Oracle Linux Security Advisory ELSA-2022-9245

https://linux.oracle.com/errata/ELSA-2022-9245.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-container-5.4.17-2136.305.5.3.el8.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.305.5.3.el8.x86_64.rpm


SRPMS:
https://oss.oracle.com:443/ol8/SRPMS-updates/kernel-uek-container-5.4.17-2136.305.5.3.el8.src.rpm

Related CVEs:

CVE-2022-0847
CVE-2022-23960
CVE-2021-26401
CVE-2022-25636
CVE-2021-3653
CVE-2021-3656
CVE-2022-0330
CVE-2022-0435
CVE-2021-39685
CVE-2022-0492




Description of changes:

[5.4.17-2136.305.5.3.el8]
- bpf: fix out-of-tree module build (Alan Maguire)  [Orabug: 33973548]
- ACPICA: Enable sleep button on ACPI legacy wake (Anchal Agarwal)  [Orabug: 33973543]
- Revert "btrfs: inode: refactor the parameters of insert_reserved_file_extent()" (Srikanth C S)  [Orabug: 33973491]
- Revert "btrfs: fix metadata reservation for fallocate that leads to transaction aborts" (Srikanth C S)  [Orabug: 33973491]

- 5.4.17-2136.305.5.2.el8
- lib/iov_iter: initialize "flags" in new pipe_buffer (Max Kellermann)  [Orabug:
  33942325]  {CVE-2022-0847}

- 5.4.17-2136.305.5.1.el8
- arm64: Use the clearbhb instruction in mitigations (James Morse)  [Orabug: 33937423]
- arm64: add ID_AA64ISAR2_EL1 sys register (Joey Gouly)  [Orabug: 33937423]
- KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered and migrated (James Morse)  [Orabug: 33937423]
- arm64: Mitigate spectre style branch history side channels (James Morse)  [Orabug: 33937423]
- KVM: arm64: Add templates for BHB mitigation sequences (James Morse)  [Orabug: 33937423]
- arm64: Add Cortex-X2 CPU part definition (Anshuman Khandual)  [Orabug: 33937423]
- arm64: Add Neoverse-N2, Cortex-A710 CPU part definition (Suzuki K Poulose)  [Orabug: 33937423]
- arm64: Add part number for Arm Cortex-A77 (Rob Herring)  [Orabug: 33937423]
- arm64: proton-pack: Report Spectre-BHB vulnerabilities as part of Spectre-v2 (James Morse)  [Orabug: 33937423]
- arm64: Add percpu vectors for EL1 (James Morse)  [Orabug: 33937423]
- arm64: entry: Add macro for reading symbol addresses from the trampoline (James Morse)  [Orabug: 33937423]
- arm64: entry: Add vectors that have the bhb mitigation sequences (James Morse)  [Orabug: 33937423]
- arm64: entry: Add non-kpti __bp_harden_el1_vectors for mitigations (James Morse)  [Orabug: 33937423]
- arm64: entry: Allow the trampoline text to occupy multiple pages (James Morse)  [Orabug: 33937423]
- arm64: entry: Make the kpti trampoline's kpti sequence optional (James Morse)  [Orabug: 33937423]
- arm64: entry: Move trampoline macros out of ifdef'd section (James Morse)  [Orabug: 33937423]
- arm64: entry: Don't assume tramp_vectors is the start of the vectors (James Morse)  [Orabug: 33937423]
- arm64: entry: Allow tramp_alias to access symbols after the 4K boundary (James Morse)  [Orabug: 33937423]
- arm64: entry: Move the trampoline data page before the text page (James Morse)  [Orabug: 33937423]
- arm64: entry: Free up another register on kpti's tramp_exit path (James Morse)  [Orabug: 33937423]
- arm64: entry: Make the trampoline cleanup optional (James Morse)  [Orabug: 33937423]
- arm64: entry.S: Add ventry overflow sanity checks (James Morse)  [Orabug: 33937423]
- Revert "BACKPORT: VARIANT 2: arm64: Add initial retpoline support" (Russell King)  [Orabug: 33937423]
- Revert "BACKPORT: VARIANT 2: arm64: asm: Use *_nospec variants for blr and br." (Russell King)  [Orabug: 33937423]
- Revert "BACKPORT: VARIANT 2: arm64: Add MIDR_APM_POTENZA." (Russell King)  [Orabug: 33937423]
- Revert "BACKPORT: VARIANT 2: arm64: insn: Add offset getter/setter for adr." (Russell King)  [Orabug: 33937423]
- Revert "BACKPORT: VARIANT 2: arm64: alternatives: Add support for adr/adrp with offset in alt block." (Russell King)  [Orabug: 33937423]
- Revert "BACKPORT: VARIANT 2: arm64: Use alternative framework for retpoline." (Russell King)  [Orabug: 33937423]
- Revert "Arm64: add retpoline to cpu_show_spectre_v2" (Russell King)  [Orabug: 33937423]
- Revert "arm64: retpoline: Don't use retpoline in KVM's HYP part." (Russell King)  [Orabug: 33937423]
- Revert "uek-rpm: aarch64 config enable RETPOLINE" (Russell King)  [Orabug: 33937423]
- Revert "uek-rpm: aarch64 config enable RETPOLINE OL8" (Russell King)  [Orabug: 33937423]
- x86/speculation: Add knob for eibrs_retpoline_enabled (Patrick Colp)  [Orabug: 33937344]  {CVE-2021-26341}
- x86/speculation: Extend our code to properly support eibrs+lfence and eibrs+retpoline (Patrick Colp)  [Orabug: 33937344]  {CVE-2021-26341}
- x86/speculation: Update link to AMD speculation whitepaper (Kim Phillips)  [Orabug: 33937344]  {CVE-2021-26341}
- x86/speculation: Use generic retpoline by default on AMD (Kim Phillips)  [Orabug: 33937344]  {CVE-2021-26341}
- x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting (Josh Poimboeuf)  [Orabug: 33937344]  {CVE-2021-26341}
- Documentation/hw-vuln: Update spectre doc (Peter Zijlstra)  [Orabug: 33937344]  {CVE-2021-26341}
- x86/speculation: Add eIBRS + Retpoline options (Peter Zijlstra)  [Orabug: 33937344]  {CVE-2021-26341}
- x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE (Peter Zijlstra (Intel))  [Orabug: 33937344]  {CVE-2021-26341}
- x86/speculation: The choice of retpoline mode is sometimes ignored (Patrick Colp)  [Orabug: 33937389]
- x86/speculation: Merge one test in spectre_v2_user_select_mitigation() (Borislav Petkov)  [Orabug: 33937344]  {CVE-2021-26341}
- x86/speculation: Update ALTERNATIVEs to (more closely) match upstream (Patrick Colp)  [Orabug: 33937344]  {CVE-2021-26341}
- x86/speculation: Fix bug in retpoline mode on AMD with `spectre_v2=none` (Patrick Colp)  [Orabug: 33937344]  {CVE-2021-26341}

- 5.4.17-2136.305.5.el8
- netfilter: nf_tables_offload: incorrect flow offload action array size (Pablo
  Neira Ayuso)  [Orabug: 33900416]  {CVE-2022-25636}

- 5.4.17-2136.305.4.el8
- net/mlx5e: Fix page DMA map/unmap attributes (Aya Levin)  [Orabug: 33382242]
- DMA/rxe: Update default value of RXE_MAX_PDN (Rao Shoaib)  [Orabug: 33676597]
- uek-rpm: enable VIRTIO_PCI_LIB_LEGACY config (Si-Wei Liu)  [Orabug: 33749636]
- vdpa/mlx5: Fix tracking of current number of VQs (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Fix is_index_valid() to refer to features (Eli Cohen)  [Orabug: 33749636]
- vdpa: Protect vdpa reset with cf_mutex (Eli Cohen)  [Orabug: 33749636]
- vdpa: Avoid taking cf_mutex lock on get status (Eli Cohen)  [Orabug: 33749636]
- vdpa/vdpa_sim_net: Report max device capabilities (Eli Cohen)  [Orabug: 33749636]
- vdpa: Use BIT_ULL for bit operations (Eli Cohen)  [Orabug: 33749636]
- vdpa/vdpa_sim: Configure max supported virtqueues (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Report max device capabilities (Eli Cohen)  [Orabug: 33749636]
- vdpa: Support reporting max device capabilities (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Restore cur_num_vqs in case of failure in change_num_qps() (Eli Cohen)  [Orabug: 33749636]
- vdpa: Add support for returning device configuration information (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Support configuring max data virtqueue (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Fix config_attr_mask assignment (Eli Cohen)  [Orabug: 33749636]
- vdpa: Allow to configure max data virtqueues (Eli Cohen)  [Orabug: 33749636]
- vdpa: Read device configuration only if FEATURES_OK (Eli Cohen)  [Orabug: 33749636]
- vdpa: Sync calls set/get config/status with cf_mutex (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Distribute RX virtqueues in RQT object (Eli Cohen)  [Orabug: 33749636]
- vdpa: Provide interface to read driver features (Eli Cohen)  [Orabug: 33749636]
- vdpa: clean up get_config_size ret value handling (Laura Abbott)  [Orabug: 33749636]
- vdpa/mlx5: Fix wrong configuration of virtio_version_1_0 (Eli Cohen)  [Orabug: 33749636]
- virtio/virtio_pci_legacy_dev: ensure the correct return value (Peng Hao)  [Orabug: 33749636]
- virtio: fix a typo in function "vp_modern_remove" comments. (Dapeng Mi)  [Orabug: 33749636]
- virtio-pci: fix the confusing error message (王贇)  [Orabug: 33749636]
- vdpa: Mark vdpa_config_ops.get_vq_notification as optional (Eugenio Pérez)  [Orabug: 33749636]
- vdpa: Avoid duplicate call to vp_vdpa get_status (Eugenio Pérez)  [Orabug: 33749636]
- net/mlx5_vdpa: Offer VIRTIO_NET_F_MTU when setting MTU (Eli Cohen)  [Orabug: 33749636]
- vdpa: add driver_override support (Stefano Garzarella)  [Orabug: 33749636]
- docs: document sysfs ABI for vDPA bus (Stefano Garzarella)  [Orabug: 33749636]
- vdpa: Consider device id larger than 31 (Parav Pandit)  [Orabug: 33749636]
- virtio: always enter drivers/virtio/ (Arnd Bergmann)  [Orabug: 33749636]
- vdpa: check that offsets are within bounds (Dan Carpenter)  [Orabug: 33749636]
- vdpa_sim: avoid putting an uninitialized iova_domain (Longpeng)  [Orabug: 33749636]
- vhost-vdpa: clean irqs before reseting vdpa device (Wu Zongyong)  [Orabug: 33749636]
- vdpa/mlx5: Forward only packets with allowed MAC address (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Support configuration of MAC (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Fix clearing of VIRTIO_NET_F_MAC feature bit (Parav Pandit)  [Orabug: 33749636]
- vdpa_sim_net: Enable user to set mac address and mtu (Parav Pandit)  [Orabug: 33749636]
- vdpa: Enable user to set mac and mtu of vdpa device (Parav Pandit)  [Orabug: 33749636]
- vdpa: Use kernel coding style for structure comments (Parav Pandit)  [Orabug: 33749636]
- vdpa: Introduce query of device config layout (Parav Pandit)  [Orabug: 33749636]
- vdpa: Introduce and use vdpa device get, set config helpers (Parav Pandit)  [Orabug: 33749636]
- vdpa/mlx5: Propagate link status from device to vdpa driver (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Rename control VQ workqueue to vdpa wq (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Remove mtu field from vdpa net device (Eli Cohen)  [Orabug: 33749636]
- vdpa: add new attribute VDPA_ATTR_DEV_MIN_VQ_SIZE (Wu Zongyong)  [Orabug: 33749636]
- virtio_vdpa: setup correct vq size with callbacks get_vq_num_{max,min} (Wu Zongyong)  [Orabug: 33749636]
- vdpa: min vq num of vdpa device cannot be greater than max vq num (Wu Zongyong)  [Orabug: 33749636]
- vdpa: add new callback get_vq_num_min in vdpa_config_ops (Wu Zongyong)  [Orabug: 33749636]
- vp_vdpa: add vq irq offloading support (Wu Zongyong)  [Orabug: 33749636]
- virtio-pci: introduce legacy device module (Wu Zongyong)  [Orabug: 33749636]
- vhost-vdpa: Fix the wrong input in config_cb (Cindy Lu)  [Orabug: 33749636]
- vhost_vdpa: unset vq irq before freeing irq (Wu Zongyong)  [Orabug: 33749636]
- vdpa: potential uninitialized return in vhost_vdpa_va_map() (Dan Carpenter)  [Orabug: 33749636]
- vdpa/mlx5: Avoid executing set_vq_ready() if device is reset (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Clear ready indication for control VQ (Eli Cohen)  [Orabug: 33749636]
- vdpa: Support transferring virtual addressing during DMA mapping (Xie Yongji)  [Orabug: 33749636]
- vdpa: factor out vhost_vdpa_pa_map() and vhost_vdpa_pa_unmap() (Xie Yongji)  [Orabug: 33749636]
- vdpa: Add an opaque pointer for vdpa_config_ops.dma_map() (Xie Yongji)  [Orabug: 33749636]
- vhost-iotlb: Add an opaque pointer for vhost IOTLB (Xie Yongji)  [Orabug: 33749636]
- vhost-vdpa: Handle the failure of vdpa_reset() (Xie Yongji)  [Orabug: 33749636]
- vdpa: Add reset callback in vdpa_config_ops (Xie Yongji)  [Orabug: 33749636]
- vdpa: Fix some coding style issues (Xie Yongji)  [Orabug: 33749636]
- vdpa: Make use of PFN_PHYS/PFN_UP/PFN_DOWN helper macro (Cai Huoqing)  [Orabug: 33749636]
- vdpa_sim: Use iova_shift() for the size passed to alloc_iova() (Xie Yongji)  [Orabug: 33749636]
- vdpa/mlx5: Add multiqueue support (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Add support for control VQ and MAC setting (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Ensure valid indices are provided (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Decouple virtqueue callback from struct mlx5_vdpa_virtqueue (Eli Cohen)  [Orabug: 33749636]
- Revert "vdpa/mlx5: fix feature negotiation across device reset" (Si-Wei Liu)  [Orabug: 33749636]
- vdpa/mlx5: function prototype modifications in preparation to control VQ (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Remove redundant header file inclusion (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Fix queue type selection logic (Eli Cohen)  [Orabug: 33749636]
- vdpa/mlx5: Avoid destroying MR on empty iotlb (Eli Cohen)  [Orabug: 33749636]
- virtio_vdpa: reject invalid vq indices (Vincent Whitchurch)  [Orabug: 33749636]
- vdpa: Add documentation for vdpa_alloc_device() macro (Xie Yongji)  [Orabug: 33749636]
- vp_vdpa: Fix return value check for vdpa_alloc_device() (Xie Yongji)  [Orabug: 33749636]
- vdpa_sim: Fix return value check for vdpa_alloc_device() (Xie Yongji)  [Orabug: 33749636]
- vhost-vdpa: Fix integer overflow in vhost_vdpa_process_iotlb_update() (Xie Yongji)  [Orabug: 33749636]
- xfs: remove incorrect ASSERT in xfs_rename (Eric Sandeen)  [Orabug: 33803847]
- KVM: nVMX: Filter out all unsupported controls when eVMCS was activated (Vitaly Kuznetsov)  [Orabug: 33805849]
- crypto: ccp - Add support for new CCP/PSP device ID (John Allen)  [Orabug: 33805849]
- KVM: VMX: Wake vCPU when delivering posted IRQ even if vCPU == this vCPU (Sean Christopherson)  [Orabug: 33805849]
- KVM: fix avic_set_running for preemptable kernels (Paolo Bonzini)  [Orabug: 33805849]
- KVM: x86: Drop guest CPUID check for host initiated writes to MSR_IA32_PERF_CAPABILITIES (Vitaly Kuznetsov)  [Orabug: 33805849]
- KVM: x86: Wait for IPIs to be delivered when handling Hyper-V TLB flush hypercall (Vitaly Kuznetsov)  [Orabug: 33805849]
- KVM: x86: Swap order of CPUID entry "index" vs. "significant flag" checks (Sean Christopherson)  [Orabug: 33805849]
- KVM: x86: nSVM: don't copy virt_ext from vmcb12 (Maxim Levitsky)  [Orabug: 33805849]  {CVE-2021-3653} {CVE-2021-3656}
- KVM: x86: nSVM: restore int_vector in svm_clear_vintr (Maxim Levitsky)  [Orabug: 33805849]
- KVM: x86: Fix stack-out-of-bounds memory access from ioapic_write_indirect() (Vitaly Kuznetsov)  [Orabug: 33805849]
- KVM: x86: Mark all registers as avail/dirty at vCPU creation (Sean Christopherson)  [Orabug: 33805849]
- KVM: nVMX: Sync all PGDs on nested transition with shadow paging (Sean Christopherson)  [Orabug: 33805849]
- KVM: SVM: Revert clearing of C-bit on GPA in #NPF handler (Sean Christopherson)  [Orabug: 33805849]
- KVM: SVM: Don't strip the C-bit from CR2 on #PF interception (Sean Christopherson)  [Orabug: 33805849]
- rds/ib: Kernel change to extend rds-info functionality (Rohit Nair)  [Orabug: 33821340]
- nvmet-tcp: fix a race condition between release_queue and io_work (Maurizio Lombardi)  [Orabug: 33825776]
- nvmet-tcp: add an helper to free the cmd buffers (Maurizio Lombardi)  [Orabug: 33825776]
- drm/i915: Flush TLBs before releasing backing store (Tvrtko Ursulin)  [Orabug: 33835810]  {CVE-2022-0330}
- rds: ib: Make selection of completion_vector QoS aware (Håkon Bugge)  [Orabug: 33845918]
- tipc: improve size validations for received domain records (Jon Maloy)  [Orabug: 33850801]  {CVE-2022-0435}
- uek-rpm: Synchronize Module.kabi and lockedlist (Stephen Brennan)  [Orabug: 33871538]

- 5.4.17-2136.305.3.el8
- net/mlx5: Enable mlx5 IPsec build options on OL7/OL8 (Qing Huang)  [Orabug: 32936614]
- net/mlx5e: Fix missing IPsec statistics on uplink representor (Raed Salem)  [Orabug: 32936614]
- net/mlx5e: Add IPsec support to uplink representor (Raed Salem)  [Orabug: 32936614]
- net/mlx5: Fix checksum issue of VXLAN and IPsec crypto offload (Huy Nguyen)  [Orabug: 32936614]
- net/xfrm: Add inner_ipproto into sec_path (Huy Nguyen)  [Orabug: 32936614]
- net/mlx5: Optimize mlx5e_feature_checks for non IPsec packet (Huy Nguyen)  [Orabug: 32936614]
- net/mlx5e: IPsec/rep_tc: Fix rep_tc_update_skb drops IPsec packet (Huy Nguyen)  [Orabug: 32936614]
- net/mlx5: Replace spaces with tab at the start of a line (Wenpeng Liang)  [Orabug: 32936614]
- net/mlx5e: Enable XDP for Connect-X IPsec capable devices (Raed Salem)  [Orabug: 32936614]
- net/mlx5e: Enable striding RQ for Connect-X IPsec capable devices (Raed Salem)  [Orabug: 32936614]
- net/mlx5e: Release skb in case of failure in tc update skb (Maor Dickman)  [Orabug: 32936614]
- net/mlx5e: Move set vxlan nic info to profile init (Roi Dayan)  [Orabug: 32936614]
- net/mlx5e: Fix IPSEC stats (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: IPsec, Remove unnecessary config flag usage (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5e: IPsec, Inline feature_check fast-path function (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5e: IPsec, Avoid unreachable return (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5e: IPsec, Enclose csum logic under ipsec config (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5e: Split between RX/TX tunnel FW support indication (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Allow RQ outside of channel context (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Allow CQ outside of channel context (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Free drop RQ in a dedicated function (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5e: kTLS, Enforce HW TX csum offload with kTLS (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5: Expose IP-in-IP TX and RX capability bits (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Fix IPsec packet drop by mlx5e_tc_update_skb (Huy Nguyen)  [Orabug: 32936614]
- net/mlx5e: Set IPsec WAs only in IP's non checksum partial case. (Huy Nguyen)  [Orabug: 32936614]
- net/mlx5e: IPsec: Add Connect-X IPsec Tx data path offload (Raed Salem)  [Orabug: 32936614]
- net/mlx5e: IPsec: Add TX steering rule per IPsec state (Huy Nguyen)  [Orabug: 32936614]
- net/mlx5: Add NIC TX domain namespace (Huy Nguyen)  [Orabug: 32936614]
- net/mlx5e: Add tc chains offload support for nic flows (Ariel Levkovich)  [Orabug: 32936614]
- net/mlx5: Refactor tc flow attributes structure (Ariel Levkovich)  [Orabug: 32936614]
- net/mlx5e: Split nic tc flow allocation and creation (Ariel Levkovich)  [Orabug: 32936614]
- net/mlx5e: Tc nic flows to use mlx5_chains flow tables (Ariel Levkovich)  [Orabug: 32936614]
- net/mlx5: Refactor multi chains and prios support (Ariel Levkovich)  [Orabug: 32936614]
- net/mlx5e: Enhanced TX MPWQE for SKBs (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Move TX code into functions to be used by MPWQE (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Rename xmit-related structs to generalize them (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Generalize TX MPWQE checks for full session (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Support multiple SKBs in a TX WQE (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Move the TLS resync check out of the function (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Unify constants for WQE_EMPTY_DS_COUNT (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Small improvements for XDP TX MPWQE logic (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Refactor xmit functions (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Move mlx5e_tx_wqe_inline_mode to en_tx.c (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Use struct assignment to initialize mlx5e_tx_wqe_info (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Refactor inline header size calculation in the TX path (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Fix endianness when calculating pedit mask first bit (Maor Dickman)  [Orabug: 32936614]
- net/mlx5e: CT: Fix freeing ct_label mapping (Roi Dayan)  [Orabug: 32936614]
- net/mlx5e: Fix memory leak of tunnel info when rule under multipath not ready (Jianbo Liu)  [Orabug: 32936614]
- net/mlx5e: Use synchronize_rcu to sync with NAPI (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Use RCU to protect rq->xdp_prog (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: RX, Add a prefetch command for small L1_CACHE_BYTES (Tariq Toukan)  [Orabug: 32936614]
- net: Take common prefetch code structure into a function (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5e: Use indirect call wrappers for RX post WQEs functions (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5e: CT: Map 128 bits labels to 32 bit map ID (Eli Britstein)  [Orabug: 32936614]
- net/mlx5e: XDP, Avoid indirect call in TX flow (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5e: IPsec: Add Connect-X IPsec ESN update offload support (Raed Salem)  [Orabug: 32936614]
- net/mlx5e: IPsec: Add IPsec steering in local NIC RX (Huy Nguyen)  [Orabug: 32936614]
- net/mlx5: Add IPsec related Flow steering entry's fields (Huy Nguyen)  [Orabug: 32936614]
- net/mlx5: IPsec: Add HW crypto offload support (Raed Salem)  [Orabug: 32936614]
- net/mlx5: Accel, Add core IPsec support for the Connect-X family (Raed Salem)  [Orabug: 32936614]
- net/mlx5e: Fix build break when CONFIG_XPS is not set (Saeed Mahameed)  [Orabug: 32936614]
- net/mlx5e: CT: Fix releasing ft entries (Roi Dayan)  [Orabug: 32936614]
- net/mlx5e: CT: Remove unused function param (Saeed Mahameed)  [Orabug: 32936614]
- net/mlx5e: CT: Return err_ptr from internal functions (Saeed Mahameed)  [Orabug: 32936614]
- net/mlx5e: CT: Use mapping for zone restore register (Paul Blakey)  [Orabug: 32936614]
- net/mlx5e: CT: Re-use tuple modify headers for identical modify actions (Paul Blakey)  [Orabug: 32936614]
- net/mlx5e: Export sharing of mod headers to a new file (Paul Blakey)  [Orabug: 32936614]
- net/mlx5e: CT: Restore ct state from lookup in zone instead of tupleid (Paul Blakey)  [Orabug: 32936614]
- net/mlx5e: CT: Don't offload tuple rewrites for established tuples (Paul Blakey)  [Orabug: 32936614]
- net/mlx5e: Use netdev_info instead of pr_info (Oz Shlomo)  [Orabug: 32936614]
- net/mlx5e: CT: Allow header rewrite of 5-tuple and ct clear action (Paul Blakey)  [Orabug: 32936614]
- net/mlx5e: CT: Save ct entries tuples in hashtables (Paul Blakey)  [Orabug: 32936614]
- net/mlx5e: Fix VXLAN configuration restore after function reload (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Enhance TX timeout recovery (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Enhance ICOSQ data on RX reporter's diagnose (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Add EQ info to TX/RX reporter's diagnose (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Rename reporter's helpers (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Add helper to get the RQ WQE counter (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Add helper to get RQ WQE's head (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Align RX/TX reporters diagnose output format (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Refactor build channel params (Tariq Toukan)  [Orabug: 32936614]
- net/mlx5e: vxlan: Use RCU for vxlan table lookup (Saeed Mahameed)  [Orabug: 32936614]
- net/mlx5e: Move TC-specific function definitions into MLX5_CLS_ACT (Vlad Buslov)  [Orabug: 32936614]
- net/mlx5e: CT: Fix ipv6 nat header rewrite actions (Oz Shlomo)  [Orabug: 32936614]
- net/mlx5e: en_tc: Fix cast to restricted __be32 warning (Saeed Mahameed)  [Orabug: 32936614]
- net/mlx5e: Don't use err uninitialized in mlx5e_attach_decap (Nathan Chancellor)  [Orabug: 32936614]
- net/mlx5e: Optimize performance for IPv4/IPv6 ethertype (Eli Britstein)  [Orabug: 32936614]
- net/mlx5e: Helper function to set ethertype (Eli Britstein)  [Orabug: 32936614]
- net/mlx5e: CT: Correctly get flow rule (Roi Dayan)  [Orabug: 32936614]
- net/mlx5e: Support pedit on mpls over UDP decap (Eli Cohen)  [Orabug: 32936614]
- xsk: Fix xsk_umem_xdp_frame_sz() (Björn Töpel)  [Orabug: 32936614]
- net/mlx5e: CT: Fix offload with CT action after CT NAT action (Roi Dayan)  [Orabug: 32936614]
- mlx5: Rx queue setup time determine frame_sz for XDP (Jesper Dangaard Brouer)  [Orabug: 32936614]
- xdp: For Intel AF_XDP drivers add XDP frame_sz (Jesper Dangaard Brouer)  [Orabug: 32936614]
- xdp: Add frame size to xdp_buff (Jesper Dangaard Brouer)  [Orabug: 32936614]
- net: remove newlines in NL_SET_ERR_MSG_MOD (Jacob Keller)  [Orabug: 32936614]
- net/mlx5: CT: Remove unused variables (Paul Blakey)  [Orabug: 32936614]
- net/mlx5e: CT: Avoid false warning about rule may be used uninitialized (Roi Dayan)  [Orabug: 32936614]
- net/mlx5e: Remove unneeded semicolon (Zheng Bin)  [Orabug: 32936614]
- net/mlx5: IPsec, Fix coverity issue (Raed Salem)  [Orabug: 32936614]
- net/mlx5: TX WQE Add trailer insertion field (Raed Salem)  [Orabug: 32936614]
- net/mlx5: Introduce IPsec Connect-X offload hardware bits and structures (Raed Salem)  [Orabug: 32936614]
- net/mlx5: Update vxlan.c new cmd interface (Leon Romanovsky)  [Orabug: 32936614]
- net/mlx5: Update cq.c to new cmd interface (Leon Romanovsky)  [Orabug: 32936614]
- net/mlx5: CT: Change idr to xarray to protect parallel tuple id allocation (Paul Blakey)  [Orabug: 32936614]
- net/mlx5: IPsec, Refactor SA handle creation and destruction (Raed Salem)  [Orabug: 32936614]
- net/mlx5e: IPSec, Expose IPsec HW stat only for supporting HW (Raed Salem)  [Orabug: 32936614]
- net/mlx5: Refactor mlx5_accel_esp_create_hw_context parameter list (Raed Salem)  [Orabug: 32936614]
- net/mlx5: Use the correct IPsec capability function for FPGA ops (Raed Salem)  [Orabug: 32936614]
- net/mlx5e: CT: Use rhashtable's ct entries instead of a separate list (Paul Blakey)  [Orabug: 32936614]
- net/mlx5: Add support for RDMA TX steering (Michael Guralnik)  [Orabug: 32936614]
- net/mlx5e: Fix actions_match_supported() return (Dan Carpenter)  [Orabug: 32936614]
- net/mlx5: Eswitch, enable forwarding back to uplink port (Eli Cohen)  [Orabug: 32936614]
- net/mlx5e: Add support for offloading traffic from uplink to uplink (Eli Cohen)  [Orabug: 32936614]
- net/mlx5e: Fix rejecting all egress rules not on vlan (Roi Dayan)  [Orabug: 32936614]
- net/mlx5e: CT: Fix stack usage compiler warning (Saeed Mahameed)  [Orabug: 32936614]
- net/mlx5e: CT: remove set but not used variable 'unnew' (YueHaibing)  [Orabug: 32936614]
- net/mlx5e: Fix an IS_ERR() vs NULL check (Dan Carpenter)  [Orabug: 32936614]
- net/mlx5: Introduce TLS and IPSec objects enums (Saeed Mahameed)  [Orabug: 32936614]
- net/mlx5e: Fix endianness handling in pedit mask (Sebastian Hense)  [Orabug: 32936614]
- net/mlx5e: Remove redundant comment about goto slow path (Roi Dayan)  [Orabug: 32936614]
- net/mlx5e: Reduce number of arguments in slow path handling (Eli Cohen)  [Orabug: 32936614]
- net/mlx5e: Use netdev_warn() instead of pr_err() for errors (Roi Dayan)  [Orabug: 32936614]
- net/mlx5e: Add devlink fdb_large_groups parameter (Jianbo Liu)  [Orabug: 32936614]
- net/mlx5: Change the name of steering mode param id (Jianbo Liu)  [Orabug: 32936614]
- net/mlx5: Eswitch, avoid redundant mask (Eli Cohen)  [Orabug: 32936614]
- net/mlx5: Fix header guard in rsc_dump.h (Nathan Chancellor)  [Orabug: 32936614]
- net/mlx5e: Add context to the preactivate hook (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Allow mlx5e_switch_priv_channels to fail and recover (Maxim Mikityanskiy)  [Orabug: 32936614]
- net/mlx5e: Remove unneeded netif_set_real_num_tx_queues (Maxim Mikityanskiy)  [Orabug: 32936614]
- ESP: Export esp_output_fill_trailer function (Raed Salem)  [Orabug: 32936614]
- net/mlx5: Remove a useless 'drain_workqueue()' call in 'mlx5e_ipsec_cleanup()' (Christophe JAILLET)  [Orabug: 32936614]
- mlx5: Use proper logging and tracing line terminations (Joe Perches)  [Orabug: 32936614]
- net/mlx5e: Support dump callback in RX reporter (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Support dump callback in TX reporter (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Gather reporters APIs together (Aya Levin)  [Orabug: 32936614]
- net/mlx5: Add support for resource dump (Aya Levin)  [Orabug: 32936614]
- net/mlx5e: Create q counters on uplink representors (Vlad Buslov)  [Orabug: 32936614]
- net/mlx5: Expose resource dump register mapping (Aya Levin)  [Orabug: 32936614]
- net/mlx5: Add structures and defines for MIRC register (Eran Ben Elisha)  [Orabug: 32936614]
- net/mlx5: WQ, Move short getters into header file (Tariq Toukan)  [Orabug: 32936614]
- Revert "net/mlx5e: Fix SWP offsets when vlan inserted by driver" (Mikhael Goikhman)  [Orabug: 32936614]
- uek-rpm: ensure BPF Type Format (BTF) section is retained in modules (Alan Maguire)  [Orabug: 33774133]
- kbuild: Skip module BTF generation for out-of-tree external modules (Andrii Nakryiko)  [Orabug: 33774133]
- bpf: Load and verify kernel module BTFs (Andrii Nakryiko)  [Orabug: 33774133]
- kbuild: Build kernel module BTFs if BTF is enabled and pahole supports it (Andrii Nakryiko)  [Orabug: 33774133]
- arm64: Add assembly annotations for weak-PI-alias madness (Robin Murphy)  [Orabug: 33816089]
- arm64: Import updated version of Cortex Strings' strlen (Sam Tebbs)  [Orabug: 33816089]
- arm64: Import latest memcpy()/memmove() implementation (Robin Murphy)  [Orabug: 33816089]
- arm64: Import latest version of Cortex Strings' memcmp (Sam Tebbs)  [Orabug: 33816089]
- arm64: Better optimised memchr() (Robin Murphy)  [Orabug: 33816089]
- net/rds: Fix memory leak in __rds_conn_create() on alloc_ordered_workqueue fail (Freddy Carrillo)  [Orabug: 33821540]
- x86/smpboot: check cpu_initialized_mask first after returning from schedule() (Dongli Zhang)  [Orabug: 33825645]
- uek-rpm/ol/config-aarch64: Enable CONFIG_ARM_RASPBERRYPI_CPUFREQ for RPi (Vijay Kumar)
- KVM: x86: Initialize tdp_level during vCPU creation (Sean Christopherson)  [Orabug: 33841857]
- KVM: x86/mmu: Capture TDP level when updating CPUID (Sean Christopherson)  [Orabug: 33841857]
- xen/netback: don't queue unlimited number of packages (Juergen Gross)  [Orabug: 33851834]
- xen/netback: fix rx queue stall detection (Juergen Gross)  [Orabug: 33851834]
- Fix conflict of LTS commit "PCI: aardvark: Configure PCIe resources from 'ranges' DT property" (Sherry Yang)  [Orabug: 33862617]

- 5.4.17-2136.305.2.el8
- LTS tag: v5.4.163 (Sherry Yang)
- tty: hvc: replace BUG_ON() with negative return value (Juergen Gross)
- xen/netfront: don't trust the backend response data blindly (Juergen Gross)
- xen/netfront: disentangle tx_skb_freelist (Juergen Gross)
- xen/netfront: don't read data from request on the ring page (Juergen Gross)
- xen/netfront: read response from backend only once (Juergen Gross)
- xen/blkfront: don't trust the backend response data blindly (Juergen Gross)
- xen/blkfront: don't take local copy of a request from the ring page (Juergen Gross)
- xen/blkfront: read response from backend only once (Juergen Gross)
- xen: sync include/xen/interface/io/ring.h with Xen's newest version (Juergen Gross)
- fuse: release pipe buf after last use (Miklos Szeredi)
- NFC: add NCI_UNREG flag to eliminate the race (Lin Ma)
- shm: extend forced shm destroy to support objects from several IPC nses (Alexander Mikhalitsyn)
- s390/mm: validate VMA in PGSTE manipulation functions (David Hildenbrand)
- tracing: Check pid filtering when creating events (Steven Rostedt (VMware))
- vhost/vsock: fix incorrect used length reported to the guest (Stefano Garzarella)
- smb3: do not error on fsync when readonly (Steve French)
- f2fs: set SBI_NEED_FSCK flag when inconsistent node block found (Weichao Guo)
- net: mscc: ocelot: correctly report the timestamping RX filters in ethtool (Vladimir Oltean)
- net: mscc: ocelot: don't downgrade timestamping RX filters in SIOCSHWTSTAMP (Vladimir Oltean)
- net: hns3: fix VF RSS failed problem after PF enable multi-TCs (Guangbin Huang)
- net/smc: Don't call clcsock shutdown twice when smc shutdown (Tony Lu)
- net: vlan: fix underflow for the real_dev refcnt (Ziyang Xuan)
- MIPS: use 3-level pgtable for 64KB page size on MIPS_VA_BITS_48 (Huang Pei)
- igb: fix netpoll exit with traffic (Jesse Brandeburg)
- nvmet: use IOCB_NOWAIT only if the filesystem supports it (Maurizio Lombardi)
- tcp_cubic: fix spurious Hystart ACK train detections for not-cwnd-limited flows (Eric Dumazet)
- PM: hibernate: use correct mode for swsusp_close() (Thomas Zeitlhofer)
- net/ncsi : Add payload to be 32-bit aligned to fix dropped packets (Kumar Thangavel)
- nvmet-tcp: fix incomplete data digest send (Varun Prakash)
- net/smc: Ensure the active closing peer first closes clcsock (Tony Lu)
- scsi: core: sysfs: Fix setting device state to SDEV_RUNNING (Mike Christie)
- net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (Nikolay Aleksandrov)
- net: ipv6: add fib6_nh_release_dsts stub (Nikolay Aleksandrov)
- nfp: checking parameter process for rx-usecs/tx-usecs is invalid (Diana Wang)
- ipv6: fix typos in __ip6_finish_output() (Eric Dumazet)
- iavf: Prevent changing static ITR values if adaptive moderation is on (Nitesh B Venkatesh)
- drm/vc4: fix error code in vc4_create_object() (Dan Carpenter)
- scsi: mpt3sas: Fix kernel panic during drive powercycle test (Sreekanth Reddy)
- ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (Takashi Iwai)
- NFSv42: Don't fail clone() unless the OP_CLONE operation failed (Trond Myklebust)
- firmware: arm_scmi: pm: Propagate return value to caller (Peng Fan)
- net: ieee802154: handle iftypes as u32 (Alexander Aring)
- ASoC: topology: Add missing rwsem around snd_ctl_remove() calls (Takashi Iwai)
- ASoC: qdsp6: q6routing: Conditionally reset FrontEnd Mixer (Srinivas Kandagatla)
- ARM: dts: BCM5301X: Add interrupt properties to GPIO node (Florian Fainelli)
- ARM: dts: BCM5301X: Fix I2C controller interrupt (Florian Fainelli)
- netfilter: ipvs: Fix reuse connection if RS weight is 0 (yangxingwu)
- proc/vmcore: fix clearing user buffer by properly using clear_user() (David Hildenbrand)
- arm64: dts: marvell: armada-37xx: Set pcie_reset_pin to gpio function (Marek Behún)
- pinctrl: armada-37xx: Correct PWM pins definitions (Marek Behún)
- PCI: aardvark: Fix support for PCI_BRIDGE_CTL_BUS_RESET on emulated bridge (Pali Rohár)
- PCI: aardvark: Set PCI Bridge Class Code to PCI Bridge (Pali Rohár)
- PCI: aardvark: Fix support for bus mastering and PCI_COMMAND on emulated bridge (Pali Rohár)
- PCI: aardvark: Fix link training (Pali Rohár)
- PCI: aardvark: Simplify initialization of rootcap on virtual bridge (Pali Rohár)
- PCI: aardvark: Implement re-issuing config requests on CRS response (Pali Rohár)
- PCI: aardvark: Fix PCIe Max Payload Size setting (Pali Rohár)
- PCI: aardvark: Configure PCIe resources from 'ranges' DT property (Pali Rohár)
- PCI: pci-bridge-emul: Fix array overruns, improve safety (Russell King)
- PCI: aardvark: Update comment about disabling link training (Pali Rohár)
- PCI: aardvark: Move PCIe reset card code to advk_pcie_train_link() (Pali Rohár)
- PCI: aardvark: Fix compilation on s390 (Pali Rohár)
- PCI: aardvark: Don't touch PCIe registers if no card connected (Pali Rohár)
- PCI: aardvark: Replace custom macros by standard linux/pci_regs.h macros (Pali Rohár)
- PCI: aardvark: Issue PERST via GPIO (Pali Rohár)
- PCI: aardvark: Improve link training (Marek Behún)
- PCI: aardvark: Train link immediately after enabling training (Pali Rohár)
- PCI: aardvark: Fix big endian support (Grzegorz Jaszczyk)
- PCI: aardvark: Wait for endpoint to be ready before training link (Remi Pommarel)
- PCI: aardvark: Deduplicate code in advk_pcie_rd_conf() (Marek Behún)
- mdio: aspeed: Fix "Link is Down" issue (Dylan Hung)
- mmc: sdhci: Fix ADMA for PAGE_SIZE >= 64KiB (Adrian Hunter)
- tracing: Fix pid filtering when triggers are attached (Steven Rostedt (VMware))
- tracing/uprobe: Fix uprobe_perf_open probes iteration (Jiri Olsa)
- KVM: PPC: Book3S HV: Prevent POWER7/8 TLB flush flushing SLB (Nicholas Piggin)
- xen: detect uninitialized xenbus in xenbus_init (Stefano Stabellini)
- xen: don't continue xenstore initialization in case of errors (Stefano Stabellini)
- staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() (Dan Carpenter)
- staging/fbtft: Fix backlight (Noralf Trønnes)
- HID: wacom: Use "Confidence" flag to prevent reporting invalid contacts (Jason Gerecke)
- Revert "parisc: Fix backtrace to always include init funtion names" (Helge Deller)
- media: cec: copy sequence field for the reply (Hans Verkuil)
- ALSA: ctxfi: Fix out-of-range access (Takashi Iwai)
- binder: fix test regression due to sender_euid change (Todd Kjos)
- usb: hub: Fix locking issues with address0_mutex (Mathias Nyman)
- usb: hub: Fix usb enumeration issue due to address0 race (Mathias Nyman)
- usb: typec: fusb302: Fix masking of comparator and bc_lvl interrupts (Ondrej Jirman)
- net: nexthop: fix null pointer dereference when IPv6 is not enabled (Nikolay Aleksandrov)
- usb: dwc2: hcd_queue: Fix use of floating point literal (Nathan Chancellor)
- usb: dwc2: gadget: Fix ISOC flow for elapsed frames (Minas Harutyunyan)
- USB: serial: option: add Fibocom FM101-GL variants (Mingjie Zhang)
- USB: serial: option: add Telit LE910S1 0x9200 composition (Daniele Palmas)
- LTS tag: v5.4.162 (Sherry Yang)
- ALSA: hda: hdac_stream: fix potential locking issue in snd_hdac_stream_assign() (Pierre-Louis Bossart)
- ALSA: hda: hdac_ext_stream: fix potential locking issues (Pierre-Louis Bossart)
- hugetlbfs: flush TLBs correctly after huge_pmd_unshare (Nadav Amit)
- tlb: mmu_gather: add tlb_flush_*_range APIs (Peter Zijlstra (Intel))
- ice: Delete always true check of PF pointer (Leon Romanovsky)
- usb: max-3421: Use driver data instead of maintaining a list of bound devices (Uwe Kleine-König)
- ASoC: DAPM: Cover regression by kctl change notification fix (Takashi Iwai)
- batman-adv: Don't always reallocate the fragmentation skb head (Sven Eckelmann)
- batman-adv: Reserve needed_*room for fragments (Sven Eckelmann)
- batman-adv: Consider fragmentation for needed_headroom (Sven Eckelmann)
- perf/core: Avoid put_page() when GUP fails (Greg Thelen)
- Revert "net: mvpp2: disable force link UP during port init procedure" (Greg Kroah-Hartman)
- drm/amdgpu: fix set scaling mode Full/Full aspect/Center not works on vga and dvi connectors (hongao)
- drm/i915/dp: Ensure sink rate values are always valid (Imre Deak)
- drm/nouveau: use drm_dev_unplug() during device removal (Jeremy Cline)
- drm/udl: fix control-message timeout (Johan Hovold)
- cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (Nguyen Dinh Phi)
- parisc/sticon: fix reverse colors (Sven Schnelle)
- btrfs: fix memory ordering between normal and ordered work functions (Nikolay Borisov)
- udf: Fix crash after seekdir (Jan Kara)
- s390/kexec: fix memory leak of ipl report buffer (Baoquan He)
- x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails (Sean Christopherson)
- mm: kmemleak: slob: respect SLAB_NOLEAKTRACE flag (Rustam Kovhaev)
- ipc: WARN if trying to remove ipc object which is absent (Alexander Mikhalitsyn)
- hexagon: export raw I/O routines for modules (Nathan Chancellor)
- tun: fix bonding active backup with arp monitoring (Nicolas Dichtel)
- arm64: vdso32: suppress error message for 'make mrproper' (Nick Desaulniers)
- s390/kexec: fix return code handling (Heiko Carstens)
- perf/x86/intel/uncore: Fix IIO event constraints for Skylake Server (Alexander Antonov)
- perf/x86/intel/uncore: Fix filter_tid mask for CHA events on Skylake Server (Alexander Antonov)
- KVM: PPC: Book3S HV: Use GLOBAL_TOC for kvmppc_h_set_dabr/xdabr() (Michael Ellerman)
- NFC: reorder the logic in nfc_{un,}register_device (Lin Ma)
- drm/nouveau: hdmigv100.c: fix corrupted HDMI Vendor InfoFrame (Hans Verkuil)
- NFC: reorganize the functions in nci_request (Lin Ma)
- i40e: Fix display error code in dmesg (Grzegorz Szczurek)
- i40e: Fix creation of first queue by omitting it if is not power of two (Jedrzej Jagielski)
- i40e: Fix ping is lost after configuring ADq on VF (Eryk Rybak)
- i40e: Fix changing previously set num_queue_pairs for PFs (Eryk Rybak)
- i40e: Fix NULL ptr dereference on VSI filter sync (Michal Maloszewski)
- i40e: Fix correct max_pkt_size on VF RX queue (Eryk Rybak)
- net: virtio_net_hdr_to_skb: count transport header in UFO (Jonathan Davies)
- net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove (Pavel Skripkin)
- net: sched: act_mirred: drop dst for the direction from egress to ingress (Xin Long)
- scsi: core: sysfs: Fix hang when device state is set via sysfs (Mike Christie)
- platform/x86: hp_accel: Fix an error handling path in 'lis3lv02d_probe()' (Christophe JAILLET)
- mips: lantiq: add support for clk_get_parent() (Randy Dunlap)
- mips: bcm63xx: add support for clk_get_parent() (Randy Dunlap)
- MIPS: generic/yamon-dt: fix uninitialized variable error (Colin Ian King)
- iavf: Fix for the false positive ASQ/ARQ errors while issuing VF reset (Surabhi Boob)
- iavf: validate pointers (Mitch Williams)
- iavf: prevent accidental free of filter structure (Jacob Keller)
- iavf: Fix failure to exit out from last all-multicast mode (Piotr Marczak)
- iavf: free q_vectors before queues in iavf_disable_vf (Nicholas Nunley)
- iavf: check for null in iavf_fix_features (Nicholas Nunley)
- net: bnx2x: fix variable dereferenced before check (Pavel Skripkin)
- perf tests: Remove bash construct from record+zstd_comp_decomp.sh (James Clark)
- perf bench futex: Fix memory leak of perf_cpu_map__new() (Sohaib Mohamed)
- perf bpf: Avoid memory leak from perf_env__insert_btf() (Ian Rogers)
- RDMA/netlink: Add __maybe_unused to static inline in C file (Leon Romanovsky)
- tracing/histogram: Do not copy the fixed-size char array field over the field size (Masami Hiramatsu)
- tracing: Save normal string variables (Tom Zanussi)
- sched/core: Mitigate race cpus_share_cache()/update_top_cache_domain() (Vincent Donnefort)
- mips: BCM63XX: ensure that CPU_SUPPORTS_32BIT_KERNEL is set (Randy Dunlap)
- clk: qcom: gcc-msm8996: Drop (again) gcc_aggre1_pnoc_ahb_clk (Dmitry Baryshkov)
- clk/ast2600: Fix soc revision for AHB (Joel Stanley)
- clk: ingenic: Fix bugs with divided dividers (Paul Cercueil)
- sh: define __BIG_ENDIAN for math-emu (Randy Dunlap)
- sh: math-emu: drop unused functions (Randy Dunlap)
- sh: fix kconfig unmet dependency warning for FRAME_POINTER (Randy Dunlap)
- f2fs: fix up f2fs_lookup tracepoints (Gao Xiang)
- maple: fix wrong return value of maple_bus_init(). (Lu Wei)
- sh: check return code of request_irq (Nick Desaulniers)
- powerpc/dcr: Use cmplwi instead of 3-argument cmpli (Michael Ellerman)
- ALSA: gus: fix null pointer dereference on pointer block (Chengfeng Ye)
- powerpc/5200: dts: fix memory node unit name (Anatolij Gustschin)
- iio: imu: st_lsm6dsx: Avoid potential array overflow in st_lsm6dsx_set_odr() (Teng Qi)
- scsi: target: Fix alua_tg_pt_gps_count tracking (Mike Christie)
- scsi: target: Fix ordered tag handling (Mike Christie)
- MIPS: sni: Fix the build (Bart Van Assche)
- tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc (Guanghui Feng)
- ALSA: ISA: not for M68K (Randy Dunlap)
- ARM: dts: ls1021a-tsn: use generic "jedec,spi-nor" compatible for flash (Li Yang)
- ARM: dts: ls1021a: move thermal-zones node out of soc/ (Li Yang)
- usb: host: ohci-tmio: check return value after calling platform_get_resource() (Yang Yingliang)
- ARM: dts: omap: fix gpmc,mux-add-data type (Roger Quadros)
- firmware_loader: fix pre-allocated buf built-in firmware use (Luis Chamberlain)
- scsi: advansys: Fix kernel pointer leak (Guo Zhi)
- ASoC: nau8824: Add DMI quirk mechanism for active-high jack-detect (Hans de Goede)
- clk: imx: imx6ul: Move csi_sel mux to correct base register (Stefan Riedmueller)
- ASoC: SOF: Intel: hda-dai: fix potential locking issue (Pierre-Louis Bossart)
- arm64: dts: freescale: fix arm,sp805 compatible string (Michael Walle)
- arm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency (AngeloGioacchino Del Regno)
- usb: typec: tipd: Remove WARN_ON in tps6598x_block_read (Sven Peter)
- usb: musb: tusb6010: check return value after calling platform_get_resource() (Yang Yingliang)
- RDMA/bnxt_re: Check if the vlan is valid before reporting (Selvin Xavier)
- arm64: dts: hisilicon: fix arm,sp805 compatible string (Michael Walle)
- ARM: dts: NSP: Fix mpcore, mmc node names (Matthew Hagan)
- arm64: zynqmp: Fix serial compatible string (Michal Simek)
- arm64: zynqmp: Do not duplicate flash partition label property (Amit Kumar Mahapatra)
- net/mlx5: Add back multicast stats for uplink representor (Huy Nguyen)  [Orabug: 33519567]
- net/mlx5: E-Switch, Protect changing mode while adding rules (Roi Dayan)  [Orabug: 33519567]
- net/mlx5e: Do not reload ethernet ports when changing eswitch mode (Roi Dayan)  [Orabug: 33519567]
- net/mlx5: Move devlink port from mlx5e priv to mlx5e resources (Roi Dayan)  [Orabug: 33519567]
- net/mlx5: Move mlx5e hw resources into a sub object (Roi Dayan)  [Orabug: 33519567]
- net/mlx5e: Verify dev is present in some ndos (Roi Dayan)  [Orabug: 33519567]
- net/mlx5e: Use nic mode netdev ndos and ethtool ops for uplink representor (Roi Dayan)  [Orabug: 33519567]
- net/mlx5e: Add offload stats ndos to nic netdev ops (Roi Dayan)  [Orabug: 33519567]
- net/mlx5e: Distinguish nic and esw offload in tc setup block cb (Roi Dayan)  [Orabug: 33519567]
- net/mlx5e: Allow legacy vf ndos only if in legacy mode (Roi Dayan)  [Orabug: 33519567]
- net/mlx5e: Same max num channels for both nic and uplink profiles (Saeed Mahameed)  [Orabug: 33519567]
- net: Change dev parameter to const in netif_device_present() (Roi Dayan)  [Orabug: 33519567]
- net/mlx5: Cleanup prototype warning (Saeed Mahameed)  [Orabug: 33519567]
- net/mxl5e: Add change profile method (Saeed Mahameed)  [Orabug: 33519567]
- net/mlx5e: Disable hw-tc-offload when MLX5_CLS_ACT config is disabled (Maor Dickman)  [Orabug: 33519567]
- net/tls: Fix wrong record sn in async mode of device resync (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: Fix multicast counter not up-to-date in "ip -s" (Ron Diskin)  [Orabug: 33519567]
- net/mlx5e: Add support for PCI relaxed ordering (Aya Levin)  [Orabug: 33519567]
- net/mlx5e: Move exposure of datapath function to txrx header (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: RX, Re-work initializaiton of RX function pointers (Tariq Toukan)  [Orabug: 33519567]
- RDMA/mlx5: ConnectX-7 new capabilities to set relaxed ordering by UMR (Meir Lichtinger)  [Orabug: 33519567]
- net/mlx5e: IPsec: Add Connect-X IPsec Rx data path offload (Raed Salem)  [Orabug: 33519567]
- net/mlx5e: Fix usage of rcu-protected pointer (Vlad Buslov)  [Orabug: 33519567]
- net/mlx5e: Move RQ helpers to txrx.h (Aya Levin)  [Orabug: 33519567]
- net/mlx5e: Remove redundant RQ state query (Aya Levin)  [Orabug: 33519567]
- net/mlx5e: Change reporters create functions to return void (Eran Ben Elisha)  [Orabug: 33519567]
- net/tls: fix sign extension issue when left shifting u16 value (Colin Ian King)  [Orabug: 33519567]
- net/mlx5e: kTLS, Improve rx handler function call (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: kTLS, Add kTLS RX stats (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: kTLS, Add kTLS RX resync support (Tariq Toukan)  [Orabug: 33519567]
- net/tls: Add asynchronous resync (Boris Pismenny)  [Orabug: 33519567]
- Revert "net/tls: Add force_resync for driver resync" (Boris Pismenny)  [Orabug: 33519567]
- net/mlx5e: kTLS, Add kTLS RX HW offload support (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: kTLS, Improve TLS feature modularity (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: Accel, Expose flow steering API for rules add/del (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: Receive flow steering framework for accelerated TCP flows (Boris Pismenny)  [Orabug: 33519567]
- net/mlx5e: API to manipulate TTC rules destinations (Saeed Mahameed)  [Orabug: 33519567]
- net/mlx5e: Turn XSK ICOSQ into a general asynchronous one (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5: kTLS, Improve TLS params layout structures (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: Support tc block sharing for representors (Vu Pham)  [Orabug: 33519567]
- net/mlx5e: Calculate SQ stop room in a robust way (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: IPoIB, Enable loopback packets for IPoIB interfaces (Erez Shitrit)  [Orabug: 33519567]
- net/mlx5e: Enhance ICOSQ WQE info fields (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: Use struct assignment for WQE info updates (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: Take TX WQE info structures out of general EN header (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: kTLS, Do not fill edge for the DUMP WQEs in TX flow (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: kTLS, Fill work queue edge separately in TX flow (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: Split TX acceleration offloads into two phases (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: Update UDP fields of the SKB for GSO first (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: Make TLS offload independent of wqe and pi (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: Pass only eseg to IPSEC offload (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: Return void from mlx5e_sq_xmit and mlx5i_sq_xmit (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: Unify checks of TLS offloads (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: Return bool from TLS and IPSEC offloads (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: Unify reserving space for WQEs (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: Rename ICOSQ WQE info struct and field (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: Fetch WQE: reuse code and enforce typing (Maxim Mikityanskiy)  [Orabug: 33519567]
- net/mlx5e: TX, Generalise code and usage of error CQE dump (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5: Introduce TLS RX offload hardware bits (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5: Update transobj.c new cmd interface (Leon Romanovsky)  [Orabug: 33519567]
- net/mlx5e: en_accel, Add missing net/geneve.h include (Raed Salem)  [Orabug: 33519567]
- net/mlx5e: Show/set Rx network flow classification rules on ul rep (Vlad Buslov)  [Orabug: 33519567]
- net/mlx5e: Show/set Rx flow indir table and RSS hash key on ul rep (Vlad Buslov)  [Orabug: 33519567]
- mlx5: reject unsupported coalescing params (Jakub Kicinski)  [Orabug: 33519567]
- net/mlx5e: RX, Use indirect calls wrapper for posting descriptors (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5e: Replace zero-length array with flexible-array member (Gustavo A. R. Silva)  [Orabug: 33519567]
- net/mlx5e: TX, Error completion is for last WQE in batch (Tariq Toukan)  [Orabug: 33519567]
- net/mlx5: Expose relaxed ordering bits (Michael Guralnik)  [Orabug: 33519567]
- net/mlx5e: TX, Dump WQs wqe descriptors on CQE with error events (Saeed Mahameed)  [Orabug: 33519567]

- 5.4.17-2136.305.1.el8
- btrfs: fix metadata reservation for fallocate that leads to transaction aborts (Filipe Manana)  [Orabug: 32675999]
- btrfs: inode: refactor the parameters of insert_reserved_file_extent() (Qu Wenruo)  [Orabug: 32675999]
- uek-rpm: Enable QAT 4XXX device (Thomas Tai)  [Orabug: 33440215]
- crypto: qat - power up 4xxx device (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - fix naming of PF/VF enable functions (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - complete all the init steps before service notification (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - move IO virtualization functions (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - rename compatibility version definition (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - enable interrupts only after ISR allocation (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - simplify code and axe the use of a deprecated API (Christophe JAILLET)  [Orabug: 33440215]
- crypto: qat - enable detection of accelerators hang (Wojciech Ziemba)  [Orabug: 33440215]
- crypto: qat - configure arbiter mapping based on engines enabled (Wojciech Ziemba)  [Orabug: 33440215]
- crypto: qat - replace CRYPTO_AES with CRYPTO_LIB_AES in Kconfig (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - add CRYPTO_AES to Kconfig dependencies (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - add capability detection logic in qat_4xxx (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - add AES-XTS support for QAT GEN4 devices (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - add AES-CTR support for QAT GEN4 devices (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - add qat_4xxx driver (Thomas Tai)  [Orabug: 33440215]
- crypto: qat - add hook to initialize vector routing table (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - target fw images to specific AEs (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - add gen4 firmware loader (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add support for broadcasting mode (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add support for shared ustore (Jack Xu)  [Orabug: 33440215]
- crypto: qat - allow to target specific AEs (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add FCU CSRs to chip info (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add CSS3K support (Jack Xu)  [Orabug: 33440215]
- crypto: qat - use ae_mask (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add misc control CSR to chip info (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add wake up event to chip info (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add clock enable CSR to chip info (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add reset CSR and mask to chip info (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add local memory size to chip info (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add support for lm2 and lm3 (Jack Xu)  [Orabug: 33440215]
- crypto: qat - add next neighbor to chip_info (Jack Xu)  [Orabug: 33440215]
- crypto: qat - introduce chip info structure (Jack Xu)  [Orabug: 33440215]
- crypto: qat - refactor long expressions (Jack Xu)  [Orabug: 33440215]
- crypto: qat - refactor qat_uclo_set_ae_mode() (Jack Xu)  [Orabug: 33440215]
- crypto: qat - move defines to header files (Jack Xu)  [Orabug: 33440215]
- crypto: qat - remove global CSRs helpers (Jack Xu)  [Orabug: 33440215]
- crypto: qat - refactor AE start (Jack Xu)  [Orabug: 33440215]
- crypto: qat - rename qat_uclo_del_uof_obj() (Jack Xu)  [Orabug: 33440215]
- crypto: qat - remove unnecessary parenthesis (Jack Xu)  [Orabug: 33440215]
- crypto: qat - support for mof format in fw loader (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - allow for instances in different banks (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - refactor qat_crypto_dev_config() (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - refactor qat_crypto_create_instances() (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - remove unnecessary void* casts (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - call functions in adf_sriov if available (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - abstract writes to arbiter enable (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - use BIT_ULL() - 1 pattern for masks (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - replace constant masks with GENMASK (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - abstract build ring base (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - enable ring after pair is programmed (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - register crypto instances based on capability (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - add support for capability detection (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - abstract arbiter access (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - remove unused macros in arbiter module (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - remove writes into WQCFG (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - update constants table (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - use admin mask to send fw constants (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - change admin sequence (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - rename ME in AE (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - add packed to init admin structures (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - abstract admin interface (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - relocate GEN2 CSR access code (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - split transport CSR access logic (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - fix configuration of iov threads (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - num_rings_per_bank is device dependent (Ahsan Atta)  [Orabug: 33440215]
- crypto: qat - mask device capabilities with soft straps (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - update IV in software (Marco Chiappero)  [Orabug: 33440215]
- crypto: qat - drop input parameter from adf_enable_aer() (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - replace device ids defines (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - add delay before polling mailbox (Giovanni Cabiddu)  [Orabug: 33440215]
- PCI: Add Intel QuickAssist device IDs (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - fallback for xts with 192 bit keys (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - remove unused field in skcipher ctx (Thomas Tai)  [Orabug: 33440215]
- crypto: qat - validate xts key (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - allow xts requests not multiple of block (Giovanni Cabiddu)  [Orabug: 33440215]
- crypto: qat - update timeout logic in put admin msg (Wojciech Ziemba)  [Orabug: 33440215]
- crypto: qat - send admin messages to set of AEs (Wojciech Ziemba)  [Orabug: 33440215]
- crypto: qat - update fw init admin msg (Wojciech Ziemba)  [Orabug: 33440215]
- crypto: qat - replace user types with kernel ABI __u types (Wojciech Ziemba)  [Orabug: 33440215]
- crypto: qat - replace user types with kernel u types (Wojciech Ziemba)  [Orabug: 33440215]
- crypto: qat - convert to SPDX License Identifiers (Giovanni Cabiddu)  [Orabug: 33440215]
- iopoll: introduce read_poll_timeout macro (Dejin Zheng)  [Orabug: 33440215]
- crypto: qat - simplify the qat_crypto function (Tianjia Zhang)  [Orabug: 33440215]
- crypto: qat - switch to skcipher API (Ard Biesheuvel)  [Orabug: 33440215]
- io_uring: fix false WARN_ONCE (Pavel Begunkov)  [Orabug: 33731046]
- scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix link down processing to address NULL pointer dereference (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Add support for optional PLDV handling (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix mailbox command failure during driver initialization (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Improve PBDE checks during SGL processing (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix NVMe I/O failover to non-optimized path (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Don't remove ndlp on PRLI errors in P2P mode (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix rediscovery of tape device after LIP (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Don't release final kref on Fport node while ABTS outstanding (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Move initialization of phba->poll_list earlier to avoid crash (Ewan D. Milne)  [Orabug: 33731165]
- scsi: lpfc: Fix possible ABBA deadlock in nvmet_xri_aborted() (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Revise Topology and RAS support checks for new adapters (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Copyright updates for 12.8.0.11 patches (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Update lpfc version to 12.8.0.11 (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Skip issuing ADISC when node is in NPR state (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Call discovery state machine when handling PLOGI/ADISC completions (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Delay unregistering from transport until GIDFT or ADISC completes (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Clear outstanding active mailbox during PCI function reset (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix memory leaks in error paths while issuing ELS RDF/SCR request (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix target reset handler from falsely returning FAILURE (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Discovery state machine fixes for LOGO handling (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Remove use of kmalloc() in trace event logging (James Smart)  [Orabug: 33731165]
- scsi: lpfc: Fix failure to transmit ABTS on FC link (James Smart)  [Orabug: 33731165]
- bpf: Disallow unprivileged bpf by default (Pawan Gupta)  [Orabug: 33734681]
- bpf: Add kconfig knob for disabling unpriv bpf by default (Daniel Borkmann)  [Orabug: 33734681]
- USB: gadget: bRequestType is a bitfield, not a enum (Greg Kroah-Hartman)  [Orabug: 33739525]  {CVE-2021-39685}
- USB: gadget: zero allocate endpoint 0 buffers (Greg Kroah-Hartman)  [Orabug: 33739525]  {CVE-2021-39685}
- USB: gadget: detect too-big endpoint 0 requests (Greg Kroah-Hartman)  [Orabug: 33739525]  {CVE-2021-39685}
- scsi: vmw_pvscsi: Set residual data length conditionally (Alexey Makhalov)  [Orabug: 33761343]
- hwmon: (k10temp) Add support for Zen3 CPUs (Rahul Rohit)  [Orabug: 33782833]
- Revert "rds/ib: Kernel upgrade to rds_ib_conns info displayed by rds-info" (Rohit Nair)  [Orabug: 33812555]
- uek-rpm: Add missing dax modules to kernel-ueknano (Somasundaram Krishnasamy)  [Orabug: 33821042]
- cgroup-v1: Require capabilities to set release_agent (Eric W. Biederman)  [Orabug: 33825687]  {CVE-2022-0492}