Xenial update to 4.4.110 stable release

Bug #1745071 reported by Khaled El Mously on 2018-01-24
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Undecided
Unassigned
Xenial
Medium
Unassigned

Bug Description

SRU Justification

    Impact:
       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The 4.4.110 upstream stable
       patch set is now available. It should be included in the Ubuntu
       kernel as well.

       git://git.kernel.org/

    TEST CASE: TBD

       The following patches from the 4.4.110 stable release shall be applied:
* x86/boot: Add early cmdline parsing for options with arguments
* KAISER: Kernel Address Isolation
* kaiser: merged update
* kaiser: do not set _PAGE_NX on pgd_none
* kaiser: stack map PAGE_SIZE at THREAD_SIZE-PAGE_SIZE
* kaiser: fix build and FIXME in alloc_ldt_struct()
* kaiser: KAISER depends on SMP
* kaiser: fix regs to do_nmi() ifndef CONFIG_KAISER
* kaiser: fix perf crashes
* kaiser: ENOMEM if kaiser_pagetable_walk() NULL
* kaiser: tidied up asm/kaiser.h somewhat
* kaiser: tidied up kaiser_add/remove_mapping slightly
* kaiser: kaiser_remove_mapping() move along the pgd
* kaiser: cleanups while trying for gold link
* kaiser: name that 0x1000 KAISER_SHADOW_PGD_OFFSET
* kaiser: delete KAISER_REAL_SWITCH option
* kaiser: vmstat show NR_KAISERTABLE as nr_overhead
* kaiser: enhanced by kernel and user PCIDs
* kaiser: load_new_mm_cr3() let SWITCH_USER_CR3 flush user
* kaiser: PCID 0 for kernel and 128 for user
* kaiser: x86_cr3_pcid_noflush and x86_cr3_pcid_user
* kaiser: paranoid_entry pass cr3 need to paranoid_exit
* kaiser: _pgd_alloc() without __GFP_REPEAT to avoid stalls
* kaiser: fix unlikely error in alloc_ldt_struct()
* kaiser: add "nokaiser" boot option, using ALTERNATIVE
* x86/kaiser: Rename and simplify X86_FEATURE_KAISER handling
* x86/kaiser: Check boottime cmdline params
* kaiser: use ALTERNATIVE instead of x86_cr3_pcid_noflush
* kaiser: drop is_atomic arg to kaiser_pagetable_walk()
* kaiser: asm/tlbflush.h handle noPGE at lower level
* kaiser: kaiser_flush_tlb_on_return_to_user() check PCID
* x86/paravirt: Dont patch flush_tlb_single
* x86/kaiser: Reenable PARAVIRT
* kaiser: disabled on Xen PV
* x86/kaiser: Move feature detection up
* KPTI: Rename to PAGE_TABLE_ISOLATION
* KPTI: Report when enabled
* x86, vdso, pvclock: Simplify and speed up the vdso pvclock reader
* x86/vdso: Get pvclock data from the vvar VMA instead of the fixmap
* x86/kasan: Clear kasan_zero_page after TLB flush
* kaiser: Set _PAGE_NX only if supported
* Linux 4.4.110

tags: added: kernel-stable-tracking-bug
Khaled El Mously (kmously) wrote :

Only one of the patches for this release actually needed to be applied, as the rest had already been applied previously for spectre/meltdown (CVE-2017-5754) though not necessarily in the same order.

The only patch that actually needed to be applied is:

 * KPTI: Rename to PAGE_TABLE_ISOLATION

Further, one additional patch was required in debian.master/config/config.common.ubuntu to change the config name from CONFIG_KAISER to CONFIG_PAGE_TABLE_ISOLATION.

description: updated
Khaled El Mously (kmously) wrote :

Note also that the applied patch ("KPTI: Rename to ..") affects the file "arch/x86/kernel/cpu/perf_event_intel_ds.c" which has been renamed in our tree to "arch/x86/events/intel/ds.c". Therefore the patch had to be modified slightly to change arch/x86/events/intel/ds.c instead of the originally-intended file.

Khaled El Mously (kmously) wrote :

Note also that a few patches were referring to arch/x86/include/asm/cpufeature.h , however, looking at the code it appears the patches really should be applied (in our tree at least) to arch/x86/include/asm/cpufeatures.h instead (has an extra 's' - plural). Those patches basically had to be manually done

Stefan Bader (smb) on 2018-02-21
Changed in linux (Ubuntu):
status: New → Invalid
Changed in linux (Ubuntu Xenial):
importance: Undecided → Medium
status: New → Fix Committed
Launchpad Janitor (janitor) wrote :
Download full text (56.9 KiB)

This bug was fixed in the package linux - 4.4.0-119.143

---------------
linux (4.4.0-119.143) xenial; urgency=medium

  * linux: 4.4.0-119.143 -proposed tracker (LP: #1760327)

  * Dell XPS 13 9360 bluetooth scan can not detect any device (LP: #1759821)
    - Revert "Bluetooth: btusb: fix QCA Rome suspend/resume"

linux (4.4.0-118.142) xenial; urgency=medium

  * linux: 4.4.0-118.142 -proposed tracker (LP: #1759607)

  * Kernel panic with AWS 4.4.0-1053 / 4.4.0-1015 (Trusty) (LP: #1758869)
    - x86/microcode/AMD: Do not load when running on a hypervisor

  * CVE-2018-8043
    - net: phy: mdio-bcm-unimac: fix potential NULL dereference in
      unimac_mdio_probe()

linux (4.4.0-117.141) xenial; urgency=medium

  * linux: 4.4.0-117.141 -proposed tracker (LP: #1755208)

  * Xenial update to 4.4.114 stable release (LP: #1754592)
    - x86/asm/32: Make sync_core() handle missing CPUID on all 32-bit kernels
    - usbip: prevent vhci_hcd driver from leaking a socket pointer address
    - usbip: Fix implicit fallthrough warning
    - usbip: Fix potential format overflow in userspace tools
    - x86/microcode/intel: Fix BDW late-loading revision check
    - x86/retpoline: Fill RSB on context switch for affected CPUs
    - sched/deadline: Use the revised wakeup rule for suspending constrained dl
      tasks
    - can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once
    - can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once
    - PM / sleep: declare __tracedata symbols as char[] rather than char
    - time: Avoid undefined behaviour in ktime_add_safe()
    - timers: Plug locking race vs. timer migration
    - Prevent timer value 0 for MWAITX
    - drivers: base: cacheinfo: fix x86 with CONFIG_OF enabled
    - drivers: base: cacheinfo: fix boot error message when acpi is enabled
    - PCI: layerscape: Add "fsl,ls2085a-pcie" compatible ID
    - PCI: layerscape: Fix MSG TLP drop setting
    - mmc: sdhci-of-esdhc: add/remove some quirks according to vendor version
    - fs/select: add vmalloc fallback for select(2)
    - hwpoison, memcg: forcibly uncharge LRU pages
    - cma: fix calculation of aligned offset
    - mm, page_alloc: fix potential false positive in __zone_watermark_ok
    - ipc: msg, make msgrcv work with LONG_MIN
    - x86/ioapic: Fix incorrect pointers in ioapic_setup_resources()
    - ACPI / processor: Avoid reserving IO regions too early
    - ACPI / scan: Prefer devices without _HID/_CID for _ADR matching
    - ACPICA: Namespace: fix operand cache leak
    - netfilter: x_tables: speed up jump target validation
    - netfilter: arp_tables: fix invoking 32bit "iptable -P INPUT ACCEPT" failed
      in 64bit kernel
    - netfilter: nf_dup_ipv6: set again FLOWI_FLAG_KNOWN_NH at flowi6_flags
    - netfilter: nf_ct_expect: remove the redundant slash when policy name is
      empty
    - netfilter: nfnetlink_queue: reject verdict request from different portid
    - netfilter: restart search if moved to other chain
    - netfilter: nf_conntrack_sip: extend request line validation
    - netfilter: use fwmark_reflect in nf_send_reset
    - ext2: Don't clear SGID when inheriting ACLs
    - reiserfs: fix race in prealloc discard
    - re...

Changed in linux (Ubuntu Xenial):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers