kernel: Update to 4.14.14/4.9.77/4.4.112

The 4.4.14 has a number of important fixes/additions: - New support for retpolines (enabled but requires newer gcc to take advantage of). This provides mitigation for Spectre style attacks. - Various KPTI fixes including fixes for EFI booting - More eBPF fixes around out-of-bounds and overflow of maps. These were used for variant 1 of CVE-2017-5753. - Several KVM related to CVE-2017-5753, CVE-2017-5715, CVE-2017-17741. - New sysfs interface listing vulnerabilities: /sys/devices/system/cpu/vulnerabilities The 4.9.77 kernel also has seems to have most/all of the above back-ported. See https://lwn.net/SubscriberLink/744287/1fc3c18173f732e7/ for more details on the Spectre mitigation. Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>
2025-07-21 01:59:07 +00:00 · 2018-01-17 14:11:40 +00:00 · 2018-01-17 14:11:40 +00:00 · bfceb1dfbb
commit bfceb1dfbb
parent 0b39a733d0
20 changed files with 24 additions and 24 deletions
--- a/kernel/Makefile
+++ b/kernel/Makefile
@ -204,11 +204,11 @@ endef
 # Build Targets
 # Debug targets only for latest stable and LTS stable
 #
-$(eval $(call kernel,4.14.13,4.14.x,$(EXTRA)))
-$(eval $(call kernel,4.14.13,4.14.x,-dbg))
-$(eval $(call kernel,4.9.76,4.9.x,$(EXTRA)))
-$(eval $(call kernel,4.9.76,4.9.x,-dbg))
-$(eval $(call kernel,4.4.111,4.4.x,$(EXTRA)))
+$(eval $(call kernel,4.14.14,4.14.x,$(EXTRA)))
+$(eval $(call kernel,4.14.14,4.14.x,-dbg))
+$(eval $(call kernel,4.9.77,4.9.x,$(EXTRA)))
+$(eval $(call kernel,4.9.77,4.9.x,-dbg))
+$(eval $(call kernel,4.4.112,4.4.x,$(EXTRA)))

 # Target for kernel config
 kconfig: | sources
--- a/kernel/config-4.14.x-aarch64
+++ b/kernel/config-4.14.x-aarch64
@ -1,6 +1,6 @@
 #
 # Automatically generated file; DO NOT EDIT.
-# Linux/arm64 4.14.13 Kernel Configuration
+# Linux/arm64 4.14.14 Kernel Configuration
 #
 CONFIG_ARM64=y
 CONFIG_64BIT=y
--- a/kernel/config-4.14.x-x86_64
+++ b/kernel/config-4.14.x-x86_64
@ -1,6 +1,6 @@
 #
 # Automatically generated file; DO NOT EDIT.
-# Linux/x86 4.14.13 Kernel Configuration
+# Linux/x86 4.14.14 Kernel Configuration
 #
 CONFIG_64BIT=y
 CONFIG_X86_64=y
--- a/kernel/config-4.4.x-aarch64
+++ b/kernel/config-4.4.x-aarch64
@ -1,6 +1,6 @@
 #
 # Automatically generated file; DO NOT EDIT.
-# Linux/arm64 4.4.111 Kernel Configuration
+# Linux/arm64 4.4.112 Kernel Configuration
 #
 CONFIG_ARM64=y
 CONFIG_64BIT=y
--- a/kernel/config-4.4.x-x86_64
+++ b/kernel/config-4.4.x-x86_64
@ -1,6 +1,6 @@
 #
 # Automatically generated file; DO NOT EDIT.
-# Linux/x86 4.4.111 Kernel Configuration
+# Linux/x86 4.4.112 Kernel Configuration
 #
 CONFIG_64BIT=y
 CONFIG_X86_64=y
--- a/kernel/config-4.9.x-aarch64
+++ b/kernel/config-4.9.x-aarch64
@ -1,6 +1,6 @@
 #
 # Automatically generated file; DO NOT EDIT.
-# Linux/arm64 4.9.76 Kernel Configuration
+# Linux/arm64 4.9.77 Kernel Configuration
 #
 CONFIG_ARM64=y
 CONFIG_64BIT=y
--- a/kernel/config-4.9.x-x86_64
+++ b/kernel/config-4.9.x-x86_64
@ -1,6 +1,6 @@
 #
 # Automatically generated file; DO NOT EDIT.
-# Linux/x86 4.9.76 Kernel Configuration
+# Linux/x86 4.9.77 Kernel Configuration
 #
 CONFIG_64BIT=y
 CONFIG_X86_64=y
--- a/kernel/patches-4.14.x/0001-NVDIMM-reducded-ND_MIN_NAMESPACE_SIZE-from-4MB-to-4K.patch
+++ b/kernel/patches-4.14.x/0001-NVDIMM-reducded-ND_MIN_NAMESPACE_SIZE-from-4MB-to-4K.patch
@ -1,4 +1,4 @@
-From 872fdb22d86dc376b0359fc7a417f6f5c60f929d Mon Sep 17 00:00:00 2001
+From b5c58c8c5f25526e051c68e5ce3f3ff6f6276c00 Mon Sep 17 00:00:00 2001
 From: Cheng-mean Liu <soccerl@microsoft.com>
 Date: Tue, 11 Jul 2017 16:58:26 -0700
 Subject: [PATCH] NVDIMM: reducded ND_MIN_NAMESPACE_SIZE from 4MB to 4KB (page
--- a/kernel/patches-4.9.x/0001-tools-build-Add-test-for-sched_getcpu.patch
+++ b/kernel/patches-4.9.x/0001-tools-build-Add-test-for-sched_getcpu.patch
@ -1,4 +1,4 @@
-From e5b01d025fc10af9d1b8863858fafc6bab13ac20 Mon Sep 17 00:00:00 2001
+From b03fcf118aab45e91021a03fb071c6f8939a24d1 Mon Sep 17 00:00:00 2001
 From: Arnaldo Carvalho de Melo <acme@redhat.com>
 Date: Thu, 2 Mar 2017 12:55:49 -0300
 Subject: [PATCH 01/12] tools build: Add test for sched_getcpu()
--- a/kernel/patches-4.9.x/0002-perf-jit-Avoid-returning-garbage-for-a-ret-variable.patch
+++ b/kernel/patches-4.9.x/0002-perf-jit-Avoid-returning-garbage-for-a-ret-variable.patch
@ -1,4 +1,4 @@
-From 5e42cce486cd25ea8110dc131a9d4b1d0ce118c5 Mon Sep 17 00:00:00 2001
+From 86122e4fc58bb5d5a5ef6c02f4f7b44f9da85567 Mon Sep 17 00:00:00 2001
 From: Arnaldo Carvalho de Melo <acme@redhat.com>
 Date: Thu, 13 Oct 2016 17:12:35 -0300
 Subject: [PATCH 02/12] perf jit: Avoid returning garbage for a ret variable
--- a/kernel/patches-4.9.x/0003-hv_sock-introduce-Hyper-V-Sockets.patch
+++ b/kernel/patches-4.9.x/0003-hv_sock-introduce-Hyper-V-Sockets.patch
@ -1,4 +1,4 @@
-From 385566167757d44e8c2d924ecd526811e94107c2 Mon Sep 17 00:00:00 2001
+From 286dc60d9128405f97dc3010efca03c5b922fea6 Mon Sep 17 00:00:00 2001
 From: Dexuan Cui <decui@microsoft.com>
 Date: Sat, 23 Jul 2016 01:35:51 +0000
 Subject: [PATCH 03/12] hv_sock: introduce Hyper-V Sockets
--- a/kernel/patches-4.9.x/0004-vmbus-Don-t-spam-the-logs-with-unknown-GUIDs.patch
+++ b/kernel/patches-4.9.x/0004-vmbus-Don-t-spam-the-logs-with-unknown-GUIDs.patch
@ -1,4 +1,4 @@
-From 488c0b43468e7698b86be3045a4a525a975b1ef1 Mon Sep 17 00:00:00 2001
+From f4bb84982184af590bccef2726ef04ffb28004e9 Mon Sep 17 00:00:00 2001
 From: Rolf Neugebauer <rolf.neugebauer@gmail.com>
 Date: Mon, 23 May 2016 18:55:45 +0100
 Subject: [PATCH 04/12] vmbus: Don't spam the logs with unknown GUIDs
--- a/kernel/patches-4.9.x/0005-Drivers-hv-utils-Fix-the-mapping-between-host-versio.patch
+++ b/kernel/patches-4.9.x/0005-Drivers-hv-utils-Fix-the-mapping-between-host-versio.patch
@ -1,4 +1,4 @@
-From f431e509bfef0288b0232cd04800a5c0021579ef Mon Sep 17 00:00:00 2001
+From c032373698b1c82c222d834622391246bee9c88f Mon Sep 17 00:00:00 2001
 From: Alex Ng <alexng@messages.microsoft.com>
 Date: Sun, 6 Nov 2016 13:14:07 -0800
 Subject: [PATCH 05/12] Drivers: hv: utils: Fix the mapping between host
--- a/kernel/patches-4.9.x/0006-Drivers-hv-vss-Improve-log-messages.patch
+++ b/kernel/patches-4.9.x/0006-Drivers-hv-vss-Improve-log-messages.patch
@ -1,4 +1,4 @@
-From e52b50edf56de2d2a3028d63eac3f421e840ee56 Mon Sep 17 00:00:00 2001
+From 491aa03c8f4aeb600116510f555f602ce0806c52 Mon Sep 17 00:00:00 2001
 From: Alex Ng <alexng@messages.microsoft.com>
 Date: Sun, 6 Nov 2016 13:14:10 -0800
 Subject: [PATCH 06/12] Drivers: hv: vss: Improve log messages.
--- a/kernel/patches-4.9.x/0007-Drivers-hv-vss-Operation-timeouts-should-match-host-.patch
+++ b/kernel/patches-4.9.x/0007-Drivers-hv-vss-Operation-timeouts-should-match-host-.patch
@ -1,4 +1,4 @@
-From 60efee44afed95dae308084fd8391df60f61a258 Mon Sep 17 00:00:00 2001
+From 35be9dd9c0e37268c8cefc6d467cdd4f73510376 Mon Sep 17 00:00:00 2001
 From: Alex Ng <alexng@messages.microsoft.com>
 Date: Sun, 6 Nov 2016 13:14:11 -0800
 Subject: [PATCH 07/12] Drivers: hv: vss: Operation timeouts should match host
--- a/kernel/patches-4.9.x/0008-Drivers-hv-vmbus-Use-all-supported-IC-versions-to-ne.patch
+++ b/kernel/patches-4.9.x/0008-Drivers-hv-vmbus-Use-all-supported-IC-versions-to-ne.patch
@ -1,4 +1,4 @@
-From 0bfb0026817e53ff03a0329d481e340388ccc99b Mon Sep 17 00:00:00 2001
+From a48f7e87b9bfa8b2f099442f58da4eadf38c0bb5 Mon Sep 17 00:00:00 2001
 From: Alex Ng <alexng@messages.microsoft.com>
 Date: Sat, 28 Jan 2017 12:37:17 -0700
 Subject: [PATCH 08/12] Drivers: hv: vmbus: Use all supported IC versions to
--- a/kernel/patches-4.9.x/0009-Drivers-hv-Log-the-negotiated-IC-versions.patch
+++ b/kernel/patches-4.9.x/0009-Drivers-hv-Log-the-negotiated-IC-versions.patch
@ -1,4 +1,4 @@
-From 64e30fef072fe1bf6cbfc7597408a2293f911a3d Mon Sep 17 00:00:00 2001
+From 5d6dff7e1ba1cb9bd6be860fe271b6cbd26cc541 Mon Sep 17 00:00:00 2001
 From: Alex Ng <alexng@messages.microsoft.com>
 Date: Sat, 28 Jan 2017 12:37:18 -0700
 Subject: [PATCH 09/12] Drivers: hv: Log the negotiated IC versions.
--- a/kernel/patches-4.9.x/0010-vmbus-fix-missed-ring-events-on-boot.patch
+++ b/kernel/patches-4.9.x/0010-vmbus-fix-missed-ring-events-on-boot.patch
@ -1,4 +1,4 @@
-From 62533f95b9bfcdc6842216f1450f9461d0edfe79 Mon Sep 17 00:00:00 2001
+From 9a6d80864973aa8ab5ab624c7762672dcd36120e Mon Sep 17 00:00:00 2001
 From: Dexuan Cui <decui@microsoft.com>
 Date: Sun, 26 Mar 2017 16:42:20 +0800
 Subject: [PATCH 10/12] vmbus: fix missed ring events on boot
--- a/kernel/patches-4.9.x/0011-vmbus-remove-goto-error_clean_msglist-in-vmbus_open.patch
+++ b/kernel/patches-4.9.x/0011-vmbus-remove-goto-error_clean_msglist-in-vmbus_open.patch
@ -1,4 +1,4 @@
-From 58d96ad3f1ec6d1c4e72dc86f4eeb739565f1da9 Mon Sep 17 00:00:00 2001
+From 1a9b56e241b1336b16dac226c95619e084dba59c Mon Sep 17 00:00:00 2001
 From: Dexuan Cui <decui@microsoft.com>
 Date: Wed, 29 Mar 2017 18:37:10 +0800
 Subject: [PATCH 11/12] vmbus: remove "goto error_clean_msglist" in
--- a/kernel/patches-4.9.x/0012-vmbus-dynamically-enqueue-dequeue-the-channel-on-vmb.patch
+++ b/kernel/patches-4.9.x/0012-vmbus-dynamically-enqueue-dequeue-the-channel-on-vmb.patch
@ -1,4 +1,4 @@
-From 5bcd2328bb6e65506af11bee59a5f54983a016e6 Mon Sep 17 00:00:00 2001
+From d10159f1f7fb52fe94ade688f60688f11328c03e Mon Sep 17 00:00:00 2001
 From: Dexuan Cui <decui@microsoft.com>
 Date: Fri, 24 Mar 2017 20:53:18 +0800
 Subject: [PATCH 12/12] vmbus: dynamically enqueue/dequeue the channel on