Xenial update to 4.4.110 stable release

Bug #1745071 reported by Khaled El Mously on 2018-01-24
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)

Bug Description

SRU Justification

       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The 4.4.110 upstream stable
       patch set is now available. It should be included in the Ubuntu
       kernel as well.



       The following patches from the 4.4.110 stable release shall be applied:
* x86/boot: Add early cmdline parsing for options with arguments
* KAISER: Kernel Address Isolation
* kaiser: merged update
* kaiser: do not set _PAGE_NX on pgd_none
* kaiser: stack map PAGE_SIZE at THREAD_SIZE-PAGE_SIZE
* kaiser: fix build and FIXME in alloc_ldt_struct()
* kaiser: KAISER depends on SMP
* kaiser: fix regs to do_nmi() ifndef CONFIG_KAISER
* kaiser: fix perf crashes
* kaiser: ENOMEM if kaiser_pagetable_walk() NULL
* kaiser: tidied up asm/kaiser.h somewhat
* kaiser: tidied up kaiser_add/remove_mapping slightly
* kaiser: kaiser_remove_mapping() move along the pgd
* kaiser: cleanups while trying for gold link
* kaiser: name that 0x1000 KAISER_SHADOW_PGD_OFFSET
* kaiser: delete KAISER_REAL_SWITCH option
* kaiser: vmstat show NR_KAISERTABLE as nr_overhead
* kaiser: enhanced by kernel and user PCIDs
* kaiser: load_new_mm_cr3() let SWITCH_USER_CR3 flush user
* kaiser: PCID 0 for kernel and 128 for user
* kaiser: x86_cr3_pcid_noflush and x86_cr3_pcid_user
* kaiser: paranoid_entry pass cr3 need to paranoid_exit
* kaiser: _pgd_alloc() without __GFP_REPEAT to avoid stalls
* kaiser: fix unlikely error in alloc_ldt_struct()
* kaiser: add "nokaiser" boot option, using ALTERNATIVE
* x86/kaiser: Rename and simplify X86_FEATURE_KAISER handling
* x86/kaiser: Check boottime cmdline params
* kaiser: use ALTERNATIVE instead of x86_cr3_pcid_noflush
* kaiser: drop is_atomic arg to kaiser_pagetable_walk()
* kaiser: asm/tlbflush.h handle noPGE at lower level
* kaiser: kaiser_flush_tlb_on_return_to_user() check PCID
* x86/paravirt: Dont patch flush_tlb_single
* x86/kaiser: Reenable PARAVIRT
* kaiser: disabled on Xen PV
* x86/kaiser: Move feature detection up
* KPTI: Report when enabled
* x86, vdso, pvclock: Simplify and speed up the vdso pvclock reader
* x86/vdso: Get pvclock data from the vvar VMA instead of the fixmap
* x86/kasan: Clear kasan_zero_page after TLB flush
* kaiser: Set _PAGE_NX only if supported
* Linux 4.4.110

tags: added: kernel-stable-tracking-bug
Khaled El Mously (kmously) wrote :

Only one of the patches for this release actually needed to be applied, as the rest had already been applied previously for spectre/meltdown (CVE-2017-5754) though not necessarily in the same order.

The only patch that actually needed to be applied is:


Further, one additional patch was required in debian.master/config/config.common.ubuntu to change the config name from CONFIG_KAISER to CONFIG_PAGE_TABLE_ISOLATION.

description: updated
Khaled El Mously (kmously) wrote :

Note also that the applied patch ("KPTI: Rename to ..") affects the file "arch/x86/kernel/cpu/perf_event_intel_ds.c" which has been renamed in our tree to "arch/x86/events/intel/ds.c". Therefore the patch had to be modified slightly to change arch/x86/events/intel/ds.c instead of the originally-intended file.

Khaled El Mously (kmously) wrote :

Note also that a few patches were referring to arch/x86/include/asm/cpufeature.h , however, looking at the code it appears the patches really should be applied (in our tree at least) to arch/x86/include/asm/cpufeatures.h instead (has an extra 's' - plural). Those patches basically had to be manually done

Stefan Bader (smb) on 2018-02-21
Changed in linux (Ubuntu):
status: New → Invalid
Changed in linux (Ubuntu Xenial):
importance: Undecided → Medium
status: New → Fix Committed
Launchpad Janitor (janitor) wrote :
Download full text (56.9 KiB)

This bug was fixed in the package linux - 4.4.0-119.143

linux (4.4.0-119.143) xenial; urgency=medium

  * linux: 4.4.0-119.143 -proposed tracker (LP: #1760327)

  * Dell XPS 13 9360 bluetooth scan can not detect any device (LP: #1759821)
    - Revert "Bluetooth: btusb: fix QCA Rome suspend/resume"

linux (4.4.0-118.142) xenial; urgency=medium

  * linux: 4.4.0-118.142 -proposed tracker (LP: #1759607)

  * Kernel panic with AWS 4.4.0-1053 / 4.4.0-1015 (Trusty) (LP: #1758869)
    - x86/microcode/AMD: Do not load when running on a hypervisor

  * CVE-2018-8043
    - net: phy: mdio-bcm-unimac: fix potential NULL dereference in

linux (4.4.0-117.141) xenial; urgency=medium

  * linux: 4.4.0-117.141 -proposed tracker (LP: #1755208)

  * Xenial update to 4.4.114 stable release (LP: #1754592)
    - x86/asm/32: Make sync_core() handle missing CPUID on all 32-bit kernels
    - usbip: prevent vhci_hcd driver from leaking a socket pointer address
    - usbip: Fix implicit fallthrough warning
    - usbip: Fix potential format overflow in userspace tools
    - x86/microcode/intel: Fix BDW late-loading revision check
    - x86/retpoline: Fill RSB on context switch for affected CPUs
    - sched/deadline: Use the revised wakeup rule for suspending constrained dl
    - can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once
    - can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once
    - PM / sleep: declare __tracedata symbols as char[] rather than char
    - time: Avoid undefined behaviour in ktime_add_safe()
    - timers: Plug locking race vs. timer migration
    - Prevent timer value 0 for MWAITX
    - drivers: base: cacheinfo: fix x86 with CONFIG_OF enabled
    - drivers: base: cacheinfo: fix boot error message when acpi is enabled
    - PCI: layerscape: Add "fsl,ls2085a-pcie" compatible ID
    - PCI: layerscape: Fix MSG TLP drop setting
    - mmc: sdhci-of-esdhc: add/remove some quirks according to vendor version
    - fs/select: add vmalloc fallback for select(2)
    - hwpoison, memcg: forcibly uncharge LRU pages
    - cma: fix calculation of aligned offset
    - mm, page_alloc: fix potential false positive in __zone_watermark_ok
    - ipc: msg, make msgrcv work with LONG_MIN
    - x86/ioapic: Fix incorrect pointers in ioapic_setup_resources()
    - ACPI / processor: Avoid reserving IO regions too early
    - ACPI / scan: Prefer devices without _HID/_CID for _ADR matching
    - ACPICA: Namespace: fix operand cache leak
    - netfilter: x_tables: speed up jump target validation
    - netfilter: arp_tables: fix invoking 32bit "iptable -P INPUT ACCEPT" failed
      in 64bit kernel
    - netfilter: nf_dup_ipv6: set again FLOWI_FLAG_KNOWN_NH at flowi6_flags
    - netfilter: nf_ct_expect: remove the redundant slash when policy name is
    - netfilter: nfnetlink_queue: reject verdict request from different portid
    - netfilter: restart search if moved to other chain
    - netfilter: nf_conntrack_sip: extend request line validation
    - netfilter: use fwmark_reflect in nf_send_reset
    - ext2: Don't clear SGID when inheriting ACLs
    - reiserfs: fix race in prealloc discard
    - re...

Changed in linux (Ubuntu Xenial):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers