Hello community,
here is the log from the commit of package kernel-source for openSUSE:Factory checked in at 2019-07-03 15:14:35
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/kernel-source (Old)
and /work/SRC/openSUSE:Factory/.kernel-source.new.4615 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "kernel-source"
Wed Jul 3 15:14:35 2019 rev:493 rq:713041 version:5.1.15
Changes:
--------
--- /work/SRC/openSUSE:Factory/kernel-source/dtb-aarch64.changes 2019-06-24 21:50:20.607965498 +0200
+++ /work/SRC/openSUSE:Factory/.kernel-source.new.4615/dtb-aarch64.changes 2019-07-03 15:14:37.970919124 +0200
@@ -1,0 +2,642 @@
+Tue Jul 2 12:39:50 CEST 2019 - jslaby@suse.cz
+
+- Revert "ovl: detect overlapping layers" (openqa tests failing).
+- Revert "ovl: don't fail with disconnected lower NFS" (openqa
+ tests failing).
+- Revert "ovl: fix bogus -Wmaybe-unitialized warning" (openqa
+ tests failing).
+- commit cb24bc9
+
+-------------------------------------------------------------------
+Tue Jun 25 09:55:47 CEST 2019 - jslaby@suse.cz
+
+- Linux 5.1.15 (bnc#1012628).
+- tracing: Silence GCC 9 array bounds warning (bnc#1012628).
+- mmc: sdhci: sdhci-pci-o2micro: Correctly set bus width when
+ tuning (bnc#1012628).
+- mmc: sdhi: disallow HS400 for M3-W ES1.2, RZ/G2M, and V3H
+ (bnc#1012628).
+- mmc: mediatek: fix SDIO IRQ interrupt handle flow (bnc#1012628).
+- mmc: mediatek: fix SDIO IRQ detection issue (bnc#1012628).
+- mmc: core: API to temporarily disable retuning for SDIO CRC
+ errors (bnc#1012628).
+- mmc: core: Add sdio_retune_hold_now() and sdio_retune_release()
+ (bnc#1012628).
+- mmc: core: Prevent processing SDIO IRQs when the card is
+ suspended (bnc#1012628).
+- scsi: ufs: Avoid runtime suspend possibly being blocked forever
+ (bnc#1012628).
+- usb: chipidea: udc: workaround for endpoint conflict issue
+ (bnc#1012628).
+- xhci: detect USB 3.2 capable host controllers correctly
+ (bnc#1012628).
+- usb: xhci: Don't try to recover an endpoint if port is in
+ error state (bnc#1012628).
+- cifs: add spinlock for the openFileList to cifsInodeInfo
+ (bnc#1012628).
+- cifs: fix GlobalMid_Lock bug in cifs_reconnect (bnc#1012628).
+- IB/hfi1: Validate fault injection opcode user input
+ (bnc#1012628).
+- IB/hfi1: Close PSM sdma_progress sleep window (bnc#1012628).
+- IB/hfi1: Avoid hardlockup with flushlist_lock (bnc#1012628).
+- IB/hfi1: Correct tid qp rcd to match verbs context
+ (bnc#1012628).
+- IB/hfi1: Silence txreq allocation warnings (bnc#1012628).
+- iio: imu: st_lsm6dsx: fix PM support for st_lsm6dsx i2c
+ controller (bnc#1012628).
+- iio: temperature: mlx90632 Relax the compatibility check
+ (bnc#1012628).
+- Input: synaptics - enable SMBus on ThinkPad E480 and E580
+ (bnc#1012628).
+- Input: uinput - add compat ioctl number translation for
+ UI_*_FF_UPLOAD (bnc#1012628).
+- Input: silead - add MSSL0017 to acpi_device_id (bnc#1012628).
+- apparmor: fix PROFILE_MEDIATES for untrusted input
+ (bnc#1012628).
+- apparmor: enforce nullbyte at end of tag string (bnc#1012628).
+- apparmor: reset pos on failure to unpack for various functions
+ (bnc#1012628).
+- Revert "brcmfmac: disable command decode in sdio_aos"
+ (bnc#1012628).
+- brcmfmac: sdio: Disable auto-tuning around commands expected
+ to fail (bnc#1012628).
+- brcmfmac: sdio: Don't tune while the card is off (bnc#1012628).
+- lkdtm/usercopy: Moves the KERNEL_DS test to non-canonical
+ (bnc#1012628).
+- ARC: fix build warnings (bnc#1012628).
+- dmaengine: jz4780: Fix transfers being ACKed too soon
+ (bnc#1012628).
+- dmaengine: dw-axi-dmac: fix null dereference when pointer
+ first is null (bnc#1012628).
+- dmaengine: mediatek-cqdma: sleeping in atomic context
+ (bnc#1012628).
+- dmaengine: sprd: Fix the possible crash when getting descriptor
+ status (bnc#1012628).
+- dmaengine: sprd: Add validation of current descriptor in irq
+ handler (bnc#1012628).
+- dmaengine: sprd: Fix the incorrect start for 2-stage destination
+ channels (bnc#1012628).
+- dmaengine: sprd: Fix block length overflow (bnc#1012628).
+- dmaengine: sprd: Fix the right place to configure 2-stage
+ transfer (bnc#1012628).
+- ARC: [plat-hsdk]: Add missing multicast filter bins number to
+ GMAC node (bnc#1012628).
+- ARC: [plat-hsdk]: Add missing FIFO size entry in GMAC node
+ (bnc#1012628).
+- MIPS: mark ginvt() as __always_inline (bnc#1012628).
+- fpga: stratix10-soc: fix use-after-free on s10_init()
+ (bnc#1012628).
+- fpga: dfl: afu: Pass the correct device to dma_mapping_error()
+ (bnc#1012628).
+- fpga: dfl: Add lockdep classes for pdata->lock (bnc#1012628).
+- parport: Fix mem leak in parport_register_dev_model
+ (bnc#1012628).
+- parisc: Fix compiler warnings in float emulation code
+ (bnc#1012628).
+- habanalabs: fix bug in checking huge page optimization
+ (bnc#1012628).
+- IB/rdmavt: Fix alloc_qpn() WARN_ON() (bnc#1012628).
+- IB/hfi1: Insure freeze_work work_struct is canceled on shutdown
+ (bnc#1012628).
+- IB/{qib, hfi1, rdmavt}: Correct ibv_devinfo max_mr value
+ (bnc#1012628).
+- IB/hfi1: Validate page aligned for a given virtual address
+ (bnc#1012628).
+- MIPS: uprobes: remove set but not used variable 'epc'
+ (bnc#1012628).
+- crypto: hmac - fix memory leak in hmac_init_tfm() (bnc#1012628).
+- xtensa: Fix section mismatch between memblock_reserve and
+ mem_reserve (bnc#1012628).
+- kselftest/cgroup: fix unexpected testing failure on
+ test_memcontrol (bnc#1012628).
+- kselftest/cgroup: fix unexpected testing failure on test_core
+ (bnc#1012628).
+- kselftest/cgroup: fix incorrect test_core skip (bnc#1012628).
+- userfaultfd: selftest: fix compiler warning (bnc#1012628).
+- selftests: vm: install test_vmalloc.sh for run_vmtests
+ (bnc#1012628).
+- net: dsa: mv88e6xxx: avoid error message on remove from VLAN 0
+ (bnc#1012628).
+- net: hns: Fix loopback test failed at copper ports
+ (bnc#1012628).
+- mdesc: fix a missing-check bug in get_vdev_port_node_info()
+ (bnc#1012628).
+- sparc: perf: fix updated event period in response to
+ PERF_EVENT_IOC_PERIOD (bnc#1012628).
+- net: ethernet: mediatek: Use hw_feature to judge if HWLRO is
+ supported (bnc#1012628).
+- net: ethernet: mediatek: Use NET_IP_ALIGN to judge if HW
+ RX_2BYTE_OFFSET is enabled (bnc#1012628).
+- selftests: set sysctl bc_forwarding properly in
+ router_broadcast.sh (bnc#1012628).
+- drm/arm/mali-dp: Add a loop around the second set CVAL and
+ try 5 times (bnc#1012628).
+- drm/arm/hdlcd: Actually validate CRTC modes (bnc#1012628).
+- drm/arm/hdlcd: Allow a bit of clock tolerance (bnc#1012628).
+- nvmet: fix data_len to 0 for bdev-backed write_zeroes
+ (bnc#1012628).
+- kbuild: tar-pkg: enable communication with jobserver
+ (bnc#1012628).
+- scripts/checkstack.pl: Fix arm64 wrong or unknown architecture
+ (bnc#1012628).
+- net: phylink: avoid reducing support mask (bnc#1012628).
+- scsi: ufs: Check that space was properly alloced in
+ copy_query_response (bnc#1012628).
+- scsi: smartpqi: unlock on error in
+ pqi_submit_raid_request_synchronous() (bnc#1012628).
+- net: ipvlan: Fix ipvlan device tso disabled while
+ NETIF_F_IP_CSUM is set (bnc#1012628).
+- udmabuf: actually unmap the scatterlist (bnc#1012628).
+- tests: fix pidfd-test compilation (bnc#1012628).
+- s390/qeth: handle limited IPv4 broadcast in L3 TX path
+ (bnc#1012628).
+- s390/qeth: check dst entry before use (bnc#1012628).
+- s390/qeth: fix VLAN attribute in bridge_hostnotify udev event
+ (bnc#1012628).
+- hwmon: (core) add thermal sensors only if dev->of_node is
+ present (bnc#1012628).
+- hwmon: (pmbus/core) Treat parameters as paged if on multiple
+ pages (bnc#1012628).
+- arm64: Silence gcc warnings about arch ABI drift (bnc#1012628).
+- nvme: Fix u32 overflow in the number of namespace list
+ calculation (bnc#1012628).
+- ovl: detect overlapping layers (bnc#1012628).
+- ovl: don't fail with disconnected lower NFS (bnc#1012628).
+- ovl: fix bogus -Wmaybe-unitialized warning (bnc#1012628).
+- btrfs: start readahead also in seed devices (bnc#1012628).
+- can: xilinx_can: use correct bittiming_const for CAN FD core
+ (bnc#1012628).
+- can: flexcan: fix timeout when set small bitrate (bnc#1012628).
+- can: purge socket error queue on sock destruct (bnc#1012628).
+- riscv: mm: synchronize MMU after pte change (bnc#1012628).
+- powerpc/bpf: use unsigned division instruction for 64-bit
+ operations (bnc#1012628).
+- ARM: imx: cpuidle-imx6sx: Restrict the SW2ISO increase to
+ i.MX6SX (bnc#1012628).
+- ARM: mvebu_v7_defconfig: fix Ethernet on Clearfog (bnc#1012628).
+- ARM: dts: dra76x: Update MMC2_HS200_MANUAL1 iodelay values
+ (bnc#1012628).
+- ARM: dts: am57xx-idk: Remove support for voltage switching
+ for SD card (bnc#1012628).
+- arm64/sve: should not depend on
+ (bnc#1012628).
+- arm64: ssbd: explicitly depend on (bnc#1012628).
+- KVM: x86/mmu: Allocate PAE root array when using SVM's 32-bit
+ NPT (bnc#1012628).
+- ovl: make i_ino consistent with st_ino in more cases
+ (bnc#1012628).
+- drm/vmwgfx: Use the backdoor port if the HB port is not
+ available (bnc#1012628).
+- drm/i915: Don't clobber M/N values during fastset check
+ (bnc#1012628).
+- binder: fix possible UAF when freeing buffer (bnc#1012628).
+- staging: erofs: add requirements field in superblock
+ (bnc#1012628).
+- Bluetooth: Align minimum encryption key size for LE and BR/EDR
+ connections (bnc#1012628).
+- Bluetooth: Fix regression with minimum encryption key size
++++ 451 more lines (skipped)
++++ between /work/SRC/openSUSE:Factory/kernel-source/dtb-aarch64.changes
++++ and /work/SRC/openSUSE:Factory/.kernel-source.new.4615/dtb-aarch64.changes
dtb-armv6l.changes: same change
dtb-armv7l.changes: same change
kernel-64kb.changes: same change
kernel-debug.changes: same change
kernel-default.changes: same change
kernel-docs.changes: same change
kernel-kvmsmall.changes: same change
kernel-lpae.changes: same change
kernel-obs-build.changes: same change
kernel-obs-qa.changes: same change
kernel-pae.changes: same change
kernel-source.changes: same change
kernel-syms.changes: same change
kernel-vanilla.changes: same change
kernel-zfcpdump.changes: same change
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ dtb-aarch64.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.334932072 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.338932080 +0200
@@ -17,7 +17,7 @@
%define srcversion 5.1
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%include %_sourcedir/kernel-spec-macros
@@ -29,9 +29,9 @@
%(chmod +x %_sourcedir/{guards,apply-patches,check-for-config-changes,group-source-files.pl,split-modules,modversions,kabi.pl,mkspec,compute-PATCHVERSION.sh,arch-symbols,log.sh,try-disable-staging-driver,compress-vmlinux.sh,mkspec-dtb,check-module-license,klp-symbols,splitflist,mergedep,moddep,modflist,kernel-subpackage-build})
Name: dtb-aarch64
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
dtb-armv6l.spec: same change
dtb-armv7l.spec: same change
++++++ kernel-64kb.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.402932210 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.406932218 +0200
@@ -18,7 +18,7 @@
%define srcversion 5.1
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%define vanilla_only 0
@@ -62,9 +62,9 @@
Summary: Kernel with 64kb PAGE_SIZE
License: GPL-2.0
Group: System/Kernel
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
@@ -169,10 +169,10 @@
Conflicts: libc.so.6()(64bit)
%endif
Provides: kernel = %version-%source_rel
-Provides: kernel-%build_flavor-base-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
-Provides: kernel-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: kernel-%build_flavor-base-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
+Provides: kernel-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
# END COMMON DEPS
-Provides: %name-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: %name-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
%obsolete_rebuilds %name
Source0: http://www.kernel.org/pub/linux/kernel/v5.x/linux-%srcversion.tar.xz
Source2: source-post.sh
++++++ kernel-debug.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.430932267 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.430932267 +0200
@@ -18,7 +18,7 @@
%define srcversion 5.1
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%define vanilla_only 0
@@ -62,9 +62,9 @@
Summary: A Debug Version of the Kernel
License: GPL-2.0
Group: System/Kernel
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
@@ -169,10 +169,10 @@
Conflicts: libc.so.6()(64bit)
%endif
Provides: kernel = %version-%source_rel
-Provides: kernel-%build_flavor-base-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
-Provides: kernel-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: kernel-%build_flavor-base-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
+Provides: kernel-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
# END COMMON DEPS
-Provides: %name-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: %name-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
%ifarch ppc64
Provides: kernel-kdump = 2.6.28
Obsoletes: kernel-kdump <= 2.6.28
++++++ kernel-default.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.454932316 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.458932324 +0200
@@ -18,7 +18,7 @@
%define srcversion 5.1
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%define vanilla_only 0
@@ -62,9 +62,9 @@
Summary: The Standard Kernel
License: GPL-2.0
Group: System/Kernel
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
@@ -169,10 +169,10 @@
Conflicts: libc.so.6()(64bit)
%endif
Provides: kernel = %version-%source_rel
-Provides: kernel-%build_flavor-base-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
-Provides: kernel-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: kernel-%build_flavor-base-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
+Provides: kernel-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
# END COMMON DEPS
-Provides: %name-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: %name-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
%ifarch %ix86
Provides: kernel-smp = 2.6.17
Obsoletes: kernel-smp <= 2.6.17
++++++ kernel-docs.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.474932357 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.478932365 +0200
@@ -17,7 +17,7 @@
%define srcversion 5.1
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%include %_sourcedir/kernel-spec-macros
@@ -31,9 +31,9 @@
Summary: Kernel Documentation
License: GPL-2.0
Group: Documentation/Man
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
@@ -63,7 +63,7 @@
%endif
Url: http://www.kernel.org/
Provides: %name = %version-%source_rel
-Provides: %name-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: %name-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
BuildArch: noarch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
Source0: http://www.kernel.org/pub/linux/kernel/v5.x/linux-%srcversion.tar.xz
++++++ kernel-kvmsmall.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.498932405 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.502932413 +0200
@@ -18,7 +18,7 @@
%define srcversion 5.1
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%define vanilla_only 0
@@ -62,9 +62,9 @@
Summary: The Small Developer Kernel for KVM
License: GPL-2.0
Group: System/Kernel
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
@@ -169,10 +169,10 @@
Conflicts: libc.so.6()(64bit)
%endif
Provides: kernel = %version-%source_rel
-Provides: kernel-%build_flavor-base-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
-Provides: kernel-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: kernel-%build_flavor-base-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
+Provides: kernel-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
# END COMMON DEPS
-Provides: %name-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: %name-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
%obsolete_rebuilds %name
Source0: http://www.kernel.org/pub/linux/kernel/v5.x/linux-%srcversion.tar.xz
Source2: source-post.sh
kernel-lpae.spec: same change
++++++ kernel-obs-build.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.542932495 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.542932495 +0200
@@ -19,7 +19,7 @@
#!BuildIgnore: post-build-checks
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%define vanilla_only 0
@@ -45,7 +45,7 @@
%endif
%endif
%endif
-BuildRequires: kernel%kernel_flavor-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+BuildRequires: kernel%kernel_flavor-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
%if 0%{?rhel_version}
BuildRequires: kernel
@@ -64,9 +64,9 @@
Summary: package kernel and initrd for OBS VM builds
License: GPL-2.0
Group: SLES
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
++++++ kernel-obs-qa.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.566932544 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.566932544 +0200
@@ -17,7 +17,7 @@
# needsrootforbuild
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%include %_sourcedir/kernel-spec-macros
@@ -36,9 +36,9 @@
Summary: Basic QA tests for the kernel
License: GPL-2.0
Group: SLES
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
++++++ kernel-pae.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.590932593 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.590932593 +0200
@@ -18,7 +18,7 @@
%define srcversion 5.1
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%define vanilla_only 0
@@ -62,9 +62,9 @@
Summary: Kernel with PAE Support
License: GPL-2.0
Group: System/Kernel
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
@@ -169,10 +169,10 @@
Conflicts: libc.so.6()(64bit)
%endif
Provides: kernel = %version-%source_rel
-Provides: kernel-%build_flavor-base-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
-Provides: kernel-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: kernel-%build_flavor-base-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
+Provides: kernel-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
# END COMMON DEPS
-Provides: %name-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: %name-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
%ifarch %ix86
Provides: kernel-bigsmp = 2.6.17
Obsoletes: kernel-bigsmp <= 2.6.17
++++++ kernel-source.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.622932658 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.622932658 +0200
@@ -18,7 +18,7 @@
%define srcversion 5.1
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%define vanilla_only 0
@@ -30,9 +30,9 @@
Summary: The Linux Kernel Sources
License: GPL-2.0
Group: Development/Sources
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
@@ -43,7 +43,7 @@
BuildRequires: sed
Requires(post): coreutils sed
Provides: %name = %version-%source_rel
-Provides: %name-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: %name-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
Provides: linux
Provides: multiversion(kernel)
Source0: http://www.kernel.org/pub/linux/kernel/v5.x/linux-%srcversion.tar.xz
++++++ kernel-syms.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.650932715 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.650932715 +0200
@@ -24,10 +24,10 @@
Summary: Kernel Symbol Versions (modversions)
License: GPL-2.0
Group: Development/Sources
-Version: 5.1.10
+Version: 5.1.15
%if %using_buildservice
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
@@ -55,7 +55,7 @@
%endif
Requires: pesign-obs-integration
Provides: %name = %version-%source_rel
-Provides: %name-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: %name-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
Provides: multiversion(kernel)
Source: README.KSYMS
Requires: kernel-devel%variant = %version-%source_rel
++++++ kernel-vanilla.spec ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:44.674932763 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:44.674932763 +0200
@@ -18,7 +18,7 @@
%define srcversion 5.1
-%define patchversion 5.1.10
+%define patchversion 5.1.15
%define variant %{nil}
%define vanilla_only 0
@@ -62,9 +62,9 @@
Summary: The Standard Kernel - without any SUSE patches
License: GPL-2.0
Group: System/Kernel
-Version: 5.1.10
+Version: 5.1.15
%if 0%{?is_kotd}
-Release: <RELEASE>.gad24342
+Release: <RELEASE>.gcb24bc9
%else
Release: 0
%endif
@@ -169,10 +169,10 @@
Conflicts: libc.so.6()(64bit)
%endif
Provides: kernel = %version-%source_rel
-Provides: kernel-%build_flavor-base-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
-Provides: kernel-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: kernel-%build_flavor-base-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
+Provides: kernel-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
# END COMMON DEPS
-Provides: %name-srchash-ad24342b53c2ac90b16b903f897bd01f775351e5
+Provides: %name-srchash-cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
%obsolete_rebuilds %name
Source0: http://www.kernel.org/pub/linux/kernel/v5.x/linux-%srcversion.tar.xz
Source2: source-post.sh
kernel-zfcpdump.spec: same change
++++++ config.tar.bz2 ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/arm64/default new/config/arm64/default
--- old/config/arm64/default 2019-06-12 08:08:07.000000000 +0200
+++ new/config/arm64/default 2019-06-19 13:53:18.000000000 +0200
@@ -9449,7 +9449,9 @@
CONFIG_SECURITY_PATH=y
CONFIG_LSM_MMAP_MIN_ADDR=0
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
# CONFIG_FORTIFY_SOURCE is not set
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_SECURITY_SELINUX=y
@@ -9470,7 +9472,7 @@
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set
# CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
# CONFIG_SECURITY_SAFESETID is not set
CONFIG_INTEGRITY=y
CONFIG_INTEGRITY_SIGNATURE=y
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/armv6hl/default new/config/armv6hl/default
--- old/config/armv6hl/default 2019-06-12 08:08:07.000000000 +0200
+++ new/config/armv6hl/default 2019-06-19 13:53:18.000000000 +0200
@@ -6944,7 +6944,9 @@
CONFIG_SECURITY_PATH=y
CONFIG_LSM_MMAP_MIN_ADDR=0
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
# CONFIG_FORTIFY_SOURCE is not set
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_SECURITY_SELINUX=y
@@ -6965,7 +6967,7 @@
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set
# CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
# CONFIG_SECURITY_SAFESETID is not set
CONFIG_INTEGRITY=y
CONFIG_INTEGRITY_SIGNATURE=y
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/armv7hl/default new/config/armv7hl/default
--- old/config/armv7hl/default 2019-06-12 08:08:07.000000000 +0200
+++ new/config/armv7hl/default 2019-06-19 13:53:18.000000000 +0200
@@ -9668,7 +9668,9 @@
CONFIG_SECURITY_PATH=y
CONFIG_LSM_MMAP_MIN_ADDR=0
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
# CONFIG_FORTIFY_SOURCE is not set
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_SECURITY_SELINUX=y
@@ -9689,7 +9691,7 @@
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set
# CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
# CONFIG_SECURITY_SAFESETID is not set
CONFIG_INTEGRITY=y
CONFIG_INTEGRITY_SIGNATURE=y
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/armv7hl/lpae new/config/armv7hl/lpae
--- old/config/armv7hl/lpae 2019-06-12 08:08:07.000000000 +0200
+++ new/config/armv7hl/lpae 2019-06-19 13:53:18.000000000 +0200
@@ -9263,7 +9263,9 @@
CONFIG_SECURITY_PATH=y
CONFIG_LSM_MMAP_MIN_ADDR=0
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
# CONFIG_FORTIFY_SOURCE is not set
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_SECURITY_SELINUX=y
@@ -9284,7 +9286,7 @@
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set
# CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
# CONFIG_SECURITY_SAFESETID is not set
CONFIG_INTEGRITY=y
CONFIG_INTEGRITY_SIGNATURE=y
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/i386/pae new/config/i386/pae
--- old/config/i386/pae 2019-06-12 08:08:07.000000000 +0200
+++ new/config/i386/pae 2019-06-19 13:53:18.000000000 +0200
@@ -8594,7 +8594,9 @@
CONFIG_INTEL_TXT=y
CONFIG_LSM_MMAP_MIN_ADDR=0
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
# CONFIG_FORTIFY_SOURCE is not set
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_SECURITY_SELINUX=y
@@ -8615,7 +8617,7 @@
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set
# CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
# CONFIG_SECURITY_SAFESETID is not set
CONFIG_INTEGRITY=y
CONFIG_INTEGRITY_SIGNATURE=y
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/ppc64/default new/config/ppc64/default
--- old/config/ppc64/default 2019-06-12 08:08:07.000000000 +0200
+++ new/config/ppc64/default 2019-06-19 13:53:18.000000000 +0200
@@ -6726,7 +6726,9 @@
CONFIG_SECURITY_PATH=y
CONFIG_LSM_MMAP_MIN_ADDR=0
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
# CONFIG_FORTIFY_SOURCE is not set
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_SECURITY_SELINUX=y
@@ -6747,7 +6749,7 @@
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set
# CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
# CONFIG_SECURITY_SAFESETID is not set
CONFIG_INTEGRITY=y
CONFIG_INTEGRITY_SIGNATURE=y
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/ppc64le/default new/config/ppc64le/default
--- old/config/ppc64le/default 2019-06-12 08:08:07.000000000 +0200
+++ new/config/ppc64le/default 2019-06-19 13:53:18.000000000 +0200
@@ -6585,7 +6585,9 @@
CONFIG_SECURITY_PATH=y
CONFIG_LSM_MMAP_MIN_ADDR=0
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
# CONFIG_FORTIFY_SOURCE is not set
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_SECURITY_SELINUX=y
@@ -6606,7 +6608,7 @@
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set
# CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
# CONFIG_SECURITY_SAFESETID is not set
CONFIG_INTEGRITY=y
CONFIG_INTEGRITY_SIGNATURE=y
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/s390x/default new/config/s390x/default
--- old/config/s390x/default 2019-06-12 08:08:07.000000000 +0200
+++ new/config/s390x/default 2019-06-19 13:53:18.000000000 +0200
@@ -3196,7 +3196,9 @@
CONFIG_SECURITY_PATH=y
CONFIG_LSM_MMAP_MIN_ADDR=0
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
CONFIG_FORTIFY_SOURCE=y
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_SECURITY_SELINUX=y
@@ -3217,7 +3219,7 @@
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set
# CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
# CONFIG_SECURITY_SAFESETID is not set
CONFIG_INTEGRITY=y
CONFIG_INTEGRITY_SIGNATURE=y
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/s390x/zfcpdump new/config/s390x/zfcpdump
--- old/config/s390x/zfcpdump 2019-06-12 08:08:07.000000000 +0200
+++ new/config/s390x/zfcpdump 2019-06-19 13:53:18.000000000 +0200
@@ -1101,7 +1101,8 @@
# CONFIG_SECURITY is not set
# CONFIG_SECURITYFS is not set
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
CONFIG_FORTIFY_SOURCE=y
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_DEFAULT_SECURITY_DAC=y
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/config/x86_64/default new/config/x86_64/default
--- old/config/x86_64/default 2019-06-12 08:08:07.000000000 +0200
+++ new/config/x86_64/default 2019-06-19 13:53:18.000000000 +0200
@@ -8384,7 +8384,9 @@
CONFIG_INTEL_TXT=y
CONFIG_LSM_MMAP_MIN_ADDR=0
CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_FALLBACK is not set
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
# CONFIG_FORTIFY_SOURCE is not set
# CONFIG_STATIC_USERMODEHELPER is not set
CONFIG_SECURITY_SELINUX=y
@@ -8405,7 +8407,7 @@
CONFIG_SECURITY_APPARMOR_HASH_DEFAULT=y
# CONFIG_SECURITY_APPARMOR_DEBUG is not set
# CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
# CONFIG_SECURITY_SAFESETID is not set
CONFIG_INTEGRITY=y
CONFIG_INTEGRITY_SIGNATURE=y
++++++ patches.kernel.org.tar.bz2 ++++++
++++ 27292 lines of diff (skipped)
++++++ patches.suse.tar.bz2 ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/Revert-Bluetooth-btusb-driver-to-enable-the-usb-wake.patch new/patches.suse/Revert-Bluetooth-btusb-driver-to-enable-the-usb-wake.patch
--- old/patches.suse/Revert-Bluetooth-btusb-driver-to-enable-the-usb-wake.patch 1970-01-01 01:00:00.000000000 +0100
+++ new/patches.suse/Revert-Bluetooth-btusb-driver-to-enable-the-usb-wake.patch 2019-07-02 12:39:52.000000000 +0200
@@ -0,0 +1,42 @@
+From 2292984907bdca09396f25c90bc1d30478d34fd5 Mon Sep 17 00:00:00 2001
+From: Michal Suchanek
+Date: Tue, 26 Mar 2019 22:37:42 +0100
+Subject: [PATCH] Revert "Bluetooth: btusb: driver to enable the usb-wakeup
+ feature"
+
+Patch-mainline: no, testing
+References: boo#1130448
+
+This reverts commit a0085f2510e8976614ad8f766b209448b385492f.
+
+Signed-off-by: Michal Suchanek
+---
+ drivers/bluetooth/btusb.c | 5 -----
+ 1 file changed, 5 deletions(-)
+
+diff --git a/drivers/bluetooth/btusb.c b/drivers/bluetooth/btusb.c
+index 4761499db9ee..6d35cdb99c5e 100644
+--- a/drivers/bluetooth/btusb.c
++++ b/drivers/bluetooth/btusb.c
+@@ -1138,10 +1138,6 @@ static int btusb_open(struct hci_dev *hdev)
+ }
+
+ data->intf->needs_remote_wakeup = 1;
+- /* device specific wakeup source enabled and required for USB
+- * remote wakeup while host is suspended
+- */
+- device_wakeup_enable(&data->udev->dev);
+
+ if (test_and_set_bit(BTUSB_INTR_RUNNING, &data->flags))
+ goto done;
+@@ -1205,7 +1201,6 @@ static int btusb_close(struct hci_dev *hdev)
+ goto failed;
+
+ data->intf->needs_remote_wakeup = 0;
+- device_wakeup_disable(&data->udev->dev);
+ usb_autopm_put_interface(data->intf);
+
+ failed:
+--
+2.20.1
+
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/Revert-ovl-detect-overlapping-layers.patch new/patches.suse/Revert-ovl-detect-overlapping-layers.patch
--- old/patches.suse/Revert-ovl-detect-overlapping-layers.patch 1970-01-01 01:00:00.000000000 +0100
+++ new/patches.suse/Revert-ovl-detect-overlapping-layers.patch 2019-07-02 12:39:52.000000000 +0200
@@ -0,0 +1,495 @@
+From: Jiri Slaby
+Date: Tue, 2 Jul 2019 12:37:21 +0200
+Subject: Revert "ovl: detect overlapping layers"
+Patch-mainline: never, suse specific
+References: openqa tests failing
+
+This reverts commit 99eb836cd9a4df455ae90807bc00ee635be342f0, upstream
+commit 146d62e5a5867fbf84490d82455718bfb10fe824. It breaks openqa tests.
+So for now we revert these strict checks, but we will get them back with
+5.2.
+
+Signed-off-by: Jiri Slaby
+---
+ fs/overlayfs/inode.c | 48 -------------
+ fs/overlayfs/namei.c | 8 --
+ fs/overlayfs/overlayfs.h | 3
+ fs/overlayfs/ovl_entry.h | 6 -
+ fs/overlayfs/super.c | 169 ++++-------------------------------------------
+ fs/overlayfs/util.c | 12 ---
+ 6 files changed, 17 insertions(+), 229 deletions(-)
+
+--- a/fs/overlayfs/inode.c
++++ b/fs/overlayfs/inode.c
+@@ -777,54 +777,6 @@ struct inode *ovl_lookup_inode(struct su
+ return inode;
+ }
+
+-bool ovl_lookup_trap_inode(struct super_block *sb, struct dentry *dir)
+-{
+- struct inode *key = d_inode(dir);
+- struct inode *trap;
+- bool res;
+-
+- trap = ilookup5(sb, (unsigned long) key, ovl_inode_test, key);
+- if (!trap)
+- return false;
+-
+- res = IS_DEADDIR(trap) && !ovl_inode_upper(trap) &&
+- !ovl_inode_lower(trap);
+-
+- iput(trap);
+- return res;
+-}
+-
+-/*
+- * Create an inode cache entry for layer root dir, that will intentionally
+- * fail ovl_verify_inode(), so any lookup that will find some layer root
+- * will fail.
+- */
+-struct inode *ovl_get_trap_inode(struct super_block *sb, struct dentry *dir)
+-{
+- struct inode *key = d_inode(dir);
+- struct inode *trap;
+-
+- if (!d_is_dir(dir))
+- return ERR_PTR(-ENOTDIR);
+-
+- trap = iget5_locked(sb, (unsigned long) key, ovl_inode_test,
+- ovl_inode_set, key);
+- if (!trap)
+- return ERR_PTR(-ENOMEM);
+-
+- if (!(trap->i_state & I_NEW)) {
+- /* Conflicting layer roots? */
+- iput(trap);
+- return ERR_PTR(-ELOOP);
+- }
+-
+- trap->i_mode = S_IFDIR;
+- trap->i_flags = S_DEAD;
+- unlock_new_inode(trap);
+-
+- return trap;
+-}
+-
+ /*
+ * Does overlay inode need to be hashed by lower inode?
+ */
+--- a/fs/overlayfs/namei.c
++++ b/fs/overlayfs/namei.c
+@@ -18,7 +18,6 @@
+ #include "overlayfs.h"
+
+ struct ovl_lookup_data {
+- struct super_block *sb;
+ struct qstr name;
+ bool is_dir;
+ bool opaque;
+@@ -245,12 +244,6 @@ static int ovl_lookup_single(struct dent
+ if (!d->metacopy || d->last)
+ goto out;
+ } else {
+- if (ovl_lookup_trap_inode(d->sb, this)) {
+- /* Caught in a trap of overlapping layers */
+- err = -ELOOP;
+- goto out_err;
+- }
+-
+ if (last_element)
+ d->is_dir = true;
+ if (d->last)
+@@ -826,7 +819,6 @@ struct dentry *ovl_lookup(struct inode *
+ int err;
+ bool metacopy = false;
+ struct ovl_lookup_data d = {
+- .sb = dentry->d_sb,
+ .name = dentry->d_name,
+ .is_dir = false,
+ .opaque = false,
+--- a/fs/overlayfs/overlayfs.h
++++ b/fs/overlayfs/overlayfs.h
+@@ -270,7 +270,6 @@ void ovl_clear_flag(unsigned long flag,
+ bool ovl_test_flag(unsigned long flag, struct inode *inode);
+ bool ovl_inuse_trylock(struct dentry *dentry);
+ void ovl_inuse_unlock(struct dentry *dentry);
+-bool ovl_is_inuse(struct dentry *dentry);
+ bool ovl_need_index(struct dentry *dentry);
+ int ovl_nlink_start(struct dentry *dentry);
+ void ovl_nlink_end(struct dentry *dentry);
+@@ -377,8 +376,6 @@ struct ovl_inode_params {
+ struct inode *ovl_new_inode(struct super_block *sb, umode_t mode, dev_t rdev);
+ struct inode *ovl_lookup_inode(struct super_block *sb, struct dentry *real,
+ bool is_upper);
+-bool ovl_lookup_trap_inode(struct super_block *sb, struct dentry *dir);
+-struct inode *ovl_get_trap_inode(struct super_block *sb, struct dentry *dir);
+ struct inode *ovl_get_inode(struct super_block *sb,
+ struct ovl_inode_params *oip);
+ static inline void ovl_copyattr(struct inode *from, struct inode *to)
+--- a/fs/overlayfs/ovl_entry.h
++++ b/fs/overlayfs/ovl_entry.h
+@@ -29,8 +29,6 @@ struct ovl_sb {
+
+ struct ovl_layer {
+ struct vfsmount *mnt;
+- /* Trap in ovl inode cache */
+- struct inode *trap;
+ struct ovl_sb *fs;
+ /* Index of this layer in fs root (upper idx == 0) */
+ int idx;
+@@ -67,10 +65,6 @@ struct ovl_fs {
+ /* Did we take the inuse lock? */
+ bool upperdir_locked;
+ bool workdir_locked;
+- /* Traps in ovl inode cache */
+- struct inode *upperdir_trap;
+- struct inode *workdir_trap;
+- struct inode *indexdir_trap;
+ /* Inode numbers in all layers do not use the high xino_bits */
+ unsigned int xino_bits;
+ };
+--- a/fs/overlayfs/super.c
++++ b/fs/overlayfs/super.c
+@@ -217,9 +217,6 @@ static void ovl_free_fs(struct ovl_fs *o
+ {
+ unsigned i;
+
+- iput(ofs->indexdir_trap);
+- iput(ofs->workdir_trap);
+- iput(ofs->upperdir_trap);
+ dput(ofs->indexdir);
+ dput(ofs->workdir);
+ if (ofs->workdir_locked)
+@@ -228,10 +225,8 @@ static void ovl_free_fs(struct ovl_fs *o
+ if (ofs->upperdir_locked)
+ ovl_inuse_unlock(ofs->upper_mnt->mnt_root);
+ mntput(ofs->upper_mnt);
+- for (i = 0; i < ofs->numlower; i++) {
+- iput(ofs->lower_layers[i].trap);
++ for (i = 0; i < ofs->numlower; i++)
+ mntput(ofs->lower_layers[i].mnt);
+- }
+ for (i = 0; i < ofs->numlowerfs; i++)
+ free_anon_bdev(ofs->lower_fs[i].pseudo_dev);
+ kfree(ofs->lower_layers);
+@@ -989,26 +984,7 @@ static const struct xattr_handler *ovl_x
+ NULL
+ };
+
+-static int ovl_setup_trap(struct super_block *sb, struct dentry *dir,
+- struct inode **ptrap, const char *name)
+-{
+- struct inode *trap;
+- int err;
+-
+- trap = ovl_get_trap_inode(sb, dir);
+- err = PTR_ERR(trap);
+- if (IS_ERR(trap)) {
+- if (err == -ELOOP)
+- pr_err("overlayfs: conflicting %s path\n", name);
+- return err;
+- }
+-
+- *ptrap = trap;
+- return 0;
+-}
+-
+-static int ovl_get_upper(struct super_block *sb, struct ovl_fs *ofs,
+- struct path *upperpath)
++static int ovl_get_upper(struct ovl_fs *ofs, struct path *upperpath)
+ {
+ struct vfsmount *upper_mnt;
+ int err;
+@@ -1028,11 +1004,6 @@ static int ovl_get_upper(struct super_bl
+ if (err)
+ goto out;
+
+- err = ovl_setup_trap(sb, upperpath->dentry, &ofs->upperdir_trap,
+- "upperdir");
+- if (err)
+- goto out;
+-
+ upper_mnt = clone_private_mount(upperpath);
+ err = PTR_ERR(upper_mnt);
+ if (IS_ERR(upper_mnt)) {
+@@ -1059,8 +1030,7 @@ out:
+ return err;
+ }
+
+-static int ovl_make_workdir(struct super_block *sb, struct ovl_fs *ofs,
+- struct path *workpath)
++static int ovl_make_workdir(struct ovl_fs *ofs, struct path *workpath)
+ {
+ struct vfsmount *mnt = ofs->upper_mnt;
+ struct dentry *temp;
+@@ -1075,10 +1045,6 @@ static int ovl_make_workdir(struct super
+ if (!ofs->workdir)
+ goto out;
+
+- err = ovl_setup_trap(sb, ofs->workdir, &ofs->workdir_trap, "workdir");
+- if (err)
+- goto out;
+-
+ /*
+ * Upper should support d_type, else whiteouts are visible. Given
+ * workdir and upper are on same fs, we can do iterate_dir() on
+@@ -1139,8 +1105,7 @@ out:
+ return err;
+ }
+
+-static int ovl_get_workdir(struct super_block *sb, struct ovl_fs *ofs,
+- struct path *upperpath)
++static int ovl_get_workdir(struct ovl_fs *ofs, struct path *upperpath)
+ {
+ int err;
+ struct path workpath = { };
+@@ -1171,16 +1136,19 @@ static int ovl_get_workdir(struct super_
+ pr_warn("overlayfs: workdir is in-use by another mount, accessing files from both mounts will result in undefined behavior.\n");
+ }
+
+- err = ovl_make_workdir(sb, ofs, &workpath);
++ err = ovl_make_workdir(ofs, &workpath);
++ if (err)
++ goto out;
+
++ err = 0;
+ out:
+ path_put(&workpath);
+
+ return err;
+ }
+
+-static int ovl_get_indexdir(struct super_block *sb, struct ovl_fs *ofs,
+- struct ovl_entry *oe, struct path *upperpath)
++static int ovl_get_indexdir(struct ovl_fs *ofs, struct ovl_entry *oe,
++ struct path *upperpath)
+ {
+ struct vfsmount *mnt = ofs->upper_mnt;
+ int err;
+@@ -1199,11 +1167,6 @@ static int ovl_get_indexdir(struct super
+
+ ofs->indexdir = ovl_workdir_create(ofs, OVL_INDEXDIR_NAME, true);
+ if (ofs->indexdir) {
+- err = ovl_setup_trap(sb, ofs->indexdir, &ofs->indexdir_trap,
+- "indexdir");
+- if (err)
+- goto out;
+-
+ /*
+ * Verify upper root is exclusively associated with index dir.
+ * Older kernels stored upper fh in "trusted.overlay.origin"
+@@ -1291,8 +1254,8 @@ static int ovl_get_fsid(struct ovl_fs *o
+ return ofs->numlowerfs;
+ }
+
+-static int ovl_get_lower_layers(struct super_block *sb, struct ovl_fs *ofs,
+- struct path *stack, unsigned int numlower)
++static int ovl_get_lower_layers(struct ovl_fs *ofs, struct path *stack,
++ unsigned int numlower)
+ {
+ int err;
+ unsigned int i;
+@@ -1310,28 +1273,16 @@ static int ovl_get_lower_layers(struct s
+
+ for (i = 0; i < numlower; i++) {
+ struct vfsmount *mnt;
+- struct inode *trap;
+ int fsid;
+
+ err = fsid = ovl_get_fsid(ofs, &stack[i]);
+ if (err < 0)
+ goto out;
+
+- err = -EBUSY;
+- if (ovl_is_inuse(stack[i].dentry)) {
+- pr_err("overlayfs: lowerdir is in-use as upperdir/workdir\n");
+- goto out;
+- }
+-
+- err = ovl_setup_trap(sb, stack[i].dentry, &trap, "lowerdir");
+- if (err)
+- goto out;
+-
+ mnt = clone_private_mount(&stack[i]);
+ err = PTR_ERR(mnt);
+ if (IS_ERR(mnt)) {
+ pr_err("overlayfs: failed to clone lowerpath\n");
+- iput(trap);
+ goto out;
+ }
+
+@@ -1341,7 +1292,6 @@ static int ovl_get_lower_layers(struct s
+ */
+ mnt->mnt_flags |= MNT_READONLY | MNT_NOATIME;
+
+- ofs->lower_layers[ofs->numlower].trap = trap;
+ ofs->lower_layers[ofs->numlower].mnt = mnt;
+ ofs->lower_layers[ofs->numlower].idx = i + 1;
+ ofs->lower_layers[ofs->numlower].fsid = fsid;
+@@ -1436,7 +1386,7 @@ static struct ovl_entry *ovl_get_lowerst
+ goto out_err;
+ }
+
+- err = ovl_get_lower_layers(sb, ofs, stack, numlower);
++ err = ovl_get_lower_layers(ofs, stack, numlower);
+ if (err)
+ goto out_err;
+
+@@ -1468,85 +1418,6 @@ out_err:
+ goto out;
+ }
+
+-/*
+- * Check if this layer root is a descendant of:
+- * - another layer of this overlayfs instance
+- * - upper/work dir of any overlayfs instance
+- * - a disconnected dentry (detached root)
+- */
+-static int ovl_check_layer(struct super_block *sb, struct dentry *dentry,
+- const char *name)
+-{
+- struct dentry *next, *parent;
+- bool is_root = false;
+- int err = 0;
+-
+- if (!dentry || dentry == dentry->d_sb->s_root)
+- return 0;
+-
+- next = dget(dentry);
+- /* Walk back ancestors to fs root (inclusive) looking for traps */
+- do {
+- parent = dget_parent(next);
+- is_root = (parent == next);
+- if (ovl_is_inuse(parent)) {
+- err = -EBUSY;
+- pr_err("overlayfs: %s path overlapping in-use upperdir/workdir\n",
+- name);
+- } else if (ovl_lookup_trap_inode(sb, parent)) {
+- err = -ELOOP;
+- pr_err("overlayfs: overlapping %s path\n", name);
+- }
+- dput(next);
+- next = parent;
+- } while (!err && !is_root);
+-
+- /* Did we really walk to fs root or found a detached root? */
+- if (!err && next != dentry->d_sb->s_root) {
+- err = -ESTALE;
+- pr_err("overlayfs: disconnected %s path\n", name);
+- }
+-
+- dput(next);
+-
+- return err;
+-}
+-
+-/*
+- * Check if any of the layers or work dirs overlap.
+- */
+-static int ovl_check_overlapping_layers(struct super_block *sb,
+- struct ovl_fs *ofs)
+-{
+- int i, err;
+-
+- if (ofs->upper_mnt) {
+- err = ovl_check_layer(sb, ofs->upper_mnt->mnt_root, "upperdir");
+- if (err)
+- return err;
+-
+- /*
+- * Checking workbasedir avoids hitting ovl_is_inuse(parent) of
+- * this instance and covers overlapping work and index dirs,
+- * unless work or index dir have been moved since created inside
+- * workbasedir. In that case, we already have their traps in
+- * inode cache and we will catch that case on lookup.
+- */
+- err = ovl_check_layer(sb, ofs->workbasedir, "workdir");
+- if (err)
+- return err;
+- }
+-
+- for (i = 0; i < ofs->numlower; i++) {
+- err = ovl_check_layer(sb, ofs->lower_layers[i].mnt->mnt_root,
+- "lowerdir");
+- if (err)
+- return err;
+- }
+-
+- return 0;
+-}
+-
+ static int ovl_fill_super(struct super_block *sb, void *data, int silent)
+ {
+ struct path upperpath = { };
+@@ -1586,20 +1457,17 @@ static int ovl_fill_super(struct super_b
+ if (ofs->config.xino != OVL_XINO_OFF)
+ ofs->xino_bits = BITS_PER_LONG - 32;
+
+- /* alloc/destroy_inode needed for setting up traps in inode cache */
+- sb->s_op = &ovl_super_operations;
+-
+ if (ofs->config.upperdir) {
+ if (!ofs->config.workdir) {
+ pr_err("overlayfs: missing 'workdir'\n");
+ goto out_err;
+ }
+
+- err = ovl_get_upper(sb, ofs, &upperpath);
++ err = ovl_get_upper(ofs, &upperpath);
+ if (err)
+ goto out_err;
+
+- err = ovl_get_workdir(sb, ofs, &upperpath);
++ err = ovl_get_workdir(ofs, &upperpath);
+ if (err)
+ goto out_err;
+
+@@ -1620,7 +1488,7 @@ static int ovl_fill_super(struct super_b
+ sb->s_flags |= SB_RDONLY;
+
+ if (!(ovl_force_readonly(ofs)) && ofs->config.index) {
+- err = ovl_get_indexdir(sb, ofs, oe, &upperpath);
++ err = ovl_get_indexdir(ofs, oe, &upperpath);
+ if (err)
+ goto out_free_oe;
+
+@@ -1633,10 +1501,6 @@ static int ovl_fill_super(struct super_b
+
+ }
+
+- err = ovl_check_overlapping_layers(sb, ofs);
+- if (err)
+- goto out_free_oe;
+-
+ /* Show index=off in /proc/mounts for forced r/o mount */
+ if (!ofs->indexdir) {
+ ofs->config.index = false;
+@@ -1658,6 +1522,7 @@ static int ovl_fill_super(struct super_b
+ cap_lower(cred->cap_effective, CAP_SYS_RESOURCE);
+
+ sb->s_magic = OVERLAYFS_SUPER_MAGIC;
++ sb->s_op = &ovl_super_operations;
+ sb->s_xattr = ovl_xattr_handlers;
+ sb->s_fs_info = ofs;
+ sb->s_flags |= SB_POSIXACL;
+--- a/fs/overlayfs/util.c
++++ b/fs/overlayfs/util.c
+@@ -652,18 +652,6 @@ void ovl_inuse_unlock(struct dentry *den
+ }
+ }
+
+-bool ovl_is_inuse(struct dentry *dentry)
+-{
+- struct inode *inode = d_inode(dentry);
+- bool inuse;
+-
+- spin_lock(&inode->i_lock);
+- inuse = (inode->i_state & I_OVL_INUSE);
+- spin_unlock(&inode->i_lock);
+-
+- return inuse;
+-}
+-
+ /*
+ * Does this overlay dentry need to be indexed on copy up?
+ */
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/Revert-ovl-don-t-fail-with-disconnected-lower-NFS.patch new/patches.suse/Revert-ovl-don-t-fail-with-disconnected-lower-NFS.patch
--- old/patches.suse/Revert-ovl-don-t-fail-with-disconnected-lower-NFS.patch 1970-01-01 01:00:00.000000000 +0100
+++ new/patches.suse/Revert-ovl-don-t-fail-with-disconnected-lower-NFS.patch 2019-07-02 12:39:52.000000000 +0200
@@ -0,0 +1,68 @@
+From: Jiri Slaby
+Date: Tue, 2 Jul 2019 12:36:55 +0200
+Subject: Revert "ovl: don't fail with disconnected lower NFS"
+Patch-mainline: never, suse specific
+References: openqa tests failing
+
+This reverts commit 168835bbb0bff4c6294b7040e006251f105f7599, upstream
+commit 9179c21dc6ed1c993caa5fe4da876a6765c26af7. It depends on the
+following patch which is being reverted.
+
+Signed-off-by: Jiri Slaby
+---
+ fs/overlayfs/super.c | 26 +++++++++++++++++---------
+ 1 file changed, 17 insertions(+), 9 deletions(-)
+
+--- a/fs/overlayfs/super.c
++++ b/fs/overlayfs/super.c
+@@ -1472,20 +1472,23 @@ out_err:
+ * Check if this layer root is a descendant of:
+ * - another layer of this overlayfs instance
+ * - upper/work dir of any overlayfs instance
++ * - a disconnected dentry (detached root)
+ */
+ static int ovl_check_layer(struct super_block *sb, struct dentry *dentry,
+ const char *name)
+ {
+- struct dentry *next = dentry, *parent;
++ struct dentry *next, *parent;
++ bool is_root = false;
+ int err = 0;
+
+- if (!dentry)
++ if (!dentry || dentry == dentry->d_sb->s_root)
+ return 0;
+
+- parent = dget_parent(next);
+-
+- /* Walk back ancestors to root (inclusive) looking for traps */
+- while (!err && parent != next) {
++ next = dget(dentry);
++ /* Walk back ancestors to fs root (inclusive) looking for traps */
++ do {
++ parent = dget_parent(next);
++ is_root = (parent == next);
+ if (ovl_is_inuse(parent)) {
+ err = -EBUSY;
+ pr_err("overlayfs: %s path overlapping in-use upperdir/workdir\n",
+@@ -1494,12 +1497,17 @@ static int ovl_check_layer(struct super_
+ err = -ELOOP;
+ pr_err("overlayfs: overlapping %s path\n", name);
+ }
+- next = parent;
+- parent = dget_parent(next);
+ dput(next);
++ next = parent;
++ } while (!err && !is_root);
++
++ /* Did we really walk to fs root or found a detached root? */
++ if (!err && next != dentry->d_sb->s_root) {
++ err = -ESTALE;
++ pr_err("overlayfs: disconnected %s path\n", name);
+ }
+
+- dput(parent);
++ dput(next);
+
+ return err;
+ }
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/Revert-ovl-fix-bogus-Wmaybe-unitialized-warning.patch new/patches.suse/Revert-ovl-fix-bogus-Wmaybe-unitialized-warning.patch
--- old/patches.suse/Revert-ovl-fix-bogus-Wmaybe-unitialized-warning.patch 1970-01-01 01:00:00.000000000 +0100
+++ new/patches.suse/Revert-ovl-fix-bogus-Wmaybe-unitialized-warning.patch 2019-07-02 12:39:52.000000000 +0200
@@ -0,0 +1,28 @@
+From: Jiri Slaby
+Date: Tue, 2 Jul 2019 12:34:11 +0200
+Subject: Revert "ovl: fix bogus -Wmaybe-unitialized warning"
+Patch-mainline: never, suse specific
+References: openqa tests failing
+
+This reverts commit 9b8bd98e23a92b4fa6b1f3dd9e381c47ce575642, upstream
+commit 1dac6f5b0ed2601be21bb4e27a44b0c3e667b7f4. It depends on the
+following patch which is being reverted.
+
+Signed-off-by: Jiri Slaby
+---
+ fs/overlayfs/super.c | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+--- a/fs/overlayfs/super.c
++++ b/fs/overlayfs/super.c
+@@ -996,8 +996,8 @@ static int ovl_setup_trap(struct super_b
+ int err;
+
+ trap = ovl_get_trap_inode(sb, dir);
+- err = PTR_ERR_OR_ZERO(trap);
+- if (err) {
++ err = PTR_ERR(trap);
++ if (IS_ERR(trap)) {
+ if (err == -ELOOP)
+ pr_err("overlayfs: conflicting %s path\n", name);
+ return err;
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/apparmor-compatibility-with-v2.x-net.patch new/patches.suse/apparmor-compatibility-with-v2.x-net.patch
--- old/patches.suse/apparmor-compatibility-with-v2.x-net.patch 2019-06-17 16:44:35.000000000 +0200
+++ new/patches.suse/apparmor-compatibility-with-v2.x-net.patch 2019-07-02 12:39:52.000000000 +0200
@@ -15,18 +15,18 @@
Signed-off-by: John Johansen
Acked-by: Goldwyn Rodrigues
---
- security/apparmor/apparmorfs.c | 1 +
- security/apparmor/include/apparmor.h | 2 +-
- security/apparmor/include/net.h | 11 ++++++
- security/apparmor/include/policy.h | 2 ++
- security/apparmor/net.c | 31 ++++++++++++----
- security/apparmor/policy.c | 1 +
- security/apparmor/policy_unpack.c | 54 ++++++++++++++++++++++++++--
+ security/apparmor/apparmorfs.c | 1
+ security/apparmor/include/apparmor.h | 2 -
+ security/apparmor/include/net.h | 11 +++++++
+ security/apparmor/include/policy.h | 2 +
+ security/apparmor/net.c | 31 +++++++++++++++-----
+ security/apparmor/policy.c | 1
+ security/apparmor/policy_unpack.c | 54 +++++++++++++++++++++++++++++++++--
7 files changed, 92 insertions(+), 10 deletions(-)
--- a/security/apparmor/apparmorfs.c
+++ b/security/apparmor/apparmorfs.c
-@@ -2269,6 +2269,7 @@ static struct aa_sfs_entry aa_sfs_entry_features[] = {
+@@ -2275,6 +2275,7 @@ static struct aa_sfs_entry aa_sfs_entry_
AA_SFS_DIR("domain", aa_sfs_entry_domain),
AA_SFS_DIR("file", aa_sfs_entry_file),
AA_SFS_DIR("network_v8", aa_sfs_entry_network),
@@ -92,7 +92,7 @@
char **xattrs;
--- a/security/apparmor/net.c
+++ b/security/apparmor/net.c
-@@ -28,6 +28,11 @@ struct aa_sfs_entry aa_sfs_entry_network[] = {
+@@ -28,6 +28,11 @@ struct aa_sfs_entry aa_sfs_entry_network
{ }
};
@@ -104,11 +104,12 @@
static const char * const net_mask_names[] = {
"unknown",
"send",
-@@ -120,14 +125,26 @@ int aa_profile_af_perm(struct aa_profile *profile, struct common_audit_data *sa,
+@@ -120,14 +125,26 @@ int aa_profile_af_perm(struct aa_profile
if (profile_unconfined(profile))
return 0;
state = PROFILE_MEDIATES(profile, AA_CLASS_NET);
- if (!state)
+- return 0;
+ if (state) {
+ if (!state)
+ return 0;
@@ -125,22 +126,21 @@
+ ALL_PERMS_MASK : 0;
+ perms.quiet = (profile->net_compat->quiet[family] & (1 << type)) ?
+ ALL_PERMS_MASK : 0;
-+
-+ } else {
- return 0;
--
+
- buffer[0] = cpu_to_be16(family);
- buffer[1] = cpu_to_be16((u16) type);
- state = aa_dfa_match_len(profile->policy.dfa, state, (char *) &buffer,
- 4);
- aa_compute_perms(profile->policy.dfa, state, &perms);
++ } else {
++ return 0;
+ }
aa_apply_modes_to_perms(profile, &perms);
return aa_check_perms(profile, &perms, request, sa, audit_net_cb);
--- a/security/apparmor/policy.c
+++ b/security/apparmor/policy.c
-@@ -227,6 +227,7 @@ void aa_free_profile(struct aa_profile *profile)
+@@ -227,6 +227,7 @@ void aa_free_profile(struct aa_profile *
aa_free_file_rules(&profile->file);
aa_free_cap_rules(&profile->caps);
aa_free_rlimit_rules(&profile->rlimits);
@@ -159,7 +159,7 @@
#define v8 8 /* full network masking */
/*
-@@ -305,6 +305,19 @@ static bool unpack_u8(struct aa_ext *e, u8 *data, const char *name)
+@@ -315,6 +315,19 @@ fail:
return 0;
}
@@ -178,8 +178,8 @@
+
static bool unpack_u32(struct aa_ext *e, u32 *data, const char *name)
{
- if (unpack_nameX(e, AA_U32, name)) {
-@@ -645,7 +658,7 @@ static struct aa_profile *unpack_profile(struct aa_ext *e, char **ns_name)
+ void *pos = e->pos;
+@@ -677,7 +690,7 @@ static struct aa_profile *unpack_profile
struct aa_profile *profile = NULL;
const char *tmpname, *tmpns = NULL, *name = NULL;
const char *info = "failed to unpack profile";
@@ -188,7 +188,7 @@
struct rhashtable_params params = { 0 };
char *key = NULL;
struct aa_data *data;
-@@ -788,6 +801,43 @@ static struct aa_profile *unpack_profile(struct aa_ext *e, char **ns_name)
+@@ -820,6 +833,43 @@ static struct aa_profile *unpack_profile
goto fail;
}
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/tcp-add-tcp_min_snd_mss-sysctl.patch new/patches.suse/tcp-add-tcp_min_snd_mss-sysctl.patch
--- old/patches.suse/tcp-add-tcp_min_snd_mss-sysctl.patch 2019-06-17 16:44:35.000000000 +0200
+++ new/patches.suse/tcp-add-tcp_min_snd_mss-sysctl.patch 1970-01-01 01:00:00.000000000 +0100
@@ -1,121 +0,0 @@
-From: Eric Dumazet
-Date: Thu, 6 Jun 2019 09:38:47 -0700
-Subject: tcp: add tcp_min_snd_mss sysctl
-Patch-mainline: Not yet, embargo
-References: bsc#1137586 CVE-2019-11479
-
-Some TCP peers announce a very small MSS option in their SYN and/or
-SYN/ACK messages.
-
-This forces the stack to send packets with a very high network/cpu
-overhead.
-
-Linux has enforced a minimal value of 48. Since this value includes
-the size of TCP options, and that the options can consume up to 40
-bytes, this means that each segment can include only 8 bytes of payload.
-
-In some cases, it can be useful to increase the minimal value
-to a saner value.
-
-We still let the default to 48 (TCP_MIN_SND_MSS), for compatibility
-reasons.
-
-Note that TCP_MAXSEG socket option enforces a minimal value
-of (TCP_MIN_MSS). David Miller increased this minimal value
-in commit c39508d6f118 ("tcp: Make TCP_MAXSEG minimum more correct.")
-from 64 to 88.
-
-We might in the future merge TCP_MIN_SND_MSS and TCP_MIN_MSS.
-
-Signed-off-by: Eric Dumazet
-Suggested-by: Jonathan Looney
-Cc: Neal Cardwell
-Cc: Yuchung Cheng
-Cc: Tyler Hicks
-Cc: Bruce Curtis
-Acked-by: Michal Kubecek
-
----
- Documentation/networking/ip-sysctl.txt | 8 ++++++++
- include/net/netns/ipv4.h | 1 +
- net/ipv4/sysctl_net_ipv4.c | 11 +++++++++++
- net/ipv4/tcp_ipv4.c | 1 +
- net/ipv4/tcp_output.c | 3 +--
- 5 files changed, 22 insertions(+), 2 deletions(-)
-
---- a/Documentation/networking/ip-sysctl.txt
-+++ b/Documentation/networking/ip-sysctl.txt
-@@ -250,6 +250,14 @@ tcp_base_mss - INTEGER
- Path MTU discovery (MTU probing). If MTU probing is enabled,
- this is the initial MSS used by the connection.
-
-+tcp_min_snd_mss - INTEGER
-+ TCP SYN and SYNACK messages usually advertise an ADVMSS option,
-+ as described in RFC 1122 and RFC 6691.
-+ If this ADVMSS option is smaller than tcp_min_snd_mss,
-+ it is silently capped to tcp_min_snd_mss.
-+
-+ Default : 48 (at least 8 bytes of payload per segment)
-+
- tcp_congestion_control - STRING
- Set the congestion control algorithm to be used for new
- connections. The algorithm "reno" is always available, but
---- a/include/net/netns/ipv4.h
-+++ b/include/net/netns/ipv4.h
-@@ -117,6 +117,7 @@ struct netns_ipv4 {
- #endif
- int sysctl_tcp_mtu_probing;
- int sysctl_tcp_base_mss;
-+ int sysctl_tcp_min_snd_mss;
- int sysctl_tcp_probe_threshold;
- u32 sysctl_tcp_probe_interval;
-
---- a/net/ipv4/sysctl_net_ipv4.c
-+++ b/net/ipv4/sysctl_net_ipv4.c
-@@ -39,6 +39,8 @@ static int ip_local_port_range_min[] = {
- static int ip_local_port_range_max[] = { 65535, 65535 };
- static int tcp_adv_win_scale_min = -31;
- static int tcp_adv_win_scale_max = 31;
-+static int tcp_min_snd_mss_min = TCP_MIN_SND_MSS;
-+static int tcp_min_snd_mss_max = 65535;
- static int ip_privileged_port_min;
- static int ip_privileged_port_max = 65535;
- static int ip_ttl_min = 1;
-@@ -749,6 +751,15 @@ static struct ctl_table ipv4_net_table[]
- .proc_handler = proc_dointvec,
- },
- {
-+ .procname = "tcp_min_snd_mss",
-+ .data = &init_net.ipv4.sysctl_tcp_min_snd_mss,
-+ .maxlen = sizeof(int),
-+ .mode = 0644,
-+ .proc_handler = proc_dointvec_minmax,
-+ .extra1 = &tcp_min_snd_mss_min,
-+ .extra2 = &tcp_min_snd_mss_max,
-+ },
-+ {
- .procname = "tcp_probe_threshold",
- .data = &init_net.ipv4.sysctl_tcp_probe_threshold,
- .maxlen = sizeof(int),
---- a/net/ipv4/tcp_ipv4.c
-+++ b/net/ipv4/tcp_ipv4.c
-@@ -2626,6 +2626,7 @@ static int __net_init tcp_sk_init(struct
- net->ipv4.sysctl_tcp_ecn_fallback = 1;
-
- net->ipv4.sysctl_tcp_base_mss = TCP_BASE_MSS;
-+ net->ipv4.sysctl_tcp_min_snd_mss = TCP_MIN_SND_MSS;
- net->ipv4.sysctl_tcp_probe_threshold = TCP_PROBE_THRESHOLD;
- net->ipv4.sysctl_tcp_probe_interval = TCP_PROBE_INTERVAL;
-
---- a/net/ipv4/tcp_output.c
-+++ b/net/ipv4/tcp_output.c
-@@ -1462,8 +1462,7 @@ static inline int __tcp_mtu_to_mss(struc
- mss_now -= icsk->icsk_ext_hdr_len;
-
- /* Then reserve room for full set of TCP options and 8 bytes of data */
-- if (mss_now < TCP_MIN_SND_MSS)
-- mss_now = TCP_MIN_SND_MSS;
-+ mss_now = max(mss_now, sock_net(sk)->ipv4.sysctl_tcp_min_snd_mss);
- return mss_now;
- }
-
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/tcp-enforce-tcp_min_snd_mss-in-tcp_mtu_probing.patch new/patches.suse/tcp-enforce-tcp_min_snd_mss-in-tcp_mtu_probing.patch
--- old/patches.suse/tcp-enforce-tcp_min_snd_mss-in-tcp_mtu_probing.patch 2019-06-17 16:44:35.000000000 +0200
+++ new/patches.suse/tcp-enforce-tcp_min_snd_mss-in-tcp_mtu_probing.patch 1970-01-01 01:00:00.000000000 +0100
@@ -1,34 +0,0 @@
-From: Eric Dumazet
-Date: Sat, 8 Jun 2019 10:38:08 -0700
-Subject: tcp: enforce tcp_min_snd_mss in tcp_mtu_probing()
-Patch-mainline: Not yet, embargo
-References: bsc#1137586 CVE-2019-11479
-
-If mtu probing is enabled tcp_mtu_probing() could very well end up
-with a too small MSS.
-
-Use the new sysctl tcp_min_snd_mss to make sure MSS search
-is performed in an acceptable range.
-
-Signed-off-by: Eric Dumazet
-Reported-by: Jonathan Lemon
-Cc: Jonathan Looney
-Cc: Neal Cardwell
-Cc: Yuchung Cheng
-Cc: Tyler Hicks
-Cc: Bruce Curtis
-Acked-by: Michal Kubecek
----
- net/ipv4/tcp_timer.c | 1 +
- 1 file changed, 1 insertion(+)
-
---- a/net/ipv4/tcp_timer.c
-+++ b/net/ipv4/tcp_timer.c
-@@ -154,6 +154,7 @@ static void tcp_mtu_probing(struct inet_
- mss = tcp_mtu_to_mss(sk, icsk->icsk_mtup.search_low) >> 1;
- mss = min(net->ipv4.sysctl_tcp_base_mss, mss);
- mss = max(mss, 68 - tcp_sk(sk)->tcp_header_len);
-+ mss = max(mss, net->ipv4.sysctl_tcp_min_snd_mss);
- icsk->icsk_mtup.search_low = tcp_mss_to_mtu(sk, mss);
- }
- tcp_sync_mss(sk, icsk->icsk_pmtu_cookie);
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/tcp-limit-payload-size-of-sacked-skbs.patch new/patches.suse/tcp-limit-payload-size-of-sacked-skbs.patch
--- old/patches.suse/tcp-limit-payload-size-of-sacked-skbs.patch 2019-06-17 16:44:35.000000000 +0200
+++ new/patches.suse/tcp-limit-payload-size-of-sacked-skbs.patch 1970-01-01 01:00:00.000000000 +0100
@@ -1,153 +0,0 @@
-From: Eric Dumazet
-Date: Thu, 6 Jun 2019 09:38:45 -0700
-Subject: tcp: limit payload size of sacked skbs
-Patch-mainline: Not yet, embargo
-References: bsc#1137586 CVE-2019-11477
-
-Jonathan Looney reported that TCP can trigger the following crash
-in tcp_shifted_skb() :
-
- BUG_ON(tcp_skb_pcount(skb) < pcount);
-
-This can happen if the remote peer has advertized the smallest
-MSS that linux TCP accepts : 48
-
-An skb can hold 17 fragments, and each fragment can hold 32KB
-on x86, or 64KB on PowerPC.
-
-This means that the 16bit witdh of TCP_SKB_CB(skb)->tcp_gso_segs
-can overflow.
-
-Note that tcp_sendmsg() builds skbs with less than 64KB
-of payload, so this problem needs SACK to be enabled.
-SACK blocks allow TCP to coalesce multiple skbs in the retransmit
-queue, thus filling the 17 fragments to maximal capacity.
-
-Fixes: 832d11c5cd07 ("tcp: Try to restore large SKBs while SACK processing")
-Signed-off-by: Eric Dumazet
-Reported-by: Jonathan Looney
-Acked-by: Neal Cardwell
-Reviewed-by: Tyler Hicks
-Cc: Yuchung Cheng
-Cc: Bruce Curtis
-Acked-by: Michal Kubecek
-
----
- include/linux/tcp.h | 4 ++++
- include/net/tcp.h | 2 ++
- net/ipv4/tcp.c | 1 +
- net/ipv4/tcp_input.c | 26 ++++++++++++++++++++------
- net/ipv4/tcp_output.c | 6 +++---
- 5 files changed, 30 insertions(+), 9 deletions(-)
-
---- a/include/linux/tcp.h
-+++ b/include/linux/tcp.h
-@@ -488,4 +488,8 @@ static inline u16 tcp_mss_clamp(const st
-
- return (user_mss && user_mss < mss) ? user_mss : mss;
- }
-+
-+int tcp_skb_shift(struct sk_buff *to, struct sk_buff *from, int pcount,
-+ int shiftlen);
-+
- #endif /* _LINUX_TCP_H */
---- a/include/net/tcp.h
-+++ b/include/net/tcp.h
-@@ -55,6 +55,8 @@ void tcp_time_wait(struct sock *sk, int
-
- #define MAX_TCP_HEADER (128 + MAX_HEADER)
- #define MAX_TCP_OPTION_SPACE 40
-+#define TCP_MIN_SND_MSS 48
-+#define TCP_MIN_GSO_SIZE (TCP_MIN_SND_MSS - MAX_TCP_OPTION_SPACE)
-
- /*
- * Never offer a window over 32767 without using window scaling. Some
---- a/net/ipv4/tcp.c
-+++ b/net/ipv4/tcp.c
-@@ -3889,6 +3889,7 @@ void __init tcp_init(void)
- unsigned long limit;
- unsigned int i;
-
-+ BUILD_BUG_ON(TCP_MIN_SND_MSS <= MAX_TCP_OPTION_SPACE);
- BUILD_BUG_ON(sizeof(struct tcp_skb_cb) >
- FIELD_SIZEOF(struct sk_buff, cb));
-
---- a/net/ipv4/tcp_input.c
-+++ b/net/ipv4/tcp_input.c
-@@ -1296,7 +1296,7 @@ static bool tcp_shifted_skb(struct sock
- TCP_SKB_CB(skb)->seq += shifted;
-
- tcp_skb_pcount_add(prev, pcount);
-- BUG_ON(tcp_skb_pcount(skb) < pcount);
-+ WARN_ON_ONCE(tcp_skb_pcount(skb) < pcount);
- tcp_skb_pcount_add(skb, -pcount);
-
- /* When we're adding to gso_segs == 1, gso_size will be zero,
-@@ -1362,6 +1362,21 @@ static int skb_can_shift(const struct sk
- return !skb_headlen(skb) && skb_is_nonlinear(skb);
- }
-
-+int tcp_skb_shift(struct sk_buff *to, struct sk_buff *from,
-+ int pcount, int shiftlen)
-+{
-+ /* TCP min gso_size is 8 bytes (TCP_MIN_GSO_SIZE)
-+ * Since TCP_SKB_CB(skb)->tcp_gso_segs is 16 bits, we need
-+ * to make sure not storing more than 65535 * 8 bytes per skb,
-+ * even if current MSS is bigger.
-+ */
-+ if (unlikely(to->len + shiftlen >= 65535 * TCP_MIN_GSO_SIZE))
-+ return 0;
-+ if (unlikely(tcp_skb_pcount(to) + pcount > 65535))
-+ return 0;
-+ return skb_shift(to, from, shiftlen);
-+}
-+
- /* Try collapsing SACK blocks spanning across multiple skbs to a single
- * skb.
- */
-@@ -1467,7 +1482,7 @@ static struct sk_buff *tcp_shift_skb_dat
- if (!after(TCP_SKB_CB(skb)->seq + len, tp->snd_una))
- goto fallback;
-
-- if (!skb_shift(prev, skb, len))
-+ if (!tcp_skb_shift(prev, skb, pcount, len))
- goto fallback;
- if (!tcp_shifted_skb(sk, prev, skb, state, pcount, len, mss, dup_sack))
- goto out;
-@@ -1485,11 +1500,10 @@ static struct sk_buff *tcp_shift_skb_dat
- goto out;
-
- len = skb->len;
-- if (skb_shift(prev, skb, len)) {
-- pcount += tcp_skb_pcount(skb);
-- tcp_shifted_skb(sk, prev, skb, state, tcp_skb_pcount(skb),
-+ pcount = tcp_skb_pcount(skb);
-+ if (tcp_skb_shift(prev, skb, pcount, len))
-+ tcp_shifted_skb(sk, prev, skb, state, pcount,
- len, mss, 0);
-- }
-
- out:
- return prev;
---- a/net/ipv4/tcp_output.c
-+++ b/net/ipv4/tcp_output.c
-@@ -1457,8 +1457,8 @@ static inline int __tcp_mtu_to_mss(struc
- mss_now -= icsk->icsk_ext_hdr_len;
-
- /* Then reserve room for full set of TCP options and 8 bytes of data */
-- if (mss_now < 48)
-- mss_now = 48;
-+ if (mss_now < TCP_MIN_SND_MSS)
-+ mss_now = TCP_MIN_SND_MSS;
- return mss_now;
- }
-
-@@ -2750,7 +2750,7 @@ static bool tcp_collapse_retrans(struct
- if (next_skb_size <= skb_availroom(skb))
- skb_copy_bits(next_skb, 0, skb_put(skb, next_skb_size),
- next_skb_size);
-- else if (!skb_shift(skb, next_skb, next_skb_size))
-+ else if (!tcp_skb_shift(skb, next_skb, 1, next_skb_size))
- return false;
- }
- tcp_highest_sack_replace(sk, next_skb, skb);
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/tcp-tcp_fragment-should-apply-sane-memory-limits.patch new/patches.suse/tcp-tcp_fragment-should-apply-sane-memory-limits.patch
--- old/patches.suse/tcp-tcp_fragment-should-apply-sane-memory-limits.patch 2019-06-17 16:44:35.000000000 +0200
+++ new/patches.suse/tcp-tcp_fragment-should-apply-sane-memory-limits.patch 1970-01-01 01:00:00.000000000 +0100
@@ -1,68 +0,0 @@
-From: Eric Dumazet
-Date: Thu, 6 Jun 2019 09:38:46 -0700
-Subject: tcp: tcp_fragment() should apply sane memory limits
-Patch-mainline: Not yet, embargo
-References: bsc#1137586 CVE-2019-11478
-
-Jonathan Looney reported that a malicious peer can force a sender
-to fragment its retransmit queue into tiny skbs, inflating memory
-usage and/or overflow 32bit counters.
-
-TCP allows an application to queue up to sk_sndbuf bytes,
-so we need to give some allowance for non malicious splitting
-of retransmit queue.
-
-A new SNMP counter is added to monitor how many times TCP
-did not allow to split an skb if the allowance was exceeded.
-
-Note that this counter might increase in the case applications
-use SO_SNDBUF socket option to lower sk_sndbuf.
-
-Signed-off-by: Eric Dumazet
-Reported-by: Jonathan Looney
-Acked-by: Neal Cardwell
-Acked-by: Yuchung Cheng
-Reviewed-by: Tyler Hicks
-Cc: Bruce Curtis
-Acked-by: Michal Kubecek
-
----
- include/uapi/linux/snmp.h | 1 +
- net/ipv4/proc.c | 1 +
- net/ipv4/tcp_output.c | 5 +++++
- 3 files changed, 7 insertions(+)
-
---- a/include/uapi/linux/snmp.h
-+++ b/include/uapi/linux/snmp.h
-@@ -283,6 +283,7 @@ enum
- LINUX_MIB_TCPACKCOMPRESSED, /* TCPAckCompressed */
- LINUX_MIB_TCPZEROWINDOWDROP, /* TCPZeroWindowDrop */
- LINUX_MIB_TCPRCVQDROP, /* TCPRcvQDrop */
-+ LINUX_MIB_TCPWQUEUETOOBIG, /* TCPWqueueTooBig */
- __LINUX_MIB_MAX
- };
-
---- a/net/ipv4/proc.c
-+++ b/net/ipv4/proc.c
-@@ -291,6 +291,7 @@ static const struct snmp_mib snmp4_net_l
- SNMP_MIB_ITEM("TCPAckCompressed", LINUX_MIB_TCPACKCOMPRESSED),
- SNMP_MIB_ITEM("TCPZeroWindowDrop", LINUX_MIB_TCPZEROWINDOWDROP),
- SNMP_MIB_ITEM("TCPRcvQDrop", LINUX_MIB_TCPRCVQDROP),
-+ SNMP_MIB_ITEM("TCPWqueueTooBig", LINUX_MIB_TCPWQUEUETOOBIG),
- SNMP_MIB_SENTINEL
- };
-
---- a/net/ipv4/tcp_output.c
-+++ b/net/ipv4/tcp_output.c
-@@ -1299,6 +1299,11 @@ int tcp_fragment(struct sock *sk, enum t
- if (nsize < 0)
- nsize = 0;
-
-+ if (unlikely((sk->sk_wmem_queued >> 1) > sk->sk_sndbuf)) {
-+ NET_INC_STATS(sock_net(sk), LINUX_MIB_TCPWQUEUETOOBIG);
-+ return -ENOMEM;
-+ }
-+
- if (skb_unclone(skb, gfp))
- return -ENOMEM;
-
++++++ series.conf ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:46.574936629 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:46.574936629 +0200
@@ -1142,6 +1142,350 @@
patches.kernel.org/5.1.10-155-ALSA-seq-Cover-unsubscribe_port-in-list_mutex.patch
patches.kernel.org/5.1.10-156-io_uring-fix-failure-to-verify-SQ_AFF-cpu.patch
patches.kernel.org/5.1.10-157-Linux-5.1.10.patch
+ patches.kernel.org/5.1.11-001-tcp-limit-payload-size-of-sacked-skbs.patch
+ patches.kernel.org/5.1.11-002-tcp-tcp_fragment-should-apply-sane-memory-limi.patch
+ patches.kernel.org/5.1.11-003-tcp-add-tcp_min_snd_mss-sysctl.patch
+ patches.kernel.org/5.1.11-004-tcp-enforce-tcp_min_snd_mss-in-tcp_mtu_probing.patch
+ patches.kernel.org/5.1.11-005-Linux-5.1.11.patch
+ patches.kernel.org/5.1.12-001-drm-nouveau-add-kconfig-option-to-turn-off-nou.patch
+ patches.kernel.org/5.1.12-002-nouveau-Fix-build-with-CONFIG_NOUVEAU_LEGACY_C.patch
+ patches.kernel.org/5.1.12-003-HID-input-make-sure-the-wheel-high-resolution-.patch
+ patches.kernel.org/5.1.12-004-HID-input-fix-assignment-of-.value.patch
+ patches.kernel.org/5.1.12-005-Revert-HID-Increase-maximum-report-size-allowe.patch
+ patches.kernel.org/5.1.12-006-HID-multitouch-handle-faulty-Elo-touch-device.patch
+ patches.kernel.org/5.1.12-007-HID-wacom-Don-t-set-tool-type-until-we-re-in-r.patch
+ patches.kernel.org/5.1.12-008-HID-wacom-Don-t-report-anything-prior-to-the-t.patch
+ patches.kernel.org/5.1.12-009-HID-wacom-Send-BTN_TOUCH-in-response-to-INTUOS.patch
+ patches.kernel.org/5.1.12-010-HID-wacom-Correct-button-numbering-2nd-gen-Int.patch
+ patches.kernel.org/5.1.12-011-HID-wacom-Sync-INTUOSP2_BT-touch-state-after-e.patch
+ patches.kernel.org/5.1.12-012-Revert-ALSA-hda-realtek-Improve-the-headset-mi.patch
+ patches.kernel.org/5.1.12-013-ALSA-oxfw-allow-PCM-capture-for-Stanton-SCS.1m.patch
+ patches.kernel.org/5.1.12-014-ALSA-ice1712-Check-correct-return-value-to-snd.patch
+ patches.kernel.org/5.1.12-015-ALSA-hda-realtek-Update-headset-mode-for-ALC25.patch
+ patches.kernel.org/5.1.12-016-ALSA-firewire-motu-fix-destruction-of-data-for.patch
+ patches.kernel.org/5.1.12-017-selinux-log-raw-contexts-as-untrusted-strings.patch
+ patches.kernel.org/5.1.12-018-selinux-fix-a-missing-check-bug-in-selinux_add.patch
+ patches.kernel.org/5.1.12-019-selinux-fix-a-missing-check-bug-in-selinux_sb_.patch
+ patches.kernel.org/5.1.12-020-libata-Extend-quirks-for-the-ST1000LM024-drive.patch
+ patches.kernel.org/5.1.12-021-io_uring-fix-memory-leak-of-UNIX-domain-socket.patch
+ patches.kernel.org/5.1.12-022-mm-list_lru.c-fix-memory-leak-in-__memcg_init_.patch
+ patches.kernel.org/5.1.12-023-fs-ocfs2-fix-race-in-ocfs2_dentry_attach_lock.patch
+ patches.kernel.org/5.1.12-024-mm-vmscan.c-fix-trying-to-reclaim-unevictable-.patch
+ patches.kernel.org/5.1.12-025-signal-ptrace-Don-t-leak-unitialized-kernel-me.patch
+ patches.kernel.org/5.1.12-026-ptrace-restore-smp_rmb-in-__ptrace_may_access.patch
+ patches.kernel.org/5.1.12-027-media-dvb-warning-about-dvb-frequency-limits-p.patch
+ patches.kernel.org/5.1.12-028-iommu-arm-smmu-Avoid-constant-zero-in-TLBI-wri.patch
+ patches.kernel.org/5.1.12-029-Smack-Restore-the-smackfsdef-mount-option-and-.patch
+ patches.kernel.org/5.1.12-030-i2c-acorn-fix-i2c-warning.patch
+ patches.kernel.org/5.1.12-031-bcache-fix-stack-corruption-by-PRECEDING_KEY.patch
+ patches.kernel.org/5.1.12-032-bcache-only-set-BCACHE_DEV_WB_RUNNING-when-cac.patch
+ patches.kernel.org/5.1.12-033-cgroup-Use-css_tryget-instead-of-css_tryget_on.patch
+ patches.kernel.org/5.1.12-034-ASoC-cs42xx8-Add-regcache-mask-dirty.patch
+ patches.kernel.org/5.1.12-035-ASoC-fsl_asrc-Fix-the-issue-about-unsupported-.patch
+ patches.kernel.org/5.1.12-036-ASoC-soc-core-fixup-references-at-soc_cleanup_.patch
+ patches.kernel.org/5.1.12-037-drm-amdgpu-uvd-vcn-fetch-ring-s-read_ptr-after.patch
+ patches.kernel.org/5.1.12-038-drm-i915-sdvo-Implement-proper-HDMI-audio-supp.patch
+ patches.kernel.org/5.1.12-039-drm-i915-dsi-Use-a-fuzzy-check-for-burst-mode-.patch
+ patches.kernel.org/5.1.12-040-drm-i915-Fix-per-pixel-alpha-with-CCS.patch
+ patches.kernel.org/5.1.12-041-drm-i915-dmc-protect-against-reading-random-me.patch
+ patches.kernel.org/5.1.12-042-x86-uaccess-kcov-Disable-stack-protector.patch
+ patches.kernel.org/5.1.12-043-ALSA-seq-Protect-in-kernel-ioctl-calls-with-mu.patch
+ patches.kernel.org/5.1.12-044-ALSA-seq-Fix-race-of-get-subscription-call-vs-.patch
+ patches.kernel.org/5.1.12-045-Revert-ALSA-seq-Protect-in-kernel-ioctl-calls-.patch
+ patches.kernel.org/5.1.12-046-Drivers-misc-fix-out-of-bounds-access-in-funct.patch
+ patches.kernel.org/5.1.12-047-f2fs-fix-to-avoid-accessing-xattr-across-the-b.patch
+ patches.kernel.org/5.1.12-048-drivers-perf-arm_spe-Don-t-error-on-high-order.patch
+ patches.kernel.org/5.1.12-049-bpf-sockmap-only-stop-flush-strp-if-it-was-ena.patch
+ patches.kernel.org/5.1.12-050-bpf-sockmap-remove-duplicate-queue-free.patch
+ patches.kernel.org/5.1.12-051-bpf-sockmap-fix-msg-sg.size-account-on-ingress.patch
+ patches.kernel.org/5.1.12-052-scsi-qla2xxx-Add-cleanup-for-PCI-EEH-recovery.patch
+ patches.kernel.org/5.1.12-053-scsi-qedi-remove-memset-memcpy-to-nfunc-and-us.patch
+ patches.kernel.org/5.1.12-054-scsi-qedi-remove-set-but-not-used-variables-cd.patch
+ patches.kernel.org/5.1.12-055-scsi-lpfc-resolve-lockdep-warnings.patch
+ patches.kernel.org/5.1.12-056-scsi-lpfc-correct-rcu-unlock-issue-in-lpfc_nvm.patch
+ patches.kernel.org/5.1.12-057-scsi-lpfc-add-check-for-loss-of-ndlp-when-send.patch
+ patches.kernel.org/5.1.12-058-arm64-Print-physical-address-of-page-table-bas.patch
+ patches.kernel.org/5.1.12-059-net-macb-fix-error-format-in-dev_err.patch
+ patches.kernel.org/5.1.12-060-enetc-Fix-NULL-dma-address-unmap-for-Tx-BD-ext.patch
+ patches.kernel.org/5.1.12-061-bpf-tcp-correctly-handle-DONT_WAIT-flags-and-t.patch
+ patches.kernel.org/5.1.12-062-arm64-mm-Inhibit-huge-vmap-with-ptdump.patch
+ patches.kernel.org/5.1.12-063-tools-bpftool-move-set_max_rlimit-before-__bpf.patch
+ patches.kernel.org/5.1.12-064-selftests-bpf-fix-bpf_get_current_task.patch
+ patches.kernel.org/5.1.12-065-nvme-pci-Fix-controller-freeze-wait-disabling.patch
+ patches.kernel.org/5.1.12-066-nvme-fix-srcu-locking-on-error-return-in-nvme_.patch
+ patches.kernel.org/5.1.12-067-nvme-remove-the-ifdef-around-nvme_nvm_ioctl.patch
+ patches.kernel.org/5.1.12-068-nvme-merge-nvme_ns_ioctl-into-nvme_ioctl.patch
+ patches.kernel.org/5.1.12-069-nvme-release-namespace-SRCU-protection-before-.patch
+ patches.kernel.org/5.1.12-070-nvme-fix-memory-leak-for-power-latency-toleran.patch
+ patches.kernel.org/5.1.12-071-platform-x86-pmc_atom-Add-Lex-3I380D-industria.patch
+ patches.kernel.org/5.1.12-072-platform-x86-pmc_atom-Add-several-Beckhoff-Aut.patch
+ patches.kernel.org/5.1.12-073-scsi-myrs-Fix-uninitialized-variable.patch
+ patches.kernel.org/5.1.12-074-scsi-bnx2fc-fix-incorrect-cast-to-u64-on-shift.patch
+ patches.kernel.org/5.1.12-075-drm-amdgpu-keep-stolen-memory-on-picasso.patch
+ patches.kernel.org/5.1.12-076-libnvdimm-Fix-compilation-warnings-with-W-1.patch
+ patches.kernel.org/5.1.12-077-selftests-fib_rule_tests-fix-local-IPv4-addres.patch
+ patches.kernel.org/5.1.12-078-selftests-timers-Add-missing-fflush-stdout-cal.patch
+ patches.kernel.org/5.1.12-079-tracing-Prevent-hist_field_var_ref-from-access.patch
+ patches.kernel.org/5.1.12-080-usbnet-ipheth-fix-racing-condition.patch
+ patches.kernel.org/5.1.12-081-nvme-pci-use-blk-mq-mapping-for-unmanaged-irqs.patch
+ patches.kernel.org/5.1.12-082-tools-io_uring-fix-Makefile-for-pthread-librar.patch
+ patches.kernel.org/5.1.12-083-KVM-arm-arm64-Move-cc-it-checks-under-hyp-s-Ma.patch
+ patches.kernel.org/5.1.12-084-KVM-nVMX-really-fix-the-size-checks-on-KVM_SET.patch
+ patches.kernel.org/5.1.12-085-KVM-selftests-Fix-a-condition-in-test_hv_cpuid.patch
+ patches.kernel.org/5.1.12-086-kvm-vmx-Fix-Wmissing-prototypes-warnings.patch
+ patches.kernel.org/5.1.12-087-KVM-LAPIC-Fix-lapic_timer_advance_ns-parameter.patch
+ patches.kernel.org/5.1.12-088-KVM-x86-do-not-spam-dmesg-with-VMCS-VMCB-dumps.patch
+ patches.kernel.org/5.1.12-089-KVM-x86-pmu-mask-the-result-of-rdpmc-according.patch
+ patches.kernel.org/5.1.12-090-KVM-x86-pmu-do-not-mask-the-value-that-is-writ.patch
+ patches.kernel.org/5.1.12-091-KVM-s390-fix-memory-slot-handling-for-KVM_SET_.patch
+ patches.kernel.org/5.1.12-092-kvm-selftests-aarch64-dirty_log_test-fix-unali.patch
+ patches.kernel.org/5.1.12-093-kvm-selftests-aarch64-fix-default-vm-mode.patch
+ patches.kernel.org/5.1.12-094-tools-kvm_stat-fix-fields-filter-for-child-eve.patch
+ patches.kernel.org/5.1.12-095-drm-vmwgfx-integer-underflow-in-vmw_cmd_dx_set.patch
+ patches.kernel.org/5.1.12-096-drm-vmwgfx-NULL-pointer-dereference-from-vmw_c.patch
+ patches.kernel.org/5.1.12-097-usb-dwc2-Fix-DMA-cache-alignment-issues.patch
+ patches.kernel.org/5.1.12-098-usb-dwc2-host-Fix-wMaxPacketSize-handling-fix-.patch
+ patches.kernel.org/5.1.12-099-USB-Fix-chipmunk-like-voice-when-using-Logitec.patch
+ patches.kernel.org/5.1.12-100-USB-usb-storage-Add-new-ID-to-ums-realtek.patch
+ patches.kernel.org/5.1.12-101-USB-serial-pl2303-add-Allied-Telesis-VT-Kit3.patch
+ patches.kernel.org/5.1.12-102-USB-serial-option-add-support-for-Simcom-SIM75.patch
+ patches.kernel.org/5.1.12-103-USB-serial-option-add-Telit-0x1260-and-0x1261-.patch
+ patches.kernel.org/5.1.12-104-tracing-uprobe-Fix-NULL-pointer-dereference-in.patch
+ patches.kernel.org/5.1.12-105-timekeeping-Repair-ktime_get_coarse-granularit.patch
+ patches.kernel.org/5.1.12-106-RAS-CEC-Convert-the-timer-callback-to-a-workqu.patch
+ patches.kernel.org/5.1.12-107-RAS-CEC-Fix-binary-search-function.patch
+ patches.kernel.org/5.1.12-108-x86-microcode-cpuhotplug-Add-a-microcode-loade.patch
+ patches.kernel.org/5.1.12-109-x86-kasan-Fix-boot-with-5-level-paging-and-KAS.patch
+ patches.kernel.org/5.1.12-110-x86-mm-KASLR-Compute-the-size-of-the-vmemmap-s.patch
+ patches.kernel.org/5.1.12-111-x86-resctrl-Prevent-NULL-pointer-dereference-w.patch
+ patches.kernel.org/5.1.12-112-drm-edid-abstract-override-firmware-EDID-retri.patch
+ patches.kernel.org/5.1.12-113-drm-add-fallback-override-firmware-EDID-modes-.patch
+ patches.kernel.org/5.1.12-114-powerpc-Fix-kexec-failure-on-book3s-32.patch
+ patches.kernel.org/5.1.12-115-powerpc-64s-Fix-THP-PMD-collapse-serialisation.patch
+ patches.kernel.org/5.1.12-116-Linux-5.1.12.patch
+ patches.kernel.org/5.1.13-001-netfilter-nat-fix-udp-checksum-corruption.patch
+ patches.kernel.org/5.1.13-002-ax25-fix-inconsistent-lock-state-in-ax25_destr.patch
+ patches.kernel.org/5.1.13-003-be2net-Fix-number-of-Rx-queues-used-for-flow-h.patch
+ patches.kernel.org/5.1.13-004-hv_netvsc-Set-probe-mode-to-sync.patch
+ patches.kernel.org/5.1.13-005-ipv6-flowlabel-fl6_sock_lookup-must-use-atomic.patch
+ patches.kernel.org/5.1.13-006-lapb-fixed-leak-of-control-blocks.patch
+ patches.kernel.org/5.1.13-007-neigh-fix-use-after-free-read-in-pneigh_get_ne.patch
+ patches.kernel.org/5.1.13-008-net-dsa-rtl8366-Fix-up-VLAN-filtering.patch
+ patches.kernel.org/5.1.13-009-net-openvswitch-do-not-free-vport-if-register_.patch
+ patches.kernel.org/5.1.13-010-net-tls-correctly-account-for-copied-bytes-wit.patch
+ patches.kernel.org/5.1.13-011-nfc-Ensure-presence-of-required-attributes-in-.patch
+ patches.kernel.org/5.1.13-012-sctp-Free-cookie-before-we-memdup-a-new-one.patch
+ patches.kernel.org/5.1.13-013-sunhv-Fix-device-naming-inconsistency-between-.patch
+ patches.kernel.org/5.1.13-014-tipc-purge-deferredq-list-for-each-grp-member-.patch
+ patches.kernel.org/5.1.13-015-vsock-virtio-set-SOCK_DONE-on-peer-shutdown.patch
+ patches.kernel.org/5.1.13-016-net-mlx5-Avoid-reloading-already-removed-devic.patch
+ patches.kernel.org/5.1.13-017-vxlan-Don-t-assume-linear-buffers-in-error-han.patch
+ patches.kernel.org/5.1.13-018-geneve-Don-t-assume-linear-buffers-in-error-ha.patch
+ patches.kernel.org/5.1.13-019-net-mvpp2-prs-Fix-parser-range-for-VID-filteri.patch
+ patches.kernel.org/5.1.13-020-net-mvpp2-prs-Use-the-correct-helpers-when-rem.patch
+ patches.kernel.org/5.1.13-021-net-dsa-microchip-Don-t-try-to-read-stats-for-.patch
+ patches.kernel.org/5.1.13-022-net-ethtool-Allow-matching-on-vlan-DEI-bit.patch
+ patches.kernel.org/5.1.13-023-net-mlx5-Update-pci-error-handler-entries-and-.patch
+ patches.kernel.org/5.1.13-024-mlxsw-spectrum_router-Refresh-nexthop-neighbou.patch
+ patches.kernel.org/5.1.13-025-net-mlx5e-Add-ndo_set_feature-for-uplink-repre.patch
+ patches.kernel.org/5.1.13-026-mlxsw-spectrum_flower-Fix-TOS-matching.patch
+ patches.kernel.org/5.1.13-027-net-mlx5e-Fix-source-port-matching-in-fdb-peer.patch
+ patches.kernel.org/5.1.13-028-mlxsw-spectrum_buffers-Reduce-pool-size-on-Spe.patch
+ patches.kernel.org/5.1.13-029-net-mlx5e-Support-tagged-tunnel-over-bond.patch
+ patches.kernel.org/5.1.13-030-net-correct-udp-zerocopy-refcnt-also-when-zero.patch
+ patches.kernel.org/5.1.13-031-net-mlx5e-Avoid-detaching-non-existing-netdev-.patch
+ patches.kernel.org/5.1.13-032-iio-imu-mpu6050-Fix-FIFO-layout-for-ICM20602.patch
+ patches.kernel.org/5.1.13-033-staging-erofs-set-sb-s_root-to-NULL-when-faili.patch
+ patches.kernel.org/5.1.13-034-Staging-vc04_services-Fix-a-couple-error-codes.patch
+ patches.kernel.org/5.1.13-035-staging-wilc1000-Fix-some-double-unlock-bugs-i.patch
+ patches.kernel.org/5.1.13-036-pinctrl-intel-Clear-interrupt-status-in-mask-u.patch
+ patches.kernel.org/5.1.13-037-netfilter-nf_tables-fix-oops-during-rule-dump.patch
+ patches.kernel.org/5.1.13-038-perf-x86-intel-ds-Fix-EVENT-vs.-UEVENT-PEBS-co.patch
+ patches.kernel.org/5.1.13-039-netfilter-nf_queue-fix-reinject-verdict-handli.patch
+ patches.kernel.org/5.1.13-040-netfilter-nft_fib-Fix-existence-check-support.patch
+ patches.kernel.org/5.1.13-041-ipvs-Fix-use-after-free-in-ip_vs_in.patch
+ patches.kernel.org/5.1.13-042-selftests-netfilter-missing-error-check-when-s.patch
+ patches.kernel.org/5.1.13-043-clk-ti-clkctrl-Fix-clkdm_clk-handling.patch
+ patches.kernel.org/5.1.13-044-powerpc-powernv-Return-for-invalid-IMC-domain.patch
+ patches.kernel.org/5.1.13-045-usb-xhci-Fix-a-potential-null-pointer-derefere.patch
+ patches.kernel.org/5.1.13-046-mISDN-make-sure-device-name-is-NUL-terminated.patch
+ patches.kernel.org/5.1.13-047-x86-CPU-AMD-Don-t-force-the-CPB-cap-when-runni.patch
+ patches.kernel.org/5.1.13-048-perf-ring_buffer-Fix-exposing-a-temporarily-de.patch
+ patches.kernel.org/5.1.13-049-perf-ring_buffer-Add-ordering-to-rb-nest-incre.patch
+ patches.kernel.org/5.1.13-050-perf-ring-buffer-Always-use-READ-WRITE-_ONCE-f.patch
+ patches.kernel.org/5.1.13-051-gpio-fix-gpio-adp5588-build-errors.patch
+ patches.kernel.org/5.1.13-052-net-stmmac-update-rx-tail-pointer-register-to-.patch
+ patches.kernel.org/5.1.13-053-net-stmmac-fix-csr_clk-can-t-be-zero-issue.patch
+ patches.kernel.org/5.1.13-054-net-stmmac-dwmac-mediatek-modify-csr_clk-value.patch
+ patches.kernel.org/5.1.13-055-io_uring-Fix-__io_uring_register-false-success.patch
+ patches.kernel.org/5.1.13-056-dpaa2-eth-Fix-potential-spectre-issue.patch
+ patches.kernel.org/5.1.13-057-dpaa2-eth-Use-PTR_ERR_OR_ZERO-where-appropriat.patch
+ patches.kernel.org/5.1.13-058-net-tulip-de4x5-Drop-redundant-MODULE_DEVICE_T.patch
+ patches.kernel.org/5.1.13-059-ACPI-PCI-PM-Add-missing-wakeup.flags.valid-che.patch
+ patches.kernel.org/5.1.13-060-drm-etnaviv-lock-MMU-while-dumping-core.patch
+ patches.kernel.org/5.1.13-061-net-aquantia-tx-clean-budget-logic-error.patch
+ patches.kernel.org/5.1.13-062-net-aquantia-fix-LRO-with-FCS-error.patch
+ patches.kernel.org/5.1.13-063-i2c-dev-fix-potential-memory-leak-in-i2cdev_io.patch
+ patches.kernel.org/5.1.13-064-ALSA-hda-Force-polling-mode-on-CNL-for-fixing-.patch
+ patches.kernel.org/5.1.13-065-configfs-Fix-use-after-free-when-accessing-sd-.patch
+ patches.kernel.org/5.1.13-066-perf-data-Fix-strncat-may-truncate-build-failu.patch
+ patches.kernel.org/5.1.13-067-s390-zcrypt-Fix-wrong-dispatching-for-control-.patch
+ patches.kernel.org/5.1.13-068-perf-namespace-Protect-reading-thread-s-namesp.patch
+ patches.kernel.org/5.1.13-069-perf-record-Fix-s390-missing-module-symbol-and.patch
+ patches.kernel.org/5.1.13-070-ia64-fix-build-errors-by-exporting-paddr_to_ni.patch
+ patches.kernel.org/5.1.13-071-dpaa_eth-use-only-online-CPU-portals.patch
+ patches.kernel.org/5.1.13-072-xen-pvcalls-Remove-set-but-not-used-variable.patch
+ patches.kernel.org/5.1.13-073-xenbus-Avoid-deadlock-during-suspend-due-to-op.patch
+ patches.kernel.org/5.1.13-074-dfs_cache-fix-a-wrong-use-of-kfree-in-flush_ca.patch
+ patches.kernel.org/5.1.13-075-KVM-PPC-Book3S-HV-Use-new-mutex-to-synchronize.patch
+ patches.kernel.org/5.1.13-076-KVM-PPC-Book3S-Use-new-mutex-to-synchronize-ac.patch
+ patches.kernel.org/5.1.13-077-KVM-PPC-Book3S-HV-Don-t-take-kvm-lock-around-k.patch
+ patches.kernel.org/5.1.13-078-ALSA-fireface-Use-ULL-suffixes-for-64-bit-cons.patch
+ patches.kernel.org/5.1.13-079-arm64-fix-syscall_fn_t-type.patch
+ patches.kernel.org/5.1.13-080-arm64-use-the-correct-function-type-in-SYSCALL.patch
+ patches.kernel.org/5.1.13-081-arm64-use-the-correct-function-type-for-__arm6.patch
+ patches.kernel.org/5.1.13-082-net-sh_eth-fix-mdio-access-in-sh_eth_close-for.patch
+ patches.kernel.org/5.1.13-083-blk-mq-Fix-memory-leak-in-error-handling.patch
+ patches.kernel.org/5.1.13-084-net-phylink-ensure-consistent-phy-interface-mo.patch
+ patches.kernel.org/5.1.13-085-net-phy-dp83867-fix-speed-10-in-sgmii-mode.patch
+ patches.kernel.org/5.1.13-086-net-phy-dp83867-increase-SGMII-autoneg-timer-d.patch
+ patches.kernel.org/5.1.13-087-net-phy-dp83867-Set-up-RGMII-TX-delay.patch
+ patches.kernel.org/5.1.13-088-scsi-libcxgbi-add-a-check-for-NULL-pointer-in-.patch
+ patches.kernel.org/5.1.13-089-scsi-smartpqi-properly-set-both-the-DMA-mask-a.patch
+ patches.kernel.org/5.1.13-090-scsi-scsi_dh_alua-Fix-possible-null-ptr-deref.patch
+ patches.kernel.org/5.1.13-091-scsi-libsas-delete-sas-port-if-expander-discov.patch
+ patches.kernel.org/5.1.13-092-mlxsw-spectrum-Prevent-force-of-56G.patch
+ patches.kernel.org/5.1.13-093-ocfs2-fix-error-path-kobject-memory-leak.patch
+ patches.kernel.org/5.1.13-094-mm-mmu_gather-remove-__tlb_reset_range-for-for.patch
+ patches.kernel.org/5.1.13-095-nvme-tcp-rename-function-to-have-nvme_tcp-pref.patch
+ patches.kernel.org/5.1.13-096-nvme-tcp-fix-possible-null-deref-on-a-timed-ou.patch
+ patches.kernel.org/5.1.13-097-nvme-tcp-fix-queue-mapping-when-queue-count-is.patch
+ patches.kernel.org/5.1.13-098-coredump-fix-race-condition-between-collapse_h.patch
+ patches.kernel.org/5.1.13-099-Linux-5.1.13.patch
+ patches.kernel.org/5.1.14-001-tcp-refine-memory-limit-test-in-tcp_fragment.patch
+ patches.kernel.org/5.1.14-002-Linux-5.1.14.patch
+ patches.kernel.org/5.1.15-001-tracing-Silence-GCC-9-array-bounds-warning.patch
+ patches.kernel.org/5.1.15-002-mmc-sdhci-sdhci-pci-o2micro-Correctly-set-bus-.patch
+ patches.kernel.org/5.1.15-003-mmc-sdhi-disallow-HS400-for-M3-W-ES1.2-RZ-G2M-.patch
+ patches.kernel.org/5.1.15-004-mmc-mediatek-fix-SDIO-IRQ-interrupt-handle-flo.patch
+ patches.kernel.org/5.1.15-005-mmc-mediatek-fix-SDIO-IRQ-detection-issue.patch
+ patches.kernel.org/5.1.15-006-mmc-core-API-to-temporarily-disable-retuning-f.patch
+ patches.kernel.org/5.1.15-007-mmc-core-Add-sdio_retune_hold_now-and-sdio_ret.patch
+ patches.kernel.org/5.1.15-008-mmc-core-Prevent-processing-SDIO-IRQs-when-the.patch
+ patches.kernel.org/5.1.15-009-scsi-ufs-Avoid-runtime-suspend-possibly-being-.patch
+ patches.kernel.org/5.1.15-010-usb-chipidea-udc-workaround-for-endpoint-confl.patch
+ patches.kernel.org/5.1.15-011-xhci-detect-USB-3.2-capable-host-controllers-c.patch
+ patches.kernel.org/5.1.15-012-usb-xhci-Don-t-try-to-recover-an-endpoint-if-p.patch
+ patches.kernel.org/5.1.15-013-cifs-add-spinlock-for-the-openFileList-to-cifs.patch
+ patches.kernel.org/5.1.15-014-cifs-fix-GlobalMid_Lock-bug-in-cifs_reconnect.patch
+ patches.kernel.org/5.1.15-015-IB-hfi1-Validate-fault-injection-opcode-user-i.patch
+ patches.kernel.org/5.1.15-016-IB-hfi1-Close-PSM-sdma_progress-sleep-window.patch
+ patches.kernel.org/5.1.15-017-IB-hfi1-Avoid-hardlockup-with-flushlist_lock.patch
+ patches.kernel.org/5.1.15-018-IB-hfi1-Correct-tid-qp-rcd-to-match-verbs-cont.patch
+ patches.kernel.org/5.1.15-019-IB-hfi1-Silence-txreq-allocation-warnings.patch
+ patches.kernel.org/5.1.15-020-iio-imu-st_lsm6dsx-fix-PM-support-for-st_lsm6d.patch
+ patches.kernel.org/5.1.15-021-iio-temperature-mlx90632-Relax-the-compatibili.patch
+ patches.kernel.org/5.1.15-022-Input-synaptics-enable-SMBus-on-ThinkPad-E480-.patch
+ patches.kernel.org/5.1.15-023-Input-uinput-add-compat-ioctl-number-translati.patch
+ patches.kernel.org/5.1.15-024-Input-silead-add-MSSL0017-to-acpi_device_id.patch
+ patches.kernel.org/5.1.15-025-apparmor-fix-PROFILE_MEDIATES-for-untrusted-in.patch
+ patches.kernel.org/5.1.15-026-apparmor-enforce-nullbyte-at-end-of-tag-string.patch
+ patches.kernel.org/5.1.15-027-apparmor-reset-pos-on-failure-to-unpack-for-va.patch
+ patches.kernel.org/5.1.15-028-Revert-brcmfmac-disable-command-decode-in-sdio.patch
+ patches.kernel.org/5.1.15-029-brcmfmac-sdio-Disable-auto-tuning-around-comma.patch
+ patches.kernel.org/5.1.15-030-brcmfmac-sdio-Don-t-tune-while-the-card-is-off.patch
+ patches.kernel.org/5.1.15-031-lkdtm-usercopy-Moves-the-KERNEL_DS-test-to-non.patch
+ patches.kernel.org/5.1.15-032-ARC-fix-build-warnings.patch
+ patches.kernel.org/5.1.15-033-dmaengine-jz4780-Fix-transfers-being-ACKed-too.patch
+ patches.kernel.org/5.1.15-034-dmaengine-dw-axi-dmac-fix-null-dereference-whe.patch
+ patches.kernel.org/5.1.15-035-dmaengine-mediatek-cqdma-sleeping-in-atomic-co.patch
+ patches.kernel.org/5.1.15-036-dmaengine-sprd-Fix-the-possible-crash-when-get.patch
+ patches.kernel.org/5.1.15-037-dmaengine-sprd-Add-validation-of-current-descr.patch
+ patches.kernel.org/5.1.15-038-dmaengine-sprd-Fix-the-incorrect-start-for-2-s.patch
+ patches.kernel.org/5.1.15-039-dmaengine-sprd-Fix-block-length-overflow.patch
+ patches.kernel.org/5.1.15-040-dmaengine-sprd-Fix-the-right-place-to-configur.patch
+ patches.kernel.org/5.1.15-041-ARC-plat-hsdk-Add-missing-multicast-filter-bin.patch
+ patches.kernel.org/5.1.15-042-ARC-plat-hsdk-Add-missing-FIFO-size-entry-in-G.patch
+ patches.kernel.org/5.1.15-043-MIPS-mark-ginvt-as-__always_inline.patch
+ patches.kernel.org/5.1.15-044-fpga-stratix10-soc-fix-use-after-free-on-s10_i.patch
+ patches.kernel.org/5.1.15-045-fpga-dfl-afu-Pass-the-correct-device-to-dma_ma.patch
+ patches.kernel.org/5.1.15-046-fpga-dfl-Add-lockdep-classes-for-pdata-lock.patch
+ patches.kernel.org/5.1.15-047-parport-Fix-mem-leak-in-parport_register_dev_m.patch
+ patches.kernel.org/5.1.15-048-parisc-Fix-compiler-warnings-in-float-emulatio.patch
+ patches.kernel.org/5.1.15-049-habanalabs-fix-bug-in-checking-huge-page-optim.patch
+ patches.kernel.org/5.1.15-050-IB-rdmavt-Fix-alloc_qpn-WARN_ON.patch
+ patches.kernel.org/5.1.15-051-IB-hfi1-Insure-freeze_work-work_struct-is-canc.patch
+ patches.kernel.org/5.1.15-052-IB-qib-hfi1-rdmavt-Correct-ibv_devinfo-max_mr-.patch
+ patches.kernel.org/5.1.15-053-IB-hfi1-Validate-page-aligned-for-a-given-virt.patch
+ patches.kernel.org/5.1.15-054-MIPS-uprobes-remove-set-but-not-used-variable-.patch
+ patches.kernel.org/5.1.15-055-crypto-hmac-fix-memory-leak-in-hmac_init_tfm.patch
+ patches.kernel.org/5.1.15-056-xtensa-Fix-section-mismatch-between-memblock_r.patch
+ patches.kernel.org/5.1.15-057-kselftest-cgroup-fix-unexpected-testing-failur.patch
+ patches.kernel.org/5.1.15-058-kselftest-cgroup-fix-unexpected-testing-failur.patch
+ patches.kernel.org/5.1.15-059-kselftest-cgroup-fix-incorrect-test_core-skip.patch
+ patches.kernel.org/5.1.15-060-userfaultfd-selftest-fix-compiler-warning.patch
+ patches.kernel.org/5.1.15-061-selftests-vm-install-test_vmalloc.sh-for-run_v.patch
+ patches.kernel.org/5.1.15-062-net-dsa-mv88e6xxx-avoid-error-message-on-remov.patch
+ patches.kernel.org/5.1.15-063-net-hns-Fix-loopback-test-failed-at-copper-por.patch
+ patches.kernel.org/5.1.15-064-mdesc-fix-a-missing-check-bug-in-get_vdev_port.patch
+ patches.kernel.org/5.1.15-065-sparc-perf-fix-updated-event-period-in-respons.patch
+ patches.kernel.org/5.1.15-066-net-ethernet-mediatek-Use-hw_feature-to-judge-.patch
+ patches.kernel.org/5.1.15-067-net-ethernet-mediatek-Use-NET_IP_ALIGN-to-judg.patch
+ patches.kernel.org/5.1.15-068-selftests-set-sysctl-bc_forwarding-properly-in.patch
+ patches.kernel.org/5.1.15-069-drm-arm-mali-dp-Add-a-loop-around-the-second-s.patch
+ patches.kernel.org/5.1.15-070-drm-arm-hdlcd-Actually-validate-CRTC-modes.patch
+ patches.kernel.org/5.1.15-071-drm-arm-hdlcd-Allow-a-bit-of-clock-tolerance.patch
+ patches.kernel.org/5.1.15-072-nvmet-fix-data_len-to-0-for-bdev-backed-write_.patch
+ patches.kernel.org/5.1.15-073-kbuild-tar-pkg-enable-communication-with-jobse.patch
+ patches.kernel.org/5.1.15-074-scripts-checkstack.pl-Fix-arm64-wrong-or-unkno.patch
+ patches.kernel.org/5.1.15-075-net-phylink-avoid-reducing-support-mask.patch
+ patches.kernel.org/5.1.15-076-scsi-ufs-Check-that-space-was-properly-alloced.patch
+ patches.kernel.org/5.1.15-077-scsi-smartpqi-unlock-on-error-in-pqi_submit_ra.patch
+ patches.kernel.org/5.1.15-078-net-ipvlan-Fix-ipvlan-device-tso-disabled-whil.patch
+ patches.kernel.org/5.1.15-079-udmabuf-actually-unmap-the-scatterlist.patch
+ patches.kernel.org/5.1.15-080-tests-fix-pidfd-test-compilation.patch
+ patches.kernel.org/5.1.15-081-s390-qeth-handle-limited-IPv4-broadcast-in-L3-.patch
+ patches.kernel.org/5.1.15-082-s390-qeth-check-dst-entry-before-use.patch
+ patches.kernel.org/5.1.15-083-s390-qeth-fix-VLAN-attribute-in-bridge_hostnot.patch
+ patches.kernel.org/5.1.15-084-hwmon-core-add-thermal-sensors-only-if-dev-of_.patch
+ patches.kernel.org/5.1.15-085-hwmon-pmbus-core-Treat-parameters-as-paged-if-.patch
+ patches.kernel.org/5.1.15-086-arm64-Silence-gcc-warnings-about-arch-ABI-drif.patch
+ patches.kernel.org/5.1.15-087-nvme-Fix-u32-overflow-in-the-number-of-namespa.patch
+ patches.kernel.org/5.1.15-088-ovl-detect-overlapping-layers.patch
+ patches.kernel.org/5.1.15-089-ovl-don-t-fail-with-disconnected-lower-NFS.patch
+ patches.kernel.org/5.1.15-090-ovl-fix-bogus-Wmaybe-unitialized-warning.patch
+ patches.kernel.org/5.1.15-091-btrfs-start-readahead-also-in-seed-devices.patch
+ patches.kernel.org/5.1.15-092-can-xilinx_can-use-correct-bittiming_const-for.patch
+ patches.kernel.org/5.1.15-093-can-flexcan-fix-timeout-when-set-small-bitrate.patch
+ patches.kernel.org/5.1.15-094-can-purge-socket-error-queue-on-sock-destruct.patch
+ patches.kernel.org/5.1.15-095-riscv-mm-synchronize-MMU-after-pte-change.patch
+ patches.kernel.org/5.1.15-096-powerpc-bpf-use-unsigned-division-instruction-.patch
+ patches.kernel.org/5.1.15-097-ARM-imx-cpuidle-imx6sx-Restrict-the-SW2ISO-inc.patch
+ patches.kernel.org/5.1.15-098-ARM-mvebu_v7_defconfig-fix-Ethernet-on-Clearfo.patch
+ patches.kernel.org/5.1.15-099-ARM-dts-dra76x-Update-MMC2_HS200_MANUAL1-iodel.patch
+ patches.kernel.org/5.1.15-100-ARM-dts-am57xx-idk-Remove-support-for-voltage-.patch
+ patches.kernel.org/5.1.15-101-arm64-sve-uapi-asm-ptrace.h-should-not-depend-.patch
+ patches.kernel.org/5.1.15-102-arm64-ssbd-explicitly-depend-on-linux-prctl.h.patch
+ patches.kernel.org/5.1.15-103-KVM-x86-mmu-Allocate-PAE-root-array-when-using.patch
+ patches.kernel.org/5.1.15-104-ovl-make-i_ino-consistent-with-st_ino-in-more-.patch
+ patches.kernel.org/5.1.15-105-drm-vmwgfx-Use-the-backdoor-port-if-the-HB-por.patch
+ patches.kernel.org/5.1.15-106-drm-i915-Don-t-clobber-M-N-values-during-fasts.patch
+ patches.kernel.org/5.1.15-107-binder-fix-possible-UAF-when-freeing-buffer.patch
+ patches.kernel.org/5.1.15-108-staging-erofs-add-requirements-field-in-superb.patch
+ patches.kernel.org/5.1.15-109-Bluetooth-Align-minimum-encryption-key-size-fo.patch
+ patches.kernel.org/5.1.15-110-Bluetooth-Fix-regression-with-minimum-encrypti.patch
+ patches.kernel.org/5.1.15-111-SMB3-retry-on-STATUS_INSUFFICIENT_RESOURCES-in.patch
+ patches.kernel.org/5.1.15-112-x86-vdso-Prevent-segfaults-due-to-hoisted-vclo.patch
+ patches.kernel.org/5.1.15-113-fs-namespace-fix-unprivileged-mount-propagatio.patch
+ patches.kernel.org/5.1.15-114-cfg80211-fix-memory-leak-of-wiphy-device-name.patch
+ patches.kernel.org/5.1.15-115-mac80211-drop-robust-management-frames-from-un.patch
+ patches.kernel.org/5.1.15-116-nl-mac-80211-allow-4addr-AP-operation-on-crypt.patch
+ patches.kernel.org/5.1.15-117-mac80211-handle-deauthentication-disassociatio.patch
+ patches.kernel.org/5.1.15-118-nl80211-fix-station_info-pertid-memory-leak.patch
+ patches.kernel.org/5.1.15-119-mac80211-Do-not-use-stack-memory-with-scatterl.patch
+ patches.kernel.org/5.1.15-120-x86-resctrl-Don-t-stop-walking-closids-when-a-.patch
+ patches.kernel.org/5.1.15-121-powerpc-mm-64s-hash-Reallocate-context-ids-on-.patch
+ patches.kernel.org/5.1.15-122-Linux-5.1.15.patch
########################################################
# Build fixes that apply to the vanilla kernel too.
@@ -1306,10 +1650,6 @@
########################################################
# Networking Core
########################################################
- patches.suse/tcp-limit-payload-size-of-sacked-skbs.patch
- patches.suse/tcp-tcp_fragment-should-apply-sane-memory-limits.patch
- patches.suse/tcp-add-tcp_min_snd_mss-sysctl.patch
- patches.suse/tcp-enforce-tcp_min_snd_mss-in-tcp_mtu_probing.patch
########################################################
# Netfilter
@@ -1378,6 +1718,9 @@
########################################################
# Overlayfs
########################################################
+ patches.suse/Revert-ovl-fix-bogus-Wmaybe-unitialized-warning.patch
+ patches.suse/Revert-ovl-don-t-fail-with-disconnected-lower-NFS.patch
+ patches.suse/Revert-ovl-detect-overlapping-layers.patch
########################################################
# Swap-over-NFS
@@ -1441,6 +1784,8 @@
# USB
########################################################
+ patches.suse/Revert-Bluetooth-btusb-driver-to-enable-the-usb-wake.patch
+
########################################################
# I2C
########################################################
++++++ source-timestamp ++++++
--- /var/tmp/diff_new_pack.jXuFrX/_old 2019-07-03 15:14:46.614936711 +0200
+++ /var/tmp/diff_new_pack.jXuFrX/_new 2019-07-03 15:14:46.614936711 +0200
@@ -1,3 +1,3 @@
-2019-06-17 14:44:35 +0000
-GIT Revision: ad24342b53c2ac90b16b903f897bd01f775351e5
+2019-07-02 10:39:52 +0000
+GIT Revision: cb24bc9dd58259b08d1ba9d1a95711f657f1cf9b
GIT Branch: stable