d3d73f5119
[rt] Update to 4.14.15-rt13
2018-01-31 21:00:05 +01:00
aacdec9702
Update to 4.15
2018-01-29 23:46:40 +00:00
623cfd4d39
Merge branch 'sid'
...
- Drop ABI maintenance patches
- Apply usbip config change in debian/config/config
2018-01-28 19:02:08 +00:00
f01c4e1f91
usbip: Reduce USBIP_VHCI_HC_PORTS to 15, the maximum allowed for SuperSpeed hubs
...
Closes : #878866
The limits in Kconfig are simply wrong.
2018-01-28 18:53:45 +00:00
4fae92a1d5
nfsd: auth: Fix gid sorting when rootsquash enabled (CVE-2018-1000028)
2018-01-28 19:38:02 +01:00
e53a4aa3b8
[rt] Update to 4.14.15-rt11
2018-01-28 15:50:32 +01:00
e5ce9cb87e
Revert "module: Add retpoline tag to VERMAGIC"
2018-01-28 15:50:32 +01:00
3a81855475
Update to 4.14.15
2018-01-28 15:50:32 +01:00
893c189290
[arm64] embed reset drivers to kernel
...
Reset drivers are tiny and are needed often early in boot. Kconfig
selects the drivers automatically with arch specific defaults:
config COMMON_RESET_HI6220
default ARCH_HISI
So remove explicit driver selections from arm 64 config and let
kconfig dependencies handle it for us.
2018-01-26 11:02:53 +02:00
dd6dc914d3
cloud: Mention support for Google Compute Engine
2018-01-23 21:38:05 +01:00
3fa67126b5
Switch to SLUB as kernel allocator
2018-01-23 19:25:23 +01:00
cf300a600b
usb: Enable USBIP_CORE etc. on all architectures ( Closes : #888042 )
2018-01-23 17:26:24 +00:00
e6885f415f
Enable CGROUP_BPF (except for armel) ( Closes : #872560 )
2018-01-23 17:15:28 +00:00
5ff0bf31f4
Add bug closer for I2C_PXA on espressobin
2018-01-21 22:34:07 +01:00
14c0e8f36f
[arm64] enable I2C_PXA for espressobin
2018-01-21 22:11:36 +01:00
503143acab
Enable NVME_MULTIPATH, NVME_FC, NVME_TARGET_FC
...
This enables NVME support in various SCSI host adapters, so move the
nvme module into the scsi-modules installer udeb.
2018-01-18 20:20:14 +01:00
a26c8f0854
x86: Enable HYPERV_VSOCKETS
2018-01-18 20:19:26 +01:00
aaaaf627d3
x86: Enable SCHED_MC_PRIO
2018-01-18 20:19:26 +01:00
02deddcfba
Enable CRYPTO_RSA, CRYPTO_DH, CRYPTO_ECDH
2018-01-18 20:19:26 +01:00
54918bc9f0
Enable VIRTIO_MMIO
2018-01-18 20:19:25 +01:00
4c06af37cc
Enable IPVTAP
2018-01-18 20:19:03 +01:00
7bd33d45fd
Enable NET_ACT_SAMPLE
2018-01-18 20:13:56 +01:00
82296390f5
Enable IP_SET_HASH_IPMAC
2018-01-18 20:13:56 +01:00
3aa1af59a8
Enable NF_LOG_NETDEV
2018-01-18 20:13:56 +01:00
cdc2183e8b
Enable IPV6_SEG6_LWTUNNEL, IPV6_SEG6_HMAC
2018-01-18 20:13:56 +01:00
3a62f848cf
Enable INET_ESP_OFFLOAD, INET6_ESP_OFFLOAD
2018-01-18 20:13:56 +01:00
63e3ef13a0
Enable NUMA_BALANCING_DEFAULT_ENABLED
2018-01-18 20:13:56 +01:00
e30f878e1d
ALSA: seq: Make ioctls race-free (CVE-2018-1000004)
2018-01-18 14:30:46 +01:00
12fc8ef895
cloud-amd64: Support Amazon EC2
2018-01-18 12:57:14 +01:00
5f83961cb5
Add cloud-amd64 kernel flavour
...
As discussed on d-kernel, this flavour is added as experiment on request
of Microsoft. For now it is only tested on Microsoft Azure.
It will be expanded to cover the other public cloud platforms at well.
This platforms will need additional drivers.
2018-01-18 09:19:36 +01:00
6f43038466
Update to 4.14.14
...
Mostly done by Salvatore Bonaccorso.
2018-01-18 06:10:01 +00:00
0bb5e7cccb
loop: fix concurrent lo_open/lo_release (CVE-2018-5344)
2018-01-16 20:57:59 +01:00
6c0d6a6239
RDS: null pointer dereference in rds_atomic_free_op (CVE-2018-5333)
2018-01-16 20:53:46 +01:00
24cdd62c17
RDS: Heap OOB write in rds_message_alloc_sgs() (CVE-2018-5332)
2018-01-16 20:50:50 +01:00
4762c889ee
Prepare to release linux (4.15~rc8-1~exp1).
2018-01-15 04:43:14 +00:00
9d3430166e
Note CVEs fixed upstream
2018-01-15 04:43:12 +00:00
6e7610453d
Release linux (4.14.13-1).
...
-----BEGIN PGP SIGNATURE-----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=M11J
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.13-1'
Release linux (4.14.13-1).
- Drop ABI reference
- Drop/refresh patches as necessary
- linux-headers: Drop versioned dependency on linux-kbuild, as there has not
been any version of linux-kbuild-4.15 without objtool
2018-01-15 04:35:41 +00:00
13eb990095
Update to 4.15-rc8
2018-01-15 04:31:31 +00:00
2ae3c9e4a7
Prepare to release linux (4.14.13-1).
2018-01-14 19:45:05 +00:00
d9fe539b06
Revert "objtool: Fix CONFIG_STACK_VALIDATION=y warning for out-of-tree modules"
...
This removes the bogus check for libelf-dev.
2018-01-14 19:44:14 +00:00
236bb1a25d
linux-headers: Add versioned dependency on linux-kbuild
2018-01-14 19:41:44 +00:00
da2cd8b85c
drm/nouveau/disp/gf119: add missing drive vfunc ptr
...
Closes : #880660
2018-01-13 11:54:57 +01:00
30fe681bff
abiupdate.py: Add support for security mirrors
2018-01-12 02:36:06 +00:00
a8911b9351
[arm64] disable omap_rng temporarily
...
The drivers hangs machine with IRQ storm on MacchiatoBin with EFI
as firmware. Re-enable the module once the issue is fixed.
2018-01-11 11:46:38 +02:00
aac0e5380a
Properly name patch according to subject
...
Gbp-Dch: Ignore
2018-01-10 22:46:07 +01:00
d42878a1e5
Disable asynchronous aborts for SATA devices
2018-01-10 13:23:46 +01:00
9a41499923
Update to 4.14.13
2018-01-10 10:49:59 +01:00
8996784cdc
Release linux (4.14.12-2).
...
-----BEGIN PGP SIGNATURE-----
iQKmBAABCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlpQhNxfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk
ZWJpYW4ub3JnAAoJEAVMuPMTQ89EKmgP/3D1CAm0F0v9d2AfQAPv8wVQIFpWqZGM
D1jjtinIyCGJVM0jjXKne1nwQZotVTN/SDHeGTmJVvluLsF7MBCiGTBYMThqYD/I
DCaOwGS9go8J771dR261c1D0nnnsqTvAJIMQDcVmRoVT/KRA/ZqdwJHygX8cZ2hb
MmSWH5szCt4n55SkJDQi4nJ0dWkj5ZiKf4i6+o5+NrY2PJRTYlIthnCvHDuTsY+r
Nade3ITAX82xRjFUmeM6JUc1xScLoXxvQhfuIRyIk2atQBCZEvTXvwC8cuyJWBo+
TUdWqRdxEslqCTJ7/boH9nsWO4Hm+UiVHFwUbFR+xpPqgdDvkHAZII5tk9pzNSxU
CWAWtKhRJxl8Ne452bCWtRi8TlvXNi4F7wbM9/AygT6dJoTidKYkAi+WcRco800G
Yx5uuLfj88tBm4VFZJot9W1FKOtml0w+25I4uuua2lSwIS6/25+OZ1qMOkEXbE+v
nIZHX2UTZYda8PNzZlMClfwiHYKKd+2LnGpdc0oEexwRxLtm/YFKHkavV396E7o1
FzlogUJqsofgJOEYczBcjiuEW9EKXbeRCx/TPm/MVHz2Qn0hCWGWSnR5h/8T7KZ9
GuOTk8+5c0puYK35+NC5M9/0XboP+hOEccuaJS4abu4tHok8jU72SX3KF+8j4dl8
OxVql0ToPmdI
=wQ4Q
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.12-2'
Release linux (4.14.12-2).
2018-01-06 14:30:49 +01:00
d41931f615
Prepare to release linux (4.14.12-2).
2018-01-06 09:08:42 +01:00
b2de3f8c6a
linux-headers: Add symlink to linux-kbuild tools directory for objtool in architecture-specific headers package
...
Thanks: Luca Boccassi
Closes : #886366
2018-01-06 08:06:27 +01:00
f5177a853e
linux-headers: Add symlink to linux-kbuild tools directory for objtool
2018-01-06 07:41:12 +01:00
3c9fb40bbb
linux-kbuild: Add objtool
2018-01-06 07:38:02 +01:00
1c59cc6aec
Prepare to release linux (4.14.12-1).
2018-01-05 21:20:26 +01:00
9a96b9c27a
x86/tlb: Drop the _GPL from the cpu_tlbstate export
2018-01-05 21:17:13 +01:00
52909cebb8
Update to 4.14.12
2018-01-05 16:07:19 +01:00
b64a1989ae
Revert "scsi: libsas: allow async aborts"
...
Fixes "Oops: NULL pointer dereference - RIP:
isci_task_abort_task+0x30/0x3e0 [isci]"
Closes : #882414
2018-01-05 14:23:11 +01:00
96dad8ed7e
Update to 4.14.11
2018-01-05 14:22:34 +01:00
304afa4414
Update to 4.14.10
2018-01-05 14:21:05 +01:00
572b685574
Bump ABI to 3
2018-01-05 14:21:01 +01:00
a7b364e44f
Update to 4.14.9
2018-01-05 14:19:40 +01:00
f587f7242e
[rt] Update to 4.14.8-rt9
2018-01-05 10:59:15 +01:00
f5474829b9
Update to 4.14.8
2018-01-05 10:59:15 +01:00
f65d850bba
Backport patch from linux-next (next-20180103) to support SMP on
...
tegra210 systems.
2018-01-04 10:50:15 -08:00
6c445bffa2
Clean up configuration using kconfigeditor2
...
Enable one replacement symbol and drop those that are really gone.
2017-12-30 16:20:49 +00:00
cb21ae6740
efi: Enable LOCK_DOWN_IN_EFI_SECURE_BOOT, replacing EFI_SECURE_BOOT_LOCK_DOWN
2017-12-30 16:20:25 +00:00
20aa9b586e
[arm64] Update "add kernel config option to lock down when in Secure Boot mode" for 4.15
2017-12-30 16:00:46 +00:00
6a221d27b1
e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
...
Closes : #885348
2017-12-28 01:24:56 +00:00
5635aaadec
Prepare to release linux (4.15~rc5-1~exp1).
2017-12-27 02:48:15 +00:00
55fce3fb69
Merge remote-tracking branch 'alioth/master'
2017-12-27 01:40:30 +00:00
4932bdacf1
linux-kbuild: Add objtool
2017-12-27 01:38:04 +00:00
7f35685e4b
[rt] Disable until it is updated for 4.15 or later
2017-12-27 01:38:03 +00:00
e01624c730
cpupower: Move library to multiarch directory
...
Upstream moved it from /usr/lib to /usr/lib64 in 4.15, but neither of
these is correct.
2017-12-27 01:38:00 +00:00
7bcd3c4d13
lockdown: Update calls to kernel_is_locked_down() in "mtd: Disable slram and phram when locked down"
...
We need to pass a string to be logged the first time the check fires.
2017-12-27 01:37:24 +00:00
7dd9b58675
Update to 4.15-rc5
...
Also update the aufs and lockdown patchsets.
2017-12-26 18:54:17 +00:00
ab5d03cb3b
Prepare to release linux (4.14.7-1).
2017-12-22 14:12:23 +00:00
8423f81c55
Merge remote-tracking branch 'alioth/sid' into sid
2017-12-22 14:10:04 +00:00
196596c560
crypto: hmac - require that the underlying hash algorithm is unkeyed (CVE-2017-17806)
2017-12-22 09:13:19 +01:00
4f056ca2c6
crypto: salsa20 - fix blkcipher_walk API usage (CVE-2017-17805)
2017-12-22 09:00:33 +01:00
adef82ee3a
Bump ABI to 2
2017-12-22 03:54:44 +00:00
cf1f6e2019
bpf/verifier: Fix multiple security issues ( Closes : #883558 )
2017-12-22 03:54:44 +00:00
a983b69920
Add one more known CVE id
...
Gbp-Dch: Ignore
2017-12-21 06:07:46 +01:00
2bc058f58c
Add opening parenthesis
...
Gbp-Dch: Ignore
2017-12-20 20:41:06 +01:00
fc7f6fafd8
Add security fixes
2017-12-20 19:27:18 +00:00
285e1090f2
[rt] Update to 4.14.6-rt7
2017-12-20 18:53:59 +00:00
9e0441b20a
Update to 4.14.7
...
Drop patches applied upstream, and fix a few conflicts.
2017-12-20 18:40:37 +00:00
67968436a4
[arm64] udeb: add mvebu comphy for armada 8K
2017-12-12 11:01:35 +02:00
11548f0aea
[arm64] udeb: add multifunction devices
2017-12-12 11:00:38 +02:00
a865f2fdb7
[armhf, arm64] Backport patches from 4.15.x to support dwmac-sun8i.
2017-12-11 13:15:45 -08:00
2f634be5d8
xen/time: do not decrease steal time after live migration on xen
...
Closes : #871608
2017-12-03 10:53:37 +01:00
7e09c9fcc8
Add ABI reference for 4.14.0-1
2017-12-03 10:18:48 +01:00
5b750f6268
Prepare to release linux (4.14.2-1).
2017-11-30 12:33:47 +00:00
1bf82631fb
Revert "SCSI: Enable SCSI_MQ_DEFAULT"
...
This reverts commit 16d7f29d46
2017-11-30 12:07:11 +00:00
3f937de450
[x86] mmap: Add an exception to the stack gap for Hotspot JVM compatibility
...
Closes : #865303
2017-11-30 12:07:11 +00:00
a87b11684d
Prepare to upload to unstable
...
Drop the ~exp1 from the version.
Set ABI to 1.
2017-11-30 12:06:47 +00:00
71832be11b
mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d() (CVE-2017-1000405)
2017-11-30 08:16:06 +01:00
fb72f17cab
[rt] Update to 4.14.1-rt3
2017-11-29 23:05:39 +00:00
b0a4fbf1cd
[rt] Add new signing subkey for Steven Rostedt
2017-11-29 22:11:04 +00:00
16d7f29d46
SCSI: Enable SCSI_MQ_DEFAULT
...
Now that blk-mq has a similar default scheduler as the old block
layer, it should be safe to switch over.
Note how to revert this at run-time if necessary.
2017-11-29 22:11:04 +00:00
f6077f8f4f
Add entry for CVE-2017-16994
2017-11-27 21:35:01 +01:00
f83f2a2082
Update to 4.14.2
2017-11-25 08:30:31 +01:00
Salvatore Bonaccorso
Ben Hutchings
Riku Voipio
Bastian Blank
Uwe Kleine-König
Vagrant Cascadian