Hirsute update: v5.11.7 upstream stable release

SRU Justification

    Impact:
       The upstream process for stable tree updates is quite similar
       in scope to the Ubuntu SRU process, e.g., each patch has to
       demonstrably fix a bug, and each patch is vetted by upstream
       by originating either directly from a mainline/stable Linux tree or
       a minimally backported form of that patch. The following upstream
       stable patches should be included in the Ubuntu kernel:

       v5.11.7 upstream stable release
       from git://git.kernel.org/

Linux 5.11.7
KVM: arm64: Fix nVHE hyp panic host context restore
mm/page_alloc.c: refactor initialization of struct page for holes in memory layout
mm/memcg: rename mem_cgroup_split_huge_fixup to split_page_memcg and add nr_pages argument
mm/memcg: set memcg when splitting page
mm/madvise: replace ptrace attach requirement for process_madvise
mm/userfaultfd: fix memory corruption due to writeprotect
mm/highmem.c: fix zero_user_segments() with start > end
KVM: arm64: Fix exclusive limit for IPA size
KVM: arm64: Reject VM creation when the default IPA size is unsupported
KVM: arm64: nvhe: Save the SPE context early
KVM: arm64: Avoid corrupting vCPU context register in guest exit
KVM: arm64: Fix range alignment when walking page tables
KVM: arm64: Ensure I-cache isolation between vcpus of a same VM
KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged
KVM: x86: Ensure deadline timer has truly expired before posting its IRQ
x86/entry: Fix entry/exit mismatch on failed fast 32-bit syscalls
x86/sev-es: Use __copy_from_user_inatomic()
x86/sev-es: Correctly track IRQ states in runtime #VC handler
x86/sev-es: Check regs->sp is trusted before adjusting #VC IST stack
x86/sev-es: Introduce ip_within_syscall_gap() helper
x86/unwind/orc: Disable KASAN checking in the ORC unwinder, part 2
kasan: fix KASAN_STACK dependency for HW_TAGS
kasan, mm: fix crash with HW_TAGS and DEBUG_PAGEALLOC
binfmt_misc: fix possible deadlock in bm_register_write
powerpc: Fix missing declaration of [en/dis]able_kernel_vsx()
powerpc: Fix inverted SET_FULL_REGS bitop
powerpc/64s: Fix instruction encoding for lis in ppc_function_entry()
efi: stub: omit SetVirtualAddressMap() if marked unsupported in RT_PROP table
sched: Simplify set_affinity_pending refcounts
sched: Fix affine_move_task() self-concurrency
sched: Optimize migration_cpu_stop()
sched: Simplify migration_cpu_stop()
sched: Collate affine_move_task() stoppers
sched/membarrier: fix missing local execution of ipi_sync_rq_state()
sched: Fix migration_cpu_stop() requeueing
linux/compiler-clang.h: define HAVE_BUILTIN_BSWAP*
zram: fix broken page writeback
zram: fix return value on writeback_store
include/linux/sched/mm.h: use rcu_dereference in in_vfork()
stop_machine: mark helpers __always_inline
memblock: fix section mismatch warning
seqlock,lockdep: Fix seqcount_latch_init()
powerpc/64s/exception: Clean up a missed SRR specifier
hrtimer: Update softirq_expires_next correctly after __hrtimer_get_next_event()
perf/x86/intel: Set PERF_ATTACH_SCHED_CB for large PEBS and LBR
perf/core: Flush PMU internal buffers for per-CPU events
mptcp: fix memory accounting on allocation error
mptcp: put subflow sock on connect error
net: expand textsearch ts_state to fit skb_seq_state
perf/arm_dmc620_pmu: Fix error return code in dmc620_pmu_device_probe()
drm/nouveau: fix dma syncing for loops (v2)
io_uring: perform IOPOLL reaping if canceler is thread itself
arm64: mm: use a 48-bit ID map when possible on 52-bit VA builds
configfs: fix a use-after-free in __configfs_open_file
nvme-fc: fix racing controller reset and create association
drm/ttm: Fix TTM page pool accounting
block: rsxx: fix error return code of rsxx_pci_probe()
NFSv4.2: fix return value of _nfs4_get_security_label()
NFS: Don't gratuitously clear the inode cache when lookup failed
NFS: Don't revalidate the directory permissions on a lookup failure
SUNRPC: Set memalloc_nofs_save() for sync tasks
arm64/mm: Fix pfn_valid() for ZONE_DEVICE based memory
cpufreq: qcom-hw: Fix return value check in qcom_cpufreq_hw_cpu_init()
cpufreq: qcom-hw: fix dereferencing freed memory 'data'
net: macb: Add default usrio config to default gem config
powerpc/sstep: Fix VSX instruction emulation
sh_eth: fix TRSCER mask for R7S72100
net: phy: ti: take into account all possible interrupt sources
mlxsw: spectrum_router: Ignore routes using a deleted nexthop object
staging: comedi: pcl818: Fix endian problem for AI command data
staging: comedi: pcl711: Fix endian problem for AI command data
staging: comedi: me4000: Fix endian problem for AI command data
staging: comedi: dmm32at: Fix endian problem for AI command data
staging: comedi: das800: Fix endian problem for AI command data
staging: comedi: das6402: Fix endian problem for AI command data
staging: comedi: adv_pci1710: Fix endian problem for AI command data
staging: comedi: addi_apci_1500: Fix endian problem for command sample
staging: comedi: addi_apci_1032: Fix endian problem for COS sample
staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan
staging: rtl8712: Fix possible buffer overflow in r8712_sitesurvey_cmd
staging: ks7010: prevent buffer overflow in ks_wlan_set_scan()
staging: rtl8188eu: fix potential memory corruption in rtw_check_beacon_data()
staging: rtl8712: unterminated string leads to read overflow
staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan()
staging: rtl8192u: fix ->ssid overflow in r8192_wx_set_scan()
misc: fastrpc: restrict user apps from sending kernel RPC messages
misc/pvpanic: Export module FDT device table
Revert "serial: max310x: rework RX interrupt handling"
usbip: fix vudc usbip_sockfd_store races leading to gpf
usbip: fix vhci_hcd attach_store() races leading to gpf
usbip: fix stub_dev usbip_sockfd_store() races leading to gpf
usbip: fix vudc to check for stream socket
usbip: fix vhci_hcd to check for stream socket
usbip: fix stub_dev to check for stream socket
USB: serial: cp210x: add some more GE USB IDs
USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter
USB: serial: ch341: add new Product ID
USB: serial: io_edgeport: fix memory leak in edge_startup
usb: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing
xhci: Improve detection of device initiated wake signal.
usb: xhci: do not perform Soft Retry for some xHCI hosts
usb: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM
USB: usblp: fix a hang in poll() if disconnected
usb: dwc3: qcom: Honor wakeup enabled/disabled state
usb: dwc3: qcom: add ACPI device id for sc8180x
usb: dwc3: qcom: add URS Host support for sdm845 ACPI boot
usb: dwc3: qcom: Add missing DWC3 OF node refcount decrement
usb: gadget: f_uac1: stop playback on function disable
usb: gadget: f_uac2: always increase endpoint max_packet_size by one audio slot
USB: gadget: u_ether: Fix a configfs return code
USB: gadget: udc: s3c2410_udc: fix return value check in s3c2410_udc_probe()
Goodix Fingerprint device is not a modem
cifs: do not send close in compound create+close requests
mmc: cqhci: Fix random crash when remove mmc module/card
mmc: core: Fix partition switch time for eMMC
mmc: mmci: Add MMC_CAP_NEED_RSP_BUSY for the stm32 variants
xen/events: avoid handling the same event on two cpus at the same time
xen/events: don't unmask an event channel when an eoi is pending
xen/events: reset affinity of 2-level event when tearing it down
software node: Fix node registration
s390/dasd: fix hanging IO request during DASD driver unbind
s390/dasd: fix hanging DASD driver unbind
arm64: perf: Fix 64-bit event counter read truncation
arm64: mte: Map hotplugged memory as Normal Tagged
arm64: kasan: fix page_alloc tagging with DEBUG_VIRTUAL
block: Try to handle busy underlying device on discard
block: Discard page cache of zone reset target range
Revert 95ebabde382c ("capabilities: Don't allow writing ambiguous v3 file capabilities")
opp: Don't drop extra references to OPPs accidentally
ALSA: usb-audio: Apply the control quirk to Plantronics headsets
ALSA: usb-audio: Fix "cannot get freq eq" errors on Dell AE515 sound bar
ALSA: hda: Avoid spurious unsol event handling during S3/S4
ALSA: hda: Flush pending unsolicited events before suspend
ALSA: hda: Drop the BATCH workaround for AMD controllers
ALSA: hda/ca0132: Add Sound BlasterX AE-5 Plus support
ALSA: hda/conexant: Add quirk for mute LED control on HP ZBook G5
ALSA: hda/hdmi: Cancel pending works before suspend
ALSA: usb: Add Plantronics C320-M USB ctrl msg delay quirk
clk: qcom: gpucc-msm8998: Add resets, cxc, fix flags on gpu_gx_gdsc
scsi: target: core: Prevent underflow for service actions
scsi: target: core: Add cmd length set before cmd complete
scsi: libiscsi: Fix iscsi_prep_scsi_cmd_pdu() error handling
sysctl.c: fix underflow value setting risk in vm_table
drivers/base/memory: don't store phys_device in memory blocks
s390/smp: __smp_rescan_cpus() - move cpumask away from stack
kasan: fix memory corruption in kasan_bitops_tags test
PCI/ERR: Retain status from error notification
i40e: Fix memory leak in i40e_probe
PCI: Fix pci_register_io_range() memory leak
kbuild: clamp SUBLEVEL to 255
ext4: don't try to processed freed blocks until mballoc is initialized
PCI/LINK: Remove bandwidth notification
drivers/base: build kunit tests without structleak plugin
PCI: mediatek: Add missing of_node_put() to fix reference leak
PCI: xgene-msi: Fix race in installing chained irq handler
Input: applespi - don't wait for responses to commands indefinitely.
sparc64: Use arch_validate_flags() to validate ADI flag
sparc32: Limit memblock allocation to low memory
clk: qcom: gdsc: Implement NO_RET_PERIPH flag
iommu/amd: Fix performance counter initialization
powerpc/64: Fix stack trace not displaying final frame
HID: logitech-dj: add support for the new lightspeed connection iteration
powerpc/perf: Record counter overflow always if SAMPLE_IP is unset
powerpc: improve handling of unrecoverable system reset
spi: stm32: make spurious and overrun interrupts visible
powerpc/pci: Add ppc_md.discover_phbs()
Platform: OLPC: Fix probe error handling
platform/x86: amd-pmc: put device on error paths
mmc: sdhci-iproc: Add ACPI bindings for the RPi
mmc: mediatek: fix race condition between msdc_request_timeout and irq
mmc: mxs-mmc: Fix a resource leak in an error handling path in 'mxs_mmc_probe()'
iommu/vt-d: Clear PRQ overflow only when PRQ is empty
udf: fix silent AED tagLocation corruption
scsi: ufs: Protect some contexts from unexpected clock scaling
scsi: ufs: WB is only available on LUN #0 to #7
scsi: pm80xx: Fix missing tag_free in NVMD DATA req
i2c: rcar: optimize cacheline to minimize HW race condition
i2c: rcar: faster irq code to minimize HW race condition
mptcp: reset last_snd on subflow close
mptcp: always graft subflow socket to parent
MIPS: kernel: Reserve exception base early to prevent corruption
media: rc: compile rc-cec.c into rc-core
media: v4l: vsp1: Fix bru null pointer access
media: v4l: vsp1: Fix uif null pointer access
media: rkisp1: params: fix wrong bits settings
media: usbtv: Fix deadlock on suspend
sh_eth: fix TRSCER mask for R7S9210
qxl: Fix uninitialised struct field head.surface_id
s390/crypto: return -EFAULT if copy_to_user() fails
s390/cio: return -EFAULT if copy_to_user() fails
drm/i915: Wedge the GPU if command parser setup fails
drm/shmem-helpers: vunmap: Don't put pages for dma-buf
drm: meson_drv add shutdown function
drm/amdgpu: fix S0ix handling when the CONFIG_AMD_PMC=m
drm: Use USB controller's DMA mask when importing dmabufs
drm/shmem-helper: Don't remove the offset in vm_area_struct pgoff
drm/shmem-helper: Check for purged buffers in fault handler
drm/amdgpu/display: handle aux backlight in backlight_get_brightness
drm/amdgpu/display: don't assert in set backlight function
drm/amdgpu/display: simplify backlight setting
drm/amd/pm: bug fix for pcie dpm
drm/amd/pm: correct the watermark settings for Polaris
drm/amd/display: Fix nested FPU context in dcn21_validate_bandwidth()
drm/amdgpu/display: use GFP_ATOMIC in dcn21_validate_bandwidth_fp()
drm/amd/display: Add a backlight module option
drm/radeon: also init GEM funcs in radeon_gem_prime_import_sg_table
drm/compat: Clear bounce structures
drm/fb-helper: only unmap if buffer not null
bnxt_en: reliably allocate IRQ table on reset to avoid crash
s390/cio: return -EFAULT if copy_to_user() fails again
net: hns3: fix bug when calculating the TCAM table info
net: hns3: fix query vlan mask value error for flow director
net: hns3: fix error mask definition of flow director
perf report: Fix -F for branch & mem modes
perf traceevent: Ensure read cmdlines are null terminated.
mlxsw: spectrum_ethtool: Add an external speed to PTYS register
selftests: forwarding: Fix race condition in mirror installation
net: phy: make mdio_bus_phy_suspend/resume as __maybe_unused
ethtool: fix the check logic of at least one channel for RX/TX
net: stmmac: fix wrongly set buffer2 valid when sph unsupport
net: stmmac: fix watchdog timeout during suspend/resume stress test
net: stmmac: stop each tx channel independently
perf build: Fix ccache usage in $(CC) when generating arch errno table
tools/resolve_btfids: Fix build error with older host toolchains
ixgbe: fail to create xfrm offload of IPsec tunnel mode SA
r8169: fix r8168fp_adjust_ocp_cmd function
s390/qeth: fix notification for pending buffers during teardown
s390/qeth: schedule TX NAPI on QAOB completion
s390/qeth: improve completion of pending TX buffers
s390/qeth: fix memory leak after failed TX Buffer allocation
net: qrtr: fix error return code of qrtr_sendmsg()
net: enetc: allow hardware timestamping on TX queues with tc-etf enabled
net: davicom: Fix regulator not turned off on driver removal
net: davicom: Fix regulator not turned off on failed probe
net: lapbether: Remove netif_start_queue / netif_stop_queue
stmmac: intel: Fixes clock registration error seen for multiple interfaces
net: stmmac: Fix VLAN filter delete timeout issue in Intel mGBE SGMII
cipso,calipso: resolve a number of problems with the DOI refcounts
netdevsim: init u64 stats for 32bit hardware
net: usb: qmi_wwan: allow qmimux add/del with master up
net: dsa: sja1105: fix SGMII PCS being forced to SPEED_UNKNOWN instead of SPEED_10
net: mscc: ocelot: properly reject destination IP keys in VCAP IS1
net: sched: avoid duplicates in classes dump
nexthop: Do not flush blackhole nexthops when loopback goes down
net: stmmac: fix incorrect DMA channel intr enable setting of EQoS v4.10
net/mlx4_en: update moderation when config reset
net: ethernet: mtk-star-emac: fix wrong unmap in RX handling
net: dsa: tag_mtk: fix 802.1ad VLAN egress
net: enetc: keep RX ring consumer index in sync with hardware
net: enetc: remove bogus write to SIRXIDR from enetc_setup_rxbdr
net: enetc: force the RGMII speed and duplex instead of operating in inband mode
net: enetc: don't disable VLAN filtering in IFF_PROMISC mode
net: enetc: fix incorrect TPID when receiving 802.1ad tagged packets
net: enetc: take the MDIO lock only once per NAPI poll cycle
net: enetc: initialize RFS/RSS memories for unused ports too
net: enetc: don't overwrite the RSS indirection table when initializing
sh_eth: fix TRSCER mask for SH771x
net: dsa: tag_rtl4_a: fix egress tags
docs: networking: drop special stable handling
Revert "mm, slub: consider rest of partial list if acquire_slab() fails"
cifs: return proper error code in statfs(2)
cifs: fix credit accounting for extra channel
mount: fix mounting of detached mounts onto targets that reside on shared mounts
gpio: fix gpio-device list corruption
mt76: dma: do not report truncated frames to mac80211
ibmvnic: remove excessive irqsave
ibmvnic: always store valid MAC address
ibmvnic: Fix possibly uninitialized old_num_tx_queues variable warning.
libbpf: Clear map_info before each bpf_obj_get_info_by_fd
samples, bpf: Add missing munmap in xdpsock
selftests/bpf: Mask bpf_csum_diff() return value to 16 bits in test_verifier
selftests/bpf: No need to drop the packet when there is no geneve opt
selftests/bpf: Use the last page in test_snprintf_btf on s390
net: phy: fix save wrong speed and duplex problem if autoneg is on
net: always use icmp{,v6}_ndo_send from ndo_start_xmit
netfilter: x_tables: gpf inside xt_find_revision()
netfilter: nf_nat: undo erroneous tcp edemux lookup
tcp: add sanity tests to TCP_QUEUE_SEQ
tcp: Fix sign comparison bug in getsockopt(TCP_ZEROCOPY_RECEIVE)
can: tcan4x5x: tcan4x5x_init(): fix initialization - clear MRAM before entering Normal Mode
can: flexcan: invoke flexcan_chip_freeze() to enter freeze mode
can: flexcan: enable RX FIFO after FRZ/HALT valid
can: flexcan: assert FRZ bit in flexcan_chip_freeze()
gpio: pca953x: Set IRQ type when handle Intel Galileo Gen 2
can: skb: can_skb_set_owner(): fix ref counting if socket was closed before setting skb ownership
gpiolib: acpi: Allow to find GpioInt() resource by name and index
gpiolib: acpi: Add ACPI_GPIO_QUIRK_ABSOLUTE_NUMBER quirk
net: l2tp: reduce log level of messages in receive path, add counter instead
ath11k: fix AP mode for QCA6390
net: avoid infinite loop in mpls_gso_segment when mpls_hlen == 0
net: check if protocol extracted by virtio_net_hdr_set_proto is correct
net: Fix gro aggregation for udp encaps with zero csum
ath9k: fix transmitting to stations in dynamic SMPS mode
mptcp: fix length of ADD_ADDR with port sub-option
crypto: mips/poly1305 - enable for all MIPS processors
powerpc/pseries: Don't enforce MSI affinity with kdump
powerpc/perf: Fix handling of privilege level checks in perf interrupt context
powerpc/603: Fix protection of user pages mapped with PROT_NONE
uapi: nfnetlink_cthelper.h: fix userspace compilation error

The following patches from this stable update were not needed:

ethernet: alx: fix order of calls on resume
ALSA: usb-audio: Disable USB autosuspend properly in setup_disable_autosuspend()
ALSA: usb-audio: fix NULL ptr dereference in usb_audio_probe
ALSA: usb-audio: fix use after free in usb_audio_disconnect
xhci: Fix repeated xhci wake after suspend due to uncleared internal wake state