SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: SUSE-SU-2017:1990-1
Rating: important
References: #1000092 #1003077 #1003581 #1004003 #1007729
#1007959 #1007962 #1008842 #1009674 #1009718
#1010032 #1010612 #1010690 #1011044 #1011176
#1011913 #1012060 #1012382 #1012422 #1012452
#1012829 #1012910 #1012985 #1013001 #1013561
#1013792 #1013887 #1013994 #1014120 #1014136
#1015342 #1015367 #1015452 #1015609 #1016403
#1017164 #1017170 #1017410 #1017461 #1017641
#1018100 #1018263 #1018358 #1018385 #1018419
#1018446 #1018813 #1018885 #1018913 #1019061
#1019148 #1019163 #1019168 #1019260 #1019351
#1019594 #1019614 #1019618 #1019630 #1019631
#1019784 #1019851 #1020048 #1020214 #1020412
#1020488 #1020602 #1020685 #1020817 #1020945
#1020975 #1021082 #1021248 #1021251 #1021258
#1021260 #1021294 #1021424 #1021455 #1021474
#1021762 #1022181 #1022266 #1022304 #1022340
#1022429 #1022476 #1022547 #1022559 #1022595
#1022785 #1022971 #1023101 #1023175 #1023287
#1023762 #1023866 #1023884 #1023888 #1024015
#1024081 #1024234 #1024508 #1024938 #1025039
#1025235 #1025461 #1025683 #1026024 #1026405
#1026462 #1026505 #1026509 #1026570 #1026692
#1026722 #1027054 #1027066 #1027101 #1027153
#1027179 #1027189 #1027190 #1027195 #1027273
#1027512 #1027565 #1027616 #1027974 #1028017
#1028027 #1028041 #1028158 #1028217 #1028310
#1028325 #1028340 #1028372 #1028415 #1028819
#1028883 #1028895 #1029220 #1029514 #1029607
#1029634 #1029986 #1030057 #1030070 #1030118
#1030213 #1030573 #1031003 #1031040 #1031052
#1031142 #1031147 #1031200 #1031206 #1031208
#1031440 #1031470 #1031500 #1031512 #1031555
#1031579 #1031662 #1031717 #1031796 #1031831
#1032006 #1032141 #1032339 #1032345 #1032400
#1032581 #1032673 #1032681 #1032803 #1033117
#1033281 #1033287 #1033336 #1033340 #1033885
#1034048 #1034419 #1034635 #1034670 #1034671
#1034762 #1034902 #1034995 #1035024 #1035866
#1035887 #1035920 #1035922 #1036214 #1036638
#1036752 #1036763 #1037177 #1037186 #1037384
#1037483 #1037669 #1037840 #1037871 #1037969
#1038033 #1038043 #1038085 #1038142 #1038143
#1038297 #1038458 #1038544 #1038842 #1038843
#1038846 #1038847 #1038848 #1038879 #1038981
#1038982 #1039348 #1039354 #1039700 #1039864
#1039882 #1039883 #1039885 #1039900 #1040069
#1040125 #1040182 #1040279 #1040351 #1040364
#1040395 #1040425 #1040463 #1040567 #1040609
#1040855 #1040929 #1040941 #1041087 #1041160
#1041168 #1041242 #1041431 #1041810 #1042200
#1042286 #1042356 #1042421 #1042517 #1042535
#1042536 #1042863 #1042886 #1043014 #1043231
#1043236 #1043347 #1043371 #1043467 #1043488
#1043598 #1043912 #1043935 #1043990 #1044015
#1044082 #1044120 #1044125 #1044532 #1044767
#1044772 #1044854 #1044880 #1044912 #1045154
#1045235 #1045286 #1045307 #1045340 #1045467
#1045568 #1046105 #1046434 #1046589 #799133
#863764 #870618 #922871 #951844 #966170 #966172
#966191 #966321 #966339 #968697 #969479 #969755
#970083 #971975 #982783 #985561 #986362 #986365
#987192 #987576 #988065 #989056 #989311 #990058
#990682 #991273 #993832 #995542 #995968 #998106
Cross-References: CVE-2016-10200 CVE-2016-2117 CVE-2016-4997
CVE-2016-4998 CVE-2016-7117 CVE-2016-9191
CVE-2017-1000364 CVE-2017-1000365 CVE-2017-1000380
CVE-2017-2583 CVE-2017-2584 CVE-2017-2596
CVE-2017-2636 CVE-2017-2671 CVE-2017-5551
CVE-2017-5576 CVE-2017-5577 CVE-2017-5897
CVE-2017-5970 CVE-2017-5986 CVE-2017-6074
CVE-2017-6214 CVE-2017-6345 CVE-2017-6346
CVE-2017-6347 CVE-2017-6353 CVE-2017-7184
CVE-2017-7187 CVE-2017-7261 CVE-2017-7294
CVE-2017-7308 CVE-2017-7346 CVE-2017-7374
CVE-2017-7487 CVE-2017-7616 CVE-2017-7618
CVE-2017-8890 CVE-2017-9074 CVE-2017-9075
CVE-2017-9076 CVE-2017-9077 CVE-2017-9150
CVE-2017-9242
Affected Products:
SUSE Linux Enterprise Real Time Extension 12-SP2
______________________________________________________________________________
An update that solves 43 vulnerabilities and has 282 fixes
is now available.
Description:
The SUSE Linux Enterprise 12 SP2 Realtime kernel was updated to 4.4.74 to
receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2017-1000364: An issue was discovered in the size of the stack guard
page on Linux, specifically a 4k stack guard page is not sufficiently
large and can be "jumped" over (the stack guard page is bypassed), this
affects Linux Kernel versions 4.11.5 and earlier (the stackguard page
was introduced in 2010) (bnc#1039348).
- CVE-2017-1000365: The Linux Kernel imposes a size restriction on the
arguments and environmental strings passed through
RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but did not take the
argument and environment pointers into account, which allowed attackers
to bypass this limitation. (bnc#1039354).
- CVE-2017-1000380: sound/core/timer.c in the Linux kernel is vulnerable
to a data race in the ALSA /dev/snd/timer driver resulting in local
users being able to read information belonging to other users, i.e.,
uninitialized memory contents may be disclosed when a read and an ioctl
happen at the same time (bnc#1044125).
- CVE-2017-7346: The vmw_gb_surface_define_ioctl function in
drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel did not
validate certain levels data, which allowed local users to cause a
denial of service (system hang) via a crafted ioctl call for a
/dev/dri/renderD* device (bnc#1031796).
- CVE-2017-9242: The __ip6_append_data function in net/ipv6/ip6_output.c
in the Linux kernel is too late in checking whether an overwrite of an
skb data structure may occur, which allowed local users to cause a
denial of service (system crash) via crafted system calls (bnc#1041431).
- CVE-2017-9076: The dccp_v6_request_recv_sock function in net/dccp/ipv6.c
in the Linux kernel mishandled inheritance, which allowed local users to
cause a denial of service or possibly have unspecified other impact via
crafted system calls, a related issue to CVE-2017-8890 (bnc#1039885).
- CVE-2017-9077: The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c
in the Linux kernel mishandled inheritance, which allowed local users to
cause a denial of service or possibly have unspecified other impact via
crafted system calls, a related issue to CVE-2017-8890 (bnc#1040069).
- CVE-2017-9075: The sctp_v6_create_accept_sk function in net/sctp/ipv6.c
in the Linux kernel mishandled inheritance, which allowed local users to
cause a denial of service or possibly have unspecified other impact via
crafted system calls, a related issue to CVE-2017-8890 (bnc#1039883).
- CVE-2017-9074: The IPv6 fragmentation implementation in the Linux kernel
did not consider that the nexthdr field may be associated with an
invalid option, which allowed local users to cause a denial of service
(out-of-bounds read and BUG) or possibly have unspecified other impact
via crafted socket and send system calls (bnc#1039882).
- CVE-2017-7487: The ipxitf_ioctl function in net/ipx/af_ipx.c in the
Linux kernel mishandled reference counts, which allowed local users to
cause a denial of service (use-after-free) or possibly have unspecified
other impact via a failed SIOCGIFADDR ioctl call for an IPX interface
(bnc#1038879).
- CVE-2017-8890: The inet_csk_clone_lock function in
net/ipv4/inet_connection_sock.c in the Linux kernel allowed attackers to
cause a denial of service (double free) or possibly have unspecified
other impact by leveraging use of the accept system call (bnc#1038544).
- CVE-2017-9150: The do_check function in kernel/bpf/verifier.c in the
Linux kernel did not make the allow_ptr_leaks value available for
restricting the output of the print_bpf_insn function, which allowed
local users to obtain sensitive address information via crafted bpf
system calls (bnc#1040279).
- CVE-2017-7618: crypto/ahash.c in the Linux kernel allowed attackers to
cause a denial of service (API operation calling its own callback, and
infinite recursion) by triggering EBUSY on a full queue (bnc#1033340).
- CVE-2016-4997: The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE
setsockopt implementations in the netfilter subsystem in the Linux
kernel allow local users to gain privileges or cause a denial of service
(memory corruption) by leveraging in-container root access to provide a
crafted offset value that triggers an unintended decrement (bnc#986362).
- CVE-2016-4998: The IPT_SO_SET_REPLACE setsockopt implementation in the
netfilter subsystem in the Linux kernel allowed local users to cause a
denial of service (out-of-bounds read) or possibly obtain sensitive
information from kernel heap memory by leveraging in-container root
access to provide a crafted offset value that leads to crossing a
ruleset blob boundary (bnc#986365).
- CVE-2017-7616: Incorrect error handling in the set_mempolicy and mbind
compat syscalls in mm/mempolicy.c in the Linux kernel allowed local
users to obtain sensitive information from uninitialized stack data by
triggering failure of a certain bitmap operation (bnc#1033336).
- CVE-2017-2671: The ping_unhash function in net/ipv4/ping.c in the Linux
kernel is too late in obtaining a certain lock and consequently cannot
ensure that disconnect function calls are safe, which allowed local
users to cause a denial of service (panic) by leveraging access to the
protocol value of IPPROTO_ICMP in a socket system call (bnc#1031003).
- CVE-2017-7184: The xfrm_replay_verify_len function in
net/xfrm/xfrm_user.c in the Linux kernel did not validate certain size
data after an XFRM_MSG_NEWAE update, which allowed local users to obtain
root privileges or cause a denial of service (heap-based out-of-bounds
access) by leveraging the CAP_NET_ADMIN capability, as demonstrated
during a Pwn2Own competition at CanSecWest 2017 for the Ubuntu 16.10
linux-image-* package 4.8.0.41.52 (bnc#1030573).
- CVE-2017-7308: The packet_set_ring function in net/packet/af_packet.c in
the Linux kernel did not properly validate certain block-size data,
which allowed local users to cause a denial of service (integer
signedness error and out-of-bounds write), or gain privileges (if the
CAP_NET_RAW capability is held), via crafted system calls (bnc#1031579).
- CVE-2017-7294: The vmw_surface_define_ioctl function in
drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel did not
validate addition of certain levels data, which allowed local users to
trigger an integer overflow and out-of-bounds write, and cause a denial
of service (system hang or crash) or possibly gain privileges, via a
crafted ioctl call for a /dev/dri/renderD* device (bnc#1031440).
- CVE-2017-7261: The vmw_surface_define_ioctl function in
drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel did not
check for a zero value of certain levels data, which allowed local users
to cause a denial of service (ZERO_SIZE_PTR dereference, and GPF and
possibly panic) via a crafted ioctl call for a /dev/dri/renderD* device
(bnc#1031052).
- CVE-2017-7187: The sg_ioctl function in drivers/scsi/sg.c in the Linux
kernel allowed local users to cause a denial of service (stack-based
buffer overflow) or possibly have unspecified other impact via a large
command size in an SG_NEXT_CMD_LEN ioctl call, leading to out-of-bounds
write access in the sg_write function (bnc#1030213).
- CVE-2017-7374: Use-after-free vulnerability in fs/crypto/ in the Linux
kernel allowed local users to cause a denial of service (NULL pointer
dereference) or possibly gain privileges by revoking keyring keys being
used for ext4, f2fs, or ubifs encryption, causing cryptographic
transform objects to be freed prematurely (bnc#1032006).
- CVE-2016-10200: Race condition in the L2TPv3 IP Encapsulation feature in
the Linux kernel allowed local users to gain privileges or cause a
denial of service (use-after-free) by making multiple bind system calls
without properly ascertaining whether a socket has the SOCK_ZAPPED
status, related to net/l2tp/l2tp_ip.c and net/l2tp/l2tp_ip6.c
(bnc#1028415).
- CVE-2017-2636: Race condition in drivers/tty/n_hdlc.c in the Linux
kernel allowed local users to gain privileges or cause a denial of
service (double free) by setting the HDLC line discipline (bnc#1027565).
- CVE-2017-6345: The LLC subsystem in the Linux kernel did not ensure that
a certain destructor exists in required circumstances, which allowed
local users to cause a denial of service (BUG_ON) or possibly have
unspecified other impact via crafted system calls (bnc#1027190).
- CVE-2017-6346: Race condition in net/packet/af_packet.c in the Linux
kernel allowed local users to cause a denial of service (use-after-free)
or possibly have unspecified other impact via a multithreaded
application that made PACKET_FANOUT setsockopt system calls
(bnc#1027189).
- CVE-2017-6353: net/sctp/socket.c in the Linux kernel did not properly
restrict association peel-off operations during certain wait states,
which allowed local users to cause a denial of service (invalid unlock
and double free) via a multithreaded application. NOTE: this
vulnerability exists because of an incorrect fix for CVE-2017-5986.
(bnc#1027066).
- CVE-2017-6214: The tcp_splice_read function in net/ipv4/tcp.c in the
Linux kernel allowed remote attackers to cause a denial of service
(infinite loop and soft lockup) via vectors involving a TCP packet with
the URG flag (bnc#1026722).
- CVE-2016-2117: The atl2_probe function in
drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel incorrectly
enables scatter/gather I/O, which allowed remote attackers to obtain
sensitive information from kernel memory by reading packet data
(bnc#968697).
- CVE-2017-6347: The ip_cmsg_recv_checksum function in
net/ipv4/ip_sockglue.c in the Linux kernel has incorrect expectations
about skb data layout, which allowed local users to cause a denial of
service (buffer over-read) or possibly have unspecified other impact via
crafted system calls, as demonstrated by use of the MSG_MORE flag in
conjunction with loopback UDP transmission (bnc#1027179).
- CVE-2016-9191: The cgroup offline implementation in the Linux kernel
mishandled certain drain operations, which allowed local users to cause
a denial of service (system hang) by leveraging access to a container
environment for executing a crafted application, as demonstrated by
trinity (bnc#1008842).
- CVE-2017-2583: The load_segment_descriptor implementation in
arch/x86/kvm/emulate.c in the Linux kernel improperly emulates a "MOV
SS, NULL selector" instruction, which allowed guest OS users to cause a
denial of service (guest OS crash) or gain guest OS privileges via a
crafted application (bnc#1020602).
- CVE-2017-2584: arch/x86/kvm/emulate.c in the Linux kernel allowed local
users to obtain sensitive information from kernel memory or cause a
denial of service (use-after-free) via a crafted application that
leverages instruction emulation for fxrstor, fxsave, sgdt, and sidt
(bnc#1019851).
- CVE-2017-2596: The nested_vmx_check_vmptr function in arch/x86/kvm/vmx.c
in the Linux kernel improperly emulates the VMXON instruction, which
allowed KVM L1 guest OS users to cause a denial of service (host OS
memory consumption) by leveraging the mishandling of page references
(bnc#1022785).
- CVE-2017-6074: The dccp_rcv_state_process function in net/dccp/input.c
in the Linux kernel mishandled DCCP_PKT_REQUEST packet data structures
in the LISTEN state, which allowed local users to obtain root privileges
or cause a denial of service (double free) via an application that made
an IPV6_RECVPKTINFO setsockopt system call (bnc#1026024).
- CVE-2017-5986: Race condition in the sctp_wait_for_sndbuf function in
net/sctp/socket.c in the Linux kernel allowed local users to cause a
denial of service (assertion failure and panic) via a multithreaded
application that peels off an association in a certain buffer-full state
(bnc#1025235).
- CVE-2017-5970: The ipv4_pktinfo_prepare function in
net/ipv4/ip_sockglue.c in the Linux kernel allowed attackers to cause a
denial of service (system crash) via (1) an application that made
crafted system calls or possibly (2) IPv4 traffic with invalid IP
options (bnc#1024938).
- CVE-2017-5897: The ip6gre_err function in net/ipv6/ip6_gre.c in the
Linux kernel allowed remote attackers to have unspecified impact via
vectors involving GRE flags in an IPv6 packet, which trigger an
out-of-bounds access (bnc#1023762).
- CVE-2016-7117: Use-after-free vulnerability in the __sys_recvmmsg
function in net/socket.c in the Linux kernel allowed remote attackers to
execute arbitrary code via vectors involving a recvmmsg system call that
is mishandled during error processing (bnc#1003077).
- CVE-2017-5576: Integer overflow in the vc4_get_bcl function in
drivers/gpu/drm/vc4/vc4_gem.c in the VideoCore DRM driver in the Linux
kernel allowed local users to cause a denial of service or possibly have
unspecified other impact via a crafted size value in a VC4_SUBMIT_CL
ioctl call (bnc#1021294).
- CVE-2017-5577: The vc4_get_bcl function in drivers/gpu/drm/vc4/vc4_gem.c
in the VideoCore DRM driver in the Linux kernel did not set an errno
value upon certain overflow detections, which allowed local users to
cause a denial of service (incorrect pointer dereference and OOPS) via
inconsistent size values in a VC4_SUBMIT_CL ioctl call (bnc#1021294).
- CVE-2017-5551: The simple_set_acl function in fs/posix_acl.c in the
Linux kernel preserves the setgid bit during a setxattr call involving a
tmpfs filesystem, which allowed local users to gain group privileges by
leveraging the existence of a setgid program with restrictions on
execute permissions. NOTE: this vulnerability exists because of an
incomplete fix for CVE-2016-7097. (bnc#1021258).
The following non-security bugs were fixed:
- 9p: fix a potential acl leak (4.4.68 stable queue).
- acpi / APEI: Add missing synchronize_rcu() on NOTIFY_SCI removal
(bsc#1031717).
- acpi: Do not create a platform_device for IOAPIC/IOxAPIC (bsc#1028819).
- acpi, ioapic: Clear on-stack resource before using it (bsc#1028819).
- acpi, nfit: fix acpi_nfit_flush_probe() crash (bsc#1031717).
- acpi, nfit: fix bus vs dimm confusion in xlat_status (bsc#1023175).
- acpi, nfit: fix extended status translations for ACPI DSMs (bsc#1031717).
- acpi, nfit, libnvdimm: fix / harden ars_status output length handling
(bsc#1023175).
- acpi, nfit: validate ars_status output buffer size (bsc#1023175).
- acpi: Remove platform devices from a bus on removal (bsc#1028819).
- acpi / scan: Drop support for force_remove (bnc#1029607).
- ahci: disable correct irq for dummy ports (bsc#1040125).
- alsa: hda - Fix deadlock of controller device lock at unbinding (4.4.68
stable queue).
- arm64: hugetlb: fix the wrong address for several functions
(bsc#1032681).
- arm64: hugetlb: fix the wrong return value for
huge_ptep_set_access_flags (bsc#1032681).
- arm64: hugetlb: remove the wrong pmd check in find_num_contig()
(bsc#1032681).
- arm64/numa: fix incorrect log for memory-less node (bsc#1019631).
- arm64: Use full path in KBUILD_IMAGE definition (bsc#1010032).
- arm: 8452/3: PJ4: make coprocessor access sequences buildable in Thumb2
mode (4.4.68 stable queue).
- arm: OMAP5 / DRA7: Fix HYP mode boot for thumb2 build (4.4.68 stable
queue).
- arm: Use full path in KBUILD_IMAGE definition (bsc#1010032).
- ASoC: cht_bsw_rt5645: Fix leftover kmalloc (bsc#1010690).
- ASoC: Intel: Skylake: Uninitialized variable in probe_codec()
(bsc#1043231).
- ASoC: rt5640: use msleep() for long delays (bsc#1031717).
- ASoC: sti: Fix error handling if of_clk_get() fails (bsc#1031717).
- avoid including "mountproto=" with no protocol in /proc/mounts
(bsc#1019260).
- bcache: fix calling ida_simple_remove() with incorrect minor
(bsc#1038085).
- bcache: Make gc wakeup sane, remove set_task_state() (bsc#1021260).
- bcache: partition support: add 16 minors per bcacheN device
(bsc#1019784).
- blacklist 61e8a0d5a027 powerpc/pci: Fix endian bug in fixed PHB
numbering (bsc#989311)
- blacklist.conf: a04a480d4392 net: Require exact match for TCP socket
lookups if dif is l3mdev (v4.9-rc4) 10/11 conflicts are with code
introduced by 74b20582ac38 ("net: l3mdev: Add hook in ip and ipv6",
v4.7-rc1) which is not present in SP2. I think that either the problem
was always there or was introduced by 74b20582ac38. If in the first
case, the fix would have to be implemented differently; if in the second
case, the fix is not needed in SP2.
- blacklist.conf: blacklist reverted commit Commit 82486aa6f1b9 ("ipv4:
restore rt->fi for reference counting") was later reverted and
replaced by commit 3fb07daff8e9 ("ipv4: add reference counting to
metrics"). This solution breaks kABI, though, and I'll need to look into
it more carefully to see if it can be worked around easily.
- blk-mq: Allow timeouts to run while queue is freezing (bsc#1020817).
- blk-mq: Always schedule hctx->next_cpu (bsc#1020817).
- blk-mq: Avoid memory reclaim when remapping queues (bsc#1020817).
- blk-mq: do not overwrite rq->mq_ctx (bsc#1020817).
- blk-mq: Fix failed allocation path when mapping queues (bsc#1020817).
- blk-mq: improve warning for running a queue on the wrong CPU
(bsc#1020817).
- block: Change extern inline to static inline (bsc#1023175).
- block: copy NOMERGE flag from bio to request (bsc#1030070).
- block: get rid of blk_integrity_revalidate() (4.4.68 stable queue).
- bluetooth: btmrvl: fix hung task warning dump (bsc#1018813).
- bna: add missing per queue ethtool stat (bsc#966321 FATE#320156).
- bna: avoid writing uninitialized data into hw registers (bsc#966321
FATE#320156).
- bna: integer overflow bug in debugfs (bsc#966321 FATE#320156).
- bnx2x: allow adding VLANs while interface is down (bsc#1027273).
- bnx2x: Correct ringparam estimate when DOWN (bsc#1020214).
- bnxt_en: allocate enough space for ->ntp_fltr_bmap (bsc#1020412
FATE#321671).
- bonding: avoid defaulting hard_header_len to ETH_HLEN on slave removal
(bsc#1042286).
- bonding: do not use stale speed and duplex information (bsc#1042286).
- bonding: fix 802.3ad aggregator reselection (bsc#1029514).
- bonding: prevent out of bound accesses (bsc#1042286).
- bpf, arm64: fix jit branch offset related to ldimm64 (4.4.68 stable
queue).
- brcmfmac: add fallback for devices that do not report per-chain values
(bsc#1043231).
- brcmfmac: avoid writing channel out of allocated array (bsc#1043231).
- brcmfmac: Change error print on wlan0 existence (bsc#1000092).
- brcmfmac: Ensure pointer correctly set if skb data location changes
(4.4.68 stable queue).
- brcmfmac: Make skb header writable before use (4.4.68 stable queue).
- brcmfmac: restore stopping netdev queue when bus clogs up (bsc#1031717).
- btrfs: add a flags field to btrfs_fs_info (bsc#1012452).
- btrfs: add ASSERT for block group's memory leak (bsc#1012452).
- btrfs: add btrfs_trans_handle->fs_info pointer (bsc#1012452).
- btrfs: add bytes_readonly to the spaceinfo at once (bsc#1012452).
- btrfs: add check to sysfs handler of label (bsc#1012452).
- btrfs: add dynamic debug support (bsc#1012452).
- btrfs: add error handling for extent buffer in print tree (bsc#1012452).
- btrfs: add missing bytes_readonly attribute file in sysfs (bsc#1012452).
- btrfs: add missing check for writeback errors on fsync (bsc#1012452).
- btrfs: add more validation checks for superblock (bsc#1012452).
- btrfs: Add ratelimit to btrfs printing (bsc#1012452).
- btrfs: add read-only check to sysfs handler of features (bsc#1012452).
- btrfs: add semaphore to synchronize direct IO writes with fsync
(bsc#1012452).
- btrfs: add support for RENAME_EXCHANGE and RENAME_WHITEOUT (bsc#1020975).
- btrfs: add tracepoint for adding block groups (bsc#1012452).
- btrfs: add tracepoints for flush events (bsc#1012452).
- btrfs: add transaction space reservation tracepoints (bsc#1012452).
- btrfs: add validadtion checks for chunk loading (bsc#1012452).
- btrfs: add write protection to SET_FEATURES ioctl (bsc#1012452).
- btrfs: allow balancing to dup with multi-device (bsc#1012452).
- btrfs: allow unlink to exceed subvolume quota (bsc#1019614).
- btrfs: always reserve metadata for delalloc extents (bsc#1012452).
- btrfs: always use trans->block_rsv for orphans (bsc#1012452).
- btrfs: avoid blocking open_ctree from cleaner_kthread (bsc#1012452).
- btrfs: avoid deadlocks during reservations in btrfs_truncate_block
(bsc#1012452).
- btrfs: avoid overflowing f_bfree (bsc#1012452).
- btrfs: avoid uninitialized variable warning (bsc#1012452).
- btrfs: backref: Fix soft lockup in __merge_refs function (bsc#1017641).
- btrfs: btrfs_abort_transaction, drop root parameter (bsc#1012452).
- btrfs: __btrfs_buffered_write: Pass valid file offset when releasing
delalloc space (bsc#1012452).
- btrfs: __btrfs_buffered_write: Reserve/release extents aligned to block
size (bsc#1012452).
- btrfs: btrfs_check_super_valid: Allow 4096 as stripesize (bsc#1012452).
- btrfs: btrfs_debug should consume fs_info when DEBUG is not defined
(bsc#1012452).
- btrfs: btrfs_ioctl_clone: Truncate complete page after performing clone
operation (bsc#1012452).
- btrfs: btrfs_page_mkwrite: Reserve space in sectorsized units
(bsc#1012452).
- btrfs: btrfs_relocate_chunk pass extent_root to btrfs_end_transaction
(bsc#1012452).
- btrfs: btrfs_submit_direct_hook: Handle map_length < bio vector
length (bsc#1012452).
- btrfs: build fixup for qgroup_account_snapshot (bsc#1012452).
- btrfs: change BUG_ON()'s to ASSERT()'s in backref_cache_cleanup()
(bsc#1012452).
- btrfs: change delayed reservation fallback behavior (bsc#1012452).
- btrfs: change how we calculate the global block rsv (bsc#1012452).
- btrfs: change how we update the global block rsv (bsc#1012452).
- btrfs: Change qgroup_meta_rsv to 64bit (bsc#1019614).
- btrfs: check btree node's nritems (bsc#1012452).
- btrfs: check if extent buffer is aligned to sectorsize (bsc#1012452).
- btrfs: check inconsistence between chunk and block group (bsc#1012452).
- btrfs: check reserved when deciding to background flush (bsc#1012452).
- btrfs: clarify do_chunk_alloc()'s return value (bsc#1012452).
- btrfs: Clean pte corresponding to page straddling i_size (bsc#1012452).
- btrfs: clean the old superblocks before freeing the device (bsc#1012452).
- btrfs: clean up and optimize __check_raid_min_device() (bsc#1012452).
- btrfs: cleanup assigning next active device with a check (bsc#1012452).
- btrfs: cleanup BUG_ON in merge_bio (bsc#1012452).
- btrfs: Cleanup compress_file_range() (bsc#1012452).
- btrfs: cleanup error handling in extent_write_cached_pages (bsc#1012452).
- btrfs: clear uptodate flags of pages in sys_array eb (bsc#1012452).
- btrfs: clone: use vmalloc only as fallback for nodesize bufer
(bsc#1012452).
- btrfs: Compute and look up csums based on sectorsized blocks
(bsc#1012452).
- btrfs: convert nodesize macros to static inlines (bsc#1012452).
- btrfs: convert printk(KERN_* to use pr_* calls (bsc#1012452).
- btrfs: convert pr_* to btrfs_* where possible (bsc#1012452).
- btrfs: convert send's verbose_printk to btrfs_debug (bsc#1012452).
- btrfs: copy_to_sk drop unused root parameter (bsc#1012452).
- btrfs: create a helper function to read the disk super (bsc#1012452).
- btrfs: create example debugfs file only in debugging build (bsc#1012452).
- btrfs: create helper btrfs_find_device_by_user_input() (bsc#1012452).
- btrfs: create helper function __check_raid_min_devices() (bsc#1012452).
- btrfs: csum_tree_block: return proper errno value (bsc#1012452).
- btrfs: detect corruption when non-root leaf has zero item (bsc#1012452).
- btrfs: device add and remove: use GFP_KERNEL (bsc#1012452).
- btrfs: Direct I/O read: Work on sectorsized blocks (bsc#1012452).
- btrfs: divide btrfs_update_reserved_bytes() into two functions
(bsc#1012452).
- btrfs: do not background blkdev_put() (bsc#1012452).
- btrfs: do not bother kicking async if there's nothing to reclaim
(bsc#1012452).
- btrfs: do not BUG_ON() in btrfs_orphan_add (bsc#1012452).
- btrfs: do not create empty block group if we have allocated data
(bsc#1012452).
- btrfs: do not decrease bytes_may_use when replaying extents
(bsc#1012452).
- btrfs: do not do nocow check unless we have to (bsc#1012452).
- btrfs: do not do unnecessary delalloc flushes when relocating
(bsc#1012452).
- btrfs: do not force mounts to wait for cleaner_kthread to delete one or
more subvolumes (bsc#1012452).
- btrfs: do not wait for unrelated IO to finish before relocation
(bsc#1012452).
- btrfs: do not WARN() in btrfs_transaction_abort() for IO errors
(bsc#1035866).
- btrfs: do not write corrupted metadata blocks to disk (bsc#1012452).
- btrfs: end transaction if we abort when creating uuid root (bsc#1012452).
- btrfs: enhance btrfs_find_device_by_user_input() to check device path
(bsc#1012452).
- btrfs: error out if generic_bin_search get invalid arguments
(bsc#1012452).
- btrfs: expand cow_file_range() to support in-band dedup and
subpage-blocksize (bsc#1012452).
- btrfs: extend btrfs_set_extent_delalloc and its friends to support
in-band dedupe and subpage size patchset (bsc#1012452).
- btrfs: extent same: use GFP_KERNEL for page array allocations
(bsc#1012452).
- btrfs: fallback to vmalloc in btrfs_compare_tree (bsc#1012452).
- btrfs: fallocate: use GFP_KERNEL (bsc#1012452).
- btrfs: fallocate: Work with sectorsized blocks (bsc#1012452).
- btrfs: fill relocation block rsv after allocation (bsc#1012452).
- btrfs: fix an integer overflow check (bsc#1012452).
- btrfs: fix a possible umount deadlock (bsc#1012452).
- btrfs: Fix block size returned to user space (bsc#1012452).
- btrfs: fix btrfs_compat_ioctl failures on non-compat ioctls
(bsc#1018100).
- btrfs: fix btrfs_no_printk stub helper (bsc#1012452).
- btrfs: Fix BUG_ON condition in scrub_setup_recheck_block() (bsc#1012452).
- btrfs: fix BUG_ON in btrfs_mark_buffer_dirty (bsc#1012452).
- btrfs: fix BUG_ON in btrfs_submit_compressed_write (bsc#1012452).
- btrfs: fix build warning (bsc#1012452).
- btrfs: fix callers of btrfs_block_rsv_migrate (bsc#1012452).
- btrfs: fix check_direct_IO() for non-iovec iterators (bsc#1012452).
- btrfs: fix check_shared for fiemap ioctl (bsc#1037177).
- btrfs: fix crash when tracepoint arguments are freed by wq callbacks
(bsc#1012452).
- btrfs: fix data loss after truncate when using the no-holes feature
(bsc#1036214).
- btrfs: fix deadlock in delayed_ref_async_start (bsc#1012452).
- btrfs: fix delalloc accounting after copy_from_user faults (bsc#1012452).
- btrfs: fix delalloc reservation amount tracepoint (bsc#1012452).
- btrfs: fix disk_i_size update bug when fallocate() fails (bsc#1012452).
- btrfs: fix divide error upon chunk's stripe_len (bsc#1012452).
- btrfs: fix double free of fs root (bsc#1012452).
- btrfs: fix eb memory leak due to readpage failure (bsc#1012452).
- btrfs: fix em leak in find_first_block_group (bsc#1012452).
- btrfs: fix emptiness check for dirtied extent buffers at check_leaf()
(bsc#1012452).
- btrfs: fix error handling in map_private_extent_buffer (bsc#1012452).
- btrfs: fix error return code in btrfs_init_test_fs() (bsc#1012452).
- btrfs: fix extent_same allowing destination offset beyond i_size
(bsc#1012452).
- btrfs: fix free space calculation in dump_space_info() (bsc#1012452).
- btrfs: fix fsfreeze hang caused by delayed iputs deal (bsc#1012452).
- btrfs: fix fspath error deallocation (bsc#1012452).
- btrfs: fix handling of faults from btrfs_copy_from_user (bsc#1012452).
- btrfs: fix inode leak on failure to setup whiteout inode in rename
(bsc#1020975).
- btrfs: fix int32 overflow in shrink_delalloc() (bsc#1012452).
- btrfs: Fix integer overflow when calculating bytes_per_bitmap
(bsc#1012452).
- btrfs: fix invalid dereference in btrfs_retry_endio (bsc#1040395).
- btrfs: fix invalid reference in replace_path (bsc#1012452).
- btrfs: fix listxattrs not listing all xattrs packed in the same item
(bsc#1012452).
- btrfs: fix lockdep deadlock warning due to dev_replace (bsc#1012452).
- btrfs: fix lockdep warning about log_mutex (bsc#1021455).
- btrfs: fix lock dep warning, move scratch dev out of device_list_mutex
and uuid_mutex (bsc#1012452).
- btrfs: fix lock dep warning move scratch super outside of chunk_mutex
(bsc#1012452).
- btrfs: fix lockdep warning on deadlock against an inode's log mutex
(bsc#1021455).
- btrfs: fix __MAX_CSUM_ITEMS (bsc#1012452).
- btrfs: fix memory leak during RAID 5/6 device replacement (bsc#1012452).
- btrfs: fix memory leak of block group cache (bsc#1012452).
- btrfs: fix memory leak of reloc_root (bsc#1012452).
- btrfs: fix mixed block count of available space (bsc#1012452).
- btrfs: fix number of transaction units for renames with whiteout
(bsc#1020975).
- btrfs: fix one bug that process may endlessly wait for ticket in
wait_reserve_ticket() (bsc#1012452).
- btrfs: fix panic in balance due to EIO (bsc#1012452).
- btrfs: fix race between block group relocation and nocow writes
(bsc#1012452).
- btrfs: fix race between device replace and block group removal
(bsc#1012452).
- btrfs: fix race between device replace and chunk allocation
(bsc#1012452).
- btrfs: fix race between device replace and discard (bsc#1012452).
- btrfs: fix race between device replace and read repair (bsc#1012452).
- btrfs: fix race between fsync and direct IO writes for prealloc extents
(bsc#1012452).
- btrfs: fix race between readahead and device replace/removal
(bsc#1012452).
- btrfs: fix race setting block group back to RW mode during device
replace (bsc#1012452).
- btrfs: fix race setting block group readonly during device replace
(bsc#1012452).
- btrfs: fix read_node_slot to return errors (bsc#1012452).
- btrfs: fix release reserved extents trace points (bsc#1012452).
- btrfs: fix segmentation fault when doing dio read (bsc#1040425).
- btrfs: Fix slab accounting flags (bsc#1012452).
- btrfs: fix truncate_space_check (bsc#1012452).
- btrfs: fix unexpected return value of fiemap (bsc#1012452).
- btrfs: fix unprotected assignment of the left cursor for device replace
(bsc#1012452).
- btrfs: fix WARNING in btrfs_select_ref_head() (bsc#1012452).
- btrfs: flush_space: treat return value of do_chunk_alloc properly
(bsc#1012452).
- btrfs: Force stripesize to the value of sectorsize (bsc#1012452).
- btrfs: free sys_array eb as soon as possible (bsc#1012452).
- btrfs: GFP_NOFS does not GFP_HIGHMEM (bsc#1012452).
- btrfs: Handle uninitialised inode eviction (bsc#1012452).
- btrfs: hide test-only member under ifdef (bsc#1012452).
- btrfs: improve check_node to avoid reading corrupted nodes (bsc#1012452).
- btrfs: Improve FL_KEEP_SIZE handling in fallocate (bsc#1012452).
- btrfs: incremental send, do not delay rename when parent inode is new
(bsc#1028325).
- btrfs: incremental send, do not issue invalid rmdir operations
(bsc#1028325).
- btrfs: introduce BTRFS_MAX_ITEM_SIZE (bsc#1012452).
- btrfs: introduce device delete by devid (bsc#1012452).
- btrfs: introduce raid-type to error-code table, for minimum device
constraint (bsc#1012452).
- btrfs: introduce ticketed enospc infrastructure (bsc#1012452).
- btrfs: introduce tickets_id to determine whether asynchronous metadata
reclaim work makes progress (bsc#1012452).
- btrfs: ioctl: reorder exclusive op check in RM_DEV (bsc#1012452).
- btrfs: kill BUG_ON in do_relocation (bsc#1012452).
- btrfs: kill BUG_ON in run_delayed_tree_ref (bsc#1012452).
- btrfs: kill BUG_ON()'s in btrfs_mark_extent_written (bsc#1012452).
- btrfs: kill invalid ASSERT() in process_all_refs() (bsc#1012452).
- btrfs: kill the start argument to read_extent_buffer_pages (bsc#1012452).
- btrfs: kill unused writepage_io_hook callback (bsc#1012452).
- btrfs: let callers of btrfs_alloc_root pass gfp flags (bsc#1012452).
- btrfs: Limit inline extents to root->sectorsize (bsc#1012452).
- btrfs: make find_workspace always succeed (bsc#1012452).
- btrfs: make find_workspace warn if there are no workspaces (bsc#1012452).
- btrfs: make mapping->writeback_index point to the last written page
(bsc#1012452).
- btrfs: make state preallocation more speculative in __set_extent_bit
(bsc#1012452).
- btrfs: make sure device is synced before return (bsc#1012452).
- btrfs: make sure we stay inside the bvec during __btrfs_lookup_bio_sums
(bsc#1012452).
- btrfs: make use of btrfs_find_device_by_user_input() (bsc#1012452).
- btrfs: make use of btrfs_scratch_superblocks() in btrfs_rm_device()
(bsc#1012452).
- btrfs: memset to avoid stale content in btree leaf (bsc#1012452).
- btrfs: memset to avoid stale content in btree node block (bsc#1012452).
- btrfs: move error handling code together in ctree.h (bsc#1012452).
- btrfs: optimize check for stale device (bsc#1012452).
- btrfs: Output more info for enospc_debug mount option (bsc#1012452).
- btrfs: parent_start initialization cleanup (bsc#1012452).
- btrfs: pass correct args to btrfs_async_run_delayed_refs() (bsc#1012452).
- btrfs: pass number of devices to btrfs_check_raid_min_devices
(bsc#1012452).
- btrfs: pass the right error code to the btrfs_std_error (bsc#1012452).
- btrfs: pin log earlier when renaming (bsc#1020975).
- btrfs: pin logs earlier when doing a rename exchange operation
(bsc#1020975).
- btrfs: preallocate compression workspaces (bsc#1012452).
- btrfs: Print Warning only if ENOSPC_DEBUG is enabled (bsc#1012452).
- btrfs: qgroup: Move half of the qgroup accounting time out of commit
trans (bsc#1017461).
- btrfs: qgroups: Retry after commit on getting EDQUOT (bsc#1019614).
- btrfs: Ratelimit "no csum found" info message (bsc#1012452).
- btrfs: reada: add all reachable mirrors into reada device list
(bsc#1012452).
- btrfs: reada: Add missed segment checking in reada_find_zone
(bsc#1012452).
- btrfs: reada: Avoid many times of empty loop (bsc#1012452).
- btrfs: reada: avoid undone reada extents in btrfs_reada_wait
(bsc#1012452).
- btrfs: reada: bypass adding extent when all zone failed (bsc#1012452).
- btrfs: reada: Fix a debug code typo (bsc#1012452).
- btrfs: reada: Fix in-segment calculation for reada (bsc#1012452).
- btrfs: reada: ignore creating reada_extent for a non-existent device
(bsc#1012452).
- btrfs: reada: Jump into cleanup in direct way for __readahead_hook()
(bsc#1012452).
- btrfs: reada: limit max works count (bsc#1012452).
- btrfs: reada: Move is_need_to_readahead contition earlier (bsc#1012452).
- btrfs: reada: move reada_extent_put to place after __readahead_hook()
(bsc#1012452).
- btrfs: reada: Pass reada_extent into __readahead_hook directly
(bsc#1012452).
- btrfs: reada: reduce additional fs_info->reada_lock in reada_find_zone
(bsc#1012452).
- btrfs: reada: Remove level argument in severial functions (bsc#1012452).
- btrfs: reada: simplify dev->reada_in_flight processing (bsc#1012452).
- btrfs: reada: Use fs_info instead of root in __readahead_hook's argument
(bsc#1012452).
- btrfs: reada: use GFP_KERNEL everywhere (bsc#1012452).
- btrfs: readdir: use GFP_KERNEL (bsc#1012452).
- btrfs: refactor btrfs_dev_replace_start for reuse (bsc#1012452).
- btrfs: Refactor btrfs_lock_cluster() to kill compiler warning
(bsc#1012452).
- btrfs: remove BUG() in raid56 (bsc#1012452).
- btrfs: remove BUG_ON in start_transaction (bsc#1012452).
- btrfs: remove BUG_ON()'s in btrfs_map_block (bsc#1012452).
- btrfs: remove build fixup for qgroup_account_snapshot (bsc#1012452).
- btrfs: remove redundant error check (bsc#1012452).
- btrfs: remove save_error_info() (bsc#1012452).
- btrfs: remove unnecessary btrfs_mark_buffer_dirty in split_leaf
(bsc#1012452).
- btrfs: remove unused function btrfs_assert() (bsc#1012452).
- btrfs: rename and document compression workspace members (bsc#1012452).
- btrfs: rename btrfs_find_device_by_user_input (bsc#1012452).
- btrfs: rename btrfs_std_error to btrfs_handle_fs_error (bsc#1012452).
- btrfs: rename __check_raid_min_devices (bsc#1012452).
- btrfs: rename flags for vol args v2 (bsc#1012452).
- btrfs: reorg btrfs_close_one_device() (bsc#1012452).
- btrfs: Replace -ENOENT by -ERANGE in btrfs_get_acl() (bsc#1012452).
- btrfs: Reset IO error counters before start of device replacing
(bsc#1012452).
- btrfs: reuse existing variable in scrub_stripe, reduce stack usage
(bsc#1012452).
- btrfs: s_bdev is not null after missing replace (bsc#1012452).
- btrfs: scrub: Set bbio to NULL before calling btrfs_map_block
(bsc#1012452).
- btrfs: scrub: use GFP_KERNEL on the submission path (bsc#1012452).
- btrfs: Search for all ordered extents that could span across a page
(bsc#1012452).
- btrfs: send, fix failure to rename top level inode due to name collision
(bsc#1028325).
- btrfs: send: silence an integer overflow warning (bsc#1012452).
- btrfs: send: use GFP_KERNEL everywhere (bsc#1012452).
- btrfs: send: use temporary variable to store allocation size
(bsc#1012452).
- btrfs: send: use vmalloc only as fallback for clone_roots (bsc#1012452).
- btrfs: send: use vmalloc only as fallback for clone_sources_tmp
(bsc#1012452).
- btrfs: send: use vmalloc only as fallback for read_buf (bsc#1012452).
- btrfs: send: use vmalloc only as fallback for send_buf (bsc#1012452).
- btrfs: serialize subvolume mounts with potentially mismatching rw flags
(bsc#951844 bsc#1024015)
- btrfs: Simplify conditions about compress while mapping btrfs flags to
inode flags (bsc#1012452).
- btrfs: sink gfp parameter to clear_extent_bits (bsc#1012452).
- btrfs: sink gfp parameter to clear_extent_dirty (bsc#1012452).
- btrfs: sink gfp parameter to clear_record_extent_bits (bsc#1012452).
- btrfs: sink gfp parameter to convert_extent_bit (bsc#1012452).
- btrfs: sink gfp parameter to set_extent_bits (bsc#1012452).
- btrfs: sink gfp parameter to set_extent_defrag (bsc#1012452).
- btrfs: sink gfp parameter to set_extent_delalloc (bsc#1012452).
- btrfs: sink gfp parameter to set_extent_new (bsc#1012452).
- btrfs: sink gfp parameter to set_record_extent_bits (bsc#1012452).
- btrfs: skip commit transaction if we do not have enough pinned bytes
(bsc#1037186).
- btrfs: subpage-blocksize: Rate limit scrub error message (bsc#1012452).
- btrfs: switch to common message helpers in open_ctree, adjust messages
(bsc#1012452).
- btrfs: switch to kcalloc in btrfs_cmp_data_prepare (bsc#1012452).
- btrfs: sysfs: protect reading label by lock (bsc#1012452).
- btrfs: test_check_exists: Fix infinite loop when searching for free
space entries (bsc#987192).
- btrfs: trace pinned extents (bsc#1012452).
- btrfs: track transid for delayed ref flushing (bsc#1012452).
- btrfs: uapi/linux/btrfs.h migration, document subvol flags (bsc#1012452).
- btrfs: uapi/linux/btrfs.h migration, move balance flags (bsc#1012452).
- btrfs: uapi/linux/btrfs.h migration, move BTRFS_LABEL_SIZE (bsc#1012452).
- btrfs: uapi/linux/btrfs.h migration, move feature flags (bsc#1012452).
- btrfs: uapi/linux/btrfs.h migration, move struct
btrfs_ioctl_defrag_range_args (bsc#1012452).
- btrfs: uapi/linux/btrfs.h migration, qgroup limit flags (bsc#1012452).
- btrfs: uapi/linux/btrfs_tree.h migration, item types and defines
(bsc#1012452).
- btrfs: uapi/linux/btrfs_tree.h, use __u8 and __u64 (bsc#1012452).
- btrfs: unpin log if rename operation fails (bsc#1020975).
- btrfs: unpin logs if rename exchange operation fails (bsc#1020975).
- btrfs: unsplit printed strings (bsc#1012452).
- btrfs: untangle gotos a bit in __clear_extent_bit (bsc#1012452).
- btrfs: untangle gotos a bit in convert_extent_bit (bsc#1012452).
- btrfs: untangle gotos a bit in __set_extent_bit (bsc#1012452).
- btrfs: update btrfs_space_info's bytes_may_use timely (bsc#1012452).
- btrfs: Use correct format specifier (bsc#1012452).
- btrfs: use correct offset for reloc_inode in
prealloc_file_extent_cluster() (bsc#1012452).
- btrfs: use dynamic allocation for root item in create_subvol
(bsc#1012452).
- btrfs: Use (eb->start, seq) as search key for tree modification log
(bsc#1012452).
- btrfs: use existing device constraints table btrfs_raid_array
(bsc#1012452).
- btrfs: use FLUSH_LIMIT for relocation in reserve_metadata_bytes
(bsc#1012452).
- btrfs: use fs_info directly (bsc#1012452).
- btrfs: use new error message helper in qgroup_account_snapshot
(bsc#1012452).
- btrfs: use proper type for failrec in extent_state (bsc#1012452).
- btrfs: use root when checking need_async_flush (bsc#1012452).
- btrfs: use the correct struct for BTRFS_IOC_LOGICAL_INO (bsc#1012452).
- btrfs: Use __u64 in exported linux/btrfs.h (bsc#1012452).
- btrfs: warn_on for unaccounted spaces (bsc#1012452).
- ceph: check i_nlink while converting a file handle to dentry
(bsc#1039864).
- ceph: Check that the new inode size is within limits in ceph_fallocate()
(bsc#1037969).
- ceph: Correctly return NXIO errors from ceph_llseek (git-fixes).
- ceph: fix bad endianness handling in parse_reply_info_extra
(bsc#1020488).
- ceph: fix file open flags on ppc64 (bsc#1022266).
- ceph: fix memory leak in __ceph_setxattr() (bsc#1036763).
- ceph: fix potential use-after-free (bsc#1043371).
- ceph: fix recursively call between ceph_set_acl and __ceph_setattr
(bsc#1034902).
- ceph: memory leak in ceph_direct_read_write callback (bsc#1041810).
- cfq-iosched: fix the delay of cfq_group's vdisktime under iops mode
(bsc#1012829).
- cgroup/pids: remove spurious suspicious RCU usage warning (bnc#1031831).
- cgroup: remove redundant cleanup in css_create (bsc#1012829).
- cifs: backport prepath matching fix (bsc#799133).
- cifs: small underflow in cnvrtDosUnixTm() (bnc#1043935).
- clk: Make x86/ conditional on CONFIG_COMMON_CLK (4.4.68 stable queue).
- clk: xgene: Add PMD clock (bsc#1019351).
- clk: xgene: Do not call __pa on ioremaped address (bsc#1019351).
- clk: xgene: Remove CLK_IS_ROOT (bsc#1019351).
- config: enable Ceph kernel client modules for ppc64le (fate#321098)
- config: enable Ceph kernel client modules for s390x (fate#321098)
- cpupower: Fix turbo frequency reporting for pre-Sandy Bridge cores
(4.4.68 stable queue).
- crypto: algif_aead - Require setkey before accept(2) (bsc#1031717).
- crypto: algif_hash - avoid zero-sized array (bnc#1007962).
- crypto: drbg - do not call drbg_instantiate in healt test (bsc#1018913).
- crypto: drbg - remove FIPS 140-2 continuous test (bsc#1018913).
- crypto: FIPS - allow tests to be disabled in FIPS mode (bsc#1018913).
- crypto: qat - fix bar discovery for c62x (bsc#1021251).
- crypto: qat - zero esram only for DH85x devices (1021248).
- crypto: rsa - allow keys >= 2048 bits in FIPS mode (bsc#1018913).
- crypto: sha-mb - Fix load failure (bsc#1037384).
- crypto: xts - consolidate sanity check for keys (bsc#1018913).
- crypto: xts - fix compile errors (bsc#1018913).
- cxgb4: Add control net_device for configuring PCIe VF (bsc#1021424).
- cxgb4: Add llseek operation for flash debugfs entry (bsc#1021424).
- cxgb4: add new routine to get adapter info (bsc#1021424).
- cxgb4: Add PCI device ID for new adapter (bsc#1021424).
- cxgb4: Add port description for new cards (bsc#1021424).
- cxgb4: Add support to enable logging of firmware mailbox commands
(bsc#1021424).
- cxgb4: Check for firmware errors in the mailbox command loop
(bsc#1021424).
- cxgb4: correct device ID of T6 adapter (bsc#1021424).
- cxgb4/cxgb4vf: Add set VF mac address support (bsc#1021424).
- cxgb4/cxgb4vf: Allocate more queues for 25G and 100G adapter
(bsc#1021424).
- cxgb4/cxgb4vf: Assign netdev->dev_port with port ID (bsc#1021424).
- cxgb4/cxgb4vf: Display 25G and 100G link speed (bsc#1021424).
- cxgb4/cxgb4vf: Remove deprecated module parameters (bsc#1021424).
- cxgb4: DCB message handler needs to use correct portid to netdev mapping
(bsc#1021424).
- cxgb4: Decode link down reason code obtained from firmware (bsc#1021424).
- cxgb4: Do not assume FW_PORT_CMD reply is always port info msg
(bsc#1021424).
- cxgb4: do not call napi_hash_del() (bsc#1021424).
- cxgb4: Do not sleep when mbox cmd is issued from interrupt context
(bsc#1021424).
- cxgb4: Enable SR-IOV configuration via PCI sysfs interface (bsc#1021424).
- cxgb4: Fix issue while re-registering VF mgmt netdev (bsc#1021424).
- cxgb4: MU requested by Chelsio (bsc#1021424).
- cxgb4: Properly decode port module type (bsc#1021424).
- cxgb4: Refactor t4_port_init function (bsc#1021424).
- cxgb4: Reset dcb state machine and tx queue prio only if dcb is enabled
(bsc#1021424).
- cxgb4: Support compressed error vector for T6 (bsc#1021424).
- cxgb4: Synchronize access to mailbox (bsc#1021424).
- cxgb4: update latest firmware version supported (bsc#1021424).
- cxgb4vf: do not offload Rx checksums for IPv6 fragments (bsc#1026692).
- dax: fix deadlock with DAX 4k holes (bsc#1012829).
- dax: fix device-dax region base (bsc#1023175).
- Delete previous two fixes for i915 (bsc#1019061). These upstream fixes
brought some regressions, so better to revert for now.
- dell-laptop: Adds support for keyboard backlight timeout AC settings
(bsc#1013561).
- device-dax: check devm_nsio_enable() return value (bsc#1023175).
- device-dax: fail all private mapping attempts (bsc#1023175).
- device-dax: fix percpu_ref_exit ordering (bsc#1023175).
- device-dax: fix private mapping restriction, permit read-only
(bsc#1031717).
- Disable CONFIG_POWER_SUPPLY_DEBUG in debug kernel (bsc#1031500).
- dmaengine: dw: fix typo in Kconfig (bsc#1031717).
- dm: fix dm_target_io leak if clone_bio() returns an error (bsc#1040125).
- dm-mpath: fix race window in do_end_io() (bsc#1011044).
- dm round robin: do not use this_cpu_ptr() without having preemption
disabled (bsc#1040125).
- dm verity fec: fix block calculation (bsc#1040125).
- dm verity fec: fix bufio leaks (bsc#1040125).
- dm verity fec: limit error correction recursion (bsc#1040125).
- drivers: base: dma-mapping: Fix typo in dmam_alloc_non_coherent comments
(bsc#1031717).
- drivers: hv: util: do not forget to init host_ts.lock (bsc#1031206).
- drivers: hv: vmbus: finally fix hv_need_to_signal_on_read()
(fate#320485, bug#1018385).
- drivers: hv: vmbus: Prevent sending data on a rescinded channel
(fate#320485, bug#1028217).
- drivers: hv: vmbus: Raise retry/wait limits in vmbus_post_msg()
(fate#320485, bsc#1023287, bsc#1028217).
- drivers: net: phy: mdio-xgene: Add hardware dependency (bsc#1019351).
- drivers: net: phy: xgene: Fix 'remove' function (bsc#1019351).
- drivers: net: xgene: Add change_mtu function (bsc#1019351).
- drivers: net: xgene: Add flow control configuration (bsc#1019351).
- drivers: net: xgene: Add flow control initialization (bsc#1019351).
- drivers: net: xgene: Add helper function (bsc#1019351).
- drivers: net: xgene: Add support for Jumbo frame (bsc#1019351).
- drivers: net: xgene: Configure classifier with pagepool (bsc#1019351).
- drivers: net: xgene: fix build after change_mtu function change
(bsc#1019351).
- drivers: net: xgene: fix: Coalescing values for v2 hardware
(bsc#1019351).
- drivers: net: xgene: fix: Disable coalescing on v1 hardware
(bsc#1019351).
- drivers: net: xgene: Fix MSS programming (bsc#1019351).
- drivers: net: xgene: fix: RSS for non-TCP/UDP (bsc#1019351).
- drivers: net: xgene: fix: Use GPIO to get link status (bsc#1019351).
- drivers: net: xgene: uninitialized variable in
xgene_enet_free_pagepool() (bsc#1019351).
- drivers/tty: 8250: only call fintek_8250_probe when doing port I/O
(bsc#1031717).
- drm: Fix broken VT switch with video=1366x768 option (bsc#1018358).
- drm/i915: Add intel_uncore_suspend / resume functions (bsc#1011913).
- drm/i915: Disable tv output on i9x5gm (bsc#1039700).
- drm/i915: Do not init hpd polling for vlv and chv from runtime_suspend()
(bsc#1014120).
- drm/i915: Do not touch NULL sg on i915_gem_object_get_pages_gtt() error
(bsc#1031717).
- drm-i915-dp-Restore-PPS-HW-state-from-the-encoder-re
- drm/i915/dp: Restore PPS HW state from the encoder resume hook
(bsc#1019061).
- drm/i915: Fix crash after S3 resume with DP MST mode change
(bsc#1029634).
- drm/i915: Fix mismatched INIT power domain disabling during suspend
(bsc#1031717).
- drm/i915: Fix watermarks for VLV/CHV (bsc#1011176).
- drm/i915: Force VDD off on the new power seqeuencer before starting to
use it (bsc#1009674).
- drm/i915/gen9: Fix PCODE polling during CDCLK change notification
(bsc#1015367).
- drm/i915: Introduce Kabypoint PCH for Kabylake H/DT (bsc#1032581).
- drm/i915: Listen for PMIC bus access notifications (bsc#1011913).
- drm/i915: Mark CPU cache as dirty when used for rendering (bsc#1015367).
- drm/i915: Mark i915_hpd_poll_init_work as static (bsc#1014120).
- drm/i915: Nuke debug messages from the pipe update critical section
(bsc#1031717).
- drm/i915: Only enable hotplug interrupts if the display interrupts are
enabled (bsc#1031717).
- drm-i915-Prevent-PPS-stealing-from-a-normal-DP-port
- drm/i915: Prevent PPS stealing from a normal DP port on VLV/CHV
(bsc#1019061).
- drm/i915: Program iboost settings for HDMI/DVI on SKL (bsc#1031717).
- drm/i915: relax uncritical udelay_range() (bsc#1031717).
- drm/i915: relax uncritical udelay_range() settings (bsc#1031717).
- drm/i915: Use pagecache write to prepopulate shmemfs from pwrite-ioctl
(bsc#1040463).
- drm/i915/vlv: Prevent enabling hpd polling in late suspend (bsc#1014120).
- drm/i915: Workaround for DP DPMS D3 on Dell monitor (bsc#1019061).
- drm/mgag200: Added support for the new device G200eH3 (bsc#1007959,
fate#322780)
- drm/mgag200: Fix to always set HiPri for G200e4 (bsc#1015452,
bsc#995542).
- drm/nouveau/tmr: fully separate alarm execution/pending lists
(bsc#1043467).
- drm/ttm: fix use-after-free races in vm fault handling (4.4.68 stable
queue).
- drm/vc4: Fix an integer overflow in temporary allocation layout
(bsc#1021294).
- drm-vc4-Fix-an-integer-overflow-in-temporary-allocation-layout.patch
- drm/vc4: Return -EINVAL on the overflow checks failing (bsc#1021294).
- drm-vc4-Return-EINVAL-on-the-overflow-checks-failing.patch
- drm: virtio-gpu: get the fb from the plane state for atomic updates
(bsc#1023101).
- e1000e: Do not return uninitialized stats (bug#1034635).
- edac, xgene: Fix spelling mistake in error messages (bsc#1019351).
- efi: Do not issue error message when booted under Xen (bnc#1036638).
- enic: set skb->hash type properly (bsc#922871 fate#318754).
- ext4: fix data corruption for mmap writes (bsc#1012829).
- ext4: fix data corruption with EXT4_GET_BLOCKS_ZERO (bsc#1012829).
- ext4: fix fencepost in s_first_meta_bg validation (bsc#1029986).
- ext4: fix use-after-iput when fscrypt contexts are inconsistent
(bsc#1012829).
- f2fs: fix bad prefetchw of NULL page (bsc#1012829).
- f2fs: sanity check segment count (4.4.68 stable queue).
- Fix a regression reported by bsc#1020048 in
patches.fixes/0003-md-lockless-I-O-submission-for-RAID1.patch
(bsc#982783,bsc#998106,bsc#1020048).
- fnic: Return 'DID_IMM_RETRY' if rport is not ready (bsc#1035920).
- fs/block_dev: always invalidate cleancache in invalidate_bdev()
(git-fixes).
- fs: fix data invalidation in the cleancache during direct IO (git-fixes).
- fs/xattr.c: zero out memory copied to userspace in getxattr (git-fixes).
- ftrace: Make ftrace_location_range() global (FATE#322421).
- fuse: fix clearing suid, sgid for chown() (bsc#1012829).
- futex: Add missing error handling to FUTEX_REQUEUE_PI (bsc#969755).
- futex: Fix potential use-after-free in FUTEX_REQUEUE_PI (bsc#969755).
- gpio: xgene: make explicitly non-modular (bsc#1019351).
- hid: usbhid: Quirk a AMI virtual mouse and keyboard with ALWAYS_POLL
(bsc#1022340).
- hv: do not reset hv_context.tsc_page on crash (fate#320485, bnc#1007729).
- hv: export current Hyper-V clocksource (bsc#1031206).
- hv_utils: implement Hyper-V PTP source (bsc#1031206).
- i2c: designware-baytrail: Acquire P-Unit access on bus acquire
(bsc#1011913).
- i2c: designware-baytrail: Call pmic_bus_access_notifier_chain
(bsc#1011913).
- i2c: designware-baytrail: Fix race when resetting the semaphore
(bsc#1011913).
- i2c: designware-baytrail: Only check iosf_mbi_available() for shared
hosts (bsc#1011913).
- i2c: designware: Disable pm for PMIC i2c-bus even if there is no _SEM
method (bsc#1011913).
- i2c: designware: fix wrong Tx/Rx FIFO for ACPI (bsc#1019351).
- i2c: designware: Implement support for SMBus block read and write
(bsc#1019351).
- i2c-designware: increase timeout (bsc#1011913).
- i2c: designware: Never suspend i2c-busses used for accessing the system
PMIC (bsc#1011913).
- i2c: designware: Rename accessor_flags to flags (bsc#1011913).
- i2c: xgene: Fix missing code of DTB support (bsc#1019351).
- i40e: Be much more verbose about what we can and cannot offload
(bsc#985561).
- ib/addr: Fix setting source address in addr6_resolve() (bsc#1044082).
- ib/core: Fix kernel crash during fail to initialize device (bsc#1022595
FATE#322350).
- ib/core: For multicast functions, verify that LIDs are multicast LIDs
(bsc#1022595 FATE#322350).
- ib/core: If the MGID/MLID pair is not on the list return an error
(bsc#1022595 FATE#322350).
- ib/ipoib: Fix deadlock between ipoib_stop and mcast join flow
(bsc#1022595 FATE#322350).
- ib/mlx5: Assign DSCP for R-RoCE QPs Address Path (bsc#966170 bsc#966172
bsc#966191).
- ib/mlx5: Check supported flow table size (bsc#966170 bsc#966172
bsc#966191).
- ib/mlx5: Enlarge autogroup flow table (bsc#966170 bsc#966172 bsc#966191).
- ib/mlx5: Fix kernel to user leak prevention logic (bsc#966170 bsc#966172
bsc#966191).
- ibmveth: calculate gso_segs for large packets (bsc#1019148).
- ibmveth: check return of skb_linearize in ibmveth_start_xmit
(bsc#1019148).
- ibmveth: consolidate kmalloc of array, memset 0 to kcalloc (bsc#1019148).
- ibmveth: set correct gso_size and gso_type (bsc#1019148).
- ibmvnic: Activate disabled RX buffer pools on reset (bsc#1044767).
- ibmvnic: Add set_link_state routine for setting adapter link state
(fate#322021, bsc#1031512).
- ibmvnic: Allocate number of rx/tx buffers agreed on by firmware
(fate#322021, bsc#1031512).
- ibmvnic: Allocate zero-filled memory for sub crqs (fate#322021,
bsc#1031512).
- ibmvnic: Call napi_disable instead of napi_enable in failure path
(fate#322021, bsc#1031512).
- ibmvnic: Check adapter state during ibmvnic_poll (fate#322021,
bsc#1040855).
- ibmvnic: Check for driver reset first in ibmvnic_xmit (fate#322021,
bsc#1038297).
- ibmvnic: Cleanup failure path in ibmvnic_open (fate#322021, bsc#1031512).
- ibmvnic: Clean up tx pools when closing (fate#322021, bsc#1038297).
- ibmvnic: Client-initiated failover (bsc#1043990).
- ibmvnic: Continue skb processing after skb completion error
(fate#322021, bsc#1038297).
- ibmvnic: Correct crq and resource releasing (fate#322021, bsc#1031512).
- ibmvnic: Correct ibmvnic handling of device open/close (fate#322021,
bsc#1031512).
- ibmvnic: Create init and release routines for the bounce buffer
(fate#322021, bsc#1031512).
- ibmvnic: Create init and release routines for the rx pool (fate#322021,
bsc#1031512).
- ibmvnic: Create init and release routines for the tx pool (fate#322021,
bsc#1031512).
- ibmvnic: Create init/release routines for stats token (fate#322021,
bsc#1031512).
- ibmvnic: Deactivate RX pool buffer replenishment on H_CLOSED
(fate#322021, bsc#1040855).
- ibmvnic: Delete napi's when releasing driver resources (fate#322021,
bsc#1038297).
- ibmvnic: Disable irq prior to close (fate#322021, bsc#1031512).
- ibmvnic: Do not disable IRQ after scheduling tasklet (fate#322021,
bsc#1031512).
- ibmvnic: driver initialization for kdump/kexec (bsc#1044772).
- ibmvnic: Ensure that TX queues are disabled in __ibmvnic_close
(bsc#1044767).
- ibmvnic: Exit polling routine correctly during adapter reset
(bsc#1044767).
- ibmvnic: Fix cleanup of SKB's on driver close (fate#322021, bsc#1040855).
- ibmvnic: Fix endian errors in error reporting output (fate#322021,
bsc#1031512).
- ibmvnic: Fix endian error when requesting device capabilities
(fate#322021, bsc#1031512).
- ibmvnic: Fix ibmvnic_change_mac_addr struct format (fate#322021,
bsc#1031512).
- ibmvnic: Fix initial MTU settings (bsc#1031512).
- ibmvnic: fix missing unlock on error in __ibmvnic_reset() (fate#322021,
bsc#1038297, Fixes: ed651a10875f).
- ibmvnic: Fix overflowing firmware/hardware TX queue (fate#322021,
bsc#1031512).
- ibmvnic: Fixup atomic API usage (fate#322021, bsc#1031512).
- ibmvnic: Free skb's in cases of failure in transmit (fate#322021,
bsc#1031512).
- ibmvnic: Free tx/rx scrq pointer array when releasing sub-crqs
(fate#322021, bsc#1031512).
- ibmvnic: Halt TX and report carrier off on H_CLOSED return code
(fate#322021, bsc#1040855).
- ibmvnic: Handle failover after failed init crq (fate#322021,
bsc#1040855).
- ibmvnic: Handle processing of CRQ messages in a tasklet (fate#322021,
bsc#1031512).
- ibmvnic: Initialize completion variables before starting work
(fate#322021, bsc#1031512).
- ibmvnic: Insert header on VLAN tagged received frame (fate#322021,
bsc#1031512).
- ibmvnic: Make CRQ interrupt tasklet wait for all capabilities crqs
(fate#322021, bsc#1031512).
- ibmvnic: Merge the two release_sub_crq_queue routines (fate#322021,
bsc#1031512).
- ibmvnic: Move ibmvnic adapter intialization to its own routine
(fate#322021, bsc#1031512).
- ibmvnic: Move initialization of sub crqs to ibmvnic_init (fate#322021,
bsc#1031512).
- ibmvnic: Move initialization of the stats token to ibmvnic_open
(fate#322021, bsc#1031512).
- ibmvnic: Move login and queue negotiation into ibmvnic_open
(fate#322021, bsc#1031512).
- ibmvnic: Move login to its own routine (fate#322021, bsc#1031512).
- ibmvnic: Move queue restarting in ibmvnic_tx_complete (fate#322021,
bsc#1038297).
- ibmvnic: Move resource initialization to its own routine (fate#322021,
bsc#1038297).
- ibmvnic: Non-fatal error handling (fate#322021, bsc#1040855).
- ibmvnic: Only retrieve error info if present (fate#322021, bsc#1031512).
- ibmvnic: Record SKB RX queue during poll (fate#322021, bsc#1038297).
- ibmvnic: Remove debugfs support (fate#322021, bsc#1031512).
- ibmvnic: Remove inflight list (fate#322021, bsc#1031512).
- ibmvnic: Remove netdev notify for failover resets (bsc#1044120).
- ibmvnic: Remove unused bouce buffer (fate#322021, bsc#1031512).
- ibmvnic: Remove VNIC_CLOSING check from pending_scrq (bsc#1044767).
- ibmvnic: Replace is_closed with state field (fate#322021, bsc#1038297).
- ibmvnic: Report errors when failing to release sub-crqs (fate#322021,
bsc#1031512).
- ibmvnic: Reset sub-crqs during driver reset (fate#322021, bsc#1040855).
- ibmvnic: Reset the CRQ queue during driver reset (fate#322021,
bsc#1040855).
- ibmvnic: Reset tx/rx pools on driver reset (fate#322021, bsc#1040855).
- ibmvnic: Return failure on attempted mtu change (bsc#1043236).
- ibmvnic: Sanitize entire SCRQ buffer on reset (bsc#1044767).
- ibmvnic: Send gratuitous arp on reset (fate#322021, bsc#1040855).
- ibmvnic: Set real number of rx queues (fate#322021, bsc#1031512).
- ibmvnic: Split initialization of scrqs to its own routine (fate#322021,
bsc#1031512).
- ibmvnic: Track state of adapter napis (fate#322021, bsc#1040855).
- ibmvnic: Unmap longer term buffer before free (fate#322021, bsc#1031512).
- ibmvnic: Updated reset handling (fate#322021, bsc#1038297).
- ibmvnic: Update main crq initialization and release (fate#322021,
bsc#1031512).
- ibmvnic: Use common counter for capabilities checks (fate#322021,
bsc#1031512).
- ibmvnic: use max_mtu instead of req_mtu for MTU range check
(bsc#1031512).
- ibmvnic: Validate napi exist before disabling them (fate#322021,
bsc#1031512).
- ibmvnic: Wait for any pending scrqs entries at driver close
(fate#322021, bsc#1038297).
- ibmvnic: Whitespace correction in release_rx_pools (fate#322021,
bsc#1038297).
- iio: hid-sensor: Store restore poll and hysteresis on S3 (bsc#1031717).
- infiniband: avoid dereferencing uninitialized dst on error path
(git-fixes).
- iommu/arm-smmu: Disable stalling faults for all endpoints (bsc#1038843).
- iommu/dma: Respect IOMMU aperture when allocating (bsc#1038842).
- iommu/exynos: Block SYSMMU while invalidating FLPD cache (bsc#1038848).
- iommu: Handle default domain attach failure (bsc#1038846).
- iommu/vt-d: Do not over-free page table directories (bsc#1038847).
- iommu/vt-d: Make sure IOMMUs are off when intel_iommu=off (bsc#1031208).
- ipv4, ipv6: ensure raw socket message is big enough to hold an IP header
(4.4.68 stable queue).
- ipv6: Do not use ufo handling on later transformed packets (bsc#1042286).
- ipv6: fix endianness error in icmpv6_err (bsc#1042286).
- ipv6: initialize route null entry in addrconf_init() (4.4.68 stable
queue).
- ipv6: release dst on error in ip6_dst_lookup_tail (git-fixes).
- ipv6: reorder ip6_route_dev_notifier after ipv6_dev_notf (4.4.68 stable
queue).
- isa: Call isa_bus_init before dependent ISA bus drivers register
(bsc#1031717).
- iscsi-target: Return error if unable to add network portal (bsc#1032803).
- iw_cxgb4: Guard against null cm_id in dump_ep/qp (bsc#1026570).
- iwlwifi: Expose the default fallback ucode API to module info
(boo#1021082, boo#1023884).
- jump label: fix passing kbuild_cflags when checking for asm goto support
(git-fixes).
- kabi: Hide new include in arch/powerpc/kernel/process.c (fate#322421).
- kABI: move and hide new cxgbi device owner field (bsc#1018885).
- kABI: protect cgroup include in kernel/kthread (kabi).
- kABI: protect struct fib_info (kabi).
- kABI: protect struct iscsi_conn (kabi).
- kABI: protect struct mnt_namespace (kabi).
- kABI: protect struct musb_platform_ops (kabi).
- kABI: protect struct pglist_data (kabi).
- kABI: protect struct se_node_acl (kabi).
- kABI: protect struct snd_fw_async_midi_port (kabi).
- kABI: protect struct tcp_fastopen_cookie (kabi).
- kABI: protect struct user_fpsimd_state (kabi).
- kABI: protect struct wake_irq (kabi).
- kABI: protect struct xhci_hcd (kabi).
- kABI: protect struct xlog (bsc#1043598).
- kABI: restore can_rx_register parameters (kabi).
- kABI: restore ttm_ref_object_add parameters (kabi).
- kABI workaround 4.4.65 adding #include