Add DmVerity Support
Add support for kernel crypto API in user space
Add kernel crypto configs to enable tcrypt in FIPS mode
Add several networking tools. Enable LLVM RTTI.
Add Libacvp Package
Add sha512hmac-openssl to kernel-hyperv source
Add CONFIG_CRYPTO_STATS line in kernel configs
Add FIPS-enabled core image
Add FIPS patches for OpenSSL
Add package "dracut-fips"
Add conntrack-tools, nmap, pigz, blobfuse
Add verity-read-only-root package to LICENSES-MAP
Add support for read-only-roots to Imager tool
Add read-only-root config for images
Add verity-read-only-root package
Add initramfs library to write new initramfs files
Add libconfini
Add Kubernetes Containers
- etcd
- coredns
- flannel
Add smartpqi to kernel (enabled CONFIG_SCSI_SMARTPQI)
Add reed solomon decode 8 bit to kernel (enable REED_SOLOMON_DEC8)
Add extras repo configuration package.
Add Overlay Based Difference Image creation to roast.
Enable lz4 compression in systemd
Add LibConfini, bmon, bpftrace, libconfuse, libmaxminddb, ntopng, vnstat
Upgrade mysql to 8.0.23
Upgrade golang to 1.15.7
Upgrade openldap to 2.4.57
Upgrade dnsmasq to 2.84
Upgrade pigz to 2.6
Fixed sudo config.
Fixed documentation for typos, clone instructions, and added reference to demo repo.
Fixed kernel crash dump issue by disabling CONFIG_GCC_PLUGIN_RANDSTRUCT
Fixed td-agent installation issue
Fix reliability of mount/unmount of disks in imagegen tools
Fix WALinuxAgent logging by removing symlink and allowing WALinuxAgent to write to /var/log/waagent.log directly.
Miscelleaneous fixes to spec files for changelogs, urls, linter findings
Security Fixes
CVE-2020-15358
CVE-2020-17380
CVE-2020-25683
CVE-2020-25686
CVE-2020-25687
CVE 2020-36242
CVE-2021-3156
CVE-2021-3177
CVE-2021-3326
Fix package self tests for acl, mercurial, nss, perl-IO-Socket-SSL, gnutls