Viktor Malik requested to merge redhat/rhel/sst/tps/bpf-centos-stream-9:bpf-6.8 into main Apr 24, 2024

Merge Request Required Information

Summary of Changes

Rebase BPF subsystem to upstream version 6.8.

In addition contains backport of two BPF features forgotten/skipped during the 6.7 rebase:

task_vma iterator,
fix potential premature unload in bpf_testmod.

The rebase also fixes several CVEs.

Omitted-fix: 6d2ed653185b ("lsm: move hook comments docs to security/security.c")
Documentation only, this MR backports just 1/21 commits that this commit fixes.

Omitted-fix: 1732ebc4a261 ("riscv, bpf: Fix unpredictable kernel crash about RV64 struct_ops")
Unsupported arch.

Approved Development Ticket

JIRA: https://issues.redhat.com/browse/RHEL-23644

JIRA: https://issues.redhat.com/browse/RHEL-19647

JIRA: https://issues.redhat.com/browse/RHEL-40832

JIRA: https://issues.redhat.com/browse/RHEL-30513
CVE: CVE-2023-52621

JIRA: https://issues.redhat.com/browse/RHEL-26486
CVE: CVE-2024-26591

JIRA: https://issues.redhat.com/browse/RHEL-26467
CVE: CVE-2024-26589

JIRA: https://issues.redhat.com/browse/RHEL-31726
CVE: CVE-2024-26737

JIRA: https://issues.redhat.com/browse/RHEL-37076
CVE: CVE-2023-52676

JIRA: https://issues.redhat.com/browse/RHEL-36815
CVE: CVE-2024-27431

JIRA: https://issues.redhat.com/browse/RHEL-31820
CVE: CVE-2024-26803

Depends: !4257 (merged)

Signed-off-by: Viktor Malik vmalik@redhat.com

Edited Jun 12, 2024 by Viktor Malik

bpf 6.8 rebase

Merge Request Required Information

Summary of Changes

Approved Development Ticket

Merge request reports