Linux v4.18.7
This commit is contained in:
Laura Abbott
parent
bdaa844334
commit
2d9f342b83
|
|
@ -54,7 +54,7 @@ Summary: The Linux kernel
|
|||
%if 0%{?released_kernel}
|
||||
|
||||
# Do we have a -stable update to apply?
|
||||
%define stable_update 6
|
||||
%define stable_update 7
|
||||
# Set rpm version accordingly
|
||||
%if 0%{?stable_update}
|
||||
%define stablerev %{stable_update}
|
||||
|
|
@ -622,9 +622,6 @@ Patch501: Fix-for-module-sig-verification.patch
|
|||
# rhbz 1431375
|
||||
Patch502: input-rmi4-remove-the-need-for-artifical-IRQ.patch
|
||||
|
||||
# rhbz 1470995
|
||||
Patch504: kexec-bzimage-verify-pe-signature-fix.patch
|
||||
|
||||
# Support for unique build ids
|
||||
# All queued in the kbuild tree
|
||||
Patch506: 0001-kbuild-Add-build-salt-to-the-kernel-and-modules.patch
|
||||
|
|
@ -1912,6 +1909,9 @@ fi
|
|||
#
|
||||
#
|
||||
%changelog
|
||||
* Mon Sep 10 2018 Laura Abbott <labbott@redhat.com> - 4.18.7-300
|
||||
- Linux v4.18.7
|
||||
|
||||
* Wed Sep 05 2018 Laura Abbott <labbott@redhat.com> - 4.18.6-300
|
||||
- Linux v4.18.6
|
||||
|
||||
|
|
|
|||
|
|
@ -1,34 +0,0 @@
|
|||
From: Dave Young <dyoung@redhat.com>
|
||||
|
||||
Fix kexec_file_load pefile signature verification
|
||||
|
||||
Similar with Fix-for-module-sig-verification.patch, kexec_file syscall also
|
||||
need pass 1UL to verify_pefile_signature so that secondary keys can be used.
|
||||
|
||||
Fedora bug
|
||||
https://bugzilla.redhat.com/show_bug.cgi?id=1470995
|
||||
|
||||
Latest upstream effort is below:
|
||||
https://www.spinics.net/lists/kernel/msg2825184.html
|
||||
|
||||
Ideally this need an upstream fix, but since nobody response we can workaround
|
||||
it like the module code did.
|
||||
|
||||
Signed-off-by: Dave Young <dyoung@redhat.com>
|
||||
---
|
||||
arch/x86/kernel/kexec-bzimage64.c | 2 +-
|
||||
1 file changed, 1 insertion(+), 1 deletion(-)
|
||||
|
||||
--- linux-x86.orig/arch/x86/kernel/kexec-bzimage64.c
|
||||
+++ linux-x86/arch/x86/kernel/kexec-bzimage64.c
|
||||
@@ -533,7 +533,7 @@ static int bzImage64_cleanup(void *loade
|
||||
static int bzImage64_verify_sig(const char *kernel, unsigned long kernel_len)
|
||||
{
|
||||
return verify_pefile_signature(kernel, kernel_len,
|
||||
- NULL,
|
||||
+ (void *)1UL,
|
||||
VERIFYING_KEXEC_PE_SIGNATURE);
|
||||
}
|
||||
#endif
|
||||
--
|
||||
2.17.0
|
||||
2
sources
2
sources
|
|
@ -1,2 +1,2 @@
|
|||
SHA512 (linux-4.18.tar.xz) = 950eb85ac743b291afe9f21cd174d823e25f11883ee62cecfbfff8fe8c5672aae707654b1b8f29a133b1f2e3529e63b9f7fba4c45d6dacccc8000b3a9a9ae038
|
||||
SHA512 (patch-4.18.6.xz) = 9fe507cfc549e02fc52580cafa7a663522d3793830d2ac7e7f7686f68c20928b91395849cf5387831f79e42affe292665cb360541390be666987b3a0bab5ee1e
|
||||
SHA512 (patch-4.18.7.xz) = 483ce39833de636cc8ba52908db14819fcd61bf3a3bfe6409dc858bd5a563de24beade909fb71c3a529a5761f638398bc30fdf2796220ae3da78e3e2a363fdb7
|
||||
|
|
|
|||
Loading…
Reference in New Issue