I'm announcing the release of the 4.19.234 kernel. All users of the 4.19 kernel series must upgrade. The updated 4.19.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-4.19.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-stable.git;a=summary thanks, greg k-h ------------ Documentation/admin-guide/hw-vuln/spectre.rst | 48 +++-- Documentation/admin-guide/kernel-parameters.txt | 8 Makefile | 2 arch/arm/include/asm/assembler.h | 10 + arch/arm/include/asm/spectre.h | 32 +++ arch/arm/kernel/Makefile | 2 arch/arm/kernel/entry-armv.S | 79 ++++++++ arch/arm/kernel/entry-common.S | 24 ++ arch/arm/kernel/spectre.c | 71 +++++++ arch/arm/kernel/traps.c | 65 ++++++- arch/arm/kernel/vmlinux.lds.h | 43 +++- arch/arm/mm/Kconfig | 11 + arch/arm/mm/proc-v7-bugs.c | 201 +++++++++++++++++++--- arch/x86/include/asm/cpufeatures.h | 2 arch/x86/include/asm/nospec-branch.h | 16 + arch/x86/kernel/cpu/bugs.c | 214 +++++++++++++++++------- drivers/block/xen-blkfront.c | 63 ++++--- drivers/firmware/psci.c | 15 + drivers/net/xen-netfront.c | 54 +++--- drivers/scsi/xen-scsifront.c | 3 drivers/xen/gntalloc.c | 25 -- drivers/xen/grant-table.c | 71 ++++--- drivers/xen/pvcalls-front.c | 8 drivers/xen/xenbus/xenbus_client.c | 24 +- include/linux/arm-smccc.h | 74 ++++++++ include/linux/bpf.h | 11 + include/xen/grant_table.h | 19 +- init/Kconfig | 3 kernel/sysctl.c | 8 net/9p/trans_xen.c | 14 - tools/arch/x86/include/asm/cpufeatures.h | 2 31 files changed, 962 insertions(+), 260 deletions(-) Borislav Petkov (1): x86/speculation: Merge one test in spectre_v2_user_select_mitigation() Emmanuel Gil Peyrot (1): ARM: fix build error when BPF_SYSCALL is disabled Greg Kroah-Hartman (1): Linux 4.19.234 Josh Poimboeuf (3): x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting x86/speculation: Warn about Spectre v2 LFENCE mitigation x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT Juergen Gross (11): xen/xenbus: don't let xenbus_grant_ring() remove grants in error case xen/grant-table: add gnttab_try_end_foreign_access() xen/blkfront: don't use gnttab_query_foreign_access() for mapped status xen/netfront: don't use gnttab_query_foreign_access() for mapped status xen/scsifront: don't use gnttab_query_foreign_access() for mapped status xen/gntalloc: don't use gnttab_query_foreign_access() xen: remove gnttab_query_foreign_access() xen/9p: use alloc/free_pages_exact() xen/pvcalls: use alloc/free_pages_exact() xen/gnttab: fix gnttab_end_foreign_access() without page specified xen/netfront: react properly to failing gnttab_end_foreign_access_ref() Kim Phillips (2): x86/speculation: Use generic retpoline by default on AMD x86/speculation: Update link to AMD speculation whitepaper Mark Rutland (1): arm/arm64: smccc/psci: add arm_smccc_1_1_get_conduit() Nathan Chancellor (1): ARM: Do not use NOCROSSREFS directive with ld.lld Peter Zijlstra (3): x86,bugs: Unconditionally allow spectre_v2=retpoline,amd x86/speculation: Add eIBRS + Retpoline options Documentation/hw-vuln: Update spectre doc Peter Zijlstra (Intel) (1): x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE Russell King (Oracle) (7): ARM: report Spectre v2 status through sysfs ARM: early traps initialisation ARM: use LOADADDR() to get load address of sections ARM: Spectre-BHB workaround ARM: include unprivileged BPF status in Spectre V2 reporting ARM: fix co-processor register typo ARM: fix build warning in proc-v7-bugs.c Sami Tolvanen (1): kbuild: add CONFIG_LD_IS_LLD Steven Price (1): arm/arm64: Provide a wrapper for SMCCC 1.1 calls
