[linux] 01/03: Merge branch 'stretch' into stretch-security

debian-kernel at lists.debian.org debian-kernel at lists.debian.org
Tue Feb 20 10:33:03 UTC 2018


This is an automated email from the git hooks/post-receive script.

corsac pushed a commit to branch stretch-security
in repository linux.

commit 8acc33fede2aaa8c466b8538d677039964f05210
Merge: a863475 cefaad9
Author: Yves-Alexis Perez <corsac at corsac.net>
Date:   Mon Feb 19 16:08:22 2018 +0100

    Merge branch 'stretch' into stretch-security

 debian/changelog                                   | 1003 +++++++++++++++
 debian/config/amd64/defines                        |    3 +-
 debian/config/defines                              |    2 +-
 debian/config/i386/defines                         |    3 +-
 ...vent-stack-info-leak-from-the-efs-element.patch |   48 -
 ...-adjust-insn_aux_data-when-patching-insns.patch |   93 --
 .../bugfix/all/bpf-fix-branch-pruning-logic.patch  |  111 --
 ...-incorrect-sign-extension-in-check_alu_op.patch |   50 -
 ...t-out-of-bounds-stack-pointer-calculation.patch |   53 -
 ...s_equal-comparison-of-pointer-and-unknown.patch |   36 -
 .../cpupower-fix-checks-for-cpu-existence.patch    |   45 -
 ...-require-that-the-underlying-hash-algorit.patch |  142 ---
 ...ypto-salsa20-fix-blkcipher_walk-API-usage.patch |   84 --
 ...cve-2017-8824-use-after-free-in-dccp-code.patch |   38 -
 ...ssing-permission-check-for-request_key-de.patch |  157 ---
 ...ix-stack-out-of-bounds-read-in-write_mmio.patch |  154 ---
 ...xx-cards-fix-NULL-deref-on-missing-associ.patch |   39 -
 ...sb-v2-lmedm04-Improve-logic-checking-of-w.patch |   83 --
 ...sb-v2-lmedm04-move-ts2020-attach-to-dm04_.patch |   67 -
 ...-fix-an-error-handling-path-in-hdpvr_prob.patch |   98 --
 ...o-not-blow-on-prot_none-map_fixed-holes-i.patch |   58 -
 ...ot-make-page-table-dirty-unconditionally-.patch |   74 --
 ...4-fix-for-a-race-condition-in-raw_sendmsg.patch |   71 --
 ...fnetlink_cthelper-add-missing-permission-.patch |   74 --
 ...lter-xt_osf-add-missing-permission-checks.patch |   56 -
 .../all/netlink-add-netns-check-on-taps.patch      |   39 -
 ...prevent-malicious-bnuminterfaces-overflow.patch |   44 -
 .../powerpc-64s-simple-rfi-macro-conversions.patch |   40 +
 .../revert-s390-move-exports-to-definitions.patch  |  128 --
 ...emove-i-o-port-0x80-bypass-on-intel-hosts.patch |   47 -
 .../inet_frag-limit-abi-change-in-4.9.51.patch     |   58 -
 .../ip6_fib-avoid-abi-change-in-4.9.51.patch       |   23 -
 debian/patches/debian/kernelvariables.patch        |    9 +-
 .../debian/keys-limit-abi-change-in-4.9.59.patch   |   95 --
 .../mac80211-avoid-abi-change-in-4.9.53.patch      |   34 -
 .../mm-page_alloc-avoid-abi-change-in-4.9.65.patch |   26 -
 .../mmc-sdio-avoid-abi-change-in-4.9.54.patch      |  125 --
 .../netfilter-nat-avoid-abi-change-in-4.9.63.patch |   58 -
 ...f-event-close-won-t-free-bpf-program-atta.patch |   40 -
 ...crease-size-of-mii_bus_id_size-and-bus_id.patch |   34 -
 .../s390-mm-avoid-abi-change-in-4.9.52.patch       |   76 --
 ...dd-nokaiser-boot-option-using-alternative.patch |  652 ----------
 .../kaiser-align-addition-to-x86-mm-makefile.patch |   26 -
 ...sm-tlbflush.h-handle-nopge-at-lower-level.patch |   86 --
 ...aiser-cleanups-while-trying-for-gold-link.patch |  134 --
 .../kaiser-delete-kaiser_real_switch-option.patch  |   79 --
 .../all/kpti/kaiser-disabled-on-xen-pv.patch       |   42 -
 .../kaiser-do-not-set-_page_nx-on-pgd_none.patch   |  204 ---
 ...op-is_atomic-arg-to-kaiser_pagetable_walk.patch |   53 -
 .../kaiser-enhanced-by-kernel-and-user-pcids.patch |  402 ------
 ...iser-enomem-if-kaiser_pagetable_walk-null.patch |   52 -
 ...r-fix-build-and-fixme-in-alloc_ldt_struct.patch |   53 -
 .../all/kpti/kaiser-fix-perf-crashes.patch         |  150 ---
 ...r-fix-regs-to-do_nmi-ifndef-config_kaiser.patch |   72 --
 ...er-fix-unlikely-error-in-alloc_ldt_struct.patch |   33 -
 .../all/kpti/kaiser-kaiser-depends-on-smp.patch    |   54 -
 ...er_flush_tlb_on_return_to_user-check-pcid.patch |   86 --
 ...-kaiser_remove_mapping-move-along-the-pgd.patch |   50 -
 .../all/kpti/kaiser-kernel-address-isolation.patch |  979 ---------------
 ...new_mm_cr3-let-switch_user_cr3-flush-user.patch |  392 ------
 .../features/all/kpti/kaiser-merged-update.patch   | 1297 --------------------
 ...name-that-0x1000-kaiser_shadow_pgd_offset.patch |   66 -
 ...noid_entry-pass-cr3-need-to-paranoid_exit.patch |  166 ---
 ...kaiser-pcid-0-for-kernel-and-128-for-user.patch |  129 --
 ...ck-map-page_size-at-thread_size-page_size.patch |  139 ---
 .../kaiser-tidied-up-asm-kaiser.h-somewhat.patch   |  105 --
 ...ied-up-kaiser_add-remove_mapping-slightly.patch |   50 -
 ...ternative-instead-of-x86_cr3_pcid_noflush.patch |  130 --
 ...vmstat-show-nr_kaisertable-as-nr_overhead.patch |  116 --
 ...86_cr3_pcid_noflush-and-x86_cr3_pcid_user.patch |  141 ---
 .../kpti/kpti-rename-to-page_table_isolation.patch |  329 -----
 .../all/kpti/kpti-report-when-enabled.patch        |   48 -
 ...mdline-parsing-for-options-with-arguments.patch |  178 ---
 .../x86-kaiser-check-boottime-cmdline-params.patch |  123 --
 .../x86-kaiser-move-feature-detection-up.patch     |   79 --
 .../all/kpti/x86-kaiser-reenable-paravirt.patch    |   28 -
 ...-and-simplify-x86_feature_kaiser-handling.patch |   97 --
 ...-64-Fix-reboot-interaction-with-CR4.PCIDE.patch |   45 -
 ...d-the-nopcid-boot-option-to-turn-off-PCID.patch |   77 --
 .../x86-mm-Disable-PCID-on-32-bit-kernels.patch    |   82 --
 ...-mm-Enable-CR4.PCIDE-on-supported-systems.patch |  114 --
 .../x86-paravirt-dont-patch-flush_tlb_single.patch |   69 --
 .../all/rt/0001-timer-make-the-base-lock-raw.patch |   37 +-
 ...dle-statically-initialized-PER_CPU-locks-.patch |    7 +-
 ...-compilation-error-for-CONFIG_MODULES-and.patch |    7 +-
 .../0004-lockdep-Fix-per-cpu-static-objects.patch  |    9 +-
 ...eanup-variable-names-for-futex_top_waiter.patch |    9 +-
 ...-Use-smp_store_release-in-mark_wake_futex.patch |    7 +-
 ...7-futex-Remove-rt_mutex_deadlock_account_.patch |    9 +-
 ...mutex-Provide-futex-specific-rt_mutex-API.patch |   11 +-
 .../all/rt/0009-futex-Change-locking-rules.patch   |   11 +-
 .../all/rt/0010-futex-Cleanup-refcounting.patch    |    9 +-
 ...ework-inconsistent-rt_mutex-futex_q-state.patch |    7 +-
 ...rt_mutex_futex_unlock-out-from-under-hb-l.patch |   21 +-
 ...x-rt_mutex-Introduce-rt_mutex_init_waiter.patch |    7 +-
 ...tex-Restructure-rt_mutex_finish_proxy_loc.patch |    7 +-
 ...k-futex_lock_pi-to-use-rt_mutex_-_proxy_l.patch |    9 +-
 .../0016-futex-Futex_unlock_pi-determinism.patch   |    9 +-
 ...-hb-lock-before-enqueueing-on-the-rtmutex.patch |   13 +-
 ...x-Deboost-before-waking-up-the-top-waiter.patch |    7 +-
 ...ex-deadline-Fix-a-PI-crash-for-deadline-t.patch |   15 +-
 ...ine-rtmutex-Dont-miss-the-dl_runtime-dl_p.patch |    7 +-
 .../features/all/rt/0021-rtmutex-Clean-up.patch    |    7 +-
 ...2-sched-rtmutex-Refactor-rt_mutex_setprio.patch |   23 +-
 ...hed-tracing-Update-trace_sched_pi_setprio.patch |   11 +-
 ...0024-rtmutex-Fix-PI-chain-order-integrity.patch |    7 +-
 .../0025-rtmutex-Fix-more-prio-comparisons.patch   |    7 +-
 ...g-preempt-count-leak-in-rt_mutex_futex_un.patch |    7 +-
 .../0027-futex-Avoid-freeing-an-active-timer.patch |    9 +-
 ...mall-and-harmless-looking-inconsistencies.patch |    7 +-
 ...rify-mark_wake_futex-memory-barrier-usage.patch |    7 +-
 .../rt/0030-MAINTAINERS-Add-FUTEX-SUBSYSTEM.patch  |    7 +-
 ...-rt_mutex-Fix-rt_mutex_cleanup_proxy_lock.patch |    7 +-
 ...t91-do-not-disable-enable-clocks-in-a-row.patch |    7 +-
 ...e-clear_tasks_mm_cpumask-call-to-__cpu_di.patch |    7 +-
 ...ex-Handle-non-enqueued-waiters-gracefully.patch |    7 +-
 .../all/rt/0035-fs-dcache-include-wait.h.patch     |    7 +-
 ...36-rbtree-include-rcu.h-because-we-use-it.patch |    7 +-
 .../0037-fs-dcache-init-in_lookup_hashtable.patch  |    7 +-
 ...don-t-disable-preempt-around-this_cpu_ptr.patch |    9 +-
 ...don-t-disable-preemption-while-accessing-.patch |   13 +-
 ...t-rid-of-warning-acpi_ioapic_lock-defined.patch |    9 +-
 ...0041-rxrpc-remove-unused-static-variables.patch |    7 +-
 ...rcu-update-make-RCU_EXPEDITE_BOOT-default.patch |    7 +-
 ...cpu-rwsem-use-swait-for-the-wating-writer.patch |    7 +-
 ...44-pinctrl-qcom-Use-raw-spinlock-variants.patch |    7 +-
 .../0045-x86-mm-cpa-avoid-wbinvd-for-PREEMPT.patch |   11 +-
 ...NFSv4-replace-seqcount_t-with-a-seqlock_t.patch |   19 +-
 ...47-sparc64-use-generic-rwsem-spinlocks-rt.patch |    9 +-
 ...-kernel-SRCU-provide-a-static-initializer.patch |    7 +-
 ...-block-Shorten-interrupt-disabled-regions.patch |   19 +-
 .../0050-timekeeping-Split-jiffies-seqlock.patch   |   13 +-
 ...count-for-preempt-off-in-preempt_schedule.patch |   11 +-
 .../0052-signal-Revert-ptrace-preempt-magic.patch  |   11 +-
 .../rt/0053-arm-Convert-arm-boot_lock-to-raw.patch |    7 +-
 ...arm-kprobe-replace-patch_lock-to-raw-lock.patch |    7 +-
 ...55-posix-timers-Prevent-broadcast-signals.patch |   26 +-
 ...low-rt-tasks-to-cache-one-sigqueue-struct.patch |   29 +-
 ...ers-random-Reduce-preempt-disabled-region.patch |    7 +-
 ...T-Remove-irq-handler-when-clock-event-is-.patch |    7 +-
 ...-drivers-timer-atmel-pit-fix-double-free_.patch |    7 +-
 ...-TCLIB-Allow-higher-clock-rates-for-clock.patch |    7 +-
 ...ers-net-Use-disable_irq_nosync-in-8139too.patch |    7 +-
 .../0062-suspend-Prevent-might-sleep-splats.patch  |    7 +-
 .../rt/0063-net-flip-lock-dep-thingy.patch.patch   |   11 +-
 ...064-net-sched-Use-msleep-instead-of-yield.patch |    7 +-
 ...Do-not-unmask-io_apic-when-interrupt-is-i.patch |    7 +-
 .../rt/0066-latencyhist-disable-jump-labels.patch  |    7 +-
 .../rt/0067-tracing-Add-latency-histograms.patch   |    7 +-
 ...68-latency_hist-Update-sched_wakeup-probe.patch |    7 +-
 ...cy-hist-Consider-new-argument-when-probin.patch |    9 +-
 ...cuidle-version-for-preemptoff_hist-trace-.patch |    7 +-
 .../rt/0071-printk-Add-a-printk-kill-switch.patch  |    7 +-
 ...force_early_printk-boot-param-to-help-wit.patch |    7 +-
 ...-rt-Provide-PREEMPT_RT_BASE-config-switch.patch |    7 +-
 ...able-config-options-which-are-not-RT-comp.patch |    7 +-
 .../all/rt/0075-kconfig-Add-PREEMPT_RT_FULL.patch  |    9 +-
 ...UG_ON-WARN_ON-variants-dependend-on-RT-RT.patch |    7 +-
 ...u-amd-Use-WARN_ON_NORT-in-__attach_device.patch |    9 +-
 ...rt-local_irq_-variants-depending-on-RT-RT.patch |    7 +-
 ...preempt-Provide-preempt_-_-no-rt-variants.patch |   13 +-
 .../0080-Intrduce-migrate_disable-cpu_light.patch  |   19 +-
 ...round-migrate_disable-enable-in-different.patch |   11 +-
 .../all/rt/0082-rt-Add-local-irq-locks.patch       |    7 +-
 .../all/rt/0083-locallock-add-local_lock_on.patch  |    7 +-
 ...disable-interrupts-in-ide-code-for-preemp.patch |   13 +-
 ...-Do-not-disable-interrupts-for-PREEMPT-RT.patch |    9 +-
 ...Mellanox-IB-driver-patch-use-_nort-primit.patch |    7 +-
 ...ort-Do-not-disable-interrupts-on-PREEMPT_.patch |    7 +-
 ...-disable-interrupts-on-RT-in-kernel-users.patch |    7 +-
 .../0089-usb-Use-_nort-in-giveback-function.patch  |    9 +-
 ...-mm-scatterlist-Do-not-disable-irqs-on-RT.patch |    7 +-
 ...et-Do-not-protect-workingset_shadow_nodes.patch |    9 +-
 ...-signal-Make-__lock_task_sighand-RT-aware.patch |   13 +-
 ...ignal-x86-Delay-calling-signals-in-atomic.patch |   13 +-
 ...x86-signal-delay-calling-signals-on-32bit.patch |    7 +-
 .../rt/0095-net-wireless-Use-WARN_ON_NORT.patch    |    7 +-
 ...ffer_head-Replace-bh_uptodate_lock-for-rt.patch |    9 +-
 ...-Make-state-lock-and-journal-head-lock-rt.patch |    9 +-
 ...98-list_bl-Make-list-head-locking-RT-safe.patch |    7 +-
 .../0099-list_bl-fixup-bogus-lockdep-warning.patch |    7 +-
 .../all/rt/0100-genirq-Disable-irqpoll-on-rt.patch |    7 +-
 .../0101-genirq-Force-interrupt-thread-on-RT.patch |    7 +-
 ...102-drivers-net-vortex-fix-locking-issues.patch |    7 +-
 ...3-mm-page_alloc-rt-friendly-per-cpu-pages.patch |   35 +-
 ...m-page_alloc-Reduce-lock-sections-further.patch |   27 +-
 .../rt/0105-mm-swap-Convert-to-percpu-locked.patch |   13 +-
 ...106-mm-perform-lru_add_drain_all-remotely.patch |    7 +-
 ...rotect-per-cpu-variables-with-preempt-dis.patch |    9 +-
 ...ize-split-page-table-locks-for-vector-pag.patch |    7 +-
 .../0109-mm-bounce-Use-local_irq_save_nort.patch   |    7 +-
 .../all/rt/0110-mm-Allow-only-slub-on-RT.patch     |    7 +-
 .../all/rt/0111-mm-Enable-SLUB-for-RT.patch        |   21 +-
 .../rt/0112-slub-Enable-irqs-for-__GFP_WAIT.patch  |    7 +-
 .../rt/0113-slub-Disable-SLUB_CPU_PARTIAL.patch    |    7 +-
 ...oc-Use-local_lock_on-instead-of-plain-spi.patch |    9 +-
 ...ol-Don-t-call-schedule_work_on-in-preempt.patch |    7 +-
 ...ol-Replace-local_irq_disable-with-local-l.patch |    7 +-
 ...ol-mem_cgroup_migrate-replace-another-loc.patch |    7 +-
 ...dev-don-t-disable-IRQs-in-wb_congested_pu.patch |    7 +-
 ...smalloc-copy-with-get_cpu_var-and-locking.patch |    9 +-
 .../all/rt/0120-radix-tree-use-local-locks.patch   |    7 +-
 ...get_random_bytes-for-RT_FULL-in-init_oops.patch |    7 +-
 .../0122-timers-Prepare-for-full-preemption.patch  |   29 +-
 ...delay-waking-softirqs-from-the-jiffy-tick.patch |   11 +-
 .../rt/0124-hrtimers-Prepare-full-preemption.patch |    8 +-
 .../rt/0125-hrtimer-enfore-64byte-alignment.patch  |    7 +-
 ...up-hrtimer-callback-changes-for-preempt-r.patch |   10 +-
 ...-deadline-dl_task_timer-has-to-be-irqsafe.patch |   13 +-
 .../all/rt/0128-timer-fd-Prevent-live-lock.patch   |    7 +-
 ...-broadcast-Make-broadcast-hrtimer-irqsafe.patch |    7 +-
 ...rtimer-check-properly-for-a-running-timer.patch |    7 +-
 ...osix-timers-Thread-posix-cpu-timers-on-rt.patch |   11 +-
 ...132-sched-Move-task_struct-cleanup-to-RCU.patch |   13 +-
 ...t-the-number-of-task-migrations-per-batch.patch |    9 +-
 .../rt/0134-sched-Move-mmdrop-to-RCU-on-RT.patch   |   21 +-
 ...d-move-stack-kprobe-clean-up-to-__put_tas.patch |   17 +-
 ...aved_state-for-tasks-blocked-on-sleeping-.patch |   17 +-
 ...nt-task-state-corruption-by-spurious-lock.patch |   11 +-
 .../all/rt/0138-sched-Remove-TASK_ALL.patch        |    7 +-
 ...t-account-rcu_preempt_depth-on-RT-in-migh.patch |   11 +-
 ...RT-softirq-semantics-into-account-in-cond.patch |   13 +-
 ...e-the-proper-LOCK_OFFSET-for-cond_resched.patch |   11 +-
 .../rt/0142-sched-Disable-TTWU_QUEUE-on-RT.patch   |   11 +-
 ...sched-Disable-CONFIG_RT_GROUP_SCHED-on-RT.patch |    7 +-
 ...Return-success-when-only-changing-the-sav.patch |   11 +-
 ...ueue-Only-wake-up-idle-workers-if-not-blo.patch |   11 +-
 ...ne-convert-stop_machine_run-to-PREEMPT_RT.patch |    9 +-
 .../rt/0147-stop_machine-Use-raw-spinlocks.patch   |   11 +-
 .../0148-hotplug-Lightweight-get-online-cpus.patch |    9 +-
 ...149-hotplug-sync_unplug-No-n-in-task-name.patch |    9 +-
 ...read-hotplug_pcp-on-pin_current_cpu-retry.patch |    9 +-
 ...igrate-disabled-counter-to-tracing-output.patch |    9 +-
 ...152-hotplug-Use-migrate-disable-on-unplug.patch |   11 +-
 .../all/rt/0153-lockdep-Make-it-RT-aware.patch     |    7 +-
 ...0154-locking-Disable-spin-on-owner-for-RT.patch |    7 +-
 ...vent-tasklets-from-going-into-infinite-sp.patch |    7 +-
 ...ck-preemption-after-reenabling-interrupts.patch |   31 +-
 ...157-softirq-Disable-softirq-stacks-for-RT.patch |   13 +-
 .../all/rt/0158-softirq-Split-softirq-locks.patch  |   53 +-
 .../0159-kernel-softirq-unlock-with-irqs-on.patch  |    7 +-
 ...ate_disable-do-fastpath-in-atomic-irqs-of.patch |   13 +-
 ...w-disabling-of-softirq-processing-in-irq-.patch |    7 +-
 ...irq-split-timer-softirqs-out-of-ksoftirqd.patch |    7 +-
 ...-softirq-wake-the-timer-softirq-if-needed.patch |    7 +-
 ...mers-Don-t-wake-ktimersoftd-on-every-tick.patch |    6 +-
 ...mers-Don-t-wake-ktimersoftd-on-every-tick.patch |    6 +-
 .../rt/0166-rtmutex-trylock-is-okay-on-RT.patch    |    7 +-
 .../0167-gpu-don-t-check-for-the-lock-owner.patch  |    7 +-
 ...68-fs-nfs-turn-rmdir_sem-into-a-semaphore.patch |   13 +-
 ...dle-the-various-new-futex-race-conditions.patch |    9 +-
 ...-bug-on-when-a-requeued-RT-task-times-out.patch |    7 +-
 ...e-lock-unlock-symetry-versus-pi_lock-and-.patch |    7 +-
 .../all/rt/0172-pid.h-include-atomic.h.patch       |    7 +-
 ...0173-arm-include-definition-for-cpumask_t.patch |    7 +-
 ...ktorture-Do-NOT-include-rwlock.h-directly.patch |    7 +-
 .../0175-rtmutex-Add-rtmutex_lock_killable.patch   |    7 +-
 .../rt/0176-rtmutex-Make-lock_killable-work.patch  |    7 +-
 ...0177-spinlock-Split-the-lock-types-header.patch |    7 +-
 .../all/rt/0178-rtmutex-Avoid-include-hell.patch   |    7 +-
 .../0179-rbtree-don-t-include-the-rcu-header.patch |    7 +-
 ...-Add-the-preempt-rt-lock-replacement-APIs.patch |   13 +-
 ...ex_disable-on-DEBUG-configs-and-the-GPL-s.patch |    7 +-
 ...king-use-an-exclusive-wait_q-for-sleepers.patch |   13 +-
 .../rt/0183-rtmutex-Add-RT-aware-ww-locks.patch    |    7 +-
 .../0184-rtmutex-Provide-rt_mutex_lock_state.patch |    7 +-
 .../rt/0185-rtmutex-Provide-locked-slowpath.patch  |    7 +-
 ...tex-rtmutex-Cure-RT-double-blocking-issue.patch |    7 +-
 ...7-rwsem-rt-Lift-single-reader-restriction.patch |    7 +-
 ...8-ptrace-fix-ptrace-vs-tasklist_lock-race.patch |   15 +-
 .../all/rt/0189-rcu-Frob-softirq-test.patch        |    7 +-
 .../0190-rcu-Merge-RCU-bh-into-RCU-preempt.patch   |    7 +-
 ...cu-Make-ksoftirqd-do-RCU-quiescent-states.patch |    7 +-
 ..._bh_qs-Disable-irq-while-calling-rcu_pree.patch |    7 +-
 ...tty-serial-omap-Make-the-locking-RT-aware.patch |    9 +-
 ...-serial-pl011-Make-the-locking-work-on-RT.patch |    7 +-
 ...-rt-Improve-the-serial-console-PASS_LIMIT.patch |    7 +-
 ...l-8250-don-t-take-the-trylock-during-oops.patch |   11 +-
 .../all/rt/0197-wait.h-include-atomic.h.patch      |    7 +-
 ...rk-simple-Simple-work-queue-implemenation.patch |    7 +-
 .../0199-completion-Use-simple-wait-queues.patch   |   17 +-
 .../all/rt/0200-fs-aio-simple-simple-work.patch    |    7 +-
 ...ot-invoke-the-affinity-callback-via-a-wor.patch |    9 +-
 ...-Move-schedule_work-call-to-helper-thread.patch |    7 +-
 ...cpu-rwsem-Remove-preempt_disable-variants.patch |   15 +-
 .../all/rt/0204-fs-namespace-preemption-fix.patch  |    7 +-
 ...activate_mm-by-preempt_-disable-enable-_r.patch |    7 +-
 ...ock-Turn-off-warning-which-is-bogus-on-RT.patch |    9 +-
 ...0207-fs-ntfs-disable-interrupt-only-on-RT.patch |    7 +-
 ...bd2-pull-your-plug-when-waiting-for-space.patch |    7 +-
 .../rt/0209-x86-Convert-mce-timer-to-hrtimer.patch |    9 +-
 ...0-x86-mce-use-swait-queue-for-mce-wakeups.patch |    7 +-
 ...86-stackprotector-Avoid-random-pool-on-rt.patch |    7 +-
 ...212-x86-Use-generic-rwsem_spinlocks-on-rt.patch |    9 +-
 .../rt/0213-x86-UV-raw_spinlock-conversion.patch   |   11 +-
 ...4-thermal-Defer-thermal-wakups-to-threads.patch |    9 +-
 ...-fs-epoll-Do-not-disable-preemption-on-RT.patch |    7 +-
 ...Another-preempt-disable-region-which-suck.patch |    7 +-
 .../all/rt/0217-block-mq-use-cpu_light.patch       |   11 +-
 ...18-block-mq-do-not-invoke-preempt_disable.patch |    9 +-
 ...-block-mq-don-t-complete-requests-via-IPI.patch |   11 +-
 ...raid5-Make-raid5_percpu-handling-RT-aware.patch |   17 +-
 .../all/rt/0221-rt-Introduce-cpu_chill.patch       |    7 +-
 ...l-Add-a-UNINTERRUPTIBLE-hrtimer_nanosleep.patch |   11 +-
 .../all/rt/0223-block-blk-mq-Use-swait.patch       |   17 +-
 .../0224-block-Use-cpu_chill-for-retry-loops.patch |    9 +-
 ...-fs-dcache-Use-cpu_chill-in-trylock-loops.patch |   13 +-
 ...26-net-Use-cpu_chill-instead-of-cpu_relax.patch |    9 +-
 ...ache-use-swait_queue-instead-of-waitqueue.patch |   11 +-
 .../all/rt/0228-workqueue-Use-normal-rcu.patch     |   66 +-
 ...se-local-irq-lock-instead-of-irq-disable-.patch |    6 +-
 ...revent-workqueue-versus-ata-piix-livelock.patch |   12 +-
 ...d-Distangle-worker-accounting-from-rqlock.patch |   29 +-
 ...al-lock-instead-of-preempt-enable-disable.patch |    7 +-
 .../all/rt/0233-percpu_ida-Use-local-locks.patch   |    7 +-
 .../all/rt/0234-debugobjects-Make-RT-aware.patch   |    7 +-
 ...ump-label-disable-if-stop_machine-is-used.patch |    7 +-
 .../rt/0236-seqlock-Prevent-rt-starvation.patch    |    7 +-
 ...ake-svc_xprt_do_enqueue-use-get_cpu_light.patch |   11 +-
 .../rt/0238-net-Use-skbufhead-with-raw-lock.patch  |   27 +-
 ...cpuhotplug-Drain-input_pkt_queue-lockless.patch |   11 +-
 ...xmit_recursion-to-per-task-variable-on-RT.patch |   17 +-
 ...-a-way-to-delegate-processing-a-softirq-t.patch |   11 +-
 ...ays-take-qdisc-s-busylock-in-__dev_xmit_s.patch |   11 +-
 ...-net-Qdisc-use-a-seqlock-instead-seqcount.patch |   11 +-
 ...k-the-missing-serialization-in-ip_send_un.patch |    9 +-
 .../rt/0245-net-add-a-lock-around-icmp_sk.patch    |    9 +-
 ...napi_schedule_irqoff-disable-interrupts-o.patch |   15 +-
 .../features/all/rt/0247-net-sysrq-via-icmp.patch  |   13 +-
 ...qwork-push-most-work-into-softirq-context.patch |   41 +-
 ...irqwork-Move-irq-safe-work-to-irq-context.patch |   15 +-
 ...-snd_pcm_stream_lock-irqs_disabled-splats.patch |    7 +-
 .../all/rt/0251-printk-Make-rt-aware.patch         |    9 +-
 ...tk-Don-t-try-to-print-from-IRQ-NMI-region.patch |    7 +-
 ...53-printk-Drop-the-logbuf_lock-more-often.patch |    7 +-
 .../rt/0254-powerpc-Use-generic-rwsem-on-RT.patch  |    9 +-
 ...-Disable-in-kernel-MPIC-emulation-for-PRE.patch |    7 +-
 ...-device-init.c-adapt-to-completions-using.patch |    7 +-
 ...-at91-tclib-Default-to-tclib-timer-for-RT.patch |    7 +-
 .../rt/0258-arm-unwind-use-a-raw_spin_lock.patch   |    7 +-
 ...irq-in-translation-section-permission-fau.patch |    7 +-
 ...pdate-irq_set_irqchip_state-documentation.patch |    7 +-
 ...64-downgrade-preempt_disable-d-region-to-.patch |    7 +-
 .../rt/0262-arm64-xen-Make-XEN-depend-on-RT.patch  |    7 +-
 .../0263-kgdb-serial-Short-term-workaround.patch   |   15 +-
 .../0264-sysfs-Add-sys-kernel-realtime-entry.patch |    7 +-
 .../rt/0265-powerpc-Disable-highmem-on-RT.patch    |    9 +-
 .../all/rt/0266-mips-Disable-highmem-on-RT.patch   |    7 +-
 .../all/rt/0267-mm-rt-kmap_atomic-scheduling.patch |    7 +-
 ...0268-mm-rt-Fix-generic-kmap_atomic-for-RT.patch |    7 +-
 ...-x86-highmem-Add-a-already-used-pte-check.patch |    7 +-
 .../rt/0270-arm-highmem-Flush-tlb-on-unmap.patch   |    7 +-
 .../all/rt/0271-arm-Enable-highmem-for-rt.patch    |    7 +-
 .../rt/0272-ipc-sem-Rework-semaphore-wakeups.patch |    9 +-
 .../rt/0273-x86-kvm-Require-const-tsc-for-RT.patch |   11 +-
 ...lapic-mark-LAPIC-timer-handler-as-irqsafe.patch |   11 +-
 .../all/rt/0275-scsi-fcoe-Make-RT-aware.patch      |    9 +-
 ...i-dont-t-disable-interrupts-in-qc_issue-h.patch |    7 +-
 ...86-crypto-Reduce-preempt-disabled-regions.patch |    7 +-
 ...educe-preempt-disabled-regions-more-algos.patch |   11 +-
 .../features/all/rt/0279-dm-Make-rt-aware.patch    |    7 +-
 ...vert-acpi_gbl_hardware-lock-back-to-a-raw.patch |    7 +-
 ...sk-Disable-CONFIG_CPUMASK_OFFSTACK-for-RT.patch |    9 +-
 .../all/rt/0282-random-Make-it-work-on-rt.patch    |    7 +-
 ...3-random-avoid-preempt_disable-ed-section.patch |    7 +-
 ...ke-hotplug.lock-a-sleeping-spinlock-on-RT.patch |   11 +-
 ...285-cpu-rt-Rework-cpu-down-for-PREEMPT_RT.patch |   13 +-
 ...g-Document-why-PREEMPT_RT-uses-a-spinlock.patch |    9 +-
 ...fix-cpu-down-problem-if-kthread-s-cpu-is-.patch |    9 +-
 ...plug-restore-original-cpu-mask-oncpu-down.patch |   11 +-
 .../0289-cpu_down-move-migrate_enable-back.patch   |   11 +-
 ...-set_cpus_allowed_ptr-in-sync_unplug_thre.patch |    9 +-
 ...cking-Reenable-migration-accross-schedule.patch |    9 +-
 ...x-Use-local_irq_save_nort-in-qla2x00_poll.patch |    7 +-
 ...t-Remove-preemption-disabling-in-netif_rx.patch |   13 +-
 ...nother-local_irq_disable-kmalloc-headache.patch |    9 +-
 ...otect-users-of-napi_alloc_cache-against-r.patch |    9 +-
 ...er-Serialize-xt_write_recseq-sections-on-.patch |    9 +-
 ...-net-Add-a-mutex-around-devnet_rename_seq.patch |   17 +-
 ...pto-Convert-crypto-notifier-chain-to-SRCU.patch |    7 +-
 ...ftest-Only-do-hardirq-context-test-for-ra.patch |    7 +-
 ...ftest-fix-warnings-due-to-missing-PREEMPT.patch |    7 +-
 ...wevent-hrtimer-run-in-irq-instead-of-soft.patch |   11 +-
 ...-mark-perf_cpu_context-s-timer-as-irqsafe.patch |    9 +-
 .../rt/0303-rcu-Disable-RCU_FAST_NO_HZ-on-RT.patch |    7 +-
 ...Eliminate-softirq-processing-from-rcutree.patch |    7 +-
 .../rt/0305-rcu-make-RCU_BOOST-default-on-RT.patch |    7 +-
 ...e-rcu_normal_after_boot-by-default-for-RT.patch |    7 +-
 ...307-sched-Add-support-for-lazy-preemption.patch |   45 +-
 .../0308-ftrace-Fix-trace-header-alignment.patch   |    9 +-
 .../rt/0309-x86-Support-for-lazy-preemption.patch  |   10 +-
 .../0310-arm-Add-support-for-lazy-preemption.patch |   15 +-
 ...1-powerpc-Add-support-for-lazy-preemption.patch |   21 +-
 .../0312-arch-arm64-Add-lazy-preempt-support.patch |   11 +-
 ...te-disable-handle-updated-task-mask-mg-di.patch |   15 +-
 ...14-leds-trigger-disable-CPU-trigger-on-RT.patch |    7 +-
 .../rt/0315-mmci-Remove-bogus-local_irq_save.patch |    7 +-
 ...req-drop-K8-s-driver-from-beeing-selected.patch |    7 +-
 ...n_proc-Protect-send_msg-with-a-local-lock.patch |    7 +-
 ...ck-zram-Replace-bit-spinlocks-with-rtmute.patch |   13 +-
 ...m-Don-t-disable-preemption-in-zcomp_strea.patch |    9 +-
 ...5-drop-trace_i915_gem_ring_dispatch-on-rt.patch |    7 +-
 ...warning-from-i915-when-running-on-PREEMPT.patch |    7 +-
 ...i915-Use-preempt_disable-enable_rt-where-.patch |    7 +-
 ...e-local_lock-unlock_irq-in-intel_pipe_upd.patch |    7 +-
 ...24-cgroups-use-simple-wait-in-css_release.patch |    7 +-
 ...Prevent-scheduling-while-atomic-in-cgroup.patch |    7 +-
 ...t-Convert-callback_lock-to-raw_spinlock_t.patch |    7 +-
 ...-call-to-schedule_delayed_work-to-helper-.patch |    7 +-
 .../features/all/rt/0328-md-disable-bcache.patch   |    7 +-
 ...29-workqueue-Prevent-deadlock-stall-on-RT.patch |   21 +-
 .../rt/0330-Add-localversion-for-RT-release.patch  |    7 +-
 ...m-fix-zcomp_stream_get-smp_processor_id-u.patch |    7 +-
 ...isable-preemption-on-i_dir_seq-s-write-si.patch |   13 +-
 .../0333-tpm_tis-fix-stall-after-iowrite-s.patch   |    7 +-
 ...two-more-BH_Uptodate_Lock-related-bitspin.patch |    7 +-
 ...mutex-fix-deadlock-in-device-mapper-block.patch |    7 +-
 .../0336-md-raid5-do-not-disable-interrupts.patch  |   11 +-
 .../all/rt/0337-Linux-4.9.61-rt52-REBASE.patch     |   16 -
 ...ontrol-Prevent-scheduling-while-atomic-in.patch |  106 ++
 ...bd2-pull-your-plug-when-waiting-for-space.patch |   33 +
 .../rt/0339-rtmutex-Fix-lock-stealing-logic.patch  |  165 +++
 ...m-replace-raw_notifier-to-atomic_notifier.patch |  178 +++
 ...ace-raw_notifier-with-atomic_notifier-fix.patch |   37 +
 ...rtimer-migrate-deferred-timer-on-CPU-down.patch |   38 +
 ...ake-the-tcp_sk_lock-lock-with-BH-disabled.patch |   73 ++
 ...mer-don-t-wakeup-a-process-while-holding-.patch |   91 ++
 ...mer-hotplug-don-t-wake-ktimersoftd-while-.patch |   74 ++
 ...void-recursive-locking-in-hci_send_to_cha.patch |   76 ++
 ...se-raw_cpu_ptr-instead-of-get_cpu_ptr-for.patch |   49 +
 ...-rt-locking-allow-recursive-local_trylock.patch |   44 +
 ...ng-rtmutex-don-t-drop-the-wait_lock-twice.patch |   35 +
 .../all/rt/0350-net-use-trylock-in-icmp_sk.patch   |   35 +
 .../all/rt/0351-Linux-4.9.76-rt61-REBASE.patch     |   19 +
 .../x86-make-x32-syscall-support-conditional.patch |  249 ++--
 debian/patches/series                              |   81 +-
 debian/patches/series-rt                           |   16 +-
 debian/templates/control.extra.in                  |    2 +-
 debian/upstream/rt-signing-key.pgp                 |  Bin 19459 -> 47118 bytes
 439 files changed, 4437 insertions(+), 11100 deletions(-)

diff --cc debian/changelog
index b7613f1,bf1e8ae..ff7dec3
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,9 -1,1006 +1,1012 @@@
+ linux (4.9.82-1) UNRELEASED; urgency=medium
+ 
+   * New upstream stable update:
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.81
+     - [powerpc*] powerpc/64s: Add support for RFI flush of L1-D cache
+       (CVE-2017-5754, Meltdown)
+     - [powerpc*] powerpc/64s: Support disabling RFI flush with no_rfi_flush and nopti
+     - [powerpc*] powerpc/64s: Allow control of RFI flush via debugfs
+     - [x86] kaiser: fix intel_bts perf crashes
+     - [x86] x86/pti: Make unpoison of pgd for trusted boot work for real
+     - kaiser: allocate pgd with order 0 when pti=off
+     - serial: core: mark port as initialized after successful IRQ change
+     - ip6mr: fix stale iterator
+     - net: igmp: add a missing rcu locking section
+     - qlcnic: fix deadlock bug
+     - tcp: release sk_frag.page in tcp_disconnect
+     - soreuseport: fix mem leak in reuseport_add_sock()
+     - KEYS: encrypted: fix buffer overread in valid_master_desc()
+     - [x86] x86/retpoline: Remove the esp/rsp thunk
+     - [x86] KVM: x86: Make indirect calls in emulator speculation safe
+       (CVE-2017-5715, Spectre#2)
+     - KVM: VMX: Make indirect call speculation safe
+     - module/retpoline: Warn about missing retpoline in module
+     - [x86] x86/pti: Do not enable PTI on CPUs which are not vulnerable to Meltdown
+     - [x86] x86/cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early Spectre v2 microcodes
+     - [x86] x86/speculation: Add basic IBPB (Indirect Branch Prediction Barrier) support
+     - [x86] x86/entry/64: Remove the SYSCALL64 fast path
+     - [x86] x86/asm: Move 'status' from thread_struct to thread_info
+     - Documentation: Document array_index_nospec
+     - [x86] x86: Implement array_index_mask_nospec
+     - [x86] x86: Introduce barrier_nospec
+     - [x86] x86: Introduce __uaccess_begin_nospec() and uaccess_try_nospec
+     - [x86] x86/uaccess: Use __uaccess_begin_nospec() and uaccess_try_nospec
+     - [x86] x86/get_user: Use pointer masking to limit speculation
+     - [x86] x86/syscall: Sanitize syscall table de-references under speculation
+     - vfs, fdtable: Prevent bounds-check bypass via speculative execution
+       (CVE-2017-5753, Spectre#1)
+     - nl80211: Sanitize array index in parse_txq_params
+       (CVE-2017-5753, Spectre#1)
+     - [x86] x86/spectre: Report get_user mitigation for spectre_v1
+     - x86/paravirt: Remove 'noreplace-paravirt' cmdline option
+     - x86/kvm: Update spectre-v1 mitigation
+       (CVE-2017-5753, Spectre#1)
+     - KVM: nVMX: mark vmcs12 pages dirty on L2 exit
+     - KVM/x86: Add IBPB support
+       (CVE-2017-5715, Spectre#2)
+     - KVM/VMX: Emulate MSR_IA32_ARCH_CAPABILITIES
+     - KVM/VMX: Allow direct access to MSR_IA32_SPEC_CTRL
+     - KVM/SVM: Allow direct access to MSR_IA32_SPEC_CTRL
+     - [x86] x86/microcode: Do the family check first
+   * [x86] Rewrite "Make x32 syscall support conditional on a kernel parameter"
+     to use a static key
+   * [x86] linux-compiler-gcc-6-x86: Add versioned dependency on gcc-6 for
+     retpoline support
+   * [powerpc] powerpc/64s: Simple RFI macro conversions (fix FTBFS)
+   * Add myself to Uploaders since I did the last few uploads to Stretch.
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.82
+     - CIFS: zero sensitive data when freeing
+     - posix-timer: Properly check sigevent->sigev_notify
+     - dccp: CVE-2017-8824: use-after-free in DCCP code
+     - media: dvb-usb-v2: lmedm04: Improve logic checking of warm start
+     - media: dvb-usb-v2: lmedm04: move ts2020 attach to dm04_lme2510_tuner
+     - ubi: fastmap: Erase outdated anchor PEBs during attach
+     - ubi: block: Fix locking for idr_alloc/idr_remove
+     - nsfs: mark dentry with DCACHE_RCUACCESS
+     - media: v4l2-compat-ioctl32.c: refactor compat ioctl32 logic
+     - crypto: caam - fix endless loop when DECO acquire fails
+     - crypto: sha512-mb - initialize pending lengths correctly
+     - KVM: nVMX: Fix races when sending nested PI while dest enters/leaves L2
+     - KVM: arm/arm64: Handle CPU_PM_ENTER_FAILED
+     - media: dvb-frontends: fix i2c access helpers for KASAN
+     - media: ts2020: avoid integer overflows on 32 bit machines
+     - fs/proc/kcore.c: use probe_kernel_read() instead of memcpy()
+     - kernel/relay.c: revert "kernel/relay.c: fix potential memory leak"
+     - pipe: actually allow root to exceed the pipe buffer limits
+     - ACPI: sbshc: remove raw pointer from printk() message (CVE-2018-5750)
+     - acpi, nfit: fix register dimm error handling
+   * Remove patches included in 4.9.82
+   * Bump ABI to 6, remove all ignored ABI changes since ABI 5.
+   * Remove all patches handling or reverting ABI changes.
+   * [x86] linux-headers: Depend on updated linux-compiler-gcc-6-x86 for
+     retpoline support.
+   * [x86] Add versioned build-dependency on gcc-6 for retpoline support.
+   * [rt] Update to 4.9.76-rt61 except patches refreshed locally since 4.9.76.
+   * [rt] Add gpg key for Julia Cartwright (0x0A120DD923EEDD5F) to upstream
+     keyring
+ 
+  -- Yves-Alexis Perez <corsac at debian.org>  Tue, 13 Feb 2018 17:44:41 +0100
+ 
+ linux (4.9.80-2) stretch; urgency=medium
+ 
+   * scsi: ignore ABI change in hisi_sas.
+ 
+  -- Yves-Alexis Perez <corsac at debian.org>  Fri, 09 Feb 2018 13:58:52 +0100
+ 
+ linux (4.9.80-1) stretch; urgency=medium
+ 
+   * New upstream stable update:
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.66
+     - [s390x] fix transactional execution control register handling
+     - [s390x] runtime instrumention: fix possible memory corruption
+     - [s390x] disassembler: add missing end marker for e7 table
+     - [s390x] disassembler: increase show_code buffer size
+     - ACPI / EC: Fix regression related to triggering source of EC event
+       handling
+     - [x86] mm: fix use-after-free of vma during userfaultfd fault
+     - ipv6: only call ip6_route_dev_notify() once for NETDEV_UNREGISTER
+     - vsock: use new wait API for vsock_stream_sendmsg()
+     - sched: Make resched_cpu() unconditional
+     - lib/mpi: call cond_resched() from mpi_powm() loop
+     - [x86] decoder: Add new TEST instruction pattern
+     - [arm64] Implement arch-specific pte_access_permitted()
+     - [armhf/armmp-lpae] 8722/1: mm: make STRICT_KERNEL_RWX effective for LPAE
+     - [armhf/armmp-lpae] 8721/1: mm: dump: check hardware RO bit for LPAE
+     - [arm64] PCI: Set Cavium ACS capability quirk flags to assert RR/CR/SV/UF
+     - dm bufio: fix integer overflow when limiting maximum cache size
+     - dm: allocate struct mapped_device with kvzalloc
+     - [mips*] pci: Remove KERN_WARN instance inside the mt7620 driver
+     - dm: fix race between dm_get_from_kobject() and __dm_destroy()
+     - [mips*] Fix odd fp register warnings with MIPS64r2
+     - [mips*] Fix an n32 core file generation regset support regression
+     - rt2x00usb: mark device removed when get ENOENT usb error
+     - autofs: don't fail mount for transient error
+     - nilfs2: fix race condition that causes file system corruption
+     - eCryptfs: use after free in ecryptfs_release_messaging()
+     - libceph: don't WARN() if user tries to add invalid key
+     - bcache: check ca->alloc_thread initialized before wake up it
+     - isofs: fix timestamps beyond 2027
+     - NFS: Fix typo in nomigration mount option
+     - nfs: Fix ugly referral attributes
+     - NFS: Avoid RCU usage in tracepoints
+     - nfsd: deal with revoked delegations appropriately
+     - rtlwifi: rtl8192ee: Fix memory leak when loading firmware
+     - rtlwifi: fix uninitialized rtlhal->last_suspend_sec time
+     - ata: fixes kernel crash while tracing ata_eh_link_autopsy event
+     - ext4: fix interaction between i_size, fallocate, and delalloc after a
+       crash
+     - ALSA: pcm: update tstamp only if audio_tstamp changed
+     - ALSA: usb-audio: Add sanity checks to FE parser
+     - ALSA: usb-audio: Fix potential out-of-bound access at parsing SU
+     - ALSA: usb-audio: Add sanity checks in v2 clock parsers
+     - ALSA: timer: Remove kernel warning at compat ioctl error paths
+     - ALSA: hda: Fix too short HDMI/DP chmap reporting
+     - ALSA: hda/realtek - Fix ALC700 family no sound issue
+     - fix a page leak in vhost_scsi_iov_to_sgl() error recovery
+     - fs/9p: Compare qid.path in v9fs_test_inode
+     - iscsi-target: Fix non-immediate TMR reference leak
+     - target: Fix QUEUE_FULL + SCSI task attribute handling
+     - [armhf] mtd: nand: omap2: Fix subpage write
+     - mtd: nand: Fix writing mtdoops to nand flash.
+     - mtd: nand: mtk: fix infinite ECC decode IRQ issue
+     - p54: don't unregister leds when they are not initialized
+     - block: Fix a race between blk_cleanup_queue() and timeout handling
+     - [armhf,arm64] irqchip/gic-v3: Fix ppi-partitions lookup
+     - lockd: double unregister of inetaddr notifiers
+     - [x86] KVM: nVMX: set IDTR and GDTR limits when loading L1 host state
+     - [x86] KVM: SVM: obey guest PAT
+     - SUNRPC: Fix tracepoint storage issues with svc_recv and svc_rqst_status
+     - [armhf] clk: ti: dra7-atl-clock: fix child-node lookups
+     - libnvdimm, pfn: make 'resource' attribute only readable by root
+     - libnvdimm, namespace: fix label initialization to use valid seq numbers
+     - libnvdimm, namespace: make 'resource' attribute only readable by root
+     - IB/srpt: Do not accept invalid initiator port names
+     - IB/srp: Avoid that a cable pull can trigger a kernel crash
+     - NFC: fix device-allocation error return
+     - fm10k,i40e,i40evf,igb,igbvf,ixgbe,ixgbevf: Use smp_rmb rather than
+       read_barrier_depends
+     - [powerpc*] signal: Properly handle return value from uprobe_deny_signal()
+     - media: Don't do DMA on stack for firmware upload in the AS102 driver
+     - media: rc: check for integer overflow
+     - media: v4l2-ctrl: Fix flags field on Control events
+     - sched/rt: Simplify the IPI based RT balancing logic
+     - fscrypt: lock mutex before checking for bounce page pool
+     - net/9p: Switch to wait_event_killable()
+     - PM / OPP: Add missing of_node_put(np)
+     - [x86] Revert "drm/i915: Do not rely on wm preservation for ILK watermarks" closes: #884001
+     - e1000e: Fix error path in link detection
+     - e1000e: Fix return value test
+     - e1000e: Separate signaling for link check/link up
+     - e1000e: Avoid receiver overrun interrupt bursts
+     - RDS: make message size limit compliant with spec
+     - RDS: RDMA: return appropriate error on rdma map failures
+     - RDS: RDMA: fix the ib_map_mr_sg_zbva() argument
+     - PCI: Apply _HPX settings only to relevant devices
+     - [armhf] clk: sunxi-ng: A31: Fix spdif clock register
+     - [armhf] clk: sunxi-ng: fix PLL_CPUX adjusting on A33
+     - fscrypt: use ENOKEY when file cannot be created w/o key
+     - fscrypt: use ENOTDIR when setting encryption policy on nondirectory
+     - net: Allow IP_MULTICAST_IF to set index to L3 slave
+     - net: 3com: typhoon: typhoon_init_one: fix incorrect return values
+     - rt2800: set minimum MPDU and PSDU lengths to sane values
+     - adm80211: return an error if adm8211_alloc_rings() fails
+     - mwifiex: sdio: fix use after free issue for save_adapter
+     - ath10k: fix incorrect txpower set by P2P_DEVICE interface
+     - ath10k: ignore configuring the incorrect board_id
+     - ath10k: fix potential memory leak in ath10k_wmi_tlv_op_pull_fw_stats()
+     - bnxt_en: Set default completion ring for async events.
+     - ath10k: set CTS protection VDEV param only if VDEV is up
+     - ALSA: hda - Apply ALC269_FIXUP_NO_SHUTUP on HDA_FIXUP_ACT_PROBE
+     - drm: Apply range restriction after color adjustment when allocation
+     - [arm64] clk: qcom: ipq4019: Add all the frequencies for apss cpu
+     - mac80211: Remove invalid flag operations in mesh TSF synchronization
+     - mac80211: Suppress NEW_PEER_CANDIDATE event if no room
+     - adm80211: add checks for dma mapping errors
+     - iio: light: fix improper return value
+     - netfilter: nft_queue: use raw_smp_processor_id()
+     - netfilter: nf_tables: fix oob access
+     - [armel,armhf] crypto: marvell - Copy IVDIG before launching partial DMA
+       ahash requests
+     - btrfs: return the actual error value from from btrfs_uuid_tree_iterate
+     - [s390x] kbuild: enable modversions for symbols exported from asm
+     - cec: when canceling a message, don't overwrite old status info
+     - cec: CEC_MSG_GIVE_FEATURES should abort for CEC version < 2
+     - cec: update log_addr[] before finishing configuration
+     - nvmet: fix KATO offset in Set Features
+     - xen: xenbus driver must not accept invalid transaction ids
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.67
+     - [armhf] dts: LogicPD Torpedo: Fix camera pin mux
+     - [armhf] dts: omap3: logicpd-torpedo-37xx-devkit: Fix MMC1 cd-gpio
+     - mm/cma: fix alloc_contig_range ret code/potential leak
+     - mm, hugetlbfs: introduce ->split() to vm_operations_struct
+     - mm/madvise.c: fix madvise() infinite loop under special circumstances
+     - btrfs: clear space cache inode generation always
+     - nfsd: Fix stateid races between OPEN and CLOSE
+     - nfsd: Fix another OPEN stateid race
+     - nfsd: fix panic in posix_unblock_lock called from nfs4_laundromat
+     - [armhf] mfd: twl4030-power: Fix pmic for boards that need vmmc1 on reboot
+     - [armhf] OMAP2+: Fix WL1283 Bluetooth Baud Rate
+     - [x86] KVM: pvclock: Handle first-time write to pvclock-page contains
+       random junk
+     - [x86] KVM: Exit to user-mode on #UD intercept when emulator requires
+     - [x86] KVM: inject exceptions produced by x86_decode_insn
+     - [x86] KVM: lapic: Split out x2apic ldr calculation
+     - [x86] KVM: lapic: Fixup LDR on load in x2apic
+     - mmc: core: Do not leave the block driver in a suspended state
+     - mmc: core: prepend 0x to OCR entry in sysfs
+     - eeprom: at24: fix reading from 24MAC402/24MAC602
+     - eeprom: at24: correctly set the size for at24mac402
+     - eeprom: at24: check at24_read/write arguments
+     - [x86,alpha] i2c: i801: Fix Failed to allocate irq -2147483648 error
+     - hwmon: (jc42) optionally try to disable the SMBUS timeout
+     - nvme-pci: add quirk for delay before CHK RDY for WDC SN200
+     - Revert "drm/radeon: dont switch vt on suspend"
+     - drm/amdgpu: potential uninitialized variable in amdgpu_vce_ring_parse_cs()
+     - drm/amdgpu: Potential uninitialized variable in
+       amdgpu_vm_update_directories()
+     - drm/radeon: fix atombios on big endian
+     - [armhf,arm64] drm/panel: simple: Add missing panel_simple_unprepare()
+       calls
+     - [arm64] drm/hisilicon: Ensure LDI regs are properly configured.
+     - drm/ttm: once more fix ttm_buffer_object_transfer
+     - drm/amd/pp: fix typecast error in powerplay.
+     - NFS: revalidate "." etc correctly on "open".
+     - [x86] drm/i915: Don't try indexed reads to alternate slave addresses
+     - [x86] drm/i915: Prevent zero length "index" write
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.68
+     - bcache: only permit to recovery read error when cache device is clean
+     - bcache: recover data from backing when data is clean
+     - Revert "crypto: caam - get rid of tasklet"
+     - mm, oom_reaper: gather each vma to prevent leaking TLB entry
+     - uas: Always apply US_FL_NO_ATA_1X quirk to Seagate devices
+     - usb: quirks: Add no-lpm quirk for KY-688 USB 3.1 Type-C Hub
+     - [s390x] runtime instrumentation: simplify task exit handling
+     - ima: fix hash algorithm initialization
+     - [s390x] pci: do not require AIS facility
+     - serial: 8250_fintek: Fix rs485 disablement on invalid ioctl()
+     - staging: rtl8188eu: avoid a null dereference on pmlmepriv
+     - [arm64] mmc: sdhci-msm: fix issue with power irq
+     - serial: 8250: Preserve DLD[7:4] for PORT_XR17V35X
+     - [x86] entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt()
+     - [x86] EDAC, sb_edac: Fix missing break in switch
+     - [armel,armhf] sysrq : fix Show Regs call trace on ARM
+     - usbip: tools: Install all headers needed for libusbip development
+     - [x86] kprobes: Disable preemption in ftrace-based jprobes
+     - iio: adc: ti-ads1015: add 10% to conversion wait time
+     - dax: Avoid page invalidation races and unnecessary radix tree traversals
+     - net/mlx4_en: Fix type mismatch for 32-bit systems
+     - l2tp: take remote address into account in l2tp_ip and l2tp_ip6 socket
+       lookups
+     - usb: gadget: f_fs: Fix ExtCompat descriptor validation
+     - libcxgb: fix error check for ip6_route_output()
+     - [armhf] OMAP2+: Fix WL1283 Bluetooth Baud Rate
+     - vti6: fix device register to report IFLA_INFO_KIND
+     - be2net: fix accesses to unicast list
+     - be2net: fix unicast list filling
+     - net/appletalk: Fix kernel memory disclosure
+     - libfs: Modify mount_pseudo_xattr to be clear it is not a userspace mount
+     - mm: fix remote numa hits statistics
+     - mac80211: calculate min channel width correctly
+     - nfs: Don't take a reference on fl->fl_file for LOCK operation
+     - [armhf,arm64] KVM: Fix occasional warning from the timer work function
+     - mac80211: prevent skb/txq mismatch
+     - NFSv4: Fix client recovery when server reboots multiple times
+     - [x86] perf/intel: Account interrupts for PEBS errors
+     - [powerpc*] mm: Fix memory hotplug BUG() on radix
+     - qla2xxx: Fix wrong IOCB type assumption
+     - drm/amdgpu: fix bug set incorrect value to vce register
+     - net: sctp: fix array overrun read on sctp_timer_tbl
+     - [x86] fpu: Set the xcomp_bv when we fake up a XSAVES area
+     - drm/amdgpu: fix unload driver issue for virtual display
+     - mac80211: don't try to sleep in rate_control_rate_init()
+     - RDMA/qedr: Return success when not changing QP state
+     - RDMA/qedr: Fix RDMA CM loopback
+     - tipc: fix nametbl_lock soft lockup at module exit
+     - tipc: fix cleanup at module unload
+     - [armhf] dmaengine: pl330: fix double lock
+     - tcp: correct memory barrier usage in tcp_check_space()
+     - nvmet: cancel fatal error and flush async work before free controller
+     - gtp: clear DF bit on GTP packet tx
+     - gtp: fix cross netns recv on gtp socket
+     - net: phy: micrel: KSZ8795 do not set SUPPORTED_[Asym_]Pause
+     - [arm64] net: thunderx: avoid dereferencing xcv when NULL
+     - be2net: fix initial MAC setting
+     - [powerpc*] vfio/spapr: Fix missing mutex unlock when creating a window
+     - mm: avoid returning VM_FAULT_RETRY from ->page_mkwrite handlers
+     - xen-netfront: Improve error handling during initialization
+     - cec: initiator should be the same as the destination for, poll
+     - xen-netback: vif counters from int/long to u64
+     - net: fec: fix multicast filtering hardware setup
+     - dma-buf/dma-fence: Extract __dma_fence_is_later()
+     - dma-buf/sw-sync: Fix the is-signaled test to handle u32 wraparound
+     - dma-buf/sw-sync: Prevent user overflow on timeline advance
+     - dma-buf/sw-sync: sync_pt is private and of fixed size
+     - dma-buf/sw-sync: Fix locking around sync_timeline lists
+     - dma-buf/sw-sync: Use an rbtree to sort fences in the timeline
+     - dma-buf/sw_sync: move timeline_fence_ops around
+     - dma-buf/sw_sync: clean up list before signaling the fence
+     - dma-fence: Clear fence->status during dma_fence_init()
+     - dma-fence: Wrap querying the fence->status
+     - dma-fence: Introduce drm_fence_set_error() helper
+     - dma-buf/sw_sync: force signal all unsignaled fences on dying timeline
+     - dma-buf/sync_file: hold reference to fence when creating sync_file
+     - usb: hub: Cycle HUB power when initialization fails
+     - usb: xhci: fix panic in xhci_free_virt_devices_depth_first
+     - USB: core: Add type-specific length check of BOS descriptors
+     - USB: Increase usbfs transfer limit
+     - USB: devio: Prevent integer overflow in proc_do_submiturb()
+     - USB: usbfs: Filter flags passed in from user space
+     - usb: host: fix incorrect updating of offset
+     - xen-netfront: avoid crashing on resume after a failure in
+       talk_to_netback()
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.69
+     - can: kvaser_usb: free buf in error paths
+     - can: kvaser_usb: Fix comparison bug in kvaser_usb_read_bulk_callback()
+     - can: kvaser_usb: ratelimit errors if incomplete messages are received
+     - can: kvaser_usb: cancel urb on -EPIPE and -EPROTO
+     - can: ems_usb: cancel urb on -EPIPE and -EPROTO
+     - can: esd_usb2: cancel urb on -EPIPE and -EPROTO
+     - can: usb_8dev: cancel urb on -EPIPE and -EPROTO
+     - virtio: release virtio index when fail to device_register
+     - [x86] hv: kvp: Avoid reading past allocated blocks from KVP file
+     - isa: Prevent NULL dereference in isa_bus driver callbacks
+     - scsi: dma-mapping: always provide dma_get_cache_alignment
+     - scsi: use dma_get_cache_alignment() as minimum DMA alignment
+     - scsi: libsas: align sata_device's rps_resp on a cacheline
+     - efi: Move some sysfs files to be read-only by root
+     - efi/esrt: Use memunmap() instead of kfree() to free the remapping
+     - ASN.1: fix out-of-bounds read when parsing indefinite length item
+     - ASN.1: check for error from ASN1_OP_END__ACT actions
+     - X.509: reject invalid BIT STRING for subjectPublicKey
+     - X.509: fix comparisons of ->pkey_algo
+     - [x86] PCI: Make broadcom_postcore_init() check acpi_disabled
+     - [x86] KVM: fix APIC page invalidation
+     - btrfs: fix missing error return in btrfs_drop_snapshot
+     - ALSA: pcm: prevent UAF in snd_pcm_info
+     - ALSA: seq: Remove spurious WARN_ON() at timer check
+     - ALSA: usb-audio: Fix out-of-bound error
+     - ALSA: usb-audio: Add check return value for usb_string()
+     - [x86] iommu/vt-d: Fix scatterlist offset handling
+     - smp/hotplug: Move step CPUHP_AP_SMPCFD_DYING to the correct place
+     - [s390x] fix compat system call table
+     - [s390x] KVM: Fix skey emulation permission check
+     - [powerpc*] 64s: Initialize ISAv3 MMU registers before setting partition
+       table
+     - brcmfmac: change driver unbind order of the sdio function devices
+     - media: dvb: i2c transfers over usb cannot be done from stack
+     - [armhf,arm64] KVM: fix VTTBR_BADDR_MASK BUG_ON off-by-one
+     - [armhf,arm64] KVM: Fix broken GICH_ELRSR big endian conversion
+     - [armhf,arm64] KVM: vgic-irqfd: Fix MSI entry allocation
+     - [armhf,arm64] KVM: vgic-its: Check result of allocation before use
+     - [arm64] fpsimd: Prevent registers leaking from dead tasks
+     - [armhf] bus: arm-cci: Fix use of smp_processor_id() in preemptible context
+     - usb: f_fs: Force Reserved1=1 in OS_DESC_EXT_COMPAT
+     - [armel,armhf] BUG if jumping to usermode address in kernel mode
+     - [armel,armhf] avoid faulting on qemu
+     - thp: reduce indentation level in change_huge_pmd()
+     - thp: fix MADV_DONTNEED vs. numa balancing race
+     - mm: drop unused pmdp_huge_get_and_clear_notify()
+     - [armel,armhf] 8657/1: uaccess: consistently check object sizes
+     - vti6: Don't report path MTU below IPV6_MIN_MTU.
+     - [armhf] OMAP2+: gpmc-onenand: propagate error on initialization failure
+     - [x86] platform/uv/BAU: Fix HUB errors by remove initial write to sw-ack
+       register
+     - sched/fair: Make select_idle_cpu() more aggressive
+     - [x86] hpet: Prevent might sleep splat on resume
+     - [powerpc*] 64: Invalidate process table caching after setting process
+       table
+     - lirc: fix dead lock between open and wakeup_filter
+     - module: set __jump_table alignment to 8
+     - [powerpc*] 64: Fix checksum folding in csum_add()
+     - [armhf] OMAP2+: Fix device node reference counts
+     - [armhf] OMAP2+: Release device node after it is no longer needed.
+     - usb: gadget: configs: plug memory leak
+     - USB: gadgetfs: Fix a potential memory leak in 'dev_config()'
+     - [armhf,arm64] usb: dwc3: gadget: Fix system suspend/resume on TI platforms
+     - usb: gadget: udc: net2280: Fix tmp reusage in net2280 driver
+     - [x86] kvm: nVMX: VMCLEAR should not cause the vCPU to shut down
+     - libata: drop WARN from protocol error in ata_sff_qc_issue()
+     - workqueue: trigger WARN if queue_delayed_work() is called with NULL @wq
+     - scsi: qla2xxx: Fix ql_dump_buffer
+     - scsi: lpfc: Fix crash during Hardware error recovery on SLI3 adapters
+     - [armhf] irqchip/crossbar: Fix incorrect type of register size
+     - [x86] KVM: nVMX: reset nested_run_pending if the vCPU is going to be reset
+     - [armhf,arm64] KVM: Survive unknown traps from guests
+     - [armhf,arm64] KVM: VGIC: Fix command handling while ITS being disabled
+     - bnx2x: prevent crash when accessing PTP with interface down
+     - bnx2x: fix possible overrun of VFPF multicast addresses array
+     - bnx2x: fix detection of VLAN filtering feature for VF
+     - bnx2x: do not rollback VF MAC/VLAN filters we did not configure
+     - rds: tcp: Sequence teardown of listen and acceptor sockets to avoid races
+     - [powerpc*] ibmvnic: Fix overflowing firmware/hardware TX queue
+     - [powerpc*] ibmvnic: Allocate number of rx/tx buffers agreed on by firmware
+     - ipv6: reorder icmpv6_init() and ip6_mr_init()
+     - blk-mq: initialize mq kobjects in blk_mq_init_allocated_queue()
+     - zram: set physical queue limits to avoid array out of bounds accesses
+     - netfilter: don't track fragmented packets
+     - [powerpc*] axonram: Fix gendisk handling
+     - drm/amd/amdgpu: fix console deadlock if late init failed
+     - [powerpc*] powernv/ioda2: Gracefully fail if too many TCE levels requested
+     - [x86] EDAC, i5000, i5400: Fix use of MTR_DRAM_WIDTH macro
+     - [x86] EDAC, i5000, i5400: Fix definition of NRECMEMB register
+     - kbuild: pkg: use --transform option to prefix paths in tar
+     - coccinelle: fix parallel build with CHECK=scripts/coccicheck
+     - mac80211_hwsim: Fix memory leak in hwsim_new_radio_nl()
+     - gre6: use log_ecn_error module parameter in ip6_tnl_rcv()
+     - route: also update fnhe_genid when updating a route cache
+     - route: update fnhe_expires for redirect when the fnhe exists
+     - NFS: Fix a typo in nfs_rename()
+     - sunrpc: Fix rpc_task_begin trace point
+     - xfs: fix forgotten rcu read unlock when skipping inode reclaim
+     - block: wake up all tasks blocked in get_request()
+     - zsmalloc: calling zs_map_object() from irq is a bug
+     - sctp: do not free asoc when it is already dead in sctp_sendmsg
+     - sctp: use the right sk after waking up from wait_buf sleep
+     - bpf: fix lockdep splat
+     - atm: horizon: Fix irq release error
+     - xfrm: Copy policy family in clone_policy
+     - IB/mlx4: Increase maximal message size under UD QP
+     - IB/mlx5: Assign send CQ and recv CQ of UMR QP
+     - afs: Connect up the CB.ProbeUuid
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.70
+     - [s390x] qeth: fix early exit from error path
+     - tipc: fix memory leak in tipc_accept_from_sock()
+     - rds: Fix NULL pointer dereference in __rds_rdma_map
+     - sit: update frag_off info
+     - packet: fix crash in fanout_demux_rollover()
+     - net/packet: fix a race in packet_bind() and packet_notifier()
+     - usbnet: fix alignment for frames with no ethernet header
+     - stmmac: reset last TSO segment size after device open
+     - tcp/dccp: block bh before arming time_wait timer
+     - [s390x] qeth: build max size GSO skbs on L2 devices
+     - [s390x] qeth: fix GSO throughput regression
+     - [s390x] qeth: fix thinko in IPv4 multicast address tracking
+     - tipc: call tipc_rcv() only if bearer is up in tipc_udp_recv()
+     - Fix handling of verdicts after NF_QUEUE
+     - ipmi: Stop timers before cleaning up the module
+     - [s390x] always save and restore all registers on context switch
+     - usb: gadget: ffs: Forbid usb_ep_alloc_request from sleeping
+     - fix kcm_clone()
+     - [armhf,arm64] KVM: vgic-its: Preserve the revious read from the pending
+       table
+     - [powerpc*] 64: Fix checksum folding in csum_tcpudp_nofold and
+       ip_fast_csum_nofold
+     - kbuild: do not call cc-option before KBUILD_CFLAGS initialization
+     - ipvlan: fix ipv6 outbound device
+     - audit: ensure that 'audit=1' actually enables audit for PID 1
+     - md: free unused memory after bitmap resize
+     - RDMA/cxgb4: Annotate r2 and stag as __be32
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.71
+     - mfd: fsl-imx25: Clean up irq settings during removal
+     - crypto: rsa - fix buffer overread when stripping leading zeroes
+     - autofs: fix careless error in recent commit
+     - tracing: Allocate mask_str buffer dynamically
+     - USB: uas and storage: Add US_FL_BROKEN_FUA for another JMicron JMS567 ID
+     - usbip: fix stub_rx: get_pipe() to validate endpoint number
+       (CVE-2017-16912)
+     - usbip: fix stub_rx: harden CMD_SUBMIT path to handle malicious input
+       (CVE-2017-16913)
+     - usbip: fix stub_send_ret_submit() vulnerability to null transfer_buffer
+       (CVE-2017-16914)
+     - ceph: drop negative child dentries before try pruning inode's alias
+     - usb: xhci: fix TDS for MTK xHCI1.1
+     - xhci: Don't add a virt_dev to the devs array before it's fully allocated
+     - nfs: don't wait on commit in nfs_commit_inode() if there were no commit
+       requests
+     - sched/rt: Do not pull from current CPU if only one CPU to pull
+     - eeprom: at24: change nvmem stride to 1
+     - dmaengine: dmatest: move callback wait queue to thread context
+     - ext4: fix fdatasync(2) after fallocate(2) operation
+     - ext4: fix crash when a directory's i_size is too small
+     - mac80211: Fix addition of mesh configuration element
+     - [x86] KVM: nVMX: do not warn when MSR bitmap address is not backed
+     - md-cluster: free md_cluster_info if node leave cluster
+     - userfaultfd: shmem: __do_fault requires VM_FAULT_NOPAGE
+     - userfaultfd: selftest: vm: allow to build in vm/ directory
+     - net: initialize msg.msg_flags in recvfrom
+     - bnxt_en: Ignore 0 value in autoneg supported speed from firmware.
+     - net: bcmgenet: correct the RBUF_OVFL_CNT and RBUF_ERR_CNT MIB values
+     - net: bcmgenet: correct MIB access of UniMAC RUNT counters
+     - net: bcmgenet: reserved phy revisions must be checked first
+     - net: bcmgenet: power down internal phy if open or resume fails
+     - net: bcmgenet: synchronize irq0 status between the isr and task
+     - net: bcmgenet: Power up the internal PHY before probing the MII
+     - rxrpc: Wake up the transmitter if Rx window size increases on the peer
+     - net/mlx5: Fix create autogroup prev initializer
+     - net/mlx5: Don't save PCI state when PCI error is detected
+     - drm/amdgpu: fix parser init error path to avoid crash in parser fini
+     - NFSD: fix nfsd_minorversion(.., NFSD_AVAIL)
+     - NFSD: fix nfsd_reset_versions for NFSv4.
+     - [armhf] drm/omap: fix dmabuf mmap for dma_alloc'ed buffers
+     - netfilter: bridge: honor frag_max_size when refragmenting
+     - blk-mq: Fix tagset reinit in the presence of cpu hot-unplug
+     - writeback: fix memory leak in wb_queue_work()
+     - net: wimax/i2400m: fix NULL-deref at probe
+     - dmaengine: Fix array index out of bounds warning in __get_unmap_pool()
+     - irqchip/mvebu-odmi: Select GENERIC_MSI_IRQ_DOMAIN
+     - net: Resend IGMP memberships upon peer notification.
+     - qed: Align CIDs according to DORQ requirement
+     - qed: Fix mapping leak on LL2 rx flow
+     - qed: Fix interrupt flags on Rx LL2
+     - scsi: hpsa: update check for logical volume status
+     - scsi: hpsa: limit outstanding rescans
+     - scsi: hpsa: do not timeout reset operations
+     - fjes: Fix wrong netdevice feature flags
+     - drm/radeon/si: add dpm quirk for Oland
+     - [x86] Drivers: hv: util: move waiting for release to hv_utils_transport
+       itself
+     - iwlwifi: mvm: cleanup pending frames in DQA mode
+     - sched/deadline: Add missing update_rq_clock() in dl_task_timer()
+     - sched/deadline: Make sure the replenishment timer fires in the next period
+     - sched/deadline: Throttle a constrained deadline task activated after the
+       deadline
+     - sched/deadline: Use deadline instead of period when calculating overflow
+     - drm/radeon: reinstate oland workaround for sclk
+     - afs: Fix missing put_page()
+     - afs: Populate group ID from vnode status
+     - afs: Adjust mode bits processing
+     - afs: Deal with an empty callback array
+     - afs: Flush outstanding writes when an fd is closed
+     - afs: Migrate vlocation fields to 64-bit
+     - afs: Prevent callback expiry timer overflow
+     - afs: Fix the maths in afs_fs_store_data()
+     - afs: Invalid op ID should abort with RXGEN_OPCODE
+     - afs: Better abort and net error handling
+     - afs: Populate and use client modification time
+     - afs: Fix page leak in afs_write_begin()
+     - afs: Fix afs_kill_pages()
+     - afs: Fix abort on signal while waiting for call completion
+     - nvme-loop: fix a possible use-after-free when destroying the admin queue
+     - nvmet: confirm sq percpu has scheduled and switched to atomic
+     - nvmet-rdma: Fix a possible uninitialized variable dereference
+     - net/mlx4_core: Avoid delays during VF driver device shutdown
+     - net: mpls: Fix nexthop alive tracking on down events
+     - rxrpc: Ignore BUSY packets on old calls
+     - tty: don't panic on OOM in tty_set_ldisc()
+     - tty: fix data race in tty_ldisc_ref_wait()
+     - perf symbols: Fix symbols__fixup_end heuristic for corner cases
+     - efi/esrt: Cleanup bad memory map log messages
+     - NFSv4.1 respect server's max size in CREATE_SESSION
+     - btrfs: add missing memset while reading compressed inline extents
+     - target: Use system workqueue for ALUA transitions
+     - target: fix ALUA transition timeout handling
+     - target: fix race during implicit transition work flushes
+     - [x86] Revert "x86/acpi: Set persistent cpuid <-> nodeid mapping when
+       booting"
+     - HID: cp2112: fix broken gpio_direction_input callback
+     - sfc: don't warn on successful change of MAC
+     - video: udlfb: Fix read EDID timeout
+     - rtc: pcf8563: fix output clock rate
+     - [x86] ASoC: Intel: Skylake: Fix uuid_module memory leak in failure case
+     - [armhf] dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type
+     - PCI/PME: Handle invalid data when reading Root Status
+     - powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo
+     - PCI: Do not allocate more buses than available in parent
+     - netfilter: ipvs: Fix inappropriate output of procfs
+     - [powerpc*] opal: Fix EBUSY bug in acquiring tokens
+     - [powerpc*] ipic: Fix status get and status clear
+     - [x86] platform: intel_punit_ipc: Fix resource ioremap warning
+     - target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd()
+     - iscsi-target: fix memory leak in lio_target_tiqn_addtpg()
+     - target:fix condition return in core_pr_dump_initiator_port()
+     - target/file: Do not return error for UNMAP if length is zero
+     - badblocks: fix wrong return value in badblocks_set if badblocks are
+       disabled
+     - [x86] iommu/amd: Limit the IOVA page range to the specified addresses
+     - xfs: truncate pagecache before writeback in xfs_setattr_size()
+     - crypto: tcrypt - fix buffer lengths in test_aead_speed()
+     - mm: Handle 0 flags in _calc_vm_trans() macro
+     - [armhf] clk: imx6: refine hdmi_isfr's parent to make HDMI work on i.MX6
+       SoCs w/o VPU
+     - [arm64] clk: hi6220: mark clock cs_atb_syspll as critical
+     - [armhf,arm64] clk: tegra: Fix cclk_lp divisor register
+     - ppp: Destroy the mutex when cleanup
+     - thermal/drivers/step_wise: Fix temperature regulation misbehavior
+     - scsi: scsi_debug: write_same: fix error report
+     - GFS2: Take inode off order_write list when setting jdata flag
+     - bcache: explicitly destroy mutex while exiting
+     - bcache: fix wrong cache_misses statistics
+     - Ib/hfi1: Return actual operational VLs in port info query
+     - [x86] platform: hp_accel: Add quirk for HP ProBook 440 G4
+     - nvme: use kref_get_unless_zero in nvme_find_get_ns
+     - l2tp: cleanup l2tp_tunnel_delete calls
+     - xfs: fix log block underflow during recovery cycle verification
+     - xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real
+     - RDMA/cxgb4: Declare stag as __be32
+     - PCI: Detach driver before procfs & sysfs teardown on device remove
+     - scsi: hpsa: cleanup sas_phy structures in sysfs when unloading
+     - scsi: hpsa: destroy sas transport properties before scsi_host
+     - [powerpc*] perf/hv-24x7: Fix incorrect comparison in memord
+     - tty fix oops when rmmod 8250
+     - raid5: Set R5_Expanded on parity devices as well as data.
+     - scsi: scsi_devinfo: Add REPORTLUN2 to EMC SYMMETRIX blacklist entry
+     - IB/core: Fix calculation of maximum RoCE MTU
+     - vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend
+     - rtl8188eu: Fix a possible sleep-in-atomic bug in rtw_createbss_cmd
+     - rtl8188eu: Fix a possible sleep-in-atomic bug in rtw_disassoc_cmd
+     - scsi: sd: change manage_start_stop to bool in sysfs interface
+     - scsi: sd: change allow_restart to bool in sysfs interface
+     - scsi: bfa: integer overflow in debugfs
+     - udf: Avoid overflow when session starts at large offset
+     - macvlan: Only deliver one copy of the frame to the macvlan interface
+     - RDMA/cma: Avoid triggering undefined behavior
+     - IB/ipoib: Grab rtnl lock on heavy flush when calling ndo_open/stop
+     - icmp: don't fail on fragment reassembly time exceeded
+     - ath9k: fix tx99 potential info leak
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.72
+     - cxl: Check if vphb exists before iterating over AFU devices
+     - [arm64] Initialise high_memory global variable earlier
+     - kvm: fix usage of uninit spinlock in avic_vm_destroy()
+     - [armhf] kprobes: Fix the return address of multiple kretprobes
+     - [armhf] kprobes: Align stack to 8-bytes in test code
+     - nvme-loop: handle cpu unplug when re-establishing the controller
+     - cpuidle: Validate cpu_dev in cpuidle_add_sysfs()
+     - r8152: fix the list rx_done may be used without initialization
+     - crypto: deadlock between crypto_alg_sem/rtnl_mutex/genl_mutex
+     - vsock: track pkt owner vsock
+     - vhost-vsock: add pkt cancel capability
+     - vsock: cancel packets when failing to connect
+     - sch_dsmark: fix invalid skb_cow() usage
+     - bna: integer overflow bug in debugfs
+     - sctp: out_qlen should be updated when pruning unsent queue
+     - usb: gadget: f_uvc: Sanity check wMaxPacketSize for SuperSpeed
+     - usb: gadget: udc: remove pointer dereference after free
+     - netfilter: nfnl_cthelper: fix runtime expectation policy updates
+     - netfilter: nfnl_cthelper: Fix memory leak
+     - [armhf] iommu/exynos: Workaround FLPD cache flush issues for SYSMMU v5
+     - r8152: fix the rx early size of RTL8153
+     - tipc: fix nametbl deadlock at tipc_nametbl_unsubscribe
+     - inet: frag: release spinlock before calling icmp_send()
+     - scsi: lpfc: Fix PT2PT PRLI reject
+     - [x86] kvm: vmx: Flush TLB when the APIC-access address changes
+     - [x86] KVM: correct async page present tracepoint
+     - [x86] KVM: VMX: Fix enable VPID conditions
+     - [armhf] dts: ti: fix PCI bus dtc warnings
+     - [x86] hwmon: (asus_atk0110) fix uninitialized data access
+     - HID: xinmo: fix for out of range for THT 2P arcade controller.
+     - ASoC: STI: Fix reader substream pointer set
+     - r8152: prevent the driver from transmitting packets with carrier off
+     - [s390x] qeth: size calculation outbound buffers
+     - [s390x] qeth: no ETH header for outbound AF_IUCV
+     - bna: avoid writing uninitialized data into hw registers
+     - i40iw: Receive netdev events post INET_NOTIFIER state
+     - IB/core: Protect against self-requeue of a cq work item
+     - infiniband: Fix alignment of mmap cookies to support VIPT caching
+     - nbd: set queue timeout properly
+     - net: Do not allow negative values for busy_read and busy_poll sysctl
+       interfaces
+     - IB/rxe: double free on error
+     - IB/rxe: increment msn only when completing a request
+     - i40e: Do not enable NAPI on q_vectors that have no rings
+     - RDMA/iser: Fix possible mr leak on device removal event
+     - irda: vlsi_ir: fix check for DMA mapping errors
+     - netfilter: nfnl_cthelper: fix a race when walk the nf_ct_helper_hash table
+     - netfilter: nf_nat_snmp: Fix panic when snmp_trap_helper fails to register
+     - [armhf] dts: am335x-evmsk: adjust mmc2 param to allow suspend
+     - cpufreq: Fix creation of symbolic links to policy directories
+     - net: ipconfig: fix ic_close_devs() use-after-free
+     - [x86] KVM: pci-assign: do not map smm memory slot pages in vt-d page
+       tables
+     - virtio-balloon: use actual number of stats for stats queue buffers
+     - virtio_balloon: prevent uninitialized variable use
+     - isdn: kcapi: avoid uninitialized data
+     - xhci: plat: Register shutdown for xhci_plat
+     - netfilter: nfnetlink_queue: fix secctx memory leak
+     - Btrfs: fix an integer overflow check
+     - [armel,armhf] dma-mapping: disallow dma_get_sgtable() for non-kernel
+       managed memory
+     - [powerpc*] cpuidle: powernv: Pass correct drv->cpumask for registration
+     - bnxt_en: Fix NULL pointer dereference in reopen failure path
+     - [armhf,arm64] backlight: pwm_bl: Fix overflow condition
+     - [armhf,arm64] rtc: pl031: make interrupt optional
+     - kvm, mm: account kvm related kmem slabs to kmemcg
+     - net: phy: at803x: Change error to EINVAL for invalid MAC
+     - PCI: Avoid bus reset if bridge itself is broken
+     - scsi: cxgb4i: fix Tx skb leak
+     - scsi: mpt3sas: Fix IO error occurs on pulling out a drive from RAID1
+       volume created on two SATA drive
+     - PCI: Create SR-IOV virtfn/physfn links before attaching driver
+     - PM / OPP: Move error message to debug level
+     - igb: check memory allocation failure
+     - ixgbe: fix use of uninitialized padding
+     - IB/rxe: check for allocation failure on elem
+     - PCI/AER: Report non-fatal errors only to the affected endpoint
+     - tracing: Exclude 'generic fields' from histograms
+     - fm10k: fix mis-ordered parameters in declaration for .ndo_set_vf_bw
+     - scsi: lpfc: Fix secure firmware updates
+     - scsi: lpfc: PLOGI failures during NPIV testing
+     - vfio/pci: Virtualize Maximum Payload Size
+     - fm10k: ensure we process SM mbx when processing VF mbx
+     - net: ipv6: send NS for DAD when link operationally up
+     - [armhf] clk: sunxi-ng: sun6i: Rename HDMI DDC clock to avoid name
+       collision
+     - tcp: fix under-evaluated ssthresh in TCP Vegas
+     - rtc: set the alarm to the next expiring timer
+     - cpuidle: fix broadcast control when broadcast can not be entered
+     - [arm64] thermal: hisilicon: Handle return value of clk_prepare_enable
+     - [arm64] thermal/drivers/hisi: Fix missing interrupt enablement
+     - [arm64] thermal/drivers/hisi: Fix kernel panic on alarm interrupt
+     - [arm64] thermal/drivers/hisi: Simplify the temperature/step computation
+     - [arm64] thermal/drivers/hisi: Fix multiple alarm interrupts firing
+     - [mips*] math-emu: Fix final emulation phase for certain instructions
+     - [x86] platform: asus-wireless: send an EV_SYN/SYN_REPORT between state
+       changes
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.73
+     - ACPI: APEI / ERST: Fix missing error handling in erst_reader()
+     - ALSA: rawmidi: Avoid racy info ioctl via ctl device
+     - spi: xilinx: Detect stall with Unknown commands
+     - [x86] KVM: X86: Fix load RFLAGS w/o the fixed bit
+     - [x86] kvm: x86: fix RSM when PCID is non-zero
+     - [armhf] clk: sunxi: sun9i-mmc: Implement reset callback for reset controls
+     - [powerpc*] powerpc/perf: Dereference BHRB entries safely
+     - bpf/verifier: Fix states_equal() comparison of pointer and UNKNOWN
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.74
+     - tracing: Remove extra zeroing out of the ring buffer page
+     - tracing: Fix possible double free on failure of allocating trace buffer
+     - tracing: Fix crash when it fails to alloc ring buffer
+     - ring-buffer: Mask out the info bits when returning buffer page length
+     - ASoC: wm_adsp: Fix validation of firmware and coeff lengths
+     - [x86] x86/vm86/32: Switch to flush_tlb_mm_range() in mark_screen_rdonly()
+     - [x86] x86/mm: Remove flush_tlb() and flush_tlb_current_task()
+     - [x86] x86/mm: Make flush_tlb_mm_range() more predictable
+     - [x86] x86/mm: Reimplement flush_tlb_page() using flush_tlb_mm_range()
+     - [x86] x86/mm: Remove the UP asm/tlbflush.h code, always use the (formerly) SMP code
+     - [x86] x86/mm: Disable PCID on 32-bit kernels
+     - [x86] x86/mm: Add the 'nopcid' boot option to turn off PCID
+     - [x86] x86/mm: Enable CR4.PCIDE on supported systems
+     - [amd64] x86/mm/64: Fix reboot interaction with CR4.PCIDE
+     - kbuild: add '-fno-stack-check' to kernel build options
+     - ipv4: igmp: guard against silly MTU values
+     - ipv6: mcast: better catch silly mtu values
+     - ptr_ring: add barriers
+     - RDS: Check cmsg_len before dereferencing CMSG_DATA
+     - tg3: Fix rx hang on MTU change with 5717/5719
+     - net: ipv4: fix for a race condition in raw_sendmsg
+     - ipv4: Fix use-after-free when flushing FIB tables
+     - net: bridge: fix early call to br_stp_change_bridge_id and plug newlink leaks
+     - net: Fix double free and memory corruption in get_net_ns_by_id() (CVE-2017-15129)
+     - net/mlx5e: Fix possible deadlock of VXLAN lock
+     - net/mlx5e: Prevent possible races in VXLAN control flow
+     - usbip: fix usbip bind writing random string after command in match_busid
+     - usbip: prevent leaking socket pointer address in messages
+     - usbip: stub: stop printing kernel pointer addresses in messages
+     - usbip: vhci: stop printing kernel pointer addresses in messages
+     - USB: Fix off by one in type-specific length check of BOS SSP capability
+     - nohz: Prevent a timer interrupt storm in tick_nohz_stop_sched_tick()
+     - [x86] x86/smpboot: Remove stale TLB flush invocations
+     - n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD)
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.75
+     - [x86] x86/boot: Add early cmdline parsing for options with arguments
+     - [amd64] KAISER: Kernel Address Isolation
+     - [amd64] kaiser: merged update
+     - [amd64] kaiser: do not set _PAGE_NX on pgd_none
+     - [amd64] kaiser: stack map PAGE_SIZE at THREAD_SIZE-PAGE_SIZE
+     - [amd64] kaiser: fix build and FIXME in alloc_ldt_struct()
+     - [amd64] kaiser: KAISER depends on SMP
+     - [amd64] kaiser: fix regs to do_nmi() ifndef CONFIG_KAISER
+     - [amd64] kaiser: fix perf crashes
+     - [amd64] kaiser: ENOMEM if kaiser_pagetable_walk() NULL
+     - [amd64] kaiser: tidied up asm/kaiser.h somewhat
+     - [amd64] kaiser: tidied up kaiser_add/remove_mapping slightly
+     - [amd64] kaiser: align addition to x86/mm/Makefile
+     - [amd64] kaiser: cleanups while trying for gold link
+     - [amd64] kaiser: name that 0x1000 KAISER_SHADOW_PGD_OFFSET
+     - [amd64] kaiser: delete KAISER_REAL_SWITCH option
+     - [amd64] kaiser: vmstat show NR_KAISERTABLE as nr_overhead
+     - [amd64] kaiser: enhanced by kernel and user PCIDs
+     - [amd64] kaiser: load_new_mm_cr3() let SWITCH_USER_CR3 flush user
+     - [amd64] kaiser: PCID 0 for kernel and 128 for user
+     - [amd64] kaiser: x86_cr3_pcid_noflush and x86_cr3_pcid_user
+     - [amd64] kaiser: paranoid_entry pass cr3 need to paranoid_exit
+     - [amd64] kaiser: kaiser_remove_mapping() move along the pgd
+     - [amd64] kaiser: fix unlikely error in alloc_ldt_struct()
+     - [amd64] kaiser: add "nokaiser" boot option, using ALTERNATIVE
+     - [amd64] x86/kaiser: Rename and simplify X86_FEATURE_KAISER handling
+     - [amd64] x86/kaiser: Check boottime cmdline params
+     - [amd64] kaiser: use ALTERNATIVE instead of x86_cr3_pcid_noflush
+     - [amd64] kaiser: drop is_atomic arg to kaiser_pagetable_walk()
+     - [amd64] kaiser: asm/tlbflush.h handle noPGE at lower level
+     - [amd64] kaiser: kaiser_flush_tlb_on_return_to_user() check PCID
+     - [amd64] x86/paravirt: Dont patch flush_tlb_single
+     - [amd64] x86/kaiser: Reenable PARAVIRT
+     - [amd64] kaiser: disabled on Xen PV
+     - [amd64] x86/kaiser: Move feature detection up
+     - [amd64] KPTI: Rename to PAGE_TABLE_ISOLATION
+     - [amd64] KPTI: Report when enabled
+     - [amd64] kaiser: Set _PAGE_NX only if supported
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.76
+     - crypto: n2 - cure use after free
+     - crypto: chacha20poly1305 - validate the digest size
+     - crypto: pcrypt - fix freeing pcrypt instances (CVE-2017-18075)
+     - nbd: fix use-after-free of rq/bio in the xmit path
+     - [arm] iommu/arm-smmu-v3: Don't free page table ops twice
+     - [arm] iommu/arm-smmu-v3: Cope with duplicated Stream IDs
+     - [x86] x86/microcode/AMD: Add support for fam17h microcode loading
+     - [hppa] parisc: Fix alignment of pa_tlb_lock in assembly on 32-bit SMP kernel
+     - [x86] Map the vsyscall page with _PAGE_USER
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.77
+     - mac80211: Add RX flag to indicate ICV stripped
+     - ath10k: rebuild crypto header in rx data frames
+     - [x86] KVM: Fix stack-out-of-bounds read in write_mmio
+     - [mips] MIPS: Fix an FCSR access API regression with NT_PRFPREG and MSA
+     - [x86] kvm: vmx: Scrub hardware GPRs at VM-exit (mitigates Spectre /
+       CVE-2017-5715 and CVE-2017-5753)
+     - ALSA: pcm: Remove incorrect snd_BUG_ON() usages
+     - RDS: Heap OOB write in rds_message_alloc_sgs() (CVE-2018-5332)
+     - RDS: null pointer dereference in rds_atomic_free_op (CVE-2018-5333)
+     - ipv6: fix possible mem leaks in ipv6_make_skb()
+     - mlxsw: spectrum_router: Fix NULL pointer deref
+     - crypto: algapi - fix NULL dereference in crypto_remove_spawns()
+     - [x86] x86/microcode/intel: Extend BDW late-loading with a revision check
+     - [x86] KVM: x86: Add memory barrier on vmcs field lookup (mitigates
+       Spectre#2 / CVE-2017-5715)
+     - [x86] kaiser: Set _PAGE_NX only if supported
+     - bpf: prevent out-of-bounds speculation (mitigates Spectre#1 /
+       CVE-2017-5753)
+     - bpf, array: fix overflow in max_entries and undefined behavior in index_mask
+     - USB: fix usbmon BUG trigger
+     - usbip: remove kernel addresses from usb device and urb debug msgs
+     - usbip: fix vudc_rx: harden CMD_SUBMIT path to handle malicious input
+     - usbip: vudc_tx: fix v_send_ret_submit() vulnerability to null xfer buffer
+     - Bluetooth: Prevent stack info leak from the EFS element.(CVE-2017-1000410)
+     - [x86] x86/retpoline: Add initial retpoline support (mitigates Spectre#2 /
+       CVE-2017-5715)
+     - [x86] x86/spectre: Add boot time option to select Spectre v2 mitigation
+     - [x86] x86/retpoline/crypto: Convert crypto assembler indirect jumps
+     - [x86] x86/retpoline/entry: Convert entry assembler indirect jumps
+     - [x86] x86/retpoline/ftrace: Convert ftrace assembler indirect jumps
+     - [x86] x86/retpoline/hyperv: Convert assembler indirect jumps
+     - [x86] x86/retpoline/xen: Convert Xen hypercall indirect jumps
+     - [x86] x86/retpoline/checksum32: Convert assembler indirect jumps
+     - [x86] x86/retpoline/irq32: Convert assembler indirect jumps
+     - [x86] x86/retpoline: Fill return stack buffer on vmexit
+     - [x86] x86/pti/efi: broken conversion from efi to kernel page table
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.78
+     - futex: Prevent overflow by strengthen input validation
+     - ALSA: seq: Make ioctls race-free
+     - af_key: fix buffer overread in verify_address_len()
+     - af_key: fix buffer overread in parse_exthdrs()
+     - iser-target: Fix possible use-after-free in connection establishment error
+     - [x86] x86/retpoline: Fill RSB on context switch for affected CPUs
+     - [x86] x86/retpoline: Add LFENCE to the retpoline/RSB filling RSB macros
+     - module: Add retpoline tag to VERMAGIC
+     - [x86] x86/mm/pkeys: Fix fill_sig_info_pkey
+     - [x86] x86/tsc: Fix erroneous TSC rate on Skylake Xeon
+     - pipe: avoid round_pipe_size() nr_pages overflow on 32-bit
+     - [x86] x86/apic/vector: Fix off by one in error path
+     - Input: ALPS - fix multi-touch decoding on SS4 plus touchpads
+     - Input: 88pm860x-ts - fix child-node lookup
+     - Input: twl6040-vibra - fix child-node lookup
+     - Input: twl4030-vibra - fix sibling-node lookup
+     - proc: fix coredump vs read /proc/*/stat race
+     - libata: apply MAX_SEC_1024 to all LITEON EP1 series devices
+     - workqueue: avoid hard lockups in show_workqueue_state()
+     - dm btree: fix serious bug in btree_split_beneath()
+     - dm thin metadata: THIN_MAX_CONCURRENT_LOCKS should be 6
+     - [arm64] arm64: KVM: Fix SMCCC handling of unimplemented SMC/HVC calls
+     - [x86] x86/cpu, x86/pti: Do not enable PTI on AMD processors
+     - usbip: fix warning in vhci_hcd_probe/lockdep_init_map
+     - [x86] x86/mce: Make machine check speculation protected
+     - [x86] retpoline: Introduce start/end markers of indirect thunk
+     - [x86] x86/retpoline: Optimize inline assembler for vmexit_fill_RSB
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.79
+     - [i386] x86/asm/32: Make sync_core() handle missing CPUID on all 32-bit kernels
+     - usbip: prevent vhci_hcd driver from leaking a socket pointer address (CVE-2017-16911)
+     - usbip: Fix potential format overflow in userspace tools
+     - [arm*] KVM: arm/arm64: Check pagesize when allocating a hugepage at Stage 2
+     - [amd64] Prevent timer value 0 for MWAITX
+     - drivers: base: cacheinfo: fix boot error message when acpi is enabled
+     - mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack
+     - ACPICA: Namespace: fix operand cache leak
+     - netfilter: nfnetlink_cthelper: Add missing permission checks
+     - netfilter: xt_osf: Add missing permission checks
+     - fs/fcntl: f_setown, avoid undefined behaviour
+     - Revert "module: Add retpoline tag to VERMAGIC"
+     - orangefs: fix deadlock; do not write i_size in read_iter
+     - um: link vmlinux with -no-pie
+     - vsyscall: Fix permissions for emulate mode with KAISER/PTI
+     - ipv6: fix udpv6 sendmsg crash caused by too small MTU
+     - ipv6: ip6_make_skb() needs to clear cork.base.dst
+     - net: igmp: fix source address check for IGMPv3 reports
+     - net: qdisc_pkt_len_init() should be more robust
+     - net: tcp: close sock if net namespace is exiting
+     - pppoe: take ->needed_headroom of lower device into account on xmit
+     - r8169: fix memory corruption on retrieval of hardware statistics.
+     - sctp: do not allow the v4 socket to bind a v4mapped v6 address
+     - sctp: return error if the asoc has been peeled off in sctp_wait_for_sndbuf
+     - flow_dissector: properly cap thoff field
+     - perf/x86/amd/power: Do not load AMD power module on !AMD platforms
+     - x86/microcode/intel: Extend BDW late-loading further with LLC size check
+     - bpf: fix bpf_tail_call() x64 JIT
+     - bpf: avoid false sharing of map refcount with max_entries
+     - bpf: fix divides by zero
+     - bpf: fix 32-bit divide by zero
+     - nfsd: auth: Fix gid sorting when rootsquash enabled
+     https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.80
+     - loop: fix concurrent lo_open/lo_release (CVE-2018-5344)
+     - gpio: Fix kernel stack leak to userspace
+     - crypto: aesni - handle zero length dst buffer
+     - crypto: sha3-generic - fixes for alignment and big endian operation
+     - HID: wacom: EKR: ensure devres groups at higher indexes are released
+     - igb: Free IRQs when device is hotplugged
+     - drm/vc4: Account for interrupts in flight
+     - [x86] KVM: x86: emulator: Return to user-mode on L1 CPL=0 emulation failure
+     - [x86] KVM: x86: Don't re-execute instruction when not passing CR2 value
+     - [x86] KVM: X86: Fix operand/address-size during instruction decoding
+     - [x86] KVM: x86: ioapic: Fix level-triggered EOI and IOAPIC reconfigure race
+     - [x86] KVM: x86: ioapic: Clear Remote IRR when entry is switched to edge-triggered
+     - ACPI / bus: Leave modalias empty for devices which are not present
+     - [x86] KVM: x86: ioapic: Preserve read-only values in the redirection table
+     - btrfs: fix deadlock when writing out space cache
+     - [x86] KVM: X86: Fix softlockup when get the current kvmclock
+     - KVM: VMX: Fix rflags cache during vCPU reset
+     - xfs: always free inline data before resetting inode fork during ifree
+     - kmemleak: add scheduling point to kmemleak_scan()
+     - scsi: aacraid: Prevent crash in case of free interrupt during scsi EH path
+     - scsi: ufs: ufshcd: fix potential NULL pointer dereference in ufshcd_config_vreg
+     - usb: gadget: don't dereference g until after it has been null checked
+     - tty: fix data race between tty_init_dev and flush of buf
+     - USB: serial: io_edgeport: fix possible sleep-in-atomic
+     - usbip: prevent bind loops on devices attached to vhci_hcd
+ 
+   [ Ben Hutchings ]
+   * [rt] Update to 4.9.68-rt60:
+     - Revert "memcontrol: Prevent scheduling while atomic in cgroup code"
+     - Revert "fs: jbd2: pull your plug when waiting for space"
+     - rtmutex: Fix lock stealing logic
+     - cpu_pm: replace raw_notifier to atomic_notifier
+     - PM / CPU: replace raw_notifier with atomic_notifier (fixup)
+     - kernel/hrtimer: migrate deferred timer on CPU down
+     - net: take the tcp_sk_lock lock with BH disabled
+     - kernel/hrtimer: don't wakeup a process while holding the hrtimer base lock
+     - kernel/hrtimer/hotplug: don't wake ktimersoftd while holding the hrtimer
+       base lock
+     - Bluetooth: avoid recursive locking in hci_send_to_channel()
+     - iommu/amd: Use raw_cpu_ptr() instead of get_cpu_ptr() for ->flush_queue
+     - rt/locking: allow recursive local_trylock()
+     - locking/rtmutex: don't drop the wait_lock twice
+     - net: use trylock in icmp_sk
+   * e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
+     (see bug #885348)
+   * [s390x] Un-revert upstream change moving exports to assembly sources
+ 
+   [ Yves-Alexis Perez ]
+   * mm, hugetlbfs: Avoid ABI change in 4.9.67.
+   * dma-fence: Avoid ABI change in 4.9.68.
+   * lib/genalloc: Avoid ABI change in 4.9.69.
+   * Ignore ABI changes in inet_diag, SCTP, vsock, NVME, MD and libsas drivers,
+     prevent FTBFS.
+   * debian/patches: drop patches included upstream:
+     - bugfix/all/e1000e-fix-e1000_check_for_copper_link_ich8lan-return-value.patch
+     - bugfix/all/kvm-fix-stack-out-of-bounds-read-in-write_mmio.patch
+     - bugfix/all/bluetooth-prevent-stack-info-leak-from-the-efs-element.patch
+     - bugfix/all/mm-mmap.c-do-not-blow-on-prot_none-map_fixed-holes-i.patch
+     - bugfix/all/netfilter-nfnetlink_cthelper-add-missing-permission-.patch
+     - bugfix/all/netfilter-xt_osf-add-missing-permission-checks.patch
+     - bugfix/all/nfsd-auth-Fix-gid-sorting-when-rootsquash-enabled.patch
+   * bpf: avoid ABI changes in 4.9.77 and 4.9.79.
+   * Ignore ABI change for cpu_tlbstate (symbol not exported _GPL anymore)
+   * sched/rt: Avoid ABI change in 4.9.66.
+   * Ignore ABI change for tcp_cong_avoid_ai and tcp_slow_start.
+   * RT patchset:
+     - fix context against 4.9.78 (164, 165, 229, 230)
+     - refresh for fuzz (228)
+   * mm: Avoid ABI change in 4.9.79.
+   * usbip: ignore ABI change in 4.9.79.
+   * cpupower: check for CPU existence has been fixed upstream, although a bit
+     differently than the included patch.
+ 
+   [ Salvatore Bonaccorso ]
+   * nfsd: auth: Fix gid sorting when rootsquash enabled (CVE-2018-1000028)
+ 
+  -- Yves-Alexis Perez <corsac at debian.org>  Sun, 04 Feb 2018 21:11:44 +0100
+ 
 +linux (4.9.65-3+deb9u3) UNRELEASED; urgency=medium
 +
 +  * abiupdate.py: Add support for security mirrors
 +
 + -- Ben Hutchings <ben at decadent.org.uk>  Fri, 12 Jan 2018 02:43:49 +0000
 +
  linux (4.9.65-3+deb9u2) stretch-security; urgency=high
  
    * x86: setup PCID, preparation work for KPTI.

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git



More information about the Kernel-svn-changes mailing list