[linux-yocto] v4.18.x - stable updates comprising v4.18.45
Paul Gortmaker
paul.gortmaker at windriver.com
Sat Sep 21 11:37:07 PDT 2019
Bruce, Yocto kernel folks:
Here is the *final* 4.18.x stable update "extension" primarily created
for the Yocto project, continuing from the previous v4.18.44 release.
This final release closes out a run of 25 releases and about 4600
backports since GregKH stopped maintenance at v4.18.20, just under a
year ago. I hope people have found the update extentsions useful during
that period; both Yocto users and "vanilla" 4.18.x users alike.
I didn't send an announce for 4.18.44, since I wanted to finish this
4.18.x run with the addition of the recent spectre-v1 (swapgs) variant
fixes. But I wanted to also keep them separate to ease testing and
evaluation for integrators. So the 44 is "normal" content, and the 45
is specific to spectre-v1/swapgs content, basically.
More specifically, the 4.18.44 release contains about 235 mainline
commits based on what was found in 4.19.51 --> 4.19.55 stable content.
The 4.18.45 release contains the swapgs (CVE-2019-1125) content, plus a
couple powerpc CVE fixes that caught my eye. The x86 users can check:
# cat /sys/devices/system/cpu/vulnerabilities/spectre_v1
Mitigation: usercopy/swapgs barriers and __user pointer sanitization
Check Documentation/admin-guide/hw-vuln/spectre.rst for more info.
I've put this *final* 4.18.45 queue through the usual testing; build
testing on x86-64/32, ARM-64/32, PPC and MIPS, plus some static analysis
and finally some sanity runtime tests on x86-64. The 4.18.44 release
also got the same independent testing prior to starting 4.18.45.
I did the signed tag just as per the previously released versions.
Please find a signed v4.18.45 tag using this key:
http://pgp.mit.edu/pks/lookup?op=vindex&search=0xEBCE84042C07D1D6
in the repo in the kernel.org directory here:
https://git.kernel.org/pub/scm/linux/kernel/git/paulg/linux-4.18.y.git/?h=linux-4.18.y
git://git.kernel.org/pub/scm/linux/kernel/git/paulg/linux-4.18.y.git
for merge to standard/base in linux-yocto-4.18 and then out from there
into the other base and BSP branches.
For those who are interested, the evolution of the commits is here:
https://git.kernel.org/cgit/linux/kernel/git/paulg/longterm-queue-4.18.git/
This repo isn't needed for anything; it just exists for transparency and
so people can see the evolution of the raw commits that were originally
selected to create this 4.18.x release.
Paul.
More information about the linux-yocto
mailing list