how to contribute and maintain the tree. If you're looking for the downstream patch set it's available in the source tree with "git log master..ark-patches" or `online`_. Each release in dist-git is tagged in the source repository so you can easily check out the source tree for a build. The tags are in the format name-version-release, but note release doesn't contain the dist tag since the source can be built in different build roots (Fedora, CentOS, etc.) .. _source tree: https://gitlab.com/cki-project/kernel-ark.git .. _template: https://gitlab.com/cki-project/kernel-ark/-/blob/os-build/redhat/kernel.spec.template .. _documentation: https://gitlab.com/cki-project/kernel-ark/-/wikis/home .. _online: https://gitlab.com/cki-project/kernel-ark/-/commits/ark-patches