Oracle7: ELSA-2022-9245: kernel Important Security Update
Summary
[5.4.17-2136.305.5.3.el7] - bpf: fix out-of-tree module build (Alan Maguire) [Orabug: 33973548] - ACPICA: Enable sleep button on ACPI legacy wake (Anchal Agarwal) [Orabug: 33973543] - Revert "btrfs: inode: refactor the parameters of insert_reserved_file_extent()" (Srikanth C S) [Orabug: 33973491] - Revert "btrfs: fix metadata reservation for fallocate that leads to transaction aborts" (Srikanth C S) [Orabug: 33973491] - 5.4.17-2136.305.5.2.el7 - lib/iov_iter: initialize "flags" in new pipe_buffer (Max Kellermann) [Orabug: 33942325] {CVE-2022-0847} - 5.4.17-2136.305.5.1.el7 - arm64: Use the clearbhb instruction in mitigations (James Morse) [Orabug: 33937423] - arm64: add ID_AA64ISAR2_EL1 sys register (Joey Gouly) [Orabug: 33937423] - KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered and migrated (James Morse) [Orabug: 33937423] - arm64: Mitigate spectre style branch history side channels (James Morse) [Orabug: 33937423] - KVM: arm64: Add templa...
Read the Full AdvisorySRPMs
https://oss.oracle.com:443/ol7/SRPMS-updates/kernel-uek-container-5.4.17-2136.305.5.3.el7.src.rpm
x86_64
kernel-uek-container-5.4.17-2136.305.5.3.el7.x86_64.rpm kernel-uek-container-debug-5.4.17-2136.305.5.3.el7.x86_64.rpm
aarch64
- KVM: x86: Initialize tdp_level during vCPU creation (Sean Christopherson) [Orabug: 33841857] - KVM: x86/mmu: Capture TDP level when updating CPUID (Sean Christopherson) [Orabug: 33841857] - xen/netback: don't queue unlimited number of packages (Juergen Gross) [Orabug: 33851834] - xen/netback: fix rx queue stall detection (Juergen Gross) [Orabug: 33851834] - Fix conflict of LTS commit "PCI: aardvark: Configure PCIe resources from 'ranges' DT property" (Sherry Yang) [Orabug: 33862617] - 5.4.17-2136.305.2.el7 - LTS tag: v5.4.163 (Sherry Yang) - tty: hvc: replace BUG_ON() with negative return value (Juergen Gross) - xen/netfront: don't trust the backend response data blindly (Juergen Gross) - xen/netfront: disentangle tx_skb_freelist (Juergen Gross) - xen/netfront: don't read data from request on the ring page (Juergen Gross) - xen/netfront: read response from backend only once (Juergen Gross) - xen/blkfront: don't trust the backend response data blindly (Juergen Gross) - xen/blkfront: don't take local copy of a request from the ring page (Juergen Gross) - xen/blkfront: read response from backend only once (Juergen Gross) - xen: sync include/xen/interface/io/ring.h with Xen's newest version (Juergen Gross) - fuse: release pipe buf after last use (Miklos Szeredi) - NFC: add NCI_UNREG flag to eliminate the race (Lin Ma) - shm: extend forced shm destroy to support objects from several IPC nses (Alexander Mikhalitsyn) - s390/mm: validate VMA in PGSTE manipulation functions (David Hildenbrand) - tracing: Check pid filtering when creating events (Steven Rostedt (VMware)) - vhost/vsock: fix incorrect used length reported to the guest (Stefano Garzarella) - smb3: do not error on fsync when readonly (Steve French) - f2fs: set SBI_NEED_FSCK flag when inconsistent node block found (Weichao Guo) - net: mscc: ocelot: correctly report the timestamping RX filters in ethtool (Vladimir Oltean) - net: mscc: ocelot: don't downgrade timestamping RX filters in SIOCSHWTSTAMP (Vladimir Oltean) - net: hns3: fix VF RSS failed problem after PF enable multi-TCs (Guangbin Huang) - net/smc: Don't call clcsock shutdown twice when smc shutdown (Tony Lu) - net: vlan: fix underflow for the real_dev refcnt (Ziyang Xuan) - MIPS: use 3-level pgtable for 64KB page size on MIPS_VA_BITS_48 (Huang Pei) - igb: fix netpoll exit with traffic (Jesse Brandeburg) - nvmet: use IOCB_NOWAIT only if the filesystem supports it (Maurizio Lombardi) - tcp_cubic: fix spurious Hystart ACK train detections for not-cwnd-limited flows (Eric Dumazet) - PM: hibernate: use correct mode for swsusp_close() (Thomas Zeitlhofer) - net/ncsi : Add payload to be 32-bit aligned to fix dropped packets (Kumar Thangavel) - nvmet-tcp: fix incomplete data digest send (Varun Prakash) - net/smc: Ensure the active closing peer first closes clcsock (Tony Lu) - scsi: core: sysfs: Fix setting device state to SDEV_RUNNING (Mike Christie) - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Nikolay Aleksandrov) - net: ipv6: add fib6_nh_release_dsts stub (Nikolay Aleksandrov) - nfp: checking parameter process for rx-usecs/tx-usecs is invalid (Diana Wang) - ipv6: fix typos in __ip6_finish_output() (Eric Dumazet) - iavf: Prevent changing static ITR values if adaptive moderation is on (Nitesh B Venkatesh) - drm/vc4: fix error code in vc4_create_object() (Dan Carpenter) - scsi: mpt3sas: Fix kernel panic during drive powercycle test (Sreekanth Reddy) - ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (Takashi Iwai) - NFSv42: Don't fail clone() unless the OP_CLONE operation failed (Trond Myklebust) - firmware: arm_scmi: pm: Propagate return value to caller (Peng Fan) - net: ieee802154: handle iftypes as u32 (Alexander Aring) - ASoC: topology: Add missing rwsem around snd_ctl_remove() calls (Takashi Iwai) - ASoC: qdsp6: q6routing: Conditionally reset FrontEnd Mixer (Srinivas Kandagatla) - ARM: dts: BCM5301X: Add interrupt properties to GPIO node (Florian Fainelli) - ARM: dts: BCM5301X: Fix I2C controller interrupt (Florian Fainelli) - netfilter: ipvs: Fix reuse connection if RS weight is 0 (yangxingwu) - proc/vmcore: fix clearing user buffer by properly using clear_user() (David Hildenbrand) - arm64: dts: marvell: armada-37xx: Set pcie_reset_pin to gpio function (Marek Behún) - pinctrl: armada-37xx: Correct PWM pins definitions (Marek Behún) - PCI: aardvark: Fix support for PCI_BRIDGE_CTL_BUS_RESET on emulated bridge (Pali Rohár) - PCI: aardvark: Set PCI Bridge Class Code to PCI Bridge (Pali Rohár) - PCI: aardvark: Fix support for bus mastering and PCI_COMMAND on emulated bridge (Pali Rohár) - PCI: aardvark: Fix link training (Pali Rohár) - PCI: aardvark: Simplify initialization of rootcap on virtual bridge (Pali Rohár) - PCI: aardvark: Implement re-issuing config requests on CRS response (Pali Rohár) - PCI: aardvark: Fix PCIe Max Payload Size setting (Pali Rohár) - PCI: aardvark: Configure PCIe resources from 'ranges' DT property (Pali Rohár) - PCI: pci-bridge-emul: Fix array overruns, improve safety (Russell King) - PCI: aardvark: Update comment about disabling link training (Pali Rohár) - PCI: aardvark: Move PCIe reset card code to advk_pcie_train_link() (Pali Rohár) - PCI: aardvark: Fix compilation on s390 (Pali Rohár) - PCI: aardvark: Don't touch PCIe registers if no card connected (Pali Rohár) - PCI: aardvark: Replace custom macros by standard linux/pci_regs.h macros (Pali Rohár) - PCI: aardvark: Issue PERST via GPIO (Pali Rohár) - PCI: aardvark: Improve link training (Marek Behún) - PCI: aardvark: Train link immediately after enabling training (Pali Rohár) - PCI: aardvark: Fix big endian support (Grzegorz Jaszczyk) - PCI: aardvark: Wait for endpoint to be ready before training link (Remi Pommarel) - PCI: aardvark: Deduplicate code in advk_pcie_rd_conf() (Marek Behún) - mdio: aspeed: Fix "Link is Down" issue (Dylan Hung) - mmc: sdhci: Fix ADMA for PAGE_SIZE >= 64KiB (Adrian Hunter) - tracing: Fix pid filtering when triggers are attached (Steven Rostedt (VMware)) - tracing/uprobe: Fix uprobe_perf_open probes iteration (Jiri Olsa) - KVM: PPC: Book3S HV: Prevent POWER7/8 TLB flush flushing SLB (Nicholas Piggin) - xen: detect uninitialized xenbus in xenbus_init (Stefano Stabellini) - xen: don't continue xenstore initialization in case of errors (Stefano Stabellini) - staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() (Dan Carpenter) - staging/fbtft: Fix backlight (Noralf Trønnes) - HID: wacom: Use "Confidence" flag to prevent reporting invalid contacts (Jason Gerecke) - Revert "parisc: Fix backtrace to always include init funtion names" (Helge Deller) - media: cec: copy sequence field for the reply (Hans Verkuil) - ALSA: ctxfi: Fix out-of-range access (Takashi Iwai) - binder: fix test regression due to sender_euid change (Todd Kjos) - usb: hub: Fix locking issues with address0_mutex (Mathias Nyman) - usb: hub: Fix usb enumeration issue due to address0 race (Mathias Nyman) - usb: typec: fusb302: Fix masking of comparator and bc_lvl interrupts (Ondrej Jirman) - net: nexthop: fix null pointer dereference when IPv6 is not enabled (Nikolay Aleksandrov) - usb: dwc2: hcd_queue: Fix use of floating point literal (Nathan Chancellor) - usb: dwc2: gadget: Fix ISOC flow for elapsed frames (Minas Harutyunyan) - USB: serial: option: add Fibocom FM101-GL variants (Mingjie Zhang) - USB: serial: option: add Telit LE910S1 0x9200 composition (Daniele Palmas) - LTS tag: v5.4.162 (Sherry Yang) - ALSA: hda: hdac_stream: fix potential locking issue in snd_hdac_stream_assign() (Pierre-Louis Bossart) - ALSA: hda: hdac_ext_stream: fix potential locking issues (Pierre-Louis Bossart) - hugetlbfs: flush TLBs correctly after huge_pmd_unshare (Nadav Amit) - tlb: mmu_gather: add tlb_flush_*_range APIs (Peter Zijlstra (Intel)) - ice: Delete always true check of PF pointer (Leon Romanovsky) - usb: max-3421: Use driver data instead of maintaining a list of bound devices (Uwe Kleine-König) - ASoC: DAPM: Cover regression by kctl change notification fix (Takashi Iwai) - batman-adv: Don't always reallocate the fragmentation skb head (Sven Eckelmann) - batman-adv: Reserve needed_*room for fragments (Sven Eckelmann) - batman-adv: Consider fragmentation for needed_headroom (Sven Eckelmann) - perf/core: Avoid put_page() when GUP fails (Greg Thelen) - Revert "net: mvpp2: disable force link UP during port init procedure" (Greg Kroah-Hartman) - drm/amdgpu: fix set scaling mode Full/Full aspect/Center not works on vga and dvi connectors (hongao) - drm/i915/dp: Ensure sink rate values are always valid (Imre Deak) - drm/nouveau: use drm_dev_unplug() during device removal (Jeremy Cline) - drm/udl: fix control-message timeout (Johan Hovold) - cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (Nguyen Dinh Phi) - parisc/sticon: fix reverse colors (Sven Schnelle) - btrfs: fix memory ordering between normal and ordered work functions (Nikolay Borisov) - udf: Fix crash after seekdir (Jan Kara) - s390/kexec: fix memory leak of ipl report buffer (Baoquan He) - x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails (Sean Christopherson) - mm: kmemleak: slob: respect SLAB_NOLEAKTRACE flag (Rustam Kovhaev) - ipc: WARN if trying to remove ipc object which is absent (Alexander Mikhalitsyn) - hexagon: export raw I/O routines for modules (Nathan Chancellor) - tun: fix bonding active backup with arp monitoring (Nicolas Dichtel) - arm64: vdso32: suppress error message for 'make mrproper' (Nick Desaulniers) - s390/kexec: fix return code handling (Heiko Carstens) - perf/x86/intel/uncore: Fix IIO event constraints for Skylake Server (Alexander Antonov) - perf/x86/intel/uncore: Fix filter_tid mask for CHA events on Skylake Server (Alexander Antonov) - KVM: PPC: Book3S HV: Use GLOBAL_TOC for kvmppc_h_set_dabr/xdabr() (Michael Ellerman) - NFC: reorder the logic in nfc_{un,}register_device (Lin Ma) - drm/nouveau: hdmigv100.c: fix corrupted HDMI Vendor InfoFrame (Hans Verkuil) - NFC: reorganize the functions in nci_request (Lin Ma) - i40e: Fix display error code in dmesg (Grzegorz Szczurek) - i40e: Fix creation of first queue by omitting it if is not power of two (Jedrzej Jagielski) - i40e: Fix ping is lost after configuring ADq on VF (Eryk Rybak) - i40e: Fix changing previously set num_queue_pairs for PFs (Eryk Rybak) - i40e: Fix NULL ptr dereference on VSI filter sync (Michal Maloszewski) - i40e: Fix correct max_pkt_size on VF RX queue (Eryk Rybak) - net: virtio_net_hdr_to_skb: count transport header in UFO (Jonathan Davies) - net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove (Pavel Skripkin) - net: sched: act_mirred: drop dst for the direction from egress to ingress (Xin Long) - scsi: core: sysfs: Fix hang when device state is set via sysfs (Mike Christie) - platform/x86: hp_accel: Fix an error handling path in 'lis3lv02d_probe()' (Christophe JAILLET) - mips: lantiq: add support for clk_get_parent() (Randy Dunlap) - mips: bcm63xx: add support for clk_get_parent() (Randy Dunlap) - MIPS: generic/yamon-dt: fix uninitialized variable error (Colin Ian King) - iavf: Fix for the false positive ASQ/ARQ errors while issuing VF reset (Surabhi Boob) - iavf: validate pointers (Mitch Williams) - iavf: prevent accidental free of filter structure (Jacob Keller) - iavf: Fix failure to exit out from last all-multicast mode (Piotr Marczak) - iavf: free q_vectors before queues in iavf_disable_vf (Nicholas Nunley) - iavf: check for null in iavf_fix_features (Nicholas Nunley) - net: bnx2x: fix variable dereferenced before check (Pavel Skripkin) - perf tests: Remove bash construct from record+zstd_comp_decomp.sh (James Clark) - perf bench futex: Fix memory leak of perf_cpu_map__new() (Sohaib Mohamed) - perf bpf: Avoid memory leak from perf_env__insert_btf() (Ian Rogers) - RDMA/netlink: Add __maybe_unused to static inline in C file (Leon Romanovsky) - tracing/histogram: Do not copy the fixed-size char array field over the field size (Masami Hiramatsu) - tracing: Save normal string variables (Tom Zanussi) - sched/core: Mitigate race cpus_share_cache()/update_top_cache_domain() (Vincent Donnefort) - mips: BCM63XX: ensure that CPU_SUPPORTS_32BIT_KERNEL is set (Randy Dunlap) - clk: qcom: gcc-msm8996: Drop (again) gcc_aggre1_pnoc_ahb_clk (Dmitry Baryshkov) - clk/ast2600: Fix soc revision for AHB (Joel Stanley) - clk: ingenic: Fix bugs with divided dividers (Paul Cercueil) - sh: define __BIG_ENDIAN for math-emu (Randy Dunlap) - sh: math-emu: drop unused functions (Randy Dunlap) - sh: fix kconfig unmet dependency warning for FRAME_POINTER (Randy Dunlap) - f2fs: fix up f2fs_lookup tracepoints (Gao Xiang) - maple: fix wrong return value of maple_bus_init(). (Lu Wei) - sh: check return code of request_irq (Nick Desaulniers) - powerpc/dcr: Use cmplwi instead of 3-argument cmpli (Michael Ellerman) - ALSA: gus: fix null pointer dereference on pointer block (Chengfeng Ye) - powerpc/5200: dts: fix memory node unit name (Anatolij Gustschin) - iio: imu: st_lsm6dsx: Avoid potential array overflow in st_lsm6dsx_set_odr() (Teng Qi) - scsi: target: Fix alua_tg_pt_gps_count tracking (Mike Christie) - scsi: target: Fix ordered tag handling (Mike Christie) - MIPS: sni: Fix the build (Bart Van Assche) - tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc (Guanghui Feng) - ALSA: ISA: not for M68K (Randy Dunlap) - ARM: dts: ls1021a-tsn: use generic "jedec,spi-nor" compatible for flash (Li Yang) - ARM: dts: ls1021a: move thermal-zones node out of soc/ (Li Yang) - usb: host: ohci-tmio: check return value after calling platform_get_resource() (Yang Yingliang) - ARM: dts: omap: fix gpmc,mux-add-data type (Roger Quadros) - firmware_loader: fix pre-allocated buf built-in firmware use (Luis Chamberlain) - scsi: advansys: Fix kernel pointer leak (Guo Zhi) - ASoC: nau8824: Add DMI quirk mechanism for active-high jack-detect (Hans de Goede) - clk: imx: imx6ul: Move csi_sel mux to correct base register (Stefan Riedmueller) - ASoC: SOF: Intel: hda-dai: fix potential locking issue (Pierre-Louis Bossart) - arm64: dts: freescale: fix arm,sp805 compatible string (Michael Walle) - arm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency (AngeloGioacchino Del Regno) - usb: typec: tipd: Remove WARN_ON in tps6598x_block_read (Sven Peter) - usb: musb: tusb6010: check return value after calling platform_get_resource() (Yang Yingliang) - RDMA/bnxt_re: Check if the vlan is valid before reporting (Selvin Xavier) - arm64: dts: hisilicon: fix arm,sp805 compatible string (Michael Walle) - ARM: dts: NSP: Fix mpcore, mmc node names (Matthew Hagan) - arm64: zynqmp: Fix serial compatible string (Michal Simek) - arm64: zynqmp: Do not duplicate flash partition label property (Amit Kumar Mahapatra) - net/mlx5: Add back multicast stats for uplink representor (Huy Nguyen) [Orabug: 33519567] - net/mlx5: E-Switch, Protect changing mode while adding rules (Roi Dayan) [Orabug: 33519567] - net/mlx5e: Do not reload ethernet ports when changing eswitch mode (Roi Dayan) [Orabug: 33519567] - net/mlx5: Move devlink port from mlx5e priv to mlx5e resources (Roi Dayan) [Orabug: 33519567] - net/mlx5: Move mlx5e hw resources into a sub object (Roi Dayan) [Orabug: 33519567] - net/mlx5e: Verify dev is present in some ndos (Roi Dayan) [Orabug: 33519567] - net/mlx5e: Use nic mode netdev ndos and ethtool ops for uplink representor (Roi Dayan) [Orabug: 33519567] - net/mlx5e: Add offload stats ndos to nic netdev ops (Roi Dayan) [Orabug: 33519567] - net/mlx5e: Distinguish nic and esw offload in tc setup block cb (Roi Dayan) [Orabug: 33519567] - net/mlx5e: Allow legacy vf ndos only if in legacy mode (Roi Dayan) [Orabug: 33519567] - net/mlx5e: Same max num channels for both nic and uplink profiles (Saeed Mahameed) [Orabug: 33519567] - net: Change dev parameter to const in netif_device_present() (Roi Dayan) [Orabug: 33519567] - net/mlx5: Cleanup prototype warning (Saeed Mahameed) [Orabug: 33519567] - net/mxl5e: Add change profile method (Saeed Mahameed) [Orabug: 33519567] - net/mlx5e: Disable hw-tc-offload when MLX5_CLS_ACT config is disabled (Maor Dickman) [Orabug: 33519567] - net/tls: Fix wrong record sn in async mode of device resync (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: Fix multicast counter not up-to-date in "ip -s" (Ron Diskin) [Orabug: 33519567] - net/mlx5e: Add support for PCI relaxed ordering (Aya Levin) [Orabug: 33519567] - net/mlx5e: Move exposure of datapath function to txrx header (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: RX, Re-work initializaiton of RX function pointers (Tariq Toukan) [Orabug: 33519567] - RDMA/mlx5: ConnectX-7 new capabilities to set relaxed ordering by UMR (Meir Lichtinger) [Orabug: 33519567] - net/mlx5e: IPsec: Add Connect-X IPsec Rx data path offload (Raed Salem) [Orabug: 33519567] - net/mlx5e: Fix usage of rcu-protected pointer (Vlad Buslov) [Orabug: 33519567] - net/mlx5e: Move RQ helpers to txrx.h (Aya Levin) [Orabug: 33519567] - net/mlx5e: Remove redundant RQ state query (Aya Levin) [Orabug: 33519567] - net/mlx5e: Change reporters create functions to return void (Eran Ben Elisha) [Orabug: 33519567] - net/tls: fix sign extension issue when left shifting u16 value (Colin Ian King) [Orabug: 33519567] - net/mlx5e: kTLS, Improve rx handler function call (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: kTLS, Add kTLS RX stats (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: kTLS, Add kTLS RX resync support (Tariq Toukan) [Orabug: 33519567] - net/tls: Add asynchronous resync (Boris Pismenny) [Orabug: 33519567] - Revert "net/tls: Add force_resync for driver resync" (Boris Pismenny) [Orabug: 33519567] - net/mlx5e: kTLS, Add kTLS RX HW offload support (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: kTLS, Improve TLS feature modularity (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: Accel, Expose flow steering API for rules add/del (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: Receive flow steering framework for accelerated TCP flows (Boris Pismenny) [Orabug: 33519567] - net/mlx5e: API to manipulate TTC rules destinations (Saeed Mahameed) [Orabug: 33519567] - net/mlx5e: Turn XSK ICOSQ into a general asynchronous one (Tariq Toukan) [Orabug: 33519567] - net/mlx5: kTLS, Improve TLS params layout structures (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: Support tc block sharing for representors (Vu Pham) [Orabug: 33519567] - net/mlx5e: Calculate SQ stop room in a robust way (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: IPoIB, Enable loopback packets for IPoIB interfaces (Erez Shitrit) [Orabug: 33519567] - net/mlx5e: Enhance ICOSQ WQE info fields (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: Use struct assignment for WQE info updates (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: Take TX WQE info structures out of general EN header (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: kTLS, Do not fill edge for the DUMP WQEs in TX flow (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: kTLS, Fill work queue edge separately in TX flow (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: Split TX acceleration offloads into two phases (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: Update UDP fields of the SKB for GSO first (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: Make TLS offload independent of wqe and pi (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: Pass only eseg to IPSEC offload (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: Return void from mlx5e_sq_xmit and mlx5i_sq_xmit (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: Unify checks of TLS offloads (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: Return bool from TLS and IPSEC offloads (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: Unify reserving space for WQEs (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: Rename ICOSQ WQE info struct and field (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: Fetch WQE: reuse code and enforce typing (Maxim Mikityanskiy) [Orabug: 33519567] - net/mlx5e: TX, Generalise code and usage of error CQE dump (Tariq Toukan) [Orabug: 33519567] - net/mlx5: Introduce TLS RX offload hardware bits (Tariq Toukan) [Orabug: 33519567] - net/mlx5: Update transobj.c new cmd interface (Leon Romanovsky) [Orabug: 33519567] - net/mlx5e: en_accel, Add missing net/geneve.h include (Raed Salem) [Orabug: 33519567] - net/mlx5e: Show/set Rx network flow classification rules on ul rep (Vlad Buslov) [Orabug: 33519567] - net/mlx5e: Show/set Rx flow indir table and RSS hash key on ul rep (Vlad Buslov) [Orabug: 33519567] - mlx5: reject unsupported coalescing params (Jakub Kicinski) [Orabug: 33519567] - net/mlx5e: RX, Use indirect calls wrapper for posting descriptors (Tariq Toukan) [Orabug: 33519567] - net/mlx5e: Replace zero-length array with flexible-array member (Gustavo A. R. Silva) [Orabug: 33519567] - net/mlx5e: TX, Error completion is for last WQE in batch (Tariq Toukan) [Orabug: 33519567] - net/mlx5: Expose relaxed ordering bits (Michael Guralnik) [Orabug: 33519567] - net/mlx5e: TX, Dump WQs wqe descriptors on CQE with error events (Saeed Mahameed) [Orabug: 33519567] - 5.4.17-2136.305.1.el7 - btrfs: fix metadata reservation for fallocate that leads to transaction aborts (Filipe Manana) [Orabug: 32675999] - btrfs: inode: refactor the parameters of insert_reserved_file_extent() (Qu Wenruo) [Orabug: 32675999] - uek-rpm: Enable QAT 4XXX device (Thomas Tai) [Orabug: 33440215] - crypto: qat - power up 4xxx device (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - fix naming of PF/VF enable functions (Marco Chiappero) [Orabug: 33440215] - crypto: qat - complete all the init steps before service notification (Marco Chiappero) [Orabug: 33440215] - crypto: qat - move IO virtualization functions (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - rename compatibility version definition (Marco Chiappero) [Orabug: 33440215] - crypto: qat - enable interrupts only after ISR allocation (Marco Chiappero) [Orabug: 33440215] - crypto: qat - simplify code and axe the use of a deprecated API (Christophe JAILLET) [Orabug: 33440215] - crypto: qat - enable detection of accelerators hang (Wojciech Ziemba) [Orabug: 33440215] - crypto: qat - configure arbiter mapping based on engines enabled (Wojciech Ziemba) [Orabug: 33440215] - crypto: qat - replace CRYPTO_AES with CRYPTO_LIB_AES in Kconfig (Marco Chiappero) [Orabug: 33440215] - crypto: qat - add CRYPTO_AES to Kconfig dependencies (Marco Chiappero) [Orabug: 33440215] - crypto: qat - add capability detection logic in qat_4xxx (Marco Chiappero) [Orabug: 33440215] - crypto: qat - add AES-XTS support for QAT GEN4 devices (Marco Chiappero) [Orabug: 33440215] - crypto: qat - add AES-CTR support for QAT GEN4 devices (Marco Chiappero) [Orabug: 33440215] - crypto: qat - add qat_4xxx driver (Thomas Tai) [Orabug: 33440215] - crypto: qat - add hook to initialize vector routing table (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - target fw images to specific AEs (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - add gen4 firmware loader (Jack Xu) [Orabug: 33440215] - crypto: qat - add support for broadcasting mode (Jack Xu) [Orabug: 33440215] - crypto: qat - add support for shared ustore (Jack Xu) [Orabug: 33440215] - crypto: qat - allow to target specific AEs (Jack Xu) [Orabug: 33440215] - crypto: qat - add FCU CSRs to chip info (Jack Xu) [Orabug: 33440215] - crypto: qat - add CSS3K support (Jack Xu) [Orabug: 33440215] - crypto: qat - use ae_mask (Jack Xu) [Orabug: 33440215] - crypto: qat - add misc control CSR to chip info (Jack Xu) [Orabug: 33440215] - crypto: qat - add wake up event to chip info (Jack Xu) [Orabug: 33440215] - crypto: qat - add clock enable CSR to chip info (Jack Xu) [Orabug: 33440215] - crypto: qat - add reset CSR and mask to chip info (Jack Xu) [Orabug: 33440215] - crypto: qat - add local memory size to chip info (Jack Xu) [Orabug: 33440215] - crypto: qat - add support for lm2 and lm3 (Jack Xu) [Orabug: 33440215] - crypto: qat - add next neighbor to chip_info (Jack Xu) [Orabug: 33440215] - crypto: qat - introduce chip info structure (Jack Xu) [Orabug: 33440215] - crypto: qat - refactor long expressions (Jack Xu) [Orabug: 33440215] - crypto: qat - refactor qat_uclo_set_ae_mode() (Jack Xu) [Orabug: 33440215] - crypto: qat - move defines to header files (Jack Xu) [Orabug: 33440215] - crypto: qat - remove global CSRs helpers (Jack Xu) [Orabug: 33440215] - crypto: qat - refactor AE start (Jack Xu) [Orabug: 33440215] - crypto: qat - rename qat_uclo_del_uof_obj() (Jack Xu) [Orabug: 33440215] - crypto: qat - remove unnecessary parenthesis (Jack Xu) [Orabug: 33440215] - crypto: qat - support for mof format in fw loader (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - allow for instances in different banks (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - refactor qat_crypto_dev_config() (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - refactor qat_crypto_create_instances() (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - remove unnecessary void* casts (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - call functions in adf_sriov if available (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - abstract writes to arbiter enable (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - use BIT_ULL() - 1 pattern for masks (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - replace constant masks with GENMASK (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - abstract build ring base (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - enable ring after pair is programmed (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - register crypto instances based on capability (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - add support for capability detection (Marco Chiappero) [Orabug: 33440215] - crypto: qat - abstract arbiter access (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - remove unused macros in arbiter module (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - remove writes into WQCFG (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - update constants table (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - use admin mask to send fw constants (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - change admin sequence (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - rename ME in AE (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - add packed to init admin structures (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - abstract admin interface (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - relocate GEN2 CSR access code (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - split transport CSR access logic (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - fix configuration of iov threads (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - num_rings_per_bank is device dependent (Ahsan Atta) [Orabug: 33440215] - crypto: qat - mask device capabilities with soft straps (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - update IV in software (Marco Chiappero) [Orabug: 33440215] - crypto: qat - drop input parameter from adf_enable_aer() (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - replace device ids defines (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - add delay before polling mailbox (Giovanni Cabiddu) [Orabug: 33440215] - PCI: Add Intel QuickAssist device IDs (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - fallback for xts with 192 bit keys (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - remove unused field in skcipher ctx (Thomas Tai) [Orabug: 33440215] - crypto: qat - validate xts key (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - allow xts requests not multiple of block (Giovanni Cabiddu) [Orabug: 33440215] - crypto: qat - update timeout logic in put admin msg (Wojciech Ziemba) [Orabug: 33440215] - crypto: qat - send admin messages to set of AEs (Wojciech Ziemba) [Orabug: 33440215] - crypto: qat - update fw init admin msg (Wojciech Ziemba) [Orabug: 33440215] - crypto: qat - replace user types with kernel ABI __u types (Wojciech Ziemba) [Orabug: 33440215] - crypto: qat - replace user types with kernel u types (Wojciech Ziemba) [Orabug: 33440215] - crypto: qat - convert to SPDX License Identifiers (Giovanni Cabiddu) [Orabug: 33440215] - iopoll: introduce read_poll_timeout macro (Dejin Zheng) [Orabug: 33440215] - crypto: qat - simplify the qat_crypto function (Tianjia Zhang) [Orabug: 33440215] - crypto: qat - switch to skcipher API (Ard Biesheuvel) [Orabug: 33440215] - io_uring: fix false WARN_ONCE (Pavel Begunkov) [Orabug: 33731046] - scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix link down processing to address NULL pointer dereference (James Smart) [Orabug: 33731165] - scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (James Smart) [Orabug: 33731165] - scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (James Smart) [Orabug: 33731165] - scsi: lpfc: Add support for optional PLDV handling (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix mailbox command failure during driver initialization (James Smart) [Orabug: 33731165] - scsi: lpfc: Improve PBDE checks during SGL processing (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix NVMe I/O failover to non-optimized path (James Smart) [Orabug: 33731165] - scsi: lpfc: Don't remove ndlp on PRLI errors in P2P mode (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix rediscovery of tape device after LIP (James Smart) [Orabug: 33731165] - scsi: lpfc: Don't release final kref on Fport node while ABTS outstanding (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (James Smart) [Orabug: 33731165] - scsi: lpfc: Move initialization of phba->poll_list earlier to avoid crash (Ewan D. Milne) [Orabug: 33731165] - scsi: lpfc: Fix possible ABBA deadlock in nvmet_xri_aborted() (James Smart) [Orabug: 33731165] - scsi: lpfc: Revise Topology and RAS support checks for new adapters (James Smart) [Orabug: 33731165] - scsi: lpfc: Copyright updates for 12.8.0.11 patches (James Smart) [Orabug: 33731165] - scsi: lpfc: Update lpfc version to 12.8.0.11 (James Smart) [Orabug: 33731165] - scsi: lpfc: Skip issuing ADISC when node is in NPR state (James Smart) [Orabug: 33731165] - scsi: lpfc: Call discovery state machine when handling PLOGI/ADISC completions (James Smart) [Orabug: 33731165] - scsi: lpfc: Delay unregistering from transport until GIDFT or ADISC completes (James Smart) [Orabug: 33731165] - scsi: lpfc: Clear outstanding active mailbox during PCI function reset (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix memory leaks in error paths while issuing ELS RDF/SCR request (James Smart) [Orabug: 33731165] - scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix target reset handler from falsely returning FAILURE (James Smart) [Orabug: 33731165] - scsi: lpfc: Discovery state machine fixes for LOGO handling (James Smart) [Orabug: 33731165] - scsi: lpfc: Remove use of kmalloc() in trace event logging (James Smart) [Orabug: 33731165] - scsi: lpfc: Fix failure to transmit ABTS on FC link (James Smart) [Orabug: 33731165] - bpf: Disallow unprivileged bpf by default (Pawan Gupta) [Orabug: 33734681] - bpf: Add kconfig knob for disabling unpriv bpf by default (Daniel Borkmann) [Orabug: 33734681] - USB: gadget: bRequestType is a bitfield, not a enum (Greg Kroah-Hartman) [Orabug: 33739525] {CVE-2021-39685} - USB: gadget: zero allocate endpoint 0 buffers (Greg Kroah-Hartman) [Orabug: 33739525] {CVE-2021-39685} - USB: gadget: detect too-big endpoint 0 requests (Greg Kroah-Hartman) [Orabug: 33739525] {CVE-2021-39685} - scsi: vmw_pvscsi: Set residual data length conditionally (Alexey Makhalov) [Orabug: 33761343] - hwmon: (k10temp) Add support for Zen3 CPUs (Rahul Rohit) [Orabug: 33782833] - Revert "rds/ib: Kernel upgrade to rds_ib_conns info displayed by rds-info" (Rohit Nair) [Orabug: 33812555] - uek-rpm: Add missing dax modules to kernel-ueknano (Somasundaram Krishnasamy) [Orabug: 33821042] - cgroup-v1: Require capabilities to set release_agent (Eric W. Biederman) [Orabug: 33825687] {CVE-2022-0492}