lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:   Thu, 10 Mar 2022 15:13:13 +0100
From:   Greg Kroah-Hartman <gregkh@...uxfoundation.org>
To:     linux-kernel@...r.kernel.org
Cc:     Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
        stable@...r.kernel.org, torvalds@...ux-foundation.org,
        akpm@...ux-foundation.org, linux@...ck-us.net, shuah@...nel.org,
        patches@...nelci.org, lkft-triage@...ts.linaro.org, pavel@...x.de,
        jonathanh@...dia.com, f.fainelli@...il.com,
        sudipm.mukherjee@...il.com, slade@...dewatkins.com
Subject: [PATCH 4.9 00/38] 4.9.306-rc2 review

This is the start of the stable review cycle for the 4.9.306 release.
There are 38 patches in this series, all will be posted as a response
to this one.  If anyone has any issues with these being applied, please
let me know.

Responses should be made by Sat, 12 Mar 2022 14:07:58 +0000.
Anything received after that time might be too late.

The whole patch series can be found in one patch at:
	https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.9.306-rc2.gz
or in the git tree and branch at:
	git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.9.y
and the diffstat can be found below.

thanks,

greg k-h

-------------
Pseudo-Shortlog of commits:

Greg Kroah-Hartman <gregkh@...uxfoundation.org>
    Linux 4.9.306-rc2

Juergen Gross <jgross@...e.com>
    xen/netfront: react properly to failing gnttab_end_foreign_access_ref()

Juergen Gross <jgross@...e.com>
    xen/gnttab: fix gnttab_end_foreign_access() without page specified

Juergen Gross <jgross@...e.com>
    xen: remove gnttab_query_foreign_access()

Juergen Gross <jgross@...e.com>
    xen/gntalloc: don't use gnttab_query_foreign_access()

Juergen Gross <jgross@...e.com>
    xen/scsifront: don't use gnttab_query_foreign_access() for mapped status

Juergen Gross <jgross@...e.com>
    xen/netfront: don't use gnttab_query_foreign_access() for mapped status

Juergen Gross <jgross@...e.com>
    xen/blkfront: don't use gnttab_query_foreign_access() for mapped status

Juergen Gross <jgross@...e.com>
    xen/grant-table: add gnttab_try_end_foreign_access()

Juergen Gross <jgross@...e.com>
    xen/xenbus: don't let xenbus_grant_ring() remove grants in error case

Russell King (Oracle) <rmk+kernel@...linux.org.uk>
    ARM: fix build warning in proc-v7-bugs.c

WANG Chao <chao.wang@...oud.cn>
    x86, modpost: Replace last remnants of RETPOLINE with CONFIG_RETPOLINE

Masahiro Yamada <yamada.masahiro@...ionext.com>
    x86/build: Fix compiler support check for CONFIG_RETPOLINE

Nathan Chancellor <nathan@...nel.org>
    ARM: Do not use NOCROSSREFS directive with ld.lld

Russell King (Oracle) <rmk+kernel@...linux.org.uk>
    ARM: fix co-processor register typo

Emmanuel Gil Peyrot <linkmauve@...kmauve.fr>
    ARM: fix build error when BPF_SYSCALL is disabled

Russell King (Oracle) <rmk+kernel@...linux.org.uk>
    ARM: include unprivileged BPF status in Spectre V2 reporting

Russell King (Oracle) <rmk+kernel@...linux.org.uk>
    ARM: Spectre-BHB workaround

Russell King (Oracle) <rmk+kernel@...linux.org.uk>
    ARM: use LOADADDR() to get load address of sections

Russell King (Oracle) <rmk+kernel@...linux.org.uk>
    ARM: early traps initialisation

Russell King (Oracle) <rmk+kernel@...linux.org.uk>
    ARM: report Spectre v2 status through sysfs

Mark Rutland <mark.rutland@....com>
    arm/arm64: smccc/psci: add arm_smccc_1_1_get_conduit()

Steven Price <steven.price@....com>
    arm/arm64: Provide a wrapper for SMCCC 1.1 calls

Josh Poimboeuf <jpoimboe@...hat.com>
    x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT

Josh Poimboeuf <jpoimboe@...hat.com>
    x86/speculation: Warn about Spectre v2 LFENCE mitigation

Kim Phillips <kim.phillips@....com>
    x86/speculation: Update link to AMD speculation whitepaper

Kim Phillips <kim.phillips@....com>
    x86/speculation: Use generic retpoline by default on AMD

Josh Poimboeuf <jpoimboe@...hat.com>
    x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting

Peter Zijlstra <peterz@...radead.org>
    Documentation/hw-vuln: Update spectre doc

Peter Zijlstra <peterz@...radead.org>
    x86/speculation: Add eIBRS + Retpoline options

Peter Zijlstra (Intel) <peterz@...radead.org>
    x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE

Peter Zijlstra <peterz@...radead.org>
    x86,bugs: Unconditionally allow spectre_v2=retpoline,amd

Borislav Petkov <bp@...e.de>
    x86/speculation: Merge one test in spectre_v2_user_select_mitigation()

Lukas Bulwahn <lukas.bulwahn@...il.com>
    Documentation: refer to config RANDOMIZE_BASE for kernel address-space randomization

Josh Poimboeuf <jpoimboe@...hat.com>
    Documentation: Add swapgs description to the Spectre v1 documentation

Tim Chen <tim.c.chen@...ux.intel.com>
    Documentation: Add section about CPU vulnerabilities for Spectre

Zhenzhong Duan <zhenzhong.duan@...cle.com>
    x86/retpoline: Remove minimal retpoline support

Zhenzhong Duan <zhenzhong.duan@...cle.com>
    x86/retpoline: Make CONFIG_RETPOLINE depend on compiler support

Zhenzhong Duan <zhenzhong.duan@...cle.com>
    x86/speculation: Add RETPOLINE_AMD support to the inline asm CALL_NOSPEC variant


-------------

Diffstat:

 Documentation/hw-vuln/index.rst          |   1 +
 Documentation/hw-vuln/spectre.rst        | 785 +++++++++++++++++++++++++++++++
 Documentation/kernel-parameters.txt      |   8 +-
 Makefile                                 |   4 +-
 arch/arm/include/asm/assembler.h         |  10 +
 arch/arm/include/asm/spectre.h           |  32 ++
 arch/arm/kernel/Makefile                 |   2 +
 arch/arm/kernel/entry-armv.S             |  79 +++-
 arch/arm/kernel/entry-common.S           |  24 +
 arch/arm/kernel/spectre.c                |  71 +++
 arch/arm/kernel/traps.c                  |  65 ++-
 arch/arm/kernel/vmlinux-xip.lds.S        |  45 +-
 arch/arm/kernel/vmlinux.lds.S            |  45 +-
 arch/arm/mm/Kconfig                      |  11 +
 arch/arm/mm/proc-v7-bugs.c               | 199 ++++++--
 arch/x86/Kconfig                         |   4 -
 arch/x86/Makefile                        |  11 +-
 arch/x86/include/asm/cpufeatures.h       |   2 +-
 arch/x86/include/asm/nospec-branch.h     |  41 +-
 arch/x86/kernel/cpu/bugs.c               | 225 ++++++---
 drivers/block/xen-blkfront.c             |  67 +--
 drivers/firmware/psci.c                  |  15 +
 drivers/net/xen-netfront.c               |  54 ++-
 drivers/scsi/xen-scsifront.c             |   3 +-
 drivers/xen/gntalloc.c                   |  25 +-
 drivers/xen/grant-table.c                |  59 ++-
 drivers/xen/xenbus/xenbus_client.c       |  24 +-
 include/linux/arm-smccc.h                |  74 +++
 include/linux/bpf.h                      |  11 +
 include/linux/compiler-gcc.h             |   2 +-
 include/linux/module.h                   |   2 +-
 include/xen/grant_table.h                |  19 +-
 kernel/sysctl.c                          |   8 +
 scripts/mod/modpost.c                    |   2 +-
 tools/arch/x86/include/asm/cpufeatures.h |   2 +-
 35 files changed, 1763 insertions(+), 268 deletions(-)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ