Bug #1914447 “geneve overlay network on vlan interface broken wi...” : Bugs : linux package : Ubuntu

Revision history for this message

James Page (james-page) wrote on 2021-02-03:

#1

Dependencies.txt Edit (2.1 KiB, text/plain; charset="utf-8")
ProcCpuinfoMinimal.txt Edit (1.5 KiB, text/plain; charset="utf-8")

Junien F (axino) on 2021-02-03

tags:

added: ps5

Revision history for this message

Stefan Bader (smb) wrote on 2021-02-03:

#2

Backport of suggested patch Edit (3.4 KiB, text/plain)

I just uploaded a test kernel to https://launchpad.net/~smb/+archive/ubuntu/focal (currently building) with a backport of the suggested patch. The 5.8 code seems to differ from latest upstream quite a bit. Instead of several places which get adapted upstream there is basically only one caller that gets modified.

affects:	linux-signed-hwe-5.8 (Ubuntu) → linux-hwe-5.8 (Ubuntu)
Changed in linux-hwe-5.8 (Ubuntu):
assignee:	nobody → Stefan Bader (smb)
status:	New → In Progress
importance:	Undecided → Medium

Ubuntu Foundations Team Bug Bot (crichton) on 2021-02-03

tags:

added: patch

Revision history for this message

Frode Nordahl (fnordahl) wrote on 2021-02-04:

#3

Hello Stefan,

Thank you so much for providing backport+built kernel at such short notice.

We can confirm that by using this kernel in a machine with a Mellanox Connect-X 5 card in legacy-mode, we can leverage Stateless offload of Geneve tunnel packets sent over a VLAN interface.

Cheers!

Revision history for this message

Stefan Bader (smb) wrote on 2021-02-08:

#4

Thanks for the feedback Frode. Just to explain further modifications to this bug report. For SRU this will be targeted at the 20.10/Groovy 5.8 kernel. When it lands there it will automatically be included in the next 20.04/Focal HWE kernel.

The patch comes from upstream v5.11-rc3, so it should be included in the final 21.04/Hirsute kernel.

affects:	linux-hwe-5.8 (Ubuntu) → linux (Ubuntu)
no longer affects:	linux (Ubuntu Focal)
Changed in linux (Ubuntu Groovy):
assignee:	nobody → Stefan Bader (smb)
importance:	Undecided → Medium
status:	New → In Progress
Changed in linux (Ubuntu):
assignee:	Stefan Bader (smb) → nobody
status:	In Progress → Triaged

Stefan Bader (smb) on 2021-02-08

description:

updated

Kelsey Steele (kelsey-steele) on 2021-02-13

Changed in linux (Ubuntu Groovy):
status:	In Progress → Fix Committed

Revision history for this message

James Page (james-page) wrote on 2021-02-18:

#5

Please can this be considered for Linux 5.4 as well.

Changed in linux (Ubuntu Focal):
importance:	Undecided → Medium
importance:	Medium → High

Stefan Bader (smb) on 2021-02-18

Changed in linux (Ubuntu Focal):
assignee:	nobody → Stefan Bader (smb)
importance:	High → Medium
status:	New → Triaged

Stefan Bader (smb) on 2021-02-18

Changed in linux (Ubuntu Focal):
status:	Triaged → In Progress

Stefan Bader (smb) on 2021-02-19

Changed in linux (Ubuntu Focal):
status:	In Progress → Fix Committed

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2021-02-24:

#6

This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-groovy' to 'verification-done-groovy'. If the problem still exists, change the tag 'verification-needed-groovy' to 'verification-failed-groovy'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:	added: verification-needed-groovy
tags:	added: verification-needed-focal

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2021-02-24:

#7

This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-focal' to 'verification-done-focal'. If the problem still exists, change the tag 'verification-needed-focal' to 'verification-failed-focal'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-03-15:

#8

Download full text (18.6 KiB)

This bug was fixed in the package linux - 5.8.0-45.51

---------------
linux (5.8.0-45.51) groovy; urgency=medium

* groovy/linux: 5.8.0-45.51 -proposed tracker (LP: #1916143)

  * Please trust Canonical Livepatch Service kmod signing key (LP: #1898716)
    - [Config] enable CONFIG_MODVERSIONS=y
    - [Packaging] build canonical-certs.pem from branch/arch certs
    - [Config] add Canonical Livepatch Service key to SYSTEM_TRUSTED_KEYS
    - [Config] add ubuntu-drivers key to SYSTEM_TRUSTED_KEYS
    - [Config] Allow ASM_MODVERSIONS and MODULE_REL_CRCS

  * CVE-2021-20194
    - bpf, cgroup: Fix optlen WARN_ON_ONCE toctou
    - bpf, cgroup: Fix problematic bounds check

  * Missing device id for Intel TGL-H ISH [8086:43fc] in intel-ish-hid driver
    (LP: #1914543)
    - HID: intel-ish-hid: ipc: Add Tiger Lake H PCI device ID

  * Prevent thermal shutdown during boot process (LP: #1906168)
    - thermal/core: Emit a warning if the thermal zone is updated without ops
    - thermal/core: Add critical and hot ops
    - thermal/drivers/acpi: Use hot and critical ops
    - thermal/drivers/rcar: Remove notification usage
    - thermal: int340x: Fix unexpected shutdown at critical temperature
    - thermal: intel: pch: Fix unexpected shutdown at critical temperature

  * geneve overlay network on vlan interface broken with offload enabled
    (LP: #1914447)
    - net/mlx5e: Fix SWP offsets when vlan inserted by driver

  * Groovy update: upstream stable patchset 2021-02-11 (LP: #1915473)
    - net: cdc_ncm: correct overhead in delayed_ndp_size
    - net: hns3: fix the number of queues actually used by ARQ
    - net: hns3: fix a phy loopback fail issue
    - net: stmmac: dwmac-sun8i: Balance internal PHY resource references
    - net: stmmac: dwmac-sun8i: Balance internal PHY power
    - net: vlan: avoid leaks on register_vlan_dev() failures
    - net/sonic: Fix some resource leaks in error handling paths
    - net: ipv6: fib: flush exceptions when purging route
    - tools: selftests: add test for changing routes with PTMU exceptions
    - net: fix pmtu check in nopmtudisc mode
    - net: ip: always refragment ip defragmented packets
    - octeontx2-af: fix memory leak of lmac and lmac->name
    - nexthop: Fix off-by-one error in error path
    - nexthop: Unlink nexthop group entry in error path
    - s390/qeth: fix L2 header access in qeth_l3_osa_features_check()
    - net: dsa: lantiq_gswip: Exclude RMII from modes that report 1 GbE
    - net/mlx5: Use port_num 1 instead of 0 when delete a RoCE address
    - net/mlx5e: ethtool, Fix restriction of autoneg with 56G
    - chtls: Fix hardware tid leak
    - chtls: Remove invalid set_tcb call
    - chtls: Fix panic when route to peer not configured
    - chtls: Replace skb_dequeue with skb_peek
    - chtls: Added a check to avoid NULL pointer dereference
    - chtls: Fix chtls resources release sequence
    - HID: wacom: Fix memory leakage caused by kfifo_alloc
    - ARM: OMAP2+: omap_device: fix idling of devices during probe
    - i2c: sprd: use a specific timeout to avoid system hang up issue
    - dmaengine: dw-edma: Fix use after free in dw_edma_alloc_chunk()
    - can: tcan4x5x: fix bittiming const...

This bug was fixed in the package linux - 5.8.0-45.51

---------------
linux (5.8.0-45.51) groovy; urgency=medium

* groovy/linux: 5.8.0-45.51 -proposed tracker (LP: #1916143)

* Please trust Canonical Livepatch Service kmod signing key (LP: #1898716)
    - [Config] enable CONFIG_MODVERSIONS=y
    - [Packaging] build canonical-certs.pem from branch/arch certs
    - [Config] add Canonical Livepatch Service key to SYSTEM_TRUSTED_KEYS
    - [Config] add ubuntu-drivers key to SYSTEM_TRUSTED_KEYS
    - [Config] Allow ASM_MODVERSIONS and MODULE_REL_CRCS

* CVE-2021-20194
    - bpf, cgroup: Fix optlen WARN_ON_ONCE toctou
    - bpf, cgroup: Fix problematic bounds check

* Missing device id for Intel TGL-H ISH [8086:43fc] in intel-ish-hid driver
    (LP: #1914543)
    - HID: intel-ish-hid: ipc: Add Tiger Lake H PCI device ID

* Prevent thermal shutdown during boot process (LP: #1906168)
    - thermal/core: Emit a warning if the thermal zone is updated without ops
    - thermal/core: Add critical and hot ops
    - thermal/drivers/acpi: Use hot and critical ops
    - thermal/drivers/rcar: Remove notification usage
    - thermal: int340x: Fix unexpected shutdown at critical temperature
    - thermal: intel: pch: Fix unexpected shutdown at critical temperature

* geneve overlay network on vlan interface broken with offload enabled
    (LP: #1914447)
    - net/mlx5e: Fix SWP offsets when vlan inserted by driver

* Groovy update: upstream stable patchset 2021-02-11 (LP: #1915473)
    - net: cdc_ncm: correct overhead in delayed_ndp_size
    - net: hns3: fix the number of queues actually used by ARQ
    - net: hns3: fix a phy loopback fail issue
    - net: stmmac: dwmac-sun8i: Balance internal PHY resource references
    - net: stmmac: dwmac-sun8i: Balance internal PHY power
    - net: vlan: avoid leaks on register_vlan_dev() failures
    - net/sonic: Fix some resource leaks in error handling paths
    - net: ipv6: fib: flush exceptions when purging route
    - tools: selftests: add test for changing routes with PTMU exceptions
    - net: fix pmtu check in nopmtudisc mode
    - net: ip: always refragment ip defragmented packets
    - octeontx2-af: fix memory leak of lmac and lmac->name
    - nexthop: Fix off-by-one error in error path
    - nexthop: Unlink nexthop group entry in error path
    - s390/qeth: fix L2 header access in qeth_l3_osa_features_check()
    - net: dsa: lantiq_gswip: Exclude RMII from modes that report 1 GbE
    - net/mlx5: Use port_num 1 instead of 0 when delete a RoCE address
    - net/mlx5e: ethtool, Fix restriction of autoneg with 56G
    - chtls: Fix hardware tid leak
    - chtls: Remove invalid set_tcb call
    - chtls: Fix panic when route to peer not configured
    - chtls: Replace skb_dequeue with skb_peek
    - chtls: Added a check to avoid NULL pointer dereference
    - chtls: Fix chtls resources release sequence
    - HID: wacom: Fix memory leakage caused by kfifo_alloc
    - ARM: OMAP2+: omap_device: fix idling of devices during probe
    - i2c: sprd: use a specific timeout to avoid system hang up issue
    - dmaengine: dw-edma: Fix use after free in dw_edma_alloc_chunk()
    - can: tcan4x5x: fix bittiming const, use common bittiming from m_can driver
    - can: m_can: m_can_class_unregister(): remove erroneous m_can_clk_stop()
    - can: kvaser_pciefd: select CONFIG_CRC32
    - cpufreq: powernow-k8: pass policy rather than use cpufreq_cpu_get()
    - spi: stm32: FIFO threshold level - fix align packet size
    - i2c: i801: Fix the i2c-mux gpiod_lookup_table not being properly terminated
    - dmaengine: mediatek: mtk-hsdma: Fix a resource leak in the error handling
      path of the probe function
    - dmaengine: xilinx_dma: check dma_async_device_register return value
    - dmaengine: xilinx_dma: fix incompatible param warning in _child_probe()
    - dmaengine: xilinx_dma: fix mixed_enum_type coverity warning
    - qed: select CONFIG_CRC32
    - wil6210: select CONFIG_CRC32
    - block: rsxx: select CONFIG_CRC32
    - lightnvm: select CONFIG_CRC32
    - iommu/intel: Fix memleak in intel_irq_remapping_alloc
    - bpftool: Fix compilation failure for net.o with older glibc
    - net/mlx5e: Fix memleak in mlx5e_create_l2_table_groups
    - net/mlx5e: Fix two double free cases
    - regmap: debugfs: Fix a memory leak when calling regmap_attach_dev
    - wan: ds26522: select CONFIG_BITREVERSE
    - regulator: qcom-rpmh-regulator: correct hfsmps515 definition
    - net: mvpp2: disable force link UP during port init procedure
    - KVM: arm64: Don't access PMCR_EL0 when no PMU is available
    - block: fix use-after-free in disk_part_iter_next
    - net: drop bogus skb with CHECKSUM_PARTIAL and offset beyond end of trimmed
      packet
    - regmap: debugfs: Fix a reversed if statement in regmap_debugfs_init()
    - drm/panfrost: Don't corrupt the queue mutex on open/close
    - scsi: ufs: Fix -Wsometimes-uninitialized warning
    - btrfs: skip unnecessary searches for xattrs when logging an inode
    - net: stmmac: dwmac-sun8i: Fix probe error handling
    - net: stmmac: dwmac-sun8i: Balance syscon (de)initialization
    - net: bareudp: add missing error handling for bareudp_link_config()
    - ptp: ptp_ines: prevent build when HAS_IOMEM is not set
    - chtls: Avoid unnecessary freeing of oreq pointer
    - nexthop: Bounce NHA_GATEWAY in FDB nexthop groups
    - net/mlx5e: In skb build skip setting mark in switchdev mode
    - ionic: start queues before announcing link up
    - fanotify: Fix sys_fanotify_mark() on native x86-32
    - spi: spi-geni-qcom: Fix geni_spi_isr() NULL dereference in timeout case
    - i2c: mediatek: Fix apdma and i2c hand-shake timeout
    - interconnect: imx: Add a missing of_node_put after of_device_is_available
    - dmaengine: milbeaut-xdmac: Fix a resource leak in the error handling path of
      the probe function
    - arm64: mm: Fix ARCH_LOW_ADDRESS_LIMIT when !CONFIG_ZONE_DMA
    - phy: dp83640: select CONFIG_CRC32
    - zonefs: select CONFIG_CRC32
    - iommu/vt-d: Fix misuse of ALIGN in qi_flush_piotlb()
    - nvme-tcp: Fix possible race of io_work and direct send
    - arm64: cpufeature: remove non-exist CONFIG_KVM_ARM_HOST
    - drm/i915/dp: Track pm_qos per connector
    - net: mvneta: fix error message when MTU too large for XDP
    - selftests: fib_nexthops: Fix wrong mausezahn invocation
    - block/rnbd-clt: avoid module unload race with close confirmation
    - drm/panfrost: Remove unused variables in panfrost_job_close()
    - tools headers UAPI: Sync linux/fscrypt.h with the kernel sources

* Fix the video can't output through WD19TB connected  on TGL's Type-C port
    during cold-boot (LP: #1913372)
    - drm/dp/mst: Export drm_dp_get_vc_payload_bw()
    - drm/i915: Fix the MST PBN divider calculation

*  Fix regression introduced by codec PM change (LP: #1912676)
    - ASoC: SOF: Intel: hda: Resume codec to do jack detection
    - ASoC: SOF: Intel: hda: Modify existing helper to disable WAKEEN
    - ASoC: SOF: Intel: hda: Avoid checking jack on system suspend
    - ALSA: hda: Balance runtime/system PM if direct-complete is disabled

* Restore palm ejection on multi-input devices (LP: #1913520)
    - HID: multitouch: Apply MT_QUIRK_CONFIDENCE quirk for multi-input devices

* intel-hid is not loaded on new Intel platform (LP: #1907160)
    - platform/x86: intel-hid: add Rocket Lake ACPI device ID

* Remove scary stack trace from Realtek WiFi driver (LP: #1913263)
    - rtw88: reduce the log level for failure of tx report

* Groovy update: upstream stable patchset 2021-02-05 (LP: #1914832)
    - i40e: Fix Error I40E_AQ_RC_EINVAL when removing VFs
    - iavf: fix double-release of rtnl_lock
    - net/sched: sch_taprio: ensure to reset/destroy all child qdiscs
    - net: mvpp2: Add TCAM entry to drop flow control pause frames
    - net: mvpp2: prs: fix PPPoE with ipv6 packet parse
    - net: systemport: set dev->max_mtu to UMAC_MAX_MTU_SIZE
    - ethernet: ucc_geth: fix use-after-free in ucc_geth_remove()
    - ethernet: ucc_geth: set dev->max_mtu to 1518
    - ionic: account for vlan tag len in rx buffer len
    - atm: idt77252: call pci_disable_device() on error path
    - net: mvpp2: Fix GoP port 3 Networking Complex Control configurations
    - ibmvnic: fix login buffer memory leak
    - ibmvnic: continue fatal error reset after passive init
    - net: ethernet: mvneta: Fix error handling in mvneta_probe
    - virtio_net: Fix recursive call to cpus_read_lock()
    - net/ncsi: Use real net-device for response handler
    - net: ethernet: Fix memleak in ethoc_probe
    - net-sysfs: take the rtnl lock when storing xps_cpus
    - net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc
    - net-sysfs: take the rtnl lock when storing xps_rxqs
    - net-sysfs: take the rtnl lock when accessing xps_rxqs_map and num_tc
    - net: ethernet: ti: cpts: fix ethtool output when no ptp_clock registered
    - tun: fix return value when the number of iovs exceeds MAX_SKB_FRAGS
    - bnxt_en: Check TQM rings for maximum supported value.
    - net: mvpp2: fix pkt coalescing int-threshold configuration
    - bnxt_en: Fix AER recovery.
    - ipv4: Ignore ECN bits for fib lookups in fib_compute_spec_dst()
    - net: sched: prevent invalid Scell_log shift count
    - net: hns: fix return value check in __lb_other_process()
    - erspan: fix version 1 check in gre_parse_header()
    - net: hdlc_ppp: Fix issues when mod_timer is called while timer is running
    - bareudp: set NETIF_F_LLTX flag
    - bareudp: Fix use of incorrect min_headroom size
    - vhost_net: fix ubuf refcount incorrectly when sendmsg fails
    - r8169: work around power-saving bug on some chip versions
    - net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for internal PHYs
    - net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access
    - CDC-NCM: remove "connected" log message
    - ibmvnic: fix: NULL pointer dereference.
    - net: usb: qmi_wwan: add Quectel EM160R-GL
    - stmmac: intel: Add PCI IDs for TGL-H platform
    - workqueue: Kick a worker based on the actual activation of delayed works
    - scsi: ufs: Fix wrong print message in dev_err()
    - scsi: ufs-pci: Fix restore from S4 for Intel controllers
    - scsi: ufs-pci: Ensure UFS device is in PowerDown mode for suspend-to-disk
      ->poweroff()
    - scsi: ufs-pci: Fix recovery from hibernate exit errors for Intel controllers
    - blk-mq: remove the BLK_MQ_REQ_INTERNAL flag
    - scsi: block: Introduce BLK_MQ_REQ_PM
    - scsi: ide: Do not set the RQF_PREEMPT flag for sense requests
    - scsi: ide: Mark power management requests with RQF_PM instead of RQF_PREEMPT
    - scsi: scsi_transport_spi: Set RQF_PM for domain validation commands
    - scsi: core: Only process PM requests if rpm_status != RPM_ACTIVE
    - local64.h: make <asm/local64.h> mandatory
    - lib/genalloc: fix the overflow when size is too big
    - depmod: handle the case of /sbin/depmod without /sbin in PATH
    - scsi: ufs: Clear UAC for FFU and RPMB LUNs
    - kbuild: don't hardcode depmod path
    - Bluetooth: revert: hci_h5: close serdev device and free hu in h5_close
    - scsi: block: Remove RQF_PREEMPT and BLK_MQ_REQ_PREEMPT
    - scsi: block: Do not accept any requests while suspended
    - crypto: ecdh - avoid buffer overflow in ecdh_set_secret()
    - crypto: asym_tpm: correct zero out potential secrets
    - powerpc: Handle .text.{hot,unlikely}.* in linker script
    - Staging: comedi: Return -EFAULT if copy_to_user() fails
    - staging: mt7621-dma: Fix a resource leak in an error handling path
    - usb: gadget: enable super speed plus
    - USB: cdc-acm: blacklist another IR Droid device
    - USB: cdc-wdm: Fix use after free in service_outstanding_interrupt().
    - usb: dwc3: meson-g12a: disable clk on error handling path in probe
    - usb: dwc3: gadget: Clear wait flag on dequeue
    - usb: dwc3: ulpi: Use VStsDone to detect PHY regs access completion
    - usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based one
    - usb: dwc3: ulpi: Fix USB2.0 HS/FS/LS PHY suspend regression
    - usb: chipidea: ci_hdrc_imx: add missing put_device() call in
      usbmisc_get_init_data()
    - USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk set
    - usb: usbip: vhci_hcd: protect shift size
    - usb: uas: Add PNY USB Portable SSD to unusual_uas
    - USB: serial: iuu_phoenix: fix DMA from stack
    - USB: serial: option: add LongSung M5710 module support
    - USB: serial: option: add Quectel EM160R-GL
    - USB: yurex: fix control-URB timeout handling
    - USB: usblp: fix DMA to stack
    - ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks
    - usb: gadget: select CONFIG_CRC32
    - USB: Gadget: dummy-hcd: Fix shift-out-of-bounds bug
    - usb: gadget: f_uac2: reset wMaxPacketSize
    - usb: gadget: function: printer: Fix a memory leak for interface descriptor
    - usb: gadget: u_ether: Fix MTU size mismatch with RX packet size
    - USB: gadget: legacy: fix return error code in acm_ms_bind()
    - usb: gadget: Fix spinlock lockup on usb_function_deactivate
    - usb: gadget: configfs: Preserve function ordering after bind failure
    - usb: gadget: configfs: Fix use-after-free issue with udc_name
    - USB: serial: keyspan_pda: remove unused variable
    - hwmon: (amd_energy) fix allocation of hwmon_channel_info config
    - mm: make wait_on_page_writeback() wait for multiple pending writebacks
    - x86/mm: Fix leak of pmd ptlock
    - kvm: check tlbs_dirty directly
    - task_work: cleanup notification modes
    - x86/resctrl: Use an IPI instead of task_work_add() to update PQR_ASSOC MSR
    - x86/resctrl: Don't move a task to the same resource group
    - blk-iocost: fix NULL iocg deref from racing against initialization
    - ALSA: hda/via: Fix runtime PM for Clevo W35xSS
    - ALSA: hda/conexant: add a new hda codec CX11970
    - ALSA: hda/realtek - Fix speaker volume control on Lenovo C940
    - ALSA: hda/realtek: Add mute LED quirk for more HP laptops
    - ALSA: hda/realtek: Add two "Intel Reference board" SSID in the ALC256.
    - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct
      intel_svm_dev
    - btrfs: send: fix wrong file path when there is an inode with a pending rmdir
    - Revert "device property: Keep secondary firmware node secondary by type"
    - dmabuf: fix use-after-free of dmabuf's file->f_inode
    - arm64: link with -z norelro for LLD or aarch64-elf
    - drm/i915: clear the shadow batch
    - netfilter: x_tables: Update remaining dereference to RCU
    - netfilter: ipset: fix shift-out-of-bounds in htable_bits()
    - netfilter: xt_RATEEST: reject non-null terminated string from userspace
    - netfilter: nft_dynset: report EOPNOTSUPP on missing set feature
    - dmaengine: idxd: off by one in cleanup code
    - x86/mtrr: Correct the range check before performing MTRR type lookups
    - KVM: x86: fix shift out of bounds reported by UBSAN
    - rtlwifi: rise completion at the last step of firmware callback

* Groovy update: upstream stable patchset 2021-02-03 (LP: #1914472)
    - net/sched: sch_taprio: reset child qdiscs before freeing them
    - mptcp: fix security context on server socket
    - ethtool: fix error paths in ethnl_set_channels()
    - ethtool: fix string set id check
    - md/raid10: initialize r10_bio->read_slot before use.
    - drm/amd/display: Add get_dig_frontend implementation for DCEx
    - io_uring: close a small race gap for files cancel
    - jffs2: Allow setting rp_size to zero during remounting
    - jffs2: Fix NULL pointer dereference in rp_size fs option parsing
    - scsi: block: Fix a race in the runtime power management code
    - mm/hugetlb: fix deadlock in hugetlb_cow error path
    - mm: memmap defer init doesn't work as expected
    - lib/zlib: fix inflating zlib streams on s390
    - uapi: move constants from <linux/kernel.h> to <linux/const.h>
    - tools headers UAPI: Sync linux/const.h with the kernel headers
    - cgroup: Fix memory leak when parsing multiple source parameters
    - zlib: move EXPORT_SYMBOL() and MODULE_LICENSE() out of dfltcc_syms.c
    - scsi: cxgb4i: Fix TLS dependency
    - Bluetooth: hci_h5: close serdev device and free hu in h5_close
    - fbcon: Disable accelerated scrolling
    - reiserfs: add check for an invalid ih_entry_count
    - misc: vmw_vmci: fix kernel info-leak by initializing dbells in
      vmci_ctx_get_chkpt_doorbells()
    - media: gp8psk: initialize stats at power control logic
    - f2fs: fix shift-out-of-bounds in sanity_check_raw_super()
    - ALSA: seq: Use bool for snd_seq_queue internal flags
    - ALSA: rawmidi: Access runtime->avail always in spinlock
    - bfs: don't use WARNING: string when it's just info.
    - ext4: check for invalid block size early when mounting a file system
    - fcntl: Fix potential deadlock in send_sig{io, urg}()
    - rtc: sun6i: Fix memleak in sun6i_rtc_clk_init
    - module: set MODULE_STATE_GOING state when a module fails to load
    - quota: Don't overflow quota file offsets
    - rtc: pl031: fix resource leak in pl031_probe
    - powerpc: sysdev: add missing iounmap() on error in mpic_msgr_probe()
    - i3c master: fix missing destroy_workqueue() on error in i3c_master_register
    - NFSv4: Fix a pNFS layout related use-after-free race when freeing the inode
    - f2fs: avoid race condition for shrinker count
    - module: delay kobject uevent until after module init call
    - fs/namespace.c: WARN if mnt_count has become negative
    - watchdog: rti-wdt: fix reference leak in rti_wdt_probe
    - um: random: Register random as hwrng-core device
    - um: ubd: Submit all data segments atomically
    - ceph: fix inode refcount leak when ceph_fill_inode on non-I_NEW inode fails
    - drm/amd/display: updated wm table for Renoir
    - tick/sched: Remove bogus boot "safety" check
    - s390: always clear kernel stack backchain before calling functions
    - io_uring: remove racy overflow list fast checks
    - ALSA: pcm: Clear the full allocated memory at hw_params
    - dm verity: skip verity work if I/O error when system is shutting down
    - rtc: pcf2127: move watchdog initialisation to a separate function
    - rtc: pcf2127: only use watchdog when explicitly available
    - dt-bindings: rtc: add reset-source property
    - kdev_t: always inline major/minor helper functions
    - ALSA: hda/realtek - Modify Dell platform name
    - scsi: ufs: Allow an error return value from ->device_reset()
    - scsi: ufs: Re-enable WriteBooster after device reset
    - RDMA/siw,rxe: Make emulated devices virtual in the device tree
    - fuse: fix bad inode
    - rwsem: Implement down_read_killable_nested
    - rwsem: Implement down_read_interruptible
    - exec: Transform exec_update_mutex into a rw_semaphore
    - mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start

-- Stefan Bader <stefan.bader@canonical.com>  Fri, 19 Feb 2021 10:59:43 +0100

Changed in linux (Ubuntu Groovy):
status:	Fix Committed → Fix Released

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-03-15:

#9

Download full text (28.5 KiB)

This bug was fixed in the package linux - 5.4.0-67.75

---------------
linux (5.4.0-67.75) focal; urgency=medium

* focal/linux: 5.4.0-67.75 -proposed tracker (LP: #1916169)

  * Please trust Canonical Livepatch Service kmod signing key (LP: #1898716)
    - [Config] enable CONFIG_MODVERSIONS=y
    - [Packaging] build canonical-certs.pem from branch/arch certs
    - [Config] add Canonical Livepatch Service key to SYSTEM_TRUSTED_KEYS
    - [Config] add ubuntu-drivers key to SYSTEM_TRUSTED_KEYS
    - [Config] Allow ASM_MODVERSIONS and MODULE_REL_CRCS

  * geneve overlay network on vlan interface broken with offload enabled
    (LP: #1914447)
    - net/mlx5e: Fix SWP offsets when vlan inserted by driver

* Add support for selective build of special drivers (LP: #1912789)
- [Packaging] Fix ODM support in actual build

* devlink: don't do reporter recovery if the state is healthy (LP: #1915403)
- devlink: don't do reporter recovery if the state is healthy

  * Missing device id for Intel TGL-H ISH [8086:43fc] in intel-ish-hid driver
    (LP: #1914543)
    - HID: intel-ish-hid: ipc: Add Tiger Lake H PCI device ID

  * Focal update: v5.4.94 upstream stable release (LP: #1915200)
    - gpio: mvebu: fix pwm .get_state period calculation
    - futex: Ensure the correct return value from futex_lock_pi()
    - futex: Replace pointless printk in fixup_owner()
    - futex: Provide and use pi_state_update_owner()
    - rtmutex: Remove unused argument from rt_mutex_proxy_unlock()
    - futex: Use pi_state_update_owner() in put_pi_state()
    - futex: Simplify fixup_pi_state_owner()
    - futex: Handle faults correctly for PI futexes
    - HID: wacom: Correct NULL dereference on AES pen proximity
    - io_uring: Fix current->fs handling in io_sq_wq_submit_work()
    - tracing: Fix race in trace_open and buffer resize call
    - arm64: mm: use single quantity to represent the PA to VA translation
    - SMB3.1.1: do not log warning message if server doesn't populate salt
    - tools: Factor HOSTCC, HOSTLD, HOSTAR definitions
    - dm integrity: conditionally disable "recalculate" feature
    - writeback: Drop I_DIRTY_TIME_EXPIRE
    - fs: fix lazytime expiration handling in __writeback_single_inode()
    - Linux 5.4.94

  * Focal update: v5.4.93 upstream stable release (LP: #1915195)
    - i2c: bpmp-tegra: Ignore unknown I2C_M flags
    - platform/x86: ideapad-laptop: Disable touchpad_switch for ELAN0634
    - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info()
    - ALSA: hda/via: Add minimum mute flag
    - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error
    - btrfs: don't get an EINTR during drop_snapshot for reloc
    - btrfs: fix lockdep splat in btrfs_recover_relocation
    - btrfs: don't clear ret in btrfs_start_dirty_block_groups
    - btrfs: send: fix invalid clone operations when cloning from the same file
      and root
    - mmc: core: don't initialize block size from ext_csd if not present
    - mmc: sdhci-xenon: fix 1.8v regulator stabilization
    - dm: avoid filesystem lookup in dm_get_dev_t()
    - dm integrity: fix a crash if "recalculate" used without "internal_hash"
    - drm/atomic: put...

This bug was fixed in the package linux - 5.4.0-67.75

---------------
linux (5.4.0-67.75) focal; urgency=medium

* focal/linux: 5.4.0-67.75 -proposed tracker (LP: #1916169)

* Please trust Canonical Livepatch Service kmod signing key (LP: #1898716)
    - [Config] enable CONFIG_MODVERSIONS=y
    - [Packaging] build canonical-certs.pem from branch/arch certs
    - [Config] add Canonical Livepatch Service key to SYSTEM_TRUSTED_KEYS
    - [Config] add ubuntu-drivers key to SYSTEM_TRUSTED_KEYS
    - [Config] Allow ASM_MODVERSIONS and MODULE_REL_CRCS

* geneve overlay network on vlan interface broken with offload enabled
    (LP: #1914447)
    - net/mlx5e: Fix SWP offsets when vlan inserted by driver

* Add support for selective build of special drivers (LP: #1912789)
    - [Packaging] Fix ODM support in actual build

* devlink: don't do reporter recovery if the state is healthy (LP: #1915403)
    - devlink: don't do reporter recovery if the state is healthy

* Missing device id for Intel TGL-H ISH [8086:43fc] in intel-ish-hid driver
    (LP: #1914543)
    - HID: intel-ish-hid: ipc: Add Tiger Lake H PCI device ID

* Focal update: v5.4.94 upstream stable release (LP: #1915200)
    - gpio: mvebu: fix pwm .get_state period calculation
    - futex: Ensure the correct return value from futex_lock_pi()
    - futex: Replace pointless printk in fixup_owner()
    - futex: Provide and use pi_state_update_owner()
    - rtmutex: Remove unused argument from rt_mutex_proxy_unlock()
    - futex: Use pi_state_update_owner() in put_pi_state()
    - futex: Simplify fixup_pi_state_owner()
    - futex: Handle faults correctly for PI futexes
    - HID: wacom: Correct NULL dereference on AES pen proximity
    - io_uring: Fix current->fs handling in io_sq_wq_submit_work()
    - tracing: Fix race in trace_open and buffer resize call
    - arm64: mm: use single quantity to represent the PA to VA translation
    - SMB3.1.1: do not log warning message if server doesn't populate salt
    - tools: Factor HOSTCC, HOSTLD, HOSTAR definitions
    - dm integrity: conditionally disable "recalculate" feature
    - writeback: Drop I_DIRTY_TIME_EXPIRE
    - fs: fix lazytime expiration handling in __writeback_single_inode()
    - Linux 5.4.94

* Focal update: v5.4.93 upstream stable release (LP: #1915195)
    - i2c: bpmp-tegra: Ignore unknown I2C_M flags
    - platform/x86: ideapad-laptop: Disable touchpad_switch for ELAN0634
    - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info()
    - ALSA: hda/via: Add minimum mute flag
    - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error
    - btrfs: don't get an EINTR during drop_snapshot for reloc
    - btrfs: fix lockdep splat in btrfs_recover_relocation
    - btrfs: don't clear ret in btrfs_start_dirty_block_groups
    - btrfs: send: fix invalid clone operations when cloning from the same file
      and root
    - mmc: core: don't initialize block size from ext_csd if not present
    - mmc: sdhci-xenon: fix 1.8v regulator stabilization
    - dm: avoid filesystem lookup in dm_get_dev_t()
    - dm integrity: fix a crash if "recalculate" used without "internal_hash"
    - drm/atomic: put state on error path
    - drm/syncobj: Fix use-after-free
    - drm/i915/gt: Prevent use of engine->wa_ctx after error
    - ASoC: Intel: haswell: Add missing pm_ops
    - dm integrity: select CRYPTO_SKCIPHER
    - scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback
    - scsi: qedi: Correct max length of CHAP secret
    - scsi: sd: Suppress spurious errors when WRITE SAME is being disabled
    - riscv: Fix kernel time_init()
    - riscv: Fix sifive serial driver
    - HID: logitech-dj: add the G602 receiver
    - HID: Ignore battery for Elan touchscreen on ASUS UX550
    - clk: tegra30: Add hda clock default rates to clock driver
    - arm64: make atomic helpers __always_inline
    - xen: Fix event channel callback via INTX/GSI
    - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery
    - dts: phy: fix missing mdio device and probe failure of vsc8541-01 device
    - riscv: defconfig: enable gpio support for HiFive Unleashed
    - drm/amdgpu/psp: fix psp gfx ctrl cmds
    - drm/amd/display: Fix to be able to stop crc calculation
    - drm/nouveau/bios: fix issue shadowing expansion ROMs
    - drm/nouveau/privring: ack interrupts the same way as RM
    - drm/nouveau/i2c/gm200: increase width of aux semaphore owner fields
    - drm/nouveau/mmu: fix vram heap sizing
    - drm/nouveau/kms/nv50-: fix case where notifier buffer is at offset 0
    - powerpc: Use the common INIT_DATA_SECTION macro in vmlinux.lds.S
    - pinctrl: aspeed: g6: Fix PWMG0 pinctrl setting
    - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression
    - powerpc: Fix alignment bug within the init sections
    - i2c: octeon: check correct size of maximum RECV_LEN packet
    - platform/x86: intel-vbtn: Drop HP Stream x360 Convertible PC 11 from allow-
      list
    - selftests: net: fib_tests: remove duplicate log test
    - can: dev: can_restart: fix use after free bug
    - can: vxcan: vxcan_xmit: fix use after free bug
    - can: peak_usb: fix use after free bugs
    - iio: ad5504: Fix setting power-down state
    - cifs: do not fail __smb_send_rqst if non-fatal signals are pending
    - irqchip/mips-cpu: Set IPI domain parent chip
    - x86/fpu: Add kernel_fpu_begin_mask() to selectively initialize state
    - x86/topology: Make __max_die_per_package available unconditionally
    - x86/mmx: Use KFPU_387 for MMX string operations
    - intel_th: pci: Add Alder Lake-P support
    - stm class: Fix module init return on allocation failure
    - serial: mvebu-uart: fix tx lost characters at power off
    - ehci: fix EHCI host controller initialization sequence
    - USB: ehci: fix an interrupt calltrace error
    - usb: gadget: aspeed: fix stop dma register setting.
    - usb: udc: core: Use lock when write to soft_connect
    - [Config] updateconfigs for USB_BDC_PCI
    - usb: bdc: Make bdc pci driver depend on BROKEN
    - xhci: make sure TRB is fully written before giving it to the controller
    - xhci: tegra: Delay for disabling LFPS detector
    - driver core: Extend device_is_dependent()
    - pinctrl: ingenic: Fix JZ4760 support
    - x86/cpu/amd: Set __max_die_per_package on AMD
    - netfilter: rpfilter: mask ecn bits before fib lookup
    - sh: dma: fix kconfig dependency for G2_DMA
    - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext
    - sh_eth: Fix power down vs. is_opened flag ordering
    - lightnvm: fix memory leak when submit fails
    - skbuff: back tiny skbs with kmalloc() in __netdev_alloc_skb() too
    - kasan: fix unaligned address is unhandled in kasan_remove_zero_shadow
    - kasan: fix incorrect arguments passing in kasan_add_zero_shadow
    - udp: mask TOS bits in udp_v4_early_demux()
    - ipv6: create multicast route with RTPROT_KERNEL
    - net_sched: avoid shift-out-of-bounds in tcindex_set_parms()
    - net_sched: reject silly cell_log in qdisc_get_rtab()
    - ipv6: set multicast flag on the multicast route
    - net: mscc: ocelot: allow offloading of bridge on top of LAG
    - net: Disable NETIF_F_HW_TLS_RX when RXCSUM is disabled
    - net: dsa: b53: fix an off by one in checking "vlan->vid"
    - tcp: do not mess with cloned skbs in tcp_add_backlog()
    - tcp: fix TCP_USER_TIMEOUT with zero window
    - Linux 5.4.93

* High load from process irq/65-i2c-INT3  - kernel module tps6598x
    (LP: #1883511) // Focal update: v5.4.93 upstream stable release
    (LP: #1915195)
    - platform/x86: i2c-multi-instantiate: Don't create platform device for
      INT3515 ACPI nodes

* Focal update: v5.4.92 upstream stable release (LP: #1915186)
    - usb: ohci: Make distrust_firmware param default to false
    - compiler.h: Raise minimum version of GCC to 5.1 for arm64
    - xen/privcmd: allow fetching resource sizes
    - elfcore: fix building with clang
    - scsi: lpfc: Make lpfc_defer_acc_rsp static
    - spi: npcm-fiu: simplify the return expression of npcm_fiu_probe()
    - spi: npcm-fiu: Disable clock in probe error path
    - nfsd4: readdirplus shouldn't return parent of export
    - bpf: Don't leak memory in bpf getsockopt when optlen == 0
    - bpf: Fix helper bpf_map_peek_elem_proto pointing to wrong callback
    - udp: Prevent reuseport_select_sock from reading uninitialized socks
    - netxen_nic: fix MSI/MSI-x interrupts
    - net: introduce skb_list_walk_safe for skb segment walking
    - net: skbuff: disambiguate argument and member for skb_list_walk_safe helper
    - net: ipv6: Validate GSO SKB before finish IPv6 processing
    - mlxsw: core: Add validation of transceiver temperature thresholds
    - mlxsw: core: Increase critical threshold for ASIC thermal zone
    - net: mvpp2: Remove Pause and Asym_Pause support
    - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request
    - esp: avoid unneeded kmap_atomic call
    - net: dcb: Validate netlink message in DCB handler
    - net: dcb: Accept RTM_GETDCB messages carrying set-like DCB commands
    - rxrpc: Call state should be read with READ_ONCE() under some circumstances
    - net: stmmac: Fixed mtu channged by cache aligned
    - net: sit: unregister_netdevice on newlink's error path
    - net: avoid 32 x truesize under-estimation for tiny skbs
    - rxrpc: Fix handling of an unsupported token type in rxrpc_read()
    - net, sctp, filter: remap copy_from_user failure error
    - tipc: fix NULL deref in tipc_link_xmit()
    - mac80211: do not drop tx nulldata packets on encrypted links
    - mac80211: check if atf has been disabled in __ieee80211_schedule_txq
    - spi: cadence: cache reference clock rate during probe
    - Linux 5.4.92

* intel-hid is not loaded on new Intel platform (LP: #1907160)
    - platform/x86: intel-hid: Add Tiger Lake ACPI device ID
    - platform/x86: intel-hid: fix: Update Tiger Lake ACPI device ID
    - platform/x86: intel-hid: Move MODULE_DEVICE_TABLE() closer to the table
    - platform/x86: intel-hid: add Rocket Lake ACPI device ID

* Support Advantech UNO-420 platform (LP: #1902672)
    - ODM: MAINTAINERS: Add Advantech AHC1EC0 embedded controller entry
    - ODM: mfd: ahc1ec0: Add Advantech EC include file used by dt-bindings
    - ODM: dt-bindings: mfd: ahc1ec0.yaml: Add Advantech embedded controller -
      AHC1EC0
    - ODM: mfd: ahc1ec0: Add support for Advantech embedded controller
    - ODM: hwmon: ahc1ec0-hwmon: Add sub-device hwmon for Advantech embedded
      controller
    - ODM: watchdog: ahc1ec0-wdt: Add sub-device watchdog for Advantech embedded
      controller
    - ODM: [Config] update config for Advantech devices

* Remove scary stack trace from Realtek WiFi driver (LP: #1913263)
    - rtw88: reduce the log level for failure of tx report

* Focal update: v5.4.91 upstream stable release (LP: #1914654)
    - kbuild: enforce -Werror=return-type
    - btrfs: prevent NULL pointer dereference in extent_io_tree_panic
    - ASoC: dapm: remove widget from dirty list on free
    - x86/hyperv: check cpu mask after interrupt has been disabled
    - tracing/kprobes: Do the notrace functions check without kprobes on ftrace
    - [Config] update annotations for KPROBE_EVENTS_ON_NOTRACE
    - mips: fix Section mismatch in reference
    - mips: lib: uncached: fix non-standard usage of variable 'sp'
    - MIPS: boot: Fix unaligned access with CONFIG_MIPS_RAW_APPENDED_DTB
    - MIPS: relocatable: fix possible boot hangup with KASLR enabled
    - RDMA/ocrdma: Fix use after free in ocrdma_dealloc_ucontext_pd()
    - ACPI: scan: Harden acpi_device_add() against device ID overflows
    - mm/hugetlb: fix potential missing huge page size info
    - dm raid: fix discard limits for raid1
    - dm snapshot: flush merged data before committing metadata
    - dm integrity: fix the maximum number of arguments
    - r8152: Add Lenovo Powered USB-C Travel Hub
    - btrfs: tree-checker: check if chunk item end overflows
    - drm/i915/backlight: fix CPU mode backlight takeover on LPT
    - ext4: fix bug for rename with RENAME_WHITEOUT
    - ext4: don't leak old mountpoint samples
    - cifs: fix interrupted close commands
    - dm integrity: fix flush with external metadata device
    - ARC: build: remove non-existing bootpImage from KBUILD_IMAGE
    - ARC: build: add uImage.lzma to the top-level target
    - ARC: build: add boot_targets to PHONY
    - ARC: build: move symlink creation to arch/arc/Makefile to avoid race
    - netfilter: ipset: fixes possible oops in mtype_resize
    - btrfs: fix transaction leak and crash after RO remount caused by qgroup
      rescan
    - regulator: bd718x7: Add enable times
    - ethernet: ucc_geth: fix definition and size of ucc_geth_tx_global_pram
    - habanalabs: register to pci shutdown callback
    - habanalabs: Fix memleak in hl_device_reset
    - hwmon: (pwm-fan) Ensure that calculation doesn't discard big period values
    - lib/raid6: Let $(UNROLL) rules work with macOS userland
    - bfq: Fix computation of shallow depth
    - arch/arc: add copy_user_page() to <asm/page.h> to fix build error on ARC
    - misdn: dsp: select CONFIG_BITREVERSE
    - net: ethernet: fs_enet: Add missing MODULE_LICENSE
    - nvme-pci: mark Samsung PM1725a as IGNORE_DEV_SUBNQN
    - nvmet-rdma: Fix list_del corruption on queue establishment failure
    - drm/amdgpu: fix a GPU hang issue when remove device
    - usb: typec: Fix copy paste error for NVIDIA alt-mode description
    - ACPI: scan: add stub acpi_create_platform_device() for !CONFIG_ACPI
    - drm/msm: Call msm_init_vram before binding the gpu
    - ARM: picoxcell: fix missing interrupt-parent properties
    - perf intel-pt: Fix 'CPU too large' error
    - dump_common_audit_data(): fix racy accesses to ->d_name
    - ASoC: meson: axg-tdm-interface: fix loopback
    - ASoC: meson: axg-tdmin: fix axg skew offset
    - ASoC: Intel: fix error code cnl_set_dsp_D0()
    - nvme-tcp: fix possible data corruption with bio merges
    - NFS4: Fix use-after-free in trace_event_raw_event_nfs4_set_lock
    - pNFS: We want return-on-close to complete when evicting the inode
    - pNFS: Mark layout for return if return-on-close was not sent
    - pNFS: Stricter ordering of layoutget and layoutreturn
    - NFS/pNFS: Fix a leak of the layout 'plh_outstanding' counter
    - NFS: nfs_igrab_and_active must first reference the superblock
    - ext4: fix superblock checksum failure when setting password salt
    - RDMA/restrack: Don't treat as an error allocation ID wrapping
    - RDMA/usnic: Fix memleak in find_free_vf_and_create_qp_grp
    - bnxt_en: Improve stats context resource accounting with RDMA driver loaded.
    - RDMA/mlx5: Fix wrong free of blue flame register on error
    - IB/mlx5: Fix error unwinding when set_has_smi_cap fails
    - drm/i915/dsi: Use unconditional msleep for the panel_on_delay when there is
      no reset-deassert MIPI-sequence
    - mm, slub: consider rest of partial list if acquire_slab() fails
    - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev()
    - net: sunrpc: interpret the return value of kstrtou32 correctly
    - dm: eliminate potential source of excessive kernel log noise
    - ALSA: fireface: Fix integer overflow in transmit_midi_msg()
    - ALSA: firewire-tascam: Fix integer overflow in midi_port_work()
    - netfilter: conntrack: fix reading nf_conntrack_buckets
    - netfilter: nf_nat: Fix memleak in nf_nat_init
    - netfilter: nft_compat: remove flush counter optimization
    - Linux 5.4.91

* Focal update: v5.4.90 upstream stable release (LP: #1913487)
    - x86/asm/32: Add ENDs to some functions and relabel with SYM_CODE_*
    - vfio iommu: Add dma available capability
    - net: cdc_ncm: correct overhead in delayed_ndp_size
    - net: hns3: fix the number of queues actually used by ARQ
    - net: hns3: fix a phy loopback fail issue
    - net: stmmac: dwmac-sun8i: Balance internal PHY resource references
    - net: stmmac: dwmac-sun8i: Balance internal PHY power
    - net: vlan: avoid leaks on register_vlan_dev() failures
    - net/sonic: Fix some resource leaks in error handling paths
    - net: ipv6: fib: flush exceptions when purging route
    - tools: selftests: add test for changing routes with PTMU exceptions
    - net: fix pmtu check in nopmtudisc mode
    - net: ip: always refragment ip defragmented packets
    - octeontx2-af: fix memory leak of lmac and lmac->name
    - nexthop: Fix off-by-one error in error path
    - nexthop: Unlink nexthop group entry in error path
    - s390/qeth: fix L2 header access in qeth_l3_osa_features_check()
    - net: dsa: lantiq_gswip: Exclude RMII from modes that report 1 GbE
    - net/mlx5: Use port_num 1 instead of 0 when delete a RoCE address
    - net/mlx5e: ethtool, Fix restriction of autoneg with 56G
    - chtls: Fix hardware tid leak
    - chtls: Remove invalid set_tcb call
    - chtls: Fix panic when route to peer not configured
    - chtls: Replace skb_dequeue with skb_peek
    - chtls: Added a check to avoid NULL pointer dereference
    - chtls: Fix chtls resources release sequence
    - x86/resctrl: Use an IPI instead of task_work_add() to update PQR_ASSOC MSR
    - x86/resctrl: Don't move a task to the same resource group
    - exfat: Month timestamp metadata accidentally incremented
    - vmlinux.lds.h: Add PGO and AutoFDO input sections
    - iio: imu: st_lsm6dsx: fix edge-trigger interrupts
    - HID: wacom: Fix memory leakage caused by kfifo_alloc
    - ARM: OMAP2+: omap_device: fix idling of devices during probe
    - i2c: sprd: use a specific timeout to avoid system hang up issue
    - dmaengine: dw-edma: Fix use after free in dw_edma_alloc_chunk()
    - can: tcan4x5x: fix bittiming const, use common bittiming from m_can driver
    - can: m_can: m_can_class_unregister(): remove erroneous m_can_clk_stop()
    - can: kvaser_pciefd: select CONFIG_CRC32
    - cpufreq: powernow-k8: pass policy rather than use cpufreq_cpu_get()
    - spi: stm32: FIFO threshold level - fix align packet size
    - i2c: i801: Fix the i2c-mux gpiod_lookup_table not being properly terminated
    - dmaengine: mediatek: mtk-hsdma: Fix a resource leak in the error handling
      path of the probe function
    - dmaengine: xilinx_dma: check dma_async_device_register return value
    - dmaengine: xilinx_dma: fix incompatible param warning in _child_probe()
    - dmaengine: xilinx_dma: fix mixed_enum_type coverity warning
    - qed: select CONFIG_CRC32
    - wil6210: select CONFIG_CRC32
    - block: rsxx: select CONFIG_CRC32
    - lightnvm: select CONFIG_CRC32
    - iommu/intel: Fix memleak in intel_irq_remapping_alloc
    - bpftool: Fix compilation failure for net.o with older glibc
    - net/mlx5e: Fix memleak in mlx5e_create_l2_table_groups
    - net/mlx5e: Fix two double free cases
    - regmap: debugfs: Fix a memory leak when calling regmap_attach_dev
    - wan: ds26522: select CONFIG_BITREVERSE
    - regulator: qcom-rpmh-regulator: correct hfsmps515 definition
    - net: mvpp2: disable force link UP during port init procedure
    - KVM: arm64: Don't access PMCR_EL0 when no PMU is available
    - block: fix use-after-free in disk_part_iter_next
    - net: drop bogus skb with CHECKSUM_PARTIAL and offset beyond end of trimmed
      packet
    - regmap: debugfs: Fix a reversed if statement in regmap_debugfs_init()
    - Linux 5.4.90

* Focal update: v5.4.89 upstream stable release (LP: #1913486)
    - workqueue: Kick a worker based on the actual activation of delayed works
    - scsi: ufs: Fix wrong print message in dev_err()
    - scsi: ufs-pci: Ensure UFS device is in PowerDown mode for suspend-to-disk
      ->poweroff()
    - scsi: ide: Do not set the RQF_PREEMPT flag for sense requests
    - scsi: scsi_transport_spi: Set RQF_PM for domain validation commands
    - lib/genalloc: fix the overflow when size is too big
    - depmod: handle the case of /sbin/depmod without /sbin in PATH
    - proc: change ->nlink under proc_subdir_lock
    - proc: fix lookup in /proc/net subdirectories after setns(2)
    - i40e: Fix Error I40E_AQ_RC_EINVAL when removing VFs
    - iavf: fix double-release of rtnl_lock
    - net: mvpp2: Add TCAM entry to drop flow control pause frames
    - net: mvpp2: prs: fix PPPoE with ipv6 packet parse
    - net: systemport: set dev->max_mtu to UMAC_MAX_MTU_SIZE
    - ethernet: ucc_geth: fix use-after-free in ucc_geth_remove()
    - ethernet: ucc_geth: set dev->max_mtu to 1518
    - atm: idt77252: call pci_disable_device() on error path
    - net: mvpp2: Fix GoP port 3 Networking Complex Control configurations
    - ibmvnic: continue fatal error reset after passive init
    - net: ethernet: mvneta: Fix error handling in mvneta_probe
    - virtio_net: Fix recursive call to cpus_read_lock()
    - net/ncsi: Use real net-device for response handler
    - net: ethernet: Fix memleak in ethoc_probe
    - net-sysfs: take the rtnl lock when storing xps_cpus
    - net-sysfs: take the rtnl lock when accessing xps_cpus_map and num_tc
    - net-sysfs: take the rtnl lock when storing xps_rxqs
    - net-sysfs: take the rtnl lock when accessing xps_rxqs_map and num_tc
    - net: ethernet: ti: cpts: fix ethtool output when no ptp_clock registered
    - tun: fix return value when the number of iovs exceeds MAX_SKB_FRAGS
    - net: mvpp2: fix pkt coalescing int-threshold configuration
    - ipv4: Ignore ECN bits for fib lookups in fib_compute_spec_dst()
    - net: sched: prevent invalid Scell_log shift count
    - net: hns: fix return value check in __lb_other_process()
    - erspan: fix version 1 check in gre_parse_header()
    - net: hdlc_ppp: Fix issues when mod_timer is called while timer is running
    - r8169: work around power-saving bug on some chip versions
    - net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for internal PHYs
    - net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access
    - CDC-NCM: remove "connected" log message
    - net: usb: qmi_wwan: add Quectel EM160R-GL
    - vhost_net: fix ubuf refcount incorrectly when sendmsg fails
    - ionic: account for vlan tag len in rx buffer len
    - net/sched: sch_taprio: ensure to reset/destroy all child qdiscs
    - kbuild: don't hardcode depmod path
    - Bluetooth: revert: hci_h5: close serdev device and free hu in h5_close
    - video: hyperv_fb: Fix the mmap() regression for v5.4.y and older
    - crypto: ecdh - avoid buffer overflow in ecdh_set_secret()
    - crypto: asym_tpm: correct zero out potential secrets
    - powerpc: Handle .text.{hot,unlikely}.* in linker script
    - staging: mt7621-dma: Fix a resource leak in an error handling path
    - usb: gadget: enable super speed plus
    - USB: cdc-acm: blacklist another IR Droid device
    - USB: cdc-wdm: Fix use after free in service_outstanding_interrupt().
    - usb: dwc3: ulpi: Use VStsDone to detect PHY regs access completion
    - usb: chipidea: ci_hdrc_imx: add missing put_device() call in
      usbmisc_get_init_data()
    - USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk set
    - usb: usbip: vhci_hcd: protect shift size
    - usb: uas: Add PNY USB Portable SSD to unusual_uas
    - USB: serial: iuu_phoenix: fix DMA from stack
    - USB: serial: option: add LongSung M5710 module support
    - USB: serial: option: add Quectel EM160R-GL
    - USB: yurex: fix control-URB timeout handling
    - USB: usblp: fix DMA to stack
    - ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks
    - usb: gadget: select CONFIG_CRC32
    - usb: gadget: f_uac2: reset wMaxPacketSize
    - usb: gadget: function: printer: Fix a memory leak for interface descriptor
    - usb: gadget: u_ether: Fix MTU size mismatch with RX packet size
    - USB: gadget: legacy: fix return error code in acm_ms_bind()
    - usb: gadget: Fix spinlock lockup on usb_function_deactivate
    - usb: gadget: configfs: Preserve function ordering after bind failure
    - usb: gadget: configfs: Fix use-after-free issue with udc_name
    - USB: serial: keyspan_pda: remove unused variable
    - x86/mm: Fix leak of pmd ptlock
    - kvm: check tlbs_dirty directly
    - ALSA: hda/via: Fix runtime PM for Clevo W35xSS
    - ALSA: hda/conexant: add a new hda codec CX11970
    - ALSA: hda/realtek - Fix speaker volume control on Lenovo C940
    - ALSA: hda/realtek: Add two "Intel Reference board" SSID in the ALC256.
    - btrfs: send: fix wrong file path when there is an inode with a pending rmdir
    - Revert "device property: Keep secondary firmware node secondary by type"
    - dmabuf: fix use-after-free of dmabuf's file->f_inode
    - drm/i915: clear the gpu reloc batch
    - netfilter: x_tables: Update remaining dereference to RCU
    - netfilter: ipset: fix shift-out-of-bounds in htable_bits()
    - netfilter: xt_RATEEST: reject non-null terminated string from userspace
    - netfilter: nft_dynset: report EOPNOTSUPP on missing set feature
    - x86/mtrr: Correct the range check before performing MTRR type lookups
    - KVM: x86: fix shift out of bounds reported by UBSAN
    - Linux 5.4.89

* Focal update: v5.4.88 upstream stable release (LP: #1913223)
    - Revert "drm/amd/display: Fix memory leaks in S3 resume"
    - Revert "mtd: spinand: Fix OOB read"
    - dmaengine: at_hdmac: Substitute kzalloc with kmalloc
    - dmaengine: at_hdmac: add missing put_device() call in at_dma_xlate()
    - dmaengine: at_hdmac: add missing kfree() call in at_dma_xlate()
    - kdev_t: always inline major/minor helper functions
    - iio:imu:bmi160: Fix alignment and data leak issues
    - fuse: fix bad inode
    - perf: Break deadlock involving exec_update_mutex
    - rwsem: Implement down_read_killable_nested
    - rwsem: Implement down_read_interruptible
    - exec: Transform exec_update_mutex into a rw_semaphore
    - mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start
    - Linux 5.4.88

* Focal update: v5.4.87 upstream stable release (LP: #1912681)
    - net/sched: sch_taprio: reset child qdiscs before freeing them
    - md/raid10: initialize r10_bio->read_slot before use.
    - thermal/drivers/cpufreq_cooling: Update cpufreq_state only if state has
      changed
    - ext4: prevent creating duplicate encrypted filenames
    - ubifs: prevent creating duplicate encrypted filenames
    - f2fs: prevent creating duplicate encrypted filenames
    - fscrypt: add fscrypt_is_nokey_name()
    - fscrypt: remove kernel-internal constants from UAPI header
    - vfio/pci: Move dummy_resources_list init in vfio_pci_probe()
    - btrfs: fix race when defragmenting leads to unnecessary IO
    - ext4: don't remount read-only with errors=continue on reboot
    - KVM: x86: avoid incorrect writes to host MSR_IA32_SPEC_CTRL
    - KVM: SVM: relax conditions for allowing MSR_IA32_SPEC_CTRL accesses
    - KVM: x86: reinstate vendor-agnostic check on SPEC_CTRL cpuid bits
    - powerpc/bitops: Fix possible undefined behaviour with fls() and fls64()
    - jffs2: Allow setting rp_size to zero during remounting
    - jffs2: Fix NULL pointer dereference in rp_size fs option parsing
    - scsi: block: Fix a race in the runtime power management code
    - uapi: move constants from <linux/kernel.h> to <linux/const.h>
    - tools headers UAPI: Sync linux/const.h with the kernel headers
    - null_blk: Fix zone size initialization
    - of: fix linker-section match-table corruption
    - cgroup: Fix memory leak when parsing multiple source parameters
    - scsi: cxgb4i: Fix TLS dependency
    - Bluetooth: hci_h5: close serdev device and free hu in h5_close
    - reiserfs: add check for an invalid ih_entry_count
    - misc: vmw_vmci: fix kernel info-leak by initializing dbells in
      vmci_ctx_get_chkpt_doorbells()
    - media: gp8psk: initialize stats at power control logic
    - f2fs: fix shift-out-of-bounds in sanity_check_raw_super()
    - ALSA: seq: Use bool for snd_seq_queue internal flags
    - ALSA: rawmidi: Access runtime->avail always in spinlock
    - bfs: don't use WARNING: string when it's just info.
    - fcntl: Fix potential deadlock in send_sig{io, urg}()
    - rtc: sun6i: Fix memleak in sun6i_rtc_clk_init
    - module: set MODULE_STATE_GOING state when a module fails to load
    - quota: Don't overflow quota file offsets
    - rtc: pl031: fix resource leak in pl031_probe
    - powerpc: sysdev: add missing iounmap() on error in mpic_msgr_probe()
    - i3c master: fix missing destroy_workqueue() on error in i3c_master_register
    - NFSv4: Fix a pNFS layout related use-after-free race when freeing the inode
    - f2fs: avoid race condition for shrinker count
    - module: delay kobject uevent until after module init call
    - fs/namespace.c: WARN if mnt_count has become negative
    - um: ubd: Submit all data segments atomically
    - tick/sched: Remove bogus boot "safety" check
    - ALSA: pcm: Clear the full allocated memory at hw_params
    - dm verity: skip verity work if I/O error when system is shutting down
    - Linux 5.4.87

-- Stefan Bader <stefan.bader@canonical.com>  Fri, 19 Feb 2021 17:11:23 +0100

Changed in linux (Ubuntu Focal):
status:	Fix Committed → Fix Released

Revision history for this message

Paul Goins (vultaire) wrote on 2021-08-03:

#10

I found this bug listed in a doc for a customer environment running Bionic, as something that was affecting them as well and for which we were waiting for a fix. I noticed today that this bug is only marked for focal and groovy.

Is there a reason for this to be only focal and newer, or is it simply that it hadn't been reported for bionic yet?

Ubuntu
linux package

geneve overlay network on vlan interface broken with offload enabled

Bug Description

CVE References

Other bug subscribers

Patches

Bug attachments

Remote bug watches

	Status	Importance	Assigned to
linux (Ubuntu)	Triaged	Medium	Unassigned
Focal	Fix Released	Medium	Stefan Bader
Groovy	Fix Released	Medium	Stefan Bader

Ubuntulinux package

geneve overlay network on vlan interface broken with offload enabled

Bug Description

CVE References

Other bug subscribers

Patches

Bug attachments

Remote bug watches

Ubuntu
linux package