Ubuntu
linux-kvm package

When booting with UEFI, mokvar table and %:.platform keyring must be available

Bug #1942319 reported by Dimitri John Ledkov on 2021-09-01

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	linux-kvm (Ubuntu)	Fix Released	Undecided	Unassigned
	Impish	Fix Released	Undecided	Unassigned

Bug Description

[Impact]

* When booting with UEFI, mokvar table and %:.platform keyring must be available. These are required for builtin revocation certificates to be present, shim builtin certificates to be present and thus support to signed & verified kexec present. It also allows revocation of signed lrm and livepatch drivers which are trusted by this kernel.

* The kvm annotations are very minimal, v3 format, and the parent kernel's annotations are not enforced.

[Test Plan]

* Check that /sys/firmware/efi/mok-variables/ is available

* Check that %:.blacklist keyring is populated

$ sudo keyctl list %:.blacklist

* Check that %:.platform keyring is populated

$ sudo keyctl list %:.platform

[Where problems could occur]

* Given how small the kvm config is, it is not clear if all of lockdown features are correctly enabled. Specifically measuring and appraising things with integrity framework. It is possible further config changes will be required to make kvm flavour as hardened as generic one.

[Other Info]

* This issue was discovered whilst working on https://bugs.launchpad.net/bugs/1928679 and https://bugs.launchpad.net/bugs/1932029

See original description

Tags:

CVE References

Dimitri John Ledkov (xnox) on 2021-10-05

description:

updated

Kleber Sacilotto de Souza (kleber-souza) on 2021-10-14

Changed in linux-kvm (Ubuntu Impish):
status:	New → Fix Committed

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2021-10-27:

This bug is awaiting verification that the linux-kvm/5.13.0-1005.5 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-impish' to 'verification-done-impish'. If the problem still exists, change the tag 'verification-needed-impish' to 'verification-failed-impish'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: verification-needed-impish

Revision history for this message

Dimitri John Ledkov (xnox) wrote on 2021-11-02:

failing to get lxd to work to verify this. will try again tomorrow.

Revision history for this message

Dimitri John Ledkov (xnox) wrote on 2021-11-03:

Booted impish lxd vm; enabled proposed and upgraded to the new kvm abi:

# uname -a
Linux leading-fly 5.13.0-1005-kvm #5-Ubuntu SMP Tue Oct 26 23:55:45 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux

# ls /sys/firmware/efi/mok-variables/
MokListRT MokListXRT SbatLevelRT

# keyctl list %:.blacklist | head
80 keys in keyring:
252860331: ---lswrv 0 0 blacklist: bin:82db3bceb4f60843ce9d97c3d187cd9b5941cd3de8100e586f2bda5637575f67
676962175: ---lswrv 0 0 blacklist: bin:7827af99362cfaf0717dade4b1bfe0438ad171c15addc248b75bf8caa44bb2c5
1059112409: ---lswrv 0 0 blacklist: bin:8d8ea289cfe70a1c07ab7365cb28ee51edd33cf2506de888fbadd60ebf80481c
990976823: ---lswrv 0 0 blacklist: bin:fddd6e3d29ea84c7743dad4a1bdbc700b5fec1b391f932409086acc71dd6dbd8
772477785: ---lswrv 0 0 blacklist: bin:b97a0889059c035ff1d54b6db53b11b9766668d9f955247c028b2837d7a04cd9
234365151: ---lswrv 0 0 blacklist: bin:d626157e1d6a718bc124ab8da27cbb65072ca03a7b6b257dbdcbbd60f65ef3d1
812179032: ---lswrv 0 0 blacklist: bin:c409bdac4775add8db92aa22b5b718fb8c94a1462c1fe9a416b95d8a3388c2fc
1025256417: ---lswrv 0 0 blacklist: bin:939aeef4f5fa51e23340c3f2e49048ce8872526afdf752c3a7f3a3f2bc9f6049
442082266: ---lswrv 0 0 blacklist: bin:075eea060589548ba060b2feed10da3c20c7fe9b17cd026b94e8a683b8115238

# keyctl list %:.blacklist | grep asym
73781777: ---lswrv 0 0 asymmetric: Canonical Ltd. Secure Boot Signing: 61482aa2830d0ab2ad5af10b7250da9033ddcef0

# keyctl list %:.platform
3 keys in keyring:
848858004: ---lswrv 0 0 asymmetric: Microsoft Windows Production PCA 2011: a92902398e16c49778cd90f99e4f9ae17c55af53
221029845: ---lswrv 0 0 asymmetric: Canonical Ltd. Master Certificate Authority: ad91990bc22ab1f517048c23b6655a268e345a63
730971307: ---lswrv 0 0 asymmetric: Microsoft Corporation UEFI CA 2011: 13adbf4309bd82709c8cd54f316ed522988a1bd4

mok-variables, blacklist, and platform keyrings are now there.

tags:

added: verification-done-impish
removed: verification-needed-impish

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-11-08:

Download full text (24.1 KiB)

This bug was fixed in the package linux-kvm - 5.13.0-1005.5

---------------
linux-kvm (5.13.0-1005.5) impish; urgency=medium

* impish/linux-kvm: 5.13.0-1005.5 -proposed tracker (LP: #1947340)

* Packaging resync (LP: #1786013)
- [Packaging] update Ubuntu.md

  * When booting with UEFI, mokvar table and %:.platform keyring must be
    available (LP: #1942319)
    - [Config] Enable Trusted, Platform, Secondary Keyrings

[ Ubuntu: 5.13.0-21.21 ]

This bug was fixed in the package linux-kvm - 5.13.0-1005.5

---------------
linux-kvm (5.13.0-1005.5) impish; urgency=medium

* impish/linux-kvm: 5.13.0-1005.5 -proposed tracker (LP: #1947340)

* Packaging resync (LP: #1786013)
    - [Packaging] update Ubuntu.md

* When booting with UEFI, mokvar table and %:.platform keyring must be
    available (LP: #1942319)
    - [Config] Enable Trusted, Platform, Secondary Keyrings

[ Ubuntu: 5.13.0-21.21 ]

* impish/linux: 5.13.0-21.21 -proposed tracker (LP: #1947347)
  * It hangs while booting up with AMD W6800 [1002:73A3] (LP: #1945553)
    - drm/amdgpu: Rename flag which prevents HW access
    - drm/amd/pm: Fix a bug communicating with the SMU (v5)
    - drm/amd/pm: Fix a bug in semaphore double-lock
  * Add final-checks to check certificates (LP: #1947174)
    - [Packaging] Add system trusted and revocation keys final check
  * No sound on Lenovo laptop models Legion 15IMHG05, Yoga 7 14ITL5, and 13s
    Gen2 (LP: #1939052)
    - ALSA: hda/realtek: Quirks to enable speaker output for Lenovo Legion 7i
      15IMHG05, Yoga 7i 14ITL5/15ITL5, and 13s Gen2 laptops.
    - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo 13s
      Gen2
  * Check for changes relevant for security certifications (LP: #1945989)
    - [Packaging] Add a new fips-checks script
    - [Packaging] Add fips-checks as part of finalchecks
  * BCM57800 SRIOV bug causes interfaces to disappear (LP: #1945707)
    - bnx2x: Fix enabling network interfaces without VFs
  * CVE-2021-3759
    - memcg: enable accounting of ipc resources
  * [impish] Remove the downstream xr-usb-uart driver (LP: #1945938)
    - SAUCE: xr-usb-serial: remove driver
    - [Config] update modules list
  * Fix A yellow screen pops up in an instant (< 1 second) and then disappears
    before loading the system (LP: #1945932)
    - drm/i915: Stop force enabling pipe bottom color gammma/csc
  * Impish update: v5.13.18 upstream stable release (LP: #1946249)
    - Linux 5.13.18
  * Impish update: v5.13.17 upstream stable release (LP: #1946247)
    - locking/mutex: Fix HANDOFF condition
    - regmap: fix the offset of register error log
    - regulator: tps65910: Silence deferred probe error
    - crypto: mxs-dcp - Check for DMA mapping errors
    - sched/deadline: Fix reset_on_fork reporting of DL tasks
    - power: supply: axp288_fuel_gauge: Report register-address on readb / writeb
      errors
    - crypto: omap-sham - clear dma flags only after omap_sham_update_dma_stop()
    - sched/deadline: Fix missing clock update in migrate_task_rq_dl()
    - rcu/tree: Handle VM stoppage in stall detection
    - EDAC/mce_amd: Do not load edac_mce_amd module on guests
    - hrtimer: Avoid double reprogramming in __hrtimer_start_range_ns()
    - hrtimer: Ensure timerfd notification for HIGHRES=n
    - udf: Check LVID earlier
    - udf: Fix iocharset=utf8 mount option
    - isofs: joliet: Fix iocharset=utf8 mount option
    - bcache: add proper error unwinding in bcache_device_init
    - nbd: add the check to prevent overflow in __nbd_ioctl()
    - blk-throtl: optimize IOPS throttle for large IO scenarios
    - nvme-tcp: don't update queue count when failing to set io queues
    - nvme-rdma: don't update queue count when failing to set io queues
    - nvmet: pass back cntlid on successful completion
    - power: supply: smb347-charger: Add missing pin control activation
    - power: supply: max17042_battery: fix typo in MAx17042_TOFF
    - s390/cio: add dev_busid sysfs entry for each subchannel
    - s390/zcrypt: fix wrong offset index for APKA master key valid state
    - libata: fix ata_host_start()
    - sched/topology: Skip updating masks for non-online nodes
    - crypto: omap - Fix inconsistent locking of device lists
    - crypto: qat - do not ignore errors from enable_vf2pf_comms()
    - crypto: qat - handle both source of interrupt in VF ISR
    - crypto: qat - fix reuse of completion variable
    - crypto: qat - fix naming for init/shutdown VF to PF notifications
    - crypto: qat - do not export adf_iov_putmsg()
    - crypto: hisilicon/sec - fix the abnormal exiting process
    - crypto: hisilicon/sec - modify the hardware endian configuration
    - crypto: tcrypt - Fix missing return value check
    - fcntl: fix potential deadlocks for &fown_struct.lock
    - fcntl: fix potential deadlock for &fasync_struct.fa_lock
    - udf_get_extendedattr() had no boundary checks.
    - io-wq: remove GFP_ATOMIC allocation off schedule out path
    - s390/kasan: fix large PMD pages address alignment check
    - s390/pci: fix misleading rc in clp_set_pci_fn()
    - s390/debug: keep debug data on resize
    - s390/debug: fix debug area life cycle
    - s390/ap: fix state machine hang after failure to enable irq
    - sched/debug: Don't update sched_domain debug directories before
      sched_debug_init()
    - power: supply: cw2015: use dev_err_probe to allow deferred probe
    - m68k: emu: Fix invalid free in nfeth_cleanup()
    - crypto: x86/aes-ni - add missing error checks in XTS code
    - crypto: ecc - handle unaligned input buffer in ecc_swap_digits
    - sched/numa: Fix is_core_idle()
    - sched: Fix UCLAMP_FLAG_IDLE setting
    - rcu: Fix to include first blocked task in stall warning
    - rcu: Fix stall-warning deadlock due to non-release of rcu_node ->lock
    - m68k: Fix invalid RMW_INSNS on CPUs that lack CAS
    - block: return ELEVATOR_DISCARD_MERGE if possible
    - spi: spi-fsl-dspi: Fix issue with uninitialized dma_slave_config
    - spi: spi-pic32: Fix issue with uninitialized dma_slave_config
    - genirq/timings: Fix error return code in irq_timings_test_irqs()
    - irqchip/loongson-pch-pic: Improve edge triggered interrupt support
    - lib/mpi: use kcalloc in mpi_resize
    - clocksource/drivers/sh_cmt: Fix wrong setting if don't request IRQ for clock
      source channel
    - block: nbd: add sanity check for first_minor
    - spi: coldfire-qspi: Use clk_disable_unprepare in the remove function
    - irqchip/apple-aic: Fix irq_disable from within irq handlers
    - irqchip/gic-v3: Fix priority comparison when non-secure priorities are used
    - crypto: qat - use proper type for vf_mask
    - certs: Trigger creation of RSA module signing key if it's not an RSA key
    - tpm: ibmvtpm: Avoid error message when process gets signal while waiting
    - io_uring: refactor io_submit_flush_completions()
    - x86/mce: Defer processing of early errors
    - spi: davinci: invoke chipselect callback
    - blk-crypto: fix check for too-large dun_bytes
    - regulator: vctrl: Use locked regulator_get_voltage in probe path
    - regulator: vctrl: Avoid lockdep warning in enable/disable ops
    - spi: sprd: Fix the wrong WDG_LOAD_VAL
    - spi: spi-zynq-qspi: use wait_for_completion_timeout to make
      zynq_qspi_exec_mem_op not interruptible
    - crypto: rmd320 - remove rmd320 in Makefile
    - EDAC/i10nm: Fix NVDIMM detection
    - drm/panfrost: Fix missing clk_disable_unprepare() on error in
      panfrost_clk_init()
    - drm/gma500: Fix end of loop tests for list_for_each_entry
    - ASoC: mediatek: mt8192:Fix Unbalanced pm_runtime_enable in
      mt8192_afe_pcm_dev_probe
    - ASoC: mediatek: mt8183: Fix Unbalanced pm_runtime_enable in
      mt8183_afe_pcm_dev_probe
    - media: TDA1997x: enable EDID support
    - leds: is31fl32xx: Fix missing error code in is31fl32xx_parse_dt()
    - soc: rockchip: ROCKCHIP_GRF should not default to y, unconditionally
    - media: cxd2880-spi: Fix an error handling path
    - drm/of: free the right object
    - bpf: Fix a typo of reuseport map in bpf.h.
    - bpf: Fix potential memleak and UAF in the verifier.
    - drm/of: free the iterator object on failure
    - gve: fix the wrong AdminQ buffer overflow check
    - libbpf: Fix the possible memory leak on error
    - ARM: dts: aspeed-g6: Fix HVI3C function-group in pinctrl dtsi
    - arm64: dts: renesas: r8a77995: draak: Remove bogus adv7511w properties
    - i40e: improve locking of mac_filter_hash
    - arm64: dts: qcom: sc7180: Set adau wakeup delay to 80 ms
    - soc: qcom: rpmhpd: Use corner in power_off
    - libbpf: Fix removal of inner map in bpf_object__create_map
    - gfs2: Fix memory leak of object lsi on error return path
    - arm64: dts: qcom: sm8250: fix usb2 qmp phy node
    - bpf, selftests: Fix test_maps now that sockmap supports UDP
    - firmware: fix theoretical UAF race with firmware cache and resume
    - driver core: Fix error return code in really_probe()
    - ionic: cleanly release devlink instance
    - media: dvb-usb: fix uninit-value in dvb_usb_adapter_dvb_init
    - media: dvb-usb: fix uninit-value in vp702x_read_mac_addr
    - media: dvb-usb: Fix error handling in dvb_usb_i2c_init
    - media: go7007: fix memory leak in go7007_usb_probe
    - media: go7007: remove redundant initialization
    - media: rockchip/rga: use pm_runtime_resume_and_get()
    - media: rockchip/rga: fix error handling in probe
    - media: coda: fix frame_mem_ctrl for YUV420 and YVU420 formats
    - media: atomisp: fix the uninitialized use and rename "retvalue"
    - Bluetooth: sco: prevent information leak in sco_conn_defer_accept()
    - Bluetooth: btusb: Fix a unspported condition to set available debug features
    - 6lowpan: iphc: Fix an off-by-one check of array index
    - tcp: seq_file: Avoid skipping sk during tcp_seek_last_pos
    - ARM: dts: meson8: Use a higher default GPU clock frequency
    - ARM: dts: meson8b: odroidc1: Fix the pwm regulator supply properties
    - ARM: dts: meson8b: mxq: Fix the pwm regulator supply properties
    - ARM: dts: meson8b: ec100: Fix the pwm regulator supply properties
    - net/mlx5e: Prohibit inner indir TIRs in IPoIB
    - net/mlx5e: Block LRO if firmware asks for tunneled LRO
    - cgroup/cpuset: Fix a partition bug with hotplug
    - drm: mxsfb: Enable recovery on underflow
    - drm: mxsfb: Increase number of outstanding requests on V4 and newer HW
    - drm: mxsfb: Clear FIFO_CLEAR bit
    - net: cipso: fix warnings in netlbl_cipsov4_add_std
    - net: ti: am65-cpsw-nuss: fix wrong devlink release order
    - drm: rcar-du: Don't put reference to drm_device in rcar_du_remove()
    - Bluetooth: mgmt: Fix wrong opcode in the response for add_adv cmd
    - tools: Free BTF objects at various locations
    - arm64: dts: renesas: hihope-rzg2-ex: Add EtherAVB internal rx delay
    - devlink: Break parameter notification sequence to be before/after
      unload/load driver
    - net/mlx5: Fix missing return value in mlx5_devlink_eswitch_inline_mode_set()
    - i2c: highlander: add IRQ check
    - leds: lgm-sso: Put fwnode in any case during ->probe()
    - leds: lgm-sso: Don't spam logs when probe is deferred
    - leds: lt3593: Put fwnode in any case during ->probe()
    - leds: rt8515: Put fwnode in any case during ->probe()
    - leds: trigger: audio: Add an activate callback to ensure the initial
      brightness is set
    - media: em28xx-input: fix refcount bug in em28xx_usb_disconnect
    - media: omap3isp: Fix missing unlock in isp_subdev_notifier_complete()
    - media: venus: hfi: fix return value check in sys_get_prop_image_version()
    - media: venus: venc: Fix potential null pointer dereference on pointer fmt
    - media: venus: helper: do not set constrained parameters for UBWC
    - soc: mmsys: mediatek: add mask to mmsys routes
    - PCI: PM: Avoid forcing PCI_D0 for wakeup reasons inconsistently
    - PCI: PM: Enable PME if it can be signaled from D3cold
    - bpf, samples: Add missing mprog-disable to xdp_redirect_cpu's optstring
    - soc: qcom: smsm: Fix missed interrupts if state changes while masked
    - debugfs: Return error during {full/open}_proxy_open() on rmmod
    - Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow
    - net: ti: am65-cpsw-nuss: fix RX IRQ state after .ndo_stop()
    - net: dsa: stop syncing the bridge mcast_router attribute at join time
    - net: dsa: mt7530: remove the .port_set_mrouter implementation
    - net: dsa: don't disable multicast flooding to the CPU even without an IGMP
      querier
    - PM: EM: Increase energy calculation precision
    - selftests/bpf: Fix bpf-iter-tcp4 test to print correctly the dest IP
    - leds: lgm-sso: Propagate error codes from callee to caller
    - drm/msm/mdp4: refactor HW revision detection into read_mdp_hw_revision
    - drm/msm/mdp4: move HW revision detection to earlier phase
    - drm/msm/dp: update is_connected status base on sink count at dp_pm_resume()
    - drm/msm/dpu: make dpu_hw_ctl_clear_all_blendstages clear necessary LMs
    - arm64: dts: exynos: correct GIC CPU interfaces address range on Exynos7
    - counter: 104-quad-8: Return error when invalid mode during ceiling_write
    - cgroup/cpuset: Miscellaneous code cleanup
    - cgroup/cpuset: Fix violation of cpuset locking rule
    - ASoC: Intel: Fix platform ID matching
    - Bluetooth: fix repeated calls to sco_sock_kill
    - drm/msm/dsi: Fix some reference counted resource leaks
    - drm/msm/dp: replug event is converted into an unplug followed by an plug
      events
    - net/mlx5: Fix unpublish devlink parameters
    - ASoC: rt5682: Implement remove callback
    - ASoC: rt5682: Properly turn off regulators if wrong device ID
    - usb: dwc3: meson-g12a: add IRQ check
    - usb: dwc3: qcom: add IRQ check
    - usb: gadget: udc: at91: add IRQ check
    - usb: gadget: udc: s3c2410: add IRQ check
    - usb: misc: brcmstb-usb-pinmap: add IRQ check
    - usb: phy: fsl-usb: add IRQ check
    - usb: phy: twl6030: add IRQ checks
    - usb: gadget: udc: renesas_usb3: Fix soc_device_match() abuse
    - selftests/bpf: Fix test_core_autosize on big-endian machines
    - devlink: Clear whole devlink_flash_notify struct
    - samples: pktgen: add missing IPv6 option to pktgen scripts
    - net: stmmac: fix INTR TBU status affecting irq count statistic
    - PM: cpu: Make notifier chain use a raw_spinlock_t
    - usb: host: ohci-tmio: add IRQ check
    - usb: phy: tahvo: add IRQ check
    - libbpf: Re-build libbpf.so when libbpf.map changes
    - mac80211: Fix insufficient headroom issue for AMSDU
    - locking/local_lock: Add missing owner initialization
    - lockd: Fix invalid lockowner cast after vfs_test_lock
    - SUNRPC: Fix a NULL pointer deref in trace_svc_stats_latency()
    - nfsd4: Fix forced-expiry locking
    - arm64: dts: marvell: armada-37xx: Extend PCIe MEM space
    - clk: staging: correct reference to config IOMEM to config HAS_IOMEM
    - [Config] updateconfigs for COMMON_CLK_XLNX_CLKWZRD
    - i2c: synquacer: fix deferred probing
    - hwmon: (pmbus/bpa-rs600) Don't use rated limits as warn limits
    - hwmon: remove amd_energy driver in Makefile
    - ASoC: fsl_rpmsg: Check -EPROBE_DEFER for getting clocks
    - firmware: raspberrypi: Fix a leak in 'rpi_firmware_get()'
    - usb: gadget: mv_u3d: request_irq() after initializing UDC
    - mm/swap: consider max pages in iomap_swapfile_add_extent
    - lkdtm: replace SCSI_DISPATCH_CMD with SCSI_QUEUE_RQ
    - Bluetooth: add timeout sanity check to hci_inquiry
    - i2c: iop3xx: fix deferred probing
    - i2c: s3c2410: fix IRQ check
    - i2c: hix5hd2: fix IRQ check
    - gfs2: init system threads before freeze lock
    - rsi: fix error code in rsi_load_9116_firmware()
    - rsi: fix an error code in rsi_probe()
    - octeontx2-af: cn10k: Fix SDP base channel number
    - octeontx2-pf: send correct vlan priority mask to npc_install_flow_req
    - octeontx2-pf: Don't install VLAN offload rule if netdev is down
    - octeontx2-pf: Fix algorithm index in MCAM rules with RSS action
    - m68k: coldfire: return success for clk_enable(NULL)
    - ASoC: Intel: kbl_da7219_max98927: Fix format selection for max98373
    - ASoC: Intel: Skylake: Leave data as is when invoking TLV IPCs
    - ASoC: Intel: Skylake: Fix module resource and format selection
    - mmc: sdhci: Fix issue with uninitialized dma_slave_config
    - mmc: dw_mmc: Fix issue with uninitialized dma_slave_config
    - mmc: moxart: Fix issue with uninitialized dma_slave_config
    - bpf: Fix possible out of bound write in narrow load handling
    - CIFS: Fix a potencially linear read overflow
    - i2c: mt65xx: fix IRQ check
    - i2c: xlp9xx: fix main IRQ check
    - octeontx2-pf: cn10k: Fix error return code in otx2_set_flowkey_cfg()
    - usb: ehci-orion: Handle errors of clk_prepare_enable() in probe
    - usb: bdc: Fix an error handling path in 'bdc_probe()' when no suitable DMA
      config is available
    - usb: bdc: Fix a resource leak in the error handling path of 'bdc_probe()'
    - tty: serial: fsl_lpuart: fix the wrong mapbase value
    - ASoC: wcd9335: Fix a double irq free in the remove function
    - ASoC: wcd9335: Fix a memory leak in the error handling path of the probe
      function
    - ASoC: wcd9335: Disable irq on slave ports in the remove function
    - iwlwifi: skip first element in the WTAS ACPI table
    - net/mlx5: Remove all auxiliary devices at the unregister event
    - net/mlx5e: Fix possible use-after-free deleting fdb rule
    - net/mlx5: E-Switch, Set vhca id valid flag when creating indir fwd group
    - net/mlx5e: Use correct eswitch for stack devices with lag
    - ice: Only lock to update netdev dev_addr
    - net: phy: marvell10g: fix broken PHY interrupts for anyone after us in the
      driver probe list
    - ath6kl: wmi: fix an error code in ath6kl_wmi_sync_point()
    - atlantic: Fix driver resume flow.
    - bcma: Fix memory leak for internally-handled cores
    - brcmfmac: pcie: fix oops on failure to resume and reprobe
    - ipv6: make exception cache less predictible
    - ipv4: make exception cache less predictible
    - net: qrtr: make checks in qrtr_endpoint_post() stricter
    - sch_htb: Fix inconsistency when leaf qdisc creation fails
    - net: sched: Fix qdisc_rate_table refcount leak when get tcf_block failed
    - net: qualcomm: fix QCA7000 checksum handling
    - octeontx2-af: Fix loop in free and unmap counter
    - octeontx2-af: Fix mailbox errors in nix_rss_flowkey_cfg
    - octeontx2-af: Fix static code analyzer reported issues
    - octeontx2-af: Set proper errorcode for IPv4 checksum errors
    - ipv4: fix endianness issue in inet_rtm_getroute_build_skb()
    - amdgpu/pm: add extra info to SMU msg pre-check failed message
    - ASoC: rt5682: Remove unused variable in rt5682_i2c_remove()
    - iwlwifi Add support for ax201 in Samsung Galaxy Book Flex2 Alpha
    - f2fs: guarantee to write dirty data when enabling checkpoint back
    - auxdisplay: hd44780: Fix oops on module unloading
    - io_uring: limit fixed table size by RLIMIT_NOFILE
    - io_uring: IORING_OP_WRITE needs hash_reg_file set
    - io_uring: io_uring_complete() trace should take an integer
    - bio: fix page leak bio_add_hw_page failure
    - raid1: ensure write behind bio has less than BIO_MAX_VECS sectors
    - cifs: Do not leak EDEADLK to dgetents64 for STATUS_USER_SESSION_DELETED
    - smb3: fix posix extensions mount option
    - tty: Fix data race between tiocsti() and flush_to_ldisc()
    - x86/efi: Restore Firmware IDT before calling ExitBootServices()
    - perf/x86/amd/ibs: Extend PERF_PMU_CAP_NO_EXCLUDE to IBS Op
    - x86/resctrl: Fix a maybe-uninitialized build warning treated as error
    - Revert "KVM: x86: mmu: Add guest physical address check in translate_gpa()"
    - KVM: s390: index kvm->arch.idle_mask by vcpu_idx
    - KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is
      adjusted
    - KVM: x86: clamp host mapping level to max_level in kvm_mmu_max_mapping_level
    - KVM: x86/mmu: Avoid collision with !PRESENT SPTEs in TDP MMU lpage stats
    - KVM: VMX: avoid running vmx_handle_exit_irqoff in case of emulation
    - KVM: nVMX: Unconditionally clear nested.pi_pending on nested VM-Enter
    - KVM: arm64: Unregister HYP sections from kmemleak in protected mode
    - ARM: dts: at91: add pinctrl-{names, 0} for all gpios
    - io-wq: check max_worker limits if a worker transitions bound state
    - md/raid10: Remove unnecessary rcu_dereference in raid10_handle_discard
    - char: tpm: Kconfig: remove bad i2c cr50 select
    - fuse: truncate pagecache on atomic_o_trunc
    - fuse: flush extending writes
    - fuse: wait for writepages in syncfs
    - IMA: remove -Wmissing-prototypes warning
    - IMA: remove the dependency on CRYPTO_MD5
    - fbmem: don't allow too huge resolutions
    - RDMA/mlx5: Fix number of allocated XLT entries
    - backlight: pwm_bl: Improve bootloader/kernel device handover
    - clk: kirkwood: Fix a clocking boot regression
    - Linux 5.13.17
  * AMD A8-7680 (amdgpu): broken Xorg acceleration and hibernation
    (LP: #1920674) // Impish update: v5.13.17 upstream stable release
    (LP: #1946247)
    - drm/amdgpu/acp: Make PM domain really work
  * Impish update: v5.13.16 upstream stable release (LP: #1946245)
    - firmware: dmi: Move product_sku info to the end of the modalias
    - igmp: Add ip_mc_list lock in ip_check_mc_rcu
    - net: ll_temac: Remove left-over debug message
    - Revert "r8169: avoid link-up interrupt issue on RTL8106e if user enables
      ASPM"
    - blk-mq: fix kernel panic during iterating over flush request
    - blk-mq: fix is_flush_rq
    - blk-mq: clearing flush request reference in tags->rqs[]
    - ALSA: usb-audio: Add registration quirk for JBL Quantum 800
    - Bluetooth: Add additional Bluetooth part for Realtek 8852AE
    - Bluetooth: btusb: Make the CSR clone chip force-suspend workaround more
      generic
    - usb: host: xhci-rcar: Don't reload firmware after the completion
    - usb: xhci-mtk: fix issue of out-of-bounds array access
    - usb: cdnsp: fix the wrong mult value for HS isoc or intr
    - usb: gadget: tegra-xudc: fix the wrong mult value for HS isoc or intr
    - usb: mtu3: restore HS function when set SS/SSP
    - usb: mtu3: use @mult for HS isoc or intr
    - usb: mtu3: fix the wrong HS mult value
    - xhci: fix even more unsafe memory usage in xhci tracing
    - xhci: fix unsafe memory usage in xhci tracing
    - xhci: Fix failure to give back some cached cancelled URBs.
    - x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions
    - PCI: Call Max Payload Size-related fixup quirks early
    - Linux 5.13.16
  * Impish update: v5.13.15 upstream stable release (LP: #1946242)
    - ext4: fix e2fsprogs checksum failure for mounted filesystem
    - gpu: ipu-v3: Fix i.MX IPU-v3 offset calculations for (semi)planar U/V
      formats
    - reset: reset-zynqmp: Fixed the argument data type
    - qed: Fix the VF msix vectors flow
    - net: dsa: mv88e6xxx: Update mv88e6393x serdes errata
    - riscv: dts: microchip: Use 'local-mac-address' for emac1
    - riscv: dts: microchip: Add ethernet0 to the aliases node
    - net: macb: Add a NULL check on desc_ptp
    - qede: Fix memset corruption
    - perf/x86/intel/pt: Fix mask of num_address_ranges
    - ceph: fix possible null-pointer dereference in ceph_mdsmap_decode()
    - perf/x86/amd/ibs: Work around erratum #1197
    - perf/x86/amd/power: Assign pmu.module
    - cryptoloop: add a deprecation warning
    - xtensa: fix kconfig unmet dependency warning for HAVE_FUTEX_CMPXCHG
    - USB: serial: pl2303: fix GL type detection
    - USB: serial: cp210x: fix control-characters error handling
    - USB: serial: cp210x: fix flow-control error handling
    - ALSA: hda/realtek: Quirk for HP Spectre x360 14 amp setup
    - ALSA: usb-audio: Fix regression on Sony WALKMAN NW-A45 DAC
    - ALSA: hda/realtek: Workaround for conflicting SSID on ASUS ROG Strix G17
    - ALSA: pcm: fix divide error in snd_pcm_lib_ioctl
    - media: stkwebcam: fix memory leak in stk_camera_probe
    - Linux 5.13.15
  * Re-enable DEBUG_INFO_BTF where it was dissabled (LP: #1945632)
    - [Config] Re-enable CONFIG_DEBUG_INFO_BTF=y on armhf
  * Fix missing HDMI audio on Intel RKL (LP: #1945556)
    - drm/i915/audio: Use BIOS provided value for RKL HDA link
  * USB Type-C hotplug event not handled properly in TGL-H system during s2idle
    (LP: #1931072)
    - drm/i915: Force a TypeC PHY disconnect during suspend/shutdown
  * Packaging resync (LP: #1786013)
    - [Packaging] update Ubuntu.md

[ Ubuntu: 5.13.0-20.20 ]

* impish/linux: 5.13.0-20.20 -proposed tracker (LP: #1947380)
  * PANIC at zfs_znode.c:335:zfs_znode_sa_init() // VERIFY(0 ==
    sa_handle_get_from_db(zfsvfs->z_os, db, zp, SA_HDL_SHARED, &zp->z_sa_hdl))
    failed (LP: #1906476)
    - debian/dkms-versions -- Update zfs to latest version

-- Luke Nowakowski-Krijger <luke.nowakowskikrijger@canonical.com>  Tue, 26 Oct 2021 15:03:36 -0700

Changed in linux-kvm (Ubuntu Impish):
status:	Fix Committed → Fix Released

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-11-23:

Download full text (71.6 KiB)

This bug was fixed in the package linux-kvm - 5.13.0-1006.6+22.04.1

---------------
linux-kvm (5.13.0-1006.6+22.04.1) jammy; urgency=medium

* jammy/linux-kvm: 5.13.0-1006.6+22.04.1 -proposed tracker (LP: #1949727)

  * Packaging resync (LP: #1786013)
    - [Packaging] update Ubuntu.md
    - [Packaging] update update.conf
    - debian/dkms-versions -- update from kernel-versions (main/2021.11.08)

[ Ubuntu: 5.13.0-1006.6 ]

This bug was fixed in the package linux-kvm - 5.13.0-1006.6+22.04.1

---------------
linux-kvm (5.13.0-1006.6+22.04.1) jammy; urgency=medium

* jammy/linux-kvm: 5.13.0-1006.6+22.04.1 -proposed tracker (LP: #1949727)

* Packaging resync (LP: #1786013)
    - [Packaging] update Ubuntu.md
    - [Packaging] update update.conf
    - debian/dkms-versions -- update from kernel-versions (main/2021.11.08)

[ Ubuntu: 5.13.0-1006.6 ]

* impish/linux-kvm: 5.13.0-1006.6 -proposed tracker (LP: #1949728)
  * impish/linux: 5.13.0-22.22 -proposed tracker (LP: #1949740)
  * Packaging resync (LP: #1786013)
    - debian/dkms-versions -- update from kernel-versions (main/2021.11.08)
  * ebpf:  bpf_redirect fails with ip6 gre interfaces (LP: #1947164)
    - net: handle ARPHRD_IP6GRE in dev_is_mac_header_xmit()
  * require CAP_NET_ADMIN to attach N_HCI ldisc (LP: #1949516)
    - Bluetooth: hci_ldisc: require CAP_NET_ADMIN to attach N_HCI ldisc
  * CVE-2021-3744 // CVE-2021-3764
    - crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()
  * ppc64 BPF JIT mod by 1 will not return 0 (LP: #1948351)
    - powerpc/bpf: Fix BPF_MOD when imm == 1
  * Fix Screen freeze after resume from suspend with iGPU [1002:6987]
    (LP: #1949050)
    - drm/amdgpu: reenable BACO support for 699F:C7 polaris12 SKU
    - drm/amdgpu: add missing cleanups for Polaris12 UVD/VCE on suspend
    - drm/amdgpu: Fix crash on device remove/driver unload
  * Intel I225-IT ethernet controller: igc: probe of 0000:02:00.0 failed with
    error -1 (LP: #1945576)
    - igc: Remove _I_PHY_ID checking
    - igc: Remove phy->type checking
  * Fail to detect audio output from external monitor (LP: #1948767)
    - ALSA: hda: intel: Allow repeatedly probing on codec configuration errors
  * Drop "UBUNTU: SAUCE: cachefiles: Page leaking in
    cachefiles_read_backing_file while vmscan is active" (LP: #1947709)
    - Revert "UBUNTU: SAUCE: cachefiles: Page leaking in
      cachefiles_read_backing_file while vmscan is active"
  * rtw89 kernel module for Realtek 8852 wifi is missing (LP: #1945967)
    - rtw89: add Realtek 802.11ax driver
    - rtw89: Remove redundant check of ret after call to rtw89_mac_enable_bb_rf
    - rtw89: fix return value check in rtw89_cam_send_sec_key_cmd()
    - rtw89: remove unneeded semicolon
    - [Config] RTW89=m
  * Impish update: upstream stable patchset 2021-11-03 (LP: #1949636)
    - mm: fix uninitialized use in overcommit_policy_handler
    - usb: gadget: r8a66597: fix a loop in set_feature()
    - usb: dwc2: gadget: Fix ISOC flow for BDMA and Slave
    - usb: dwc2: gadget: Fix ISOC transfer complete handling for DDMA
    - usb: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned()
    - cifs: fix incorrect check for null pointer in header_assemble
    - xen/x86: fix PV trap handling on secondary processors
    - usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c
    - USB: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter
    - USB: cdc-acm: fix minor-number release
    - Revert "USB: bcma: Add a check for devm_gpiod_get"
    - binder: make sure fd closes complete
    - staging: greybus: uart: fix tty use after free
    - Re-enable UAS for LaCie Rugged USB3-FW with fk quirk
    - usb: dwc3: core: balance phy init and exit
    - usb: core: hcd: Add support for deferring roothub registration
    - USB: serial: mos7840: remove duplicated 0xac24 device ID
    - USB: serial: option: add Telit LN920 compositions
    - USB: serial: option: remove duplicate USB device ID
    - USB: serial: option: add device id for Foxconn T99W265
    - mcb: fix error handling in mcb_alloc_bus()
    - erofs: fix up erofs_lookup tracepoint
    - btrfs: prevent __btrfs_dump_space_info() to underflow its free space
    - xhci: Set HCD flag to defer primary roothub registration
    - serial: 8250: 8250_omap: Fix RX_LVL register offset
    - serial: mvebu-uart: fix driver's tx_empty callback
    - scsi: sd_zbc: Ensure buffer size is aligned to SECTOR_SIZE
    - drm/amd/pm: Update intermediate power state for SI
    - net: hso: fix muxed tty registration
    - comedi: Fix memory leak in compat_insnlist()
    - afs: Fix incorrect triggering of sillyrename on 3rd-party invalidation
    - afs: Fix updating of i_blocks on file/dir extension
    - platform/x86/intel: punit_ipc: Drop wrong use of ACPI_PTR()
    - enetc: Fix illegal access when reading affinity_hint
    - enetc: Fix uninitialized struct dim_sample field usage
    - bnxt_en: Fix TX timeout when TX ring size is set to the smallest
    - net: hns3: fix change RSS 'hfunc' ineffective issue
    - net: hns3: check queue id range before using
    - net/smc: add missing error check in smc_clc_prfx_set()
    - net/smc: fix 'workqueue leaked lock' in smc_conn_abort_work
    - net: dsa: don't allocate the slave_mii_bus using devres
    - net: dsa: realtek: register the MDIO bus under devres
    - kselftest/arm64: signal: Add SVE to the set of features we can check for
    - kselftest/arm64: signal: Skip tests if required features are missing
    - s390/qeth: fix NULL deref in qeth_clear_working_pool_list()
    - gpio: uniphier: Fix void functions to remove return value
    - qed: rdma - don't wait for resources under hw error recovery flow
    - net/mlx4_en: Don't allow aRFS for encapsulated packets
    - atlantic: Fix issue in the pm resume flow.
    - scsi: iscsi: Adjust iface sysfs attr detection
    - scsi: target: Fix the pgr/alua_support_store functions
    - tty: synclink_gt: rename a conflicting function name
    - fpga: machxo2-spi: Return an error on failure
    - fpga: machxo2-spi: Fix missing error code in machxo2_write_complete()
    - nvme-tcp: fix incorrect h2cdata pdu offset accounting
    - nvme: keep ctrl->namespaces ordered
    - thermal/core: Potential buffer overflow in thermal_build_list_of_policies()
    - cifs: fix a sign extension bug
    - scsi: qla2xxx: Restore initiator in dual mode
    - scsi: lpfc: Use correct scnprintf() limit
    - irqchip/goldfish-pic: Select GENERIC_IRQ_CHIP to fix build
    - irqchip/gic-v3-its: Fix potential VPE leak on error
    - md: fix a lock order reversal in md_alloc
    - x86/asm: Fix SETZ size enqcmds() build failure
    - io_uring: put provided buffer meta data under memcg accounting
    - blktrace: Fix uaf in blk_trace access after removing by sysfs
    - net: phylink: Update SFP selected interface on advertising changes
    - net: macb: fix use after free on rmmod
    - net: stmmac: allow CSR clock of 300MHz
    - blk-mq: avoid to iterate over stale request
    - m68k: Double cast io functions to unsigned long
    - ipv6: delay fib6_sernum increase in fib6_add
    - cpufreq: intel_pstate: Override parameters if HWP forced by BIOS
    - bpf: Add oversize check before call kvcalloc()
    - xen/balloon: use a kernel thread instead a workqueue
    - nvme-multipath: fix ANA state updates when a namespace is not present
    - nvme-rdma: destroy cm id before destroy qp to avoid use after free
    - sparc32: page align size in arch_dma_alloc
    - amd/display: downgrade validation failure log level
    - block: check if a profile is actually registered in blk_integrity_unregister
    - block: flush the integrity workqueue in blk_integrity_unregister
    - blk-cgroup: fix UAF by grabbing blkcg lock before destroying blkg pd
    - compiler.h: Introduce absolute_pointer macro
    - net: i825xx: Use absolute_pointer for memcpy from fixed memory location
    - sparc: avoid stringop-overread errors
    - qnx4: avoid stringop-overread errors
    - parisc: Use absolute_pointer() to define PAGE0
    - arm64: Mark __stack_chk_guard as __ro_after_init
    - alpha: Declare virt_to_phys and virt_to_bus parameter as pointer to volatile
    - net: 6pack: Fix tx timeout and slot time
    - spi: Fix tegra20 build with CONFIG_PM=n
    - EDAC/synopsys: Fix wrong value type assignment for edac_mode
    - EDAC/dmc520: Assign the proper type to dimm->edac_mode
    - thermal/drivers/int340x: Do not set a wrong tcc offset on resume
    - USB: serial: cp210x: fix dropped characters with CP2102
    - xen/balloon: fix balloon kthread freezing
    - qnx4: work around gcc false positive warning bug
    - mm, hwpoison: add is_free_buddy_page() in HWPoisonHandlable()
    - mm/debug: sync up MR_CONTIG_RANGE and MR_LONGTERM_PIN
    - cifs: Not to defer close on file when lock is set
    - cifs: Fix soft lockup during fsstress
    - binder: fix freeze race
    - usb: cdns3: fix race condition before setting doorbell
    - misc: bcm-vk: fix tty registration race
    - misc: genwqe: Fixes DMA mask setting
    - KVM: rseq: Update rseq when processing NOTIFY_RESUME on xfer to KVM guest
    - nexthop: Fix division by zero while replacing a resilient group
    - platform/x86: amd-pmc: Increase the response register timeout
    - regulator: qcom-rpmh-regulator: fix pm8009-1 ldo7 resource name
    - afs: Fix page leak
    - afs: Fix corruption in reads at fpos 2G-4G from an OpenAFS server
    - regulator: max14577: Revert "regulator: max14577: Add proper module aliases
      strings"
    - virtio-net: fix pages leaking when building skb in big mode
    - net: dsa: tear down devlink port regions when tearing down the devlink port
      on error
    - net: bgmac-bcma: handle deferred probe error due to mac-address
    - napi: fix race inside napi_enable
    - net: hns3: fix inconsistent vf id print
    - net: hns3: fix misuse vf id and vport id in some logs
    - net: hns3: check vlan id before using it
    - net: hns3: fix a return value error in hclge_get_reset_status()
    - gpiolib: acpi: Make set-debounce-timeout failures non fatal
    - nexthop: Fix memory leaks in nexthop notification chain listeners
    - net: ethernet: mtk_eth_soc: avoid creating duplicate offload entries
    - net: mscc: ocelot: fix forwarding from BLOCKING ports remaining enabled
    - x86/fault: Fix wrong signal when vsyscall fails with pkey
    - scsi: sd_zbc: Support disks with more than 2**32 logical blocks
    - io_uring: fix race between poll completion and cancel_hash insertion
    - io_uring: fix missing set of EPOLLONESHOT for CQ ring overflow
    - io_uring: don't punt files update to io-wq unconditionally
    - drm/ttm: fix type mismatch error on sparc64
    - drm/amd/display: Fix unstable HPCP compliance on Chrome Barcelo
    - amd/display: enable panel orientation quirks
    - Revert drm/vc4 hdmi runtime PM changes
    - x86/setup: Call early_reserve_memory() earlier
    - irqchip/armada-370-xp: Fix ack/eoi breakage
    - arm64: add MTE supported check to thread switching and syscall entry/exit
    - software node: balance refcount for managed software nodes
    - usb: gadget: f_uac2: Populate SS descriptors' wBytesPerInterval
  * ACL updates on OCFS2 are not revalidated (LP: #1947161) // Impish update:
    upstream stable patchset 2021-11-03 (LP: #1949636)
    - ocfs2: drop acl cache for directories too
  * Impish update: upstream stable patchset 2021-10-27 (LP: #1948977)
    - PCI: pci-bridge-emul: Add PCIe Root Capabilities Register
    - PCI: aardvark: Fix reporting CRS value
    - console: consume APC, DM, DCS
    - ARM: 9077/1: PLT: Move struct plt_entries definition to header
    - ARM: 9078/1: Add warn suppress parameter to arm_gen_branch_link()
    - ARM: 9079/1: ftrace: Add MODULE_PLTS support
    - ARM: 9098/1: ftrace: MODULE_PLT: Fix build problem without DYNAMIC_FTRACE
    - sctp: validate chunk size in __rcv_asconf_lookup
    - sctp: add param size validation for SCTP_PARAM_SET_PRIMARY
    - staging: rtl8192u: Fix bitwise vs logical operator in
      TranslateRxSignalStuff819xUsb()
    - coredump: fix memleak in dump_vma_snapshot()
    - um: virtio_uml: fix memory leak on init failures
    - dmaengine: acpi: Avoid comparison GSI with Linux vIRQ
    - perf test: Fix bpf test sample mismatch reporting
    - perf tools: Allow build-id with trailing zeros
    - thermal/drivers/exynos: Fix an error code in exynos_tmu_probe()
    - 9p/trans_virtio: Remove sysfs file on probe failure
    - prctl: allow to setup brk for et_dyn executables
    - nilfs2: use refcount_dec_and_lock() to fix potential UAF
    - profiling: fix shift-out-of-bounds bugs
    - PM: sleep: core: Avoid setting power.must_resume to false
    - pwm: lpc32xx: Don't modify HW state in .probe() after the PWM chip was
      registered
    - pwm: mxs: Don't modify HW state in .probe() after the PWM chip was
      registered
    - dmaengine: idxd: fix wq slot allocation index check
    - platform/chrome: sensorhub: Add trace events for sample
    - platform/chrome: cros_ec_trace: Fix format warnings
    - ceph: allow ceph_put_mds_session to take NULL or ERR_PTR
    - ceph: cancel delayed work instead of flushing on mdsc teardown
    - Kconfig.debug: drop selecting non-existing HARDLOCKUP_DETECTOR_ARCH
    - tools/bootconfig: Fix tracing_on option checking in ftrace2bconf.sh
    - thermal/core: Fix thermal_cooling_device_register() prototype
    - drm/amdgpu: Disable PCIE_DPM on Intel RKL Platform
    - drivers: base: cacheinfo: Get rid of DEFINE_SMP_CALL_CACHE_FUNCTION()
    - dma-buf: DMABUF_MOVE_NOTIFY should depend on DMA_SHARED_BUFFER
    - parisc: Move pci_dev_is_behind_card_dino to where it is used
    - iommu/amd: Relocate GAMSup check to early_enable_iommus
    - dmaengine: idxd: depends on !UML
    - dmaengine: sprd: Add missing MODULE_DEVICE_TABLE
    - dmaengine: ioat: depends on !UML
    - dmaengine: xilinx_dma: Set DMA mask for coherent APIs
    - ceph: request Fw caps before updating the mtime in ceph_write_iter
    - ceph: remove the capsnaps when removing caps
    - ceph: lockdep annotations for try_nonblocking_invalidate
    - btrfs: update the bdev time directly when closing
    - btrfs: fix lockdep warning while mounting sprout fs
    - nilfs2: fix memory leak in nilfs_sysfs_create_device_group
    - nilfs2: fix NULL pointer in nilfs_##name##_attr_release
    - nilfs2: fix memory leak in nilfs_sysfs_create_##name##_group
    - nilfs2: fix memory leak in nilfs_sysfs_delete_##name##_group
    - nilfs2: fix memory leak in nilfs_sysfs_create_snapshot_group
    - nilfs2: fix memory leak in nilfs_sysfs_delete_snapshot_group
    - habanalabs: add validity check for event ID received from F/W
    - pwm: img: Don't modify HW state in .remove() callback
    - pwm: rockchip: Don't modify HW state in .remove() callback
    - pwm: stm32-lp: Don't modify HW state in .remove() callback
    - blk-throttle: fix UAF by deleteing timer in blk_throtl_exit()
    - blk-mq: allow 4x BLK_MAX_REQUEST_COUNT at blk_plug for multiple_queues
    - rtc: rx8010: select REGMAP_I2C
    - sched/idle: Make the idle timer expire in hard interrupt context
    - drm/nouveau/nvkm: Replace -ENOSYS with -ENODEV
    - um: fix stub location calculation
    - RDMA/mlx5: Fix xlt_chunk_align calculation
    - perf symbol: Look for ImageBase in PE file to compute .text offset
    - staging: rtl8723bs: fix wpa_set_auth_algs() function
    - n64cart: fix return value check in n64cart_probe()
    - pwm: ab8500: Fix register offset calculation to not depend on probe order
    - thermal/drivers/qcom/spmi-adc-tm5: Don't abort probing if a sensor is not
      used
    - dmanegine: idxd: cleanup all device related bits after disabling device
    - dmaengine: idxd: have command status always set
    - dmaengine: idxd: fix abort status check
    - dmaengine: idxd: clear block on fault flag when clear wq
    - SUNRPC: don't pause on incomplete allocation
    - init: move usermodehelper_enable() to populate_rootfs()
    - dma-buf: DMABUF_DEBUG should depend on DMA_SHARED_BUFFER
    - arm64: mm: limit linear region to 51 bits for KVM in nVHE mode
    - drm/ttm: Fix a deadlock if the target BO is not idle during swap
    - of: property: Disable fw_devlink DT support for X86
    - riscv: dts: microchip: mpfs-icicle: Fix serial console
    - s390: add kmemleak annotation in stack_alloc()
    - ASoC: audio-graph: respawn Platform Support
    - ceph: fix memory leak on decode error in ceph_handle_caps
    - btrfs: delay blkdev_put until after the device remove
    - thermal/drivers/rcar_gen3_thermal: Store TSC id as unsigned int
    - habanalabs: fix nullifying of destroyed mmu pgt pool
    - habanalabs: fix mmu node address resolution in debugfs
    - habanalabs: add "in device creation" status
    - habanalabs: cannot sleep while holding spinlock
    - block: genhd: don't call blkdev_show() with major_names_lock held
    - cifs: properly invalidate cached root handle when closing it
    - io_uring: fix off-by-one in BUILD_BUG_ON check of __REQ_F_LAST_BIT
    - selinux,smack: fix subjective/objective credential use mixups
  * Impish update: upstream stable patchset 2021-10-22 (LP: #1948485)
    - xen: reset legacy rtc flag for PV domU
    - arm64/sve: Use correct size when reinitialising SVE state
    - PM: base: power: don't try to use non-existing RTC for storing data
    - PCI: Add AMD GPU multi-function power dependencies
    - drm/amd/amdgpu: Increase HWIP_MAX_INSTANCE to 10
    - drm/etnaviv: return context from etnaviv_iommu_context_get
    - drm/etnaviv: put submit prev MMU context when it exists
    - drm/etnaviv: stop abusing mmu_context as FE running marker
    - drm/etnaviv: keep MMU context across runtime suspend/resume
    - drm/etnaviv: exec and MMU state is lost when resetting the GPU
    - drm/etnaviv: fix MMU context leak on GPU reset
    - drm/etnaviv: reference MMU context when setting up hardware state
    - drm/etnaviv: add missing MMU context put when reaping MMU mapping
    - s390/sclp: fix Secure-IPL facility detection
    - x86/pat: Pass valid address to sanitize_phys()
    - x86/mm: Fix kern_addr_valid() to cope with existing but not present entries
    - tipc: fix an use-after-free issue in tipc_recvmsg
    - ethtool: Fix rxnfc copy to user buffer overflow
    - net/{mlx5|nfp|bnxt}: Remove unnecessary RTNL lock assert
    - net-caif: avoid user-triggerable WARN_ON(1)
    - ptp: dp83640: don't define PAGE0
    - net/l2tp: Fix reference count leak in l2tp_udp_recv_core
    - r6040: Restore MDIO clock frequency after MAC reset
    - tipc: increase timeout in tipc_sk_enqueue()
    - drm/rockchip: cdn-dp-core: Make cdn_dp_core_resume __maybe_unused
    - perf machine: Initialize srcline string member in add_location struct
    - net/mlx5: FWTrace, cancel work on alloc pd error flow
    - net/mlx5: Fix potential sleeping in atomic context
    - nvme-tcp: fix io_work priority inversion
    - events: Reuse value read using READ_ONCE instead of re-reading it
    - net: ipa: initialize all filter table slots
    - gen_compile_commands: fix missing 'sys' package
    - vhost_net: fix OoB on sendmsg() failure.
    - net/af_unix: fix a data-race in unix_dgram_poll
    - net: dsa: destroy the phylink instance on any error in dsa_slave_phy_setup
    - x86/uaccess: Fix 32-bit __get_user_asm_u64() when CC_HAS_ASM_GOTO_OUTPUT=y
    - tcp: fix tp->undo_retrans accounting in tcp_sacktag_one()
    - selftest: net: fix typo in altname test
    - qed: Handle management FW error
    - udp_tunnel: Fix udp_tunnel_nic work-queue type
    - dt-bindings: arm: Fix Toradex compatible typo
    - ibmvnic: check failover_pending in login response
    - KVM: PPC: Book3S HV: Tolerate treclaim. in fake-suspend mode changing
      registers
    - bnxt_en: make bnxt_free_skbs() safe to call after bnxt_free_mem()
    - net: hns3: pad the short tunnel frame before sending to hardware
    - net: hns3: change affinity_mask to numa node range
    - net: hns3: disable mac in flr process
    - net: hns3: fix the timing issue of VF clearing interrupt sources
    - dt-bindings: mtd: gpmc: Fix the ECC bytes vs. OOB bytes equation
    - mfd: db8500-prcmu: Adjust map to reality
    - PCI: Add ACS quirks for NXP LX2xx0 and LX2xx2 platforms
    - fuse: fix use after free in fuse_read_interrupt()
    - PCI: tegra194: Fix handling BME_CHGED event
    - PCI: tegra194: Fix MSI-X programming
    - PCI: tegra: Fix OF node reference leak
    - mfd: Don't use irq_create_mapping() to resolve a mapping
    - PCI: rcar: Fix runtime PM imbalance in rcar_pcie_ep_probe()
    - tracing/probes: Reject events which have the same name of existing one
    - PCI: cadence: Use bitfield for *quirk_retrain_flag* instead of bool
    - PCI: cadence: Add quirk flag to set minimum delay in LTSSM Detect.Quiet
      state
    - PCI: j721e: Add PCIe support for J7200
    - PCI: j721e: Add PCIe support for AM64
    - PCI: Add ACS quirks for Cavium multi-function devices
    - watchdog: Start watchdog in watchdog_set_last_hw_keepalive only if
      appropriate
    - octeontx2-af: Add additional register check to rvu_poll_reg()
    - Set fc_nlinfo in nh_create_ipv4, nh_create_ipv6
    - net: usb: cdc_mbim: avoid altsetting toggling for Telit LN920
    - PCI: ibmphp: Fix double unmap of io_mem
    - ethtool: Fix an error code in cxgb2.c
    - NTB: Fix an error code in ntb_msit_probe()
    - NTB: perf: Fix an error code in perf_setup_inbuf()
    - mfd: axp20x: Update AXP288 volatile ranges
    - backlight: ktd253: Stabilize backlight
    - PCI: of: Don't fail devm_pci_alloc_host_bridge() on missing 'ranges'
    - PCI: iproc: Fix BCMA probe resource handling
    - netfilter: nft_ct: protect nft_ct_pcpu_template_refcnt with mutex
    - KVM: arm64: Restrict IPA size to maximum 48 bits on 4K and 16K page size
    - PCI: Fix pci_dev_str_match_path() alloc while atomic bug
    - mfd: tqmx86: Clear GPIO IRQ resource when no IRQ is set
    - tracing/boot: Fix a hist trigger dependency for boot time tracing
    - mtd: mtdconcat: Judge callback existence based on the master
    - mtd: mtdconcat: Check _read, _write callbacks existence before assignment
    - KVM: arm64: Fix read-side race on updates to vcpu reset state
    - KVM: arm64: Handle PSCI resets before userspace touches vCPU state
    - PCI: Sync __pci_register_driver() stub for CONFIG_PCI=n
    - mtd: rawnand: cafe: Fix a resource leak in the error handling path of
      'cafe_nand_probe()'
    - ARC: export clear_user_page() for modules
    - perf unwind: Do not overwrite FEATURE_CHECK_LDFLAGS-libunwind-{x86,aarch64}
    - perf bench inject-buildid: Handle writen() errors
    - gpio: mpc8xxx: Fix a resources leak in the error handling path of
      'mpc8xxx_probe()'
    - gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid
      a leak
    - net: dsa: tag_rtl4_a: Fix egress tags
    - selftests: mptcp: clean tmp files in simult_flows
    - net: hso: add failure handler for add_net_device
    - net: dsa: b53: Fix calculating number of switch ports
    - net: dsa: b53: Set correct number of ports in the DSA struct
    - netfilter: socket: icmp6: fix use-after-scope
    - fq_codel: reject silly quantum parameters
    - qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom
    - ip_gre: validate csum_start only on pull
    - net: dsa: b53: Fix IMP port setup on BCM5301x
    - bnxt_en: fix stored FW_PSID version masks
    - bnxt_en: Fix asic.rev in devlink dev info command
    - bnxt_en: Fix possible unintended driver initiated error recovery
    - mfd: lpc_sch: Rename GPIOBASE to prevent build error
    - net: renesas: sh_eth: Fix freeing wrong tx descriptor
    - x86/mce: Avoid infinite loop for copy from user recovery
    - bnxt_en: Fix error recovery regression
    - net: dsa: bcm_sf2: Fix array overrun in bcm_sf2_num_active_ports()
    - net: stmmac: fix MAC not working when system resume back with WoL active
    - swiotlb-xen: avoid double free
    - swiotlb-xen: fix late init retry
    - drm/amd/display: Get backlight from PWM if DMCU is not initialized
    - drm/amd/display: dsc mst 2 4K displays go dark with 2 lane HBR3
    - drm/amdgpu: use IS_ERR for debugfs APIs
    - drm/amdgpu: add amdgpu_amdkfd_resume_iommu
    - drm/amdgpu: move iommu_resume before ip init/resume
    - drm/amdkfd: separate kfd_iommu_resume from kfd_resume
    - io_uring: allow retry for O_NONBLOCK if async is supported
    - net: qrtr: revert check in qrtr_endpoint_post()
    - rtc: cmos: Disable irq around direct invocation of cmos_interrupt()
    - drm/i915/dp: return proper DPRX link training result
    - net: stmmac: fix system hang caused by eee_ctrl_timer during suspend/resume
    - powerpc/mce: Fix access error in mce handler
    - net/mlx5e: Fix mutual exclusion between CQE compression and HW TS
    - net: dsa: lantiq_gswip: Add 200ms assert delay
    - remoteproc: qcom: wcnss: Fix race with iris probe
    - riscv: fix the global name pfn_base confliction error
    - KVM: arm64: Make hyp_panic() more robust when protected mode is enabled
    - flow: fix object-size-mismatch warning in flowi{4,6}_to_flowi_common()
    - net: phylink: add suspend/resume support
    - PCI/PTM: Remove error message at boot
    - perf config: Fix caching and memory leak in perf_home_perfconfig()
    - gpio: mpc8xxx: Fix a potential double iounmap call in 'mpc8xxx_probe()'
    - io_uring: retry in case of short read on block device
    - tools build: Fix feature detect clean for out of source builds
    - mptcp: Only send extra TCP acks in eligible socket states
    - iwlwifi: move get pnvm file name to a separate function
    - iwlwifi: pnvm: Fix a memory leak in 'iwl_pnvm_get_from_fs()'
  * Impish update: v5.13.19 upstream stable release (LP: #1947191)
    - rtc: tps65910: Correct driver module alias
    - btrfs: wake up async_delalloc_pages waiters after submit
    - btrfs: wait on async extents when flushing delalloc
    - btrfs: reduce the preemptive flushing threshold to 90%
    - btrfs: zoned: fix block group alloc_offset calculation
    - btrfs: zoned: suppress reclaim error message on EAGAIN
    - btrfs: fix upper limit for max_inline for page size 64K
    - btrfs: reset replace target device to allocation state on close
    - btrfs: zoned: fix double counting of split ordered extent
    - blk-zoned: allow zone management send operations without CAP_SYS_ADMIN
    - blk-zoned: allow BLKREPORTZONE without CAP_SYS_ADMIN
    - PCI/MSI: Skip masking MSI-X on Xen PV
    - powerpc/perf/hv-gpci: Fix counter value parsing
    - xen: fix setting of max_pfn in shared_info
    - 9p/xen: Fix end of loop tests for list_for_each_entry
    - ceph: fix dereference of null pointer cf
    - Input: elan_i2c - reduce the resume time for controller in Whitebox
    - selftests/ftrace: Fix requirement check of README file
    - tools/thermal/tmon: Add cross compiling support
    - clk: socfpga: agilex: fix the parents of the psi_ref_clk
    - clk: socfpga: agilex: fix up s2f_user0_clk representation
    - clk: socfpga: agilex: add the bypass register for s2f_usr0 clock
    - pinctrl: stmfx: Fix hazardous u8[] to unsigned long cast
    - pinctrl: ingenic: Fix incorrect pull up/down info
    - pinctrl: ingenic: Fix bias config for X2000(E)
    - soc: mediatek: mmsys: Fix missing UFOE component in mt8173 table routing
    - soc: qcom: aoss: Fix the out of bound usage of cooling_devs
    - soc: aspeed: lpc-ctrl: Fix boundary check for mmap
    - soc: aspeed: p2a-ctrl: Fix boundary check for mmap
    - arm64: Move .hyp.rodata outside of the _sdata.._edata range
    - arm64: mm: Fix TLBI vs ASID rollover
    - arm64: head: avoid over-mapping in map_memory
    - arm64: Do not trap PMSNEVFR_EL1
    - iio: ltc2983: fix device probe
    - wcn36xx: Ensure finish scan is not requested before start scan
    - crypto: public_key: fix overflow during implicit conversion
    - block: bfq: fix bfq_set_next_ioprio_data()
    - power: supply: max17042: handle fails of reading status register
    - dm crypt: Avoid percpu_counter spinlock contention in crypt_page_alloc()
    - crypto: ccp - shutdown SEV firmware on kexec
    - spi: fsi: Reduce max transfer size to 8 bytes
    - VMCI: fix NULL pointer dereference when unmapping queue pair
    - media: uvc: don't do DMA on stack
    - media: rc-loopback: return number of emitters rather than error
    - nvmem: core: fix error handling while validating keepout regions
    - s390/qdio: fix roll-back after timeout on ESTABLISH ccw
    - s390/qdio: cancel the ESTABLISH ccw after timeout
    - Revert "dmaengine: imx-sdma: refine to load context only once"
    - dmaengine: imx-sdma: remove duplicated sdma_load_context
    - io_uring: place fixed tables under memcg limits
    - io_uring: add ->splice_fd_in checks
    - io_uring: fix io_try_cancel_userdata race for iowq
    - io-wq: fix wakeup race when adding new work
    - io-wq: fix race between adding work and activating a free worker
    - io_uring: fail links of cancelled timeouts
    - libata: add ATA_HORKAGE_NO_NCQ_TRIM for Samsung 860 and 870 SSDs
    - ARM: 9105/1: atags_to_fdt: don't warn about stack size
    - f2fs: fix to do sanity check for sb/cp fields correctly
    - PCI/portdrv: Enable Bandwidth Notification only if port supports it
    - PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported
    - PCI: Return ~0 data on pciconfig_read() CAP_SYS_ADMIN failure
    - PCI: xilinx-nwl: Enable the clock through CCF
    - PCI: aardvark: Configure PCIe resources from 'ranges' DT property
    - PCI: aardvark: Fix checking for PIO status
    - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response
    - PCI: aardvark: Fix masking and unmasking legacy INTx interrupts
    - f2fs: compress: fix to set zstd compress level correctly
    - HID: input: do not report stylus battery state as "full"
    - f2fs: quota: fix potential deadlock
    - pinctrl: armada-37xx: Correct PWM pins definitions
    - scsi: bsg: Remove support for SCSI_IOCTL_SEND_COMMAND
    - clk: rockchip: drop GRF dependency for rk3328/rk3036 pll types
    - IB/hfi1: Adjust pkey entry in index 0
    - RDMA/iwcm: Release resources if iw_cm module initialization fails
    - docs: Fix infiniband uverbs minor number
    - scsi: BusLogic: Use %X for u32 sized integer rather than %lX
    - pinctrl: samsung: Fix pinctrl bank pin count
    - f2fs: restructure f2fs page.private layout
    - f2fs: compress: add compress_inode to cache compressed blocks
    - f2fs: fix wrong checkpoint_changed value in f2fs_remount()
    - vfio: Use config not menuconfig for VFIO_NOIOMMU
    - scsi: ufs: Fix memory corruption by ufshcd_read_desc_param()
    - cpuidle: pseries: Fixup CEDE0 latency only for POWER10 onwards
    - powerpc/stacktrace: Include linux/delay.h
    - RDMA/hns: Don't overwrite supplied QP attributes
    - RDMA/efa: Remove double QP type assignment
    - RDMA/mlx5: Delete not-available udata check
    - cpuidle: pseries: Mark pseries_idle_proble() as __init
    - f2fs: reduce the scope of setting fsck tag when de->name_len is zero
    - openrisc: don't printk() unconditionally
    - dma-debug: fix debugfs initialization order
    - xprtrdma: Put rpcrdma_reps before waking the tear-down completion
    - NFSv4/pNFS: Fix a layoutget livelock loop
    - NFSv4/pNFS: Always allow update of a zero valued layout barrier
    - NFSv4/pnfs: The layout barrier indicate a minimal value for the seqid
    - SUNRPC: Fix potential memory corruption
    - SUNRPC/xprtrdma: Fix reconnection locking
    - SUNRPC query transport's source port
    - sunrpc: Fix return value of get_srcport()
    - scsi: fdomain: Fix error return code in fdomain_probe()
    - pinctrl: single: Fix error return code in pcs_parse_bits_in_pinctrl_entry()
    - powerpc/numa: Consider the max NUMA node for migratable LPAR
    - scsi: smartpqi: Fix an error code in pqi_get_raid_map()
    - scsi: qedi: Fix error codes in qedi_alloc_global_queues()
    - scsi: qedf: Fix error codes in qedf_alloc_global_queues()
    - powerpc/config: Renable MTD_PHYSMAP_OF
    - f2fs: fix to keep compatibility of fault injection interface
    - iommu/vt-d: Update the virtual command related registers
    - RDMA/hns: Fix return in hns_roce_rereg_user_mr()
    - HID: amd_sfh: Fix period data field to enable sensor
    - HID: i2c-hid: Fix Elan touchpad regression
    - HID: thrustmaster: clean up Makefile and adapt quirks
    - clk: imx8mm: use correct mux type for clkout path
    - clk: imx8m: fix clock tree update of TF-A managed clocks
    - KVM: PPC: Book3S HV: Fix copy_tofrom_guest routines
    - scsi: ufs: ufs-exynos: Fix static checker warning
    - KVM: PPC: Book3S HV Nested: Reflect guest PMU in-use to L0 when guest SPRs
      are live
    - powerpc/perf: Fix the check for SIAR value
    - RDMA/hns: Bugfix for data type of dip_idx
    - RDMA/hns: Bugfix for the missing assignment for dip_idx
    - platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from
      run_smbios_call
    - powerpc/smp: Fix a crash while booting kvm guest with nr_cpus=2
    - powerpc/smp: Update cpu_core_map on all PowerPc systems
    - RDMA/hns: Fix QP's resp incomplete assignment
    - fscache: Fix cookie key hashing
    - clk: ralink: avoid to set 'CLK_IS_CRITICAL' flag for gates
    - clk: at91: clk-generated: Limit the requested rate to our range
    - KVM: PPC: Fix clearing never mapped TCEs in realmode
    - soc: mediatek: cmdq: add address shift in jump
    - f2fs: fix to account missing .skipped_gc_rwsem
    - f2fs: fix unexpected ENOENT comes from f2fs_map_blocks()
    - f2fs: fix to unmap pages from userspace process in punch_hole()
    - f2fs: deallocate compressed pages when error happens
    - f2fs: should put a page beyond EOF when preparing a write
    - MIPS: Malta: fix alignment of the devicetree buffer
    - kbuild: Fix 'no symbols' warning when CONFIG_TRIM_UNUSD_KSYMS=y
    - userfaultfd: prevent concurrent API initialization
    - drm/vmwgfx: Fix subresource updates with new contexts
    - drm/vmwgfx: Fix some static checker warnings
    - drm/vc4: hdmi: Set HD_CTL_WHOLSMP and HD_CTL_CHALIGN_SET
    - drm/omap: Follow implicit fencing in prepare_fb
    - drm/amdgpu: Fix amdgpu_ras_eeprom_init()
    - ASoC: ti: davinci-mcasp: Fix DIT mode support
    - ASoC: atmel: ATMEL drivers don't need HAS_DMA
    - media: dib8000: rewrite the init prbs logic
    - media: ti-vpe: cal: fix error handling in cal_camerarx_create
    - media: ti-vpe: cal: fix queuing of the initial buffer
    - libbpf: Fix reuse of pinned map on older kernel
    - drm/vkms: Let shadow-plane helpers prepare the plane's FB
    - x86/hyperv: fix for unwanted manipulation of sched_clock when TSC marked
      unstable
    - crypto: mxs-dcp - Use sg_mapping_iter to copy data
    - PCI: Use pci_update_current_state() in pci_enable_device_flags()
    - tipc: keep the skb in rcv queue until the whole data is read
    - net: phy: Fix data type in DP83822 dp8382x_disable_wol()
    - iio: dac: ad5624r: Fix incorrect handling of an optional regulator.
    - iavf: do not override the adapter state in the watchdog task
    - iavf: fix locking of critical sections
    - ARM: dts: qcom: apq8064: correct clock names
    - video: fbdev: kyro: fix a DoS bug by restricting user input
    - drm/ast: Disable fast reset after DRAM initial
    - netlink: Deal with ESRCH error in nlmsg_notify()
    - net: ipa: fix IPA v4.11 interconnect data
    - Smack: Fix wrong semantics in smk_access_entry()
    - drm: avoid blocking in drm_clients_info's rcu section
    - drm: serialize drm_file.master with a new spinlock
    - drm: protect drm_master pointers in drm_lease.c
    - rcu: Fix macro name CONFIG_TASKS_RCU_TRACE
    - igc: Check if num of q_vectors is smaller than max before array access
    - usb: host: fotg210: fix the endpoint's transactional opportunities
      calculation
    - usb: host: fotg210: fix the actual_length of an iso packet
    - usb: gadget: u_ether: fix a potential null pointer dereference
    - USB: EHCI: ehci-mv: improve error handling in mv_ehci_enable()
    - usb: gadget: composite: Allow bMaxPower=0 if self-powered
    - staging: board: Fix uninitialized spinlock when attaching genpd
    - staging: hisilicon,hi6421-spmi-pmic.yaml: fix patternProperties
    - tty: serial: jsm: hold port lock when reporting modem line changes
    - bus: fsl-mc: fix arg in call to dprc_scan_objects()
    - bus: fsl-mc: fix mmio base address for child DPRCs
    - misc/pvpanic-pci: Allow automatic loading
    - selftests: firmware: Fix ignored return val of asprintf() warn
    - drm/amd/display: Fix timer_per_pixel unit error
    - media: hantro: vp8: Move noisy WARN_ON to vpu_debug
    - media: platform: stm32: unprepare clocks at handling errors in probe
    - media: atomisp: Fix runtime PM imbalance in atomisp_pci_probe
    - media: atomisp: pci: fix error return code in atomisp_pci_probe()
    - nfp: fix return statement in nfp_net_parse_meta()
    - ethtool: improve compat ioctl handling
    - drm/amdgpu: Fix a printing message
    - drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex
    - bpf/tests: Fix copy-and-paste error in double word test
    - bpf/tests: Do not PASS tests without actually testing the result
    - drm/bridge: nwl-dsi: Avoid potential multiplication overflow on 32-bit
    - arm64: dts: allwinner: h6: tanix-tx6: Fix regulator node names
    - video: fbdev: asiliantfb: Error out if 'pixclock' equals zero
    - video: fbdev: kyro: Error out if 'pixclock' equals zero
    - video: fbdev: riva: Error out if 'pixclock' equals zero
    - net: ipa: fix ipa_cmd_table_valid()
    - ipv4: ip_output.c: Fix out-of-bounds warning in ip_copy_addrs()
    - flow_dissector: Fix out-of-bounds warnings
    - s390/jump_label: print real address in a case of a jump label bug
    - s390: make PCI mio support a machine flag
    - serial: 8250: Define RX trigger levels for OxSemi 950 devices
    - xtensa: ISS: don't panic in rs_init
    - hvsi: don't panic on tty_register_driver failure
    - serial: 8250_pci: make setup_port() parameters explicitly unsigned
    - staging: ks7010: Fix the initialization of the 'sleep_status' structure
    - samples: bpf: Fix tracex7 error raised on the missing argument
    - libbpf: Fix race when pinning maps in parallel
    - ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init()
    - drm: rcar-du: Shutdown the display on system shutdown
    - Bluetooth: skip invalid hci_sync_conn_complete_evt
    - workqueue: Fix possible memory leaks in wq_numa_init()
    - ARM: dts: stm32: Set {bitclock,frame}-master phandles on DHCOM SoM
    - ARM: dts: stm32: Set {bitclock,frame}-master phandles on ST DKx
    - ARM: dts: stm32: Update AV96 adv7513 node per dtbs_check
    - netfilter: nft_compat: use nfnetlink_unicast()
    - bonding: 3ad: fix the concurrency between __bond_release_one() and
      bond_3ad_state_machine_handler()
    - ARM: dts: at91: use the right property for shutdown controller
    - arm64: tegra: Fix Tegra194 PCIe EP compatible string
    - ASoC: Intel: bytcr_rt5640: Move "Platform Clock" routes to the maps for the
      matching in-/output
    - ASoC: Intel: update sof_pcm512x quirks
    - Bluetooth: Fix not generating RPA when required
    - dpaa2-switch: do not enable the DPSW at probe time
    - media: imx258: Rectify mismatch of VTS value
    - media: imx258: Limit the max analogue gain to 480
    - media: imx: imx7-media-csi: Fix buffer return upon stream start failure
    - media: v4l2-dv-timings.c: fix wrong condition in two for-loops
    - media: TDA1997x: fix tda1997x_query_dv_timings() return value
    - media: tegra-cec: Handle errors of clk_prepare_enable()
    - gfs2: Fix glock recursion in freeze_go_xmote_bh
    - arm64: dts: qcom: sdm630: Rewrite memory map
    - arm64: dts: qcom: sdm630: Fix TLMM node and pinctrl configuration
    - net: ipa: fix IPA v4.9 interconnects
    - serial: 8250_omap: Handle optional overrun-throttle-ms property
    - ARM: dts: imx53-ppd: Fix ACHC entry
    - arm64: dts: qcom: ipq8074: fix pci node reg property
    - arm64: dts: qcom: sdm660: use reg value for memory node
    - arm64: dts: qcom: ipq6018: drop '0x' from unit address
    - arm64: dts: qcom: sdm630: don't use underscore in node name
    - arm64: dts: qcom: msm8994: don't use underscore in node name
    - arm64: dts: qcom: msm8996: don't use underscore in node name
    - arm64: dts: qcom: sm8250: Fix epss_l3 unit address
    - nvmem: qfprom: Fix up qfprom_disable_fuse_blowing() ordering
    - net: ethernet: stmmac: Do not use unreachable() in ipq806x_gmac_probe()
    - drm/msm: mdp4: drop vblank get/put from prepare/complete_commit
    - drm/msm/dsi: Fix DSI and DSI PHY regulator config from SDM660
    - drm: xlnx: zynqmp_dpsub: Call pm_runtime_get_sync before setting pixel clock
    - drm: xlnx: zynqmp: release reset to DP controller before accessing DP
      registers
    - drm/amd/display: fix missing writeback disablement if plane is removed
    - drm/amd/display: fix incorrect CM/TF programming sequence in dwb
    - selftests/bpf: Fix xdp_tx.c prog section name
    - drm/vmwgfx: fix potential UAF in vmwgfx_surface.c
    - staging: rtl8723bs: fix right side of condition
    - Bluetooth: schedule SCO timeouts with delayed_work
    - Bluetooth: avoid circular locks in sco_sock_connect
    - drm/msm/dp: reduce link rate if failed at link training 1
    - drm/msm/dp: return correct edid checksum after corrupted edid checksum read
    - drm/msm/dp: do not end dp link training until video is ready
    - net/mlx5: Fix variable type to match 64bit
    - gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable
      access in amdgpu_i2c_router_select_ddc_port()
    - drm/display: fix possible null-pointer dereference in dcn10_set_clock()
    - mac80211: Fix monitor MTU limit so that A-MSDUs get through
    - ARM: tegra: acer-a500: Remove bogus USB VBUS regulators
    - ARM: tegra: tamonten: Fix UART pad setting
    - arm64: tegra: Fix compatible string for Tegra132 CPUs
    - arm64: dts: imx8mm-venice-gw700x: fix mp5416 pmic config
    - arm64: dts: imx8mm-venice-gw700x: fix invalid pmic pin config
    - arm64: dts: imx8mm-venice-gw71xx: fix USB OTG VBUS
    - arm64: dts: ls1046a: fix eeprom entries
    - nvme-tcp: don't check blk_mq_tag_to_rq when receiving pdu data
    - nvme: code command_id with a genctr for use-after-free validation
    - Bluetooth: Fix handling of LE Enhanced Connection Complete
    - opp: Don't print an error if required-opps is missing
    - serial: sh-sci: fix break handling for sysrq
    - iomap: pass writeback errors to the mapping
    - tcp: enable data-less, empty-cookie SYN with TFO_SERVER_COOKIE_NOT_REQD
    - locking/rtmutex: Set proper wait context for lockdep
    - rpc: fix gss_svc_init cleanup on failure
    - iavf: use mutexes for locking of critical sections
    - selftests/bpf: Correctly display subtest skip status
    - selftests/bpf: Fix flaky send_signal test
    - hwmon: (pmbus/ibm-cffps) Fix write bits for LED control
    - staging: rts5208: Fix get_ms_information() heap buffer size
    - selftests: nci: Fix the code for next nlattr offset
    - selftests: nci: Fix the wrong condition
    - net: Fix offloading indirect devices dependency on qdisc order creation
    - kselftest/arm64: mte: Fix misleading output when skipping tests
    - kselftest/arm64: pac: Fix skipping of tests on systems without PAC
    - gfs2: Don't call dlm after protocol is unmounted
    - usb: chipidea: host: fix port index underflow and UBSAN complains
    - lockd: lockd server-side shouldn't set fl_ops
    - drm/exynos: Always initialize mapping in exynos_drm_register_dma()
    - rtl8xxxu: Fix the handling of TX A-MPDU aggregation
    - rtw88: use read_poll_timeout instead of fixed sleep
    - rtw88: wow: build wow function only if CONFIG_PM is on
    - rtw88: wow: fix size access error of probe request
    - octeontx2-pf: Fix NIX1_RX interface backpressure
    - m68knommu: only set CONFIG_ISA_DMA_API for ColdFire sub-arch
    - btrfs: remove racy and unnecessary inode transaction update when using no-
      holes
    - btrfs: tree-log: check btrfs_lookup_data_extent return value
    - soundwire: intel: fix potential race condition during power down
    - ASoC: Intel: Skylake: Fix module configuration for KPB and MIXER
    - ASoC: Intel: Skylake: Fix passing loadable flag for module
    - of: Don't allow __of_attached_node_sysfs() without CONFIG_SYSFS
    - mmc: sdhci-of-arasan: Modified SD default speed to 19MHz for ZynqMP
    - mmc: sdhci-of-arasan: Check return value of non-void funtions
    - mmc: rtsx_pci: Fix long reads when clock is prescaled
    - selftests/bpf: Enlarge select() timeout for test_maps
    - mmc: core: Return correct emmc response in case of ioctl error
    - samples: pktgen: fix to print when terminated normally
    - cifs: fix wrong release in sess_alloc_buffer() failed path
    - Revert "USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST
      quirk set"
    - usb: dwc3: imx8mp: request irq after initializing dwc3
    - usb: musb: musb_dsps: request_irq() after initializing musb
    - usbip: give back URBs for unsent unlink requests during cleanup
    - usbip:vhci_hcd USB port can get stuck in the disabled state
    - usb: xhci-mtk: fix use-after-free of mtk->hcd
    - ASoC: rockchip: i2s: Fix regmap_ops hang
    - ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B
    - ASoC: soc-pcm: protect BE dailink state changes in trigger
    - drm/amdkfd: Account for SH/SE count when setting up cu masks.
    - nfs: don't atempt blocking locks on nfs reexports
    - nfsd: fix crash on LOCKT on reexported NFSv3
    - iwlwifi: pcie: free RBs during configure
    - iwlwifi: mvm: Do not use full SSIDs in 6GHz scan
    - iwlwifi: mvm: fix a memory leak in iwl_mvm_mac_ctxt_beacon_changed
    - iwlwifi: mvm: avoid static queue number aliasing
    - iwlwifi: mvm: Fix umac scan request probe parameters
    - iwlwifi: mvm: fix access to BSS elements
    - iwlwifi: fw: correctly limit to monitor dump
    - iwlwifi: mvm: Fix scan channel flags settings
    - net/mlx5: DR, fix a potential use-after-free bug
    - net/mlx5: DR, Enable QP retransmission
    - parport: remove non-zero check on count
    - selftests/bpf: Fix potential unreleased lock
    - wcn36xx: Fix missing frame timestamp for beacon/probe-resp
    - ath9k: fix OOB read ar9300_eeprom_restore_internal
    - ath9k: fix sleeping in atomic context
    - net: fix NULL pointer reference in cipso_v4_doi_free
    - fix array-index-out-of-bounds in taprio_change
    - net: w5100: check return value after calling platform_get_resource()
    - net: hns3: clean up a type mismatch warning
    - parisc: fix crash with signals and alloca
    - parisc: Fix compile failure when building 64-bit kernel natively
    - printk/console: Check consistent sequence number when handling race in
      console_unlock()
    - ovl: fix BUG_ON() in may_delete() when called from ovl_cleanup()
    - scsi: BusLogic: Fix missing pr_cont() use
    - scsi: qla2xxx: Changes to support kdump kernel
    - scsi: qla2xxx: Sync queue idx with queue_pair_map idx
    - mtd: rawnand: intel: Fix error handling in probe
    - cpufreq: powernv: Fix init_chip_info initialization in numa=off
    - s390/pv: fix the forcing of the swiotlb
    - s390/topology: fix topology information when calling cpu hotplug notifiers
    - hugetlb: fix hugetlb cgroup refcounting during vma split
    - mm/memory_hotplug: use "unsigned long" for PFN in zone_for_pfn_range()
    - mm/hmm: bypass devmap pte when all pfn requested flags are fulfilled
    - mm/hugetlb: initialize hugetlb_usage in mm_init
    - mm,vmscan: fix divide by zero in get_scan_count
    - memcg: enable accounting for pids in nested pid namespaces
    - libnvdimm/pmem: Fix crash triggered when I/O in-flight during unbind
    - platform/chrome: cros_ec_proto: Send command again when timeout occurs
    - lib/test_stackinit: Fix static initializer test
    - net: dsa: lantiq_gswip: fix maximum frame length
    - net: stmmac: Fix overall budget calculation for rxtx_napi
    - drm/mgag200: Select clock in PLL update functions
    - drm/msi/mdp4: populate priv->kms in mdp4_kms_init
    - drm/dp_mst: Fix return code on sideband message failure
    - drm/panfrost: Make sure MMU context lifetime is not bound to panfrost_priv
    - drm/amdgpu: Fix BUG_ON assert
    - drm/amdgpu: Fix a deadlock if previous GEM object allocation fails
    - drm/amd/display: Update number of DCN3 clock states
    - drm/amd/display: Update bounding box states (v2)
    - drm/amd/display: setup system context for APUs
    - drm/msm/disp/dpu1: add safe lut config in dpu driver
    - drm/panfrost: Simplify lock_region calculation
    - drm/panfrost: Use u64 for size in lock_region
    - drm/panfrost: Clamp lock region to Bifrost minimum
    - Linux 5.13.19
  * Add l2tp.sh in net from ubuntu_kernel_selftests back (LP: #1934293)
    - Revert "UBUNTU: SAUCE: selftests/net -- disable l2tp.sh test"

[ Ubuntu: 5.13.0-1005.5 ]

* impish/linux-kvm: 5.13.0-1005.5 -proposed tracker (LP: #1947340)
  * Packaging resync (LP: #1786013)
    - [Packaging] update Ubuntu.md
  * When booting with UEFI, mokvar table and %:.platform keyring must be
    available (LP: #1942319)
    - [Config] Enable Trusted, Platform, Secondary Keyrings
  * impish/linux: 5.13.0-21.21 -proposed tracker (LP: #1947347)
  * It hangs while booting up with AMD W6800 [1002:73A3] (LP: #1945553)
    - drm/amdgpu: Rename flag which prevents HW access
    - drm/amd/pm: Fix a bug communicating with the SMU (v5)
    - drm/amd/pm: Fix a bug in semaphore double-lock
  * Add final-checks to check certificates (LP: #1947174)
    - [Packaging] Add system trusted and revocation keys final check
  * No sound on Lenovo laptop models Legion 15IMHG05, Yoga 7 14ITL5, and 13s
    Gen2 (LP: #1939052)
    - ALSA: hda/realtek: Quirks to enable speaker output for Lenovo Legion 7i
      15IMHG05, Yoga 7i 14ITL5/15ITL5, and 13s Gen2 laptops.
    - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo 13s
      Gen2
  * Check for changes relevant for security certifications (LP: #1945989)
    - [Packaging] Add a new fips-checks script
    - [Packaging] Add fips-checks as part of finalchecks
  * BCM57800 SRIOV bug causes interfaces to disappear (LP: #1945707)
    - bnx2x: Fix enabling network interfaces without VFs
  * CVE-2021-3759
    - memcg: enable accounting of ipc resources
  * [impish] Remove the downstream xr-usb-uart driver (LP: #1945938)
    - SAUCE: xr-usb-serial: remove driver
    - [Config] update modules list
  * Fix A yellow screen pops up in an instant (< 1 second) and then disappears
    before loading the system (LP: #1945932)
    - drm/i915: Stop force enabling pipe bottom color gammma/csc
  * Impish update: v5.13.18 upstream stable release (LP: #1946249)
    - Linux 5.13.18
  * Impish update: v5.13.17 upstream stable release (LP: #1946247)
    - locking/mutex: Fix HANDOFF condition
    - regmap: fix the offset of register error log
    - regulator: tps65910: Silence deferred probe error
    - crypto: mxs-dcp - Check for DMA mapping errors
    - sched/deadline: Fix reset_on_fork reporting of DL tasks
    - power: supply: axp288_fuel_gauge: Report register-address on readb / writeb
      errors
    - crypto: omap-sham - clear dma flags only after omap_sham_update_dma_stop()
    - sched/deadline: Fix missing clock update in migrate_task_rq_dl()
    - rcu/tree: Handle VM stoppage in stall detection
    - EDAC/mce_amd: Do not load edac_mce_amd module on guests
    - hrtimer: Avoid double reprogramming in __hrtimer_start_range_ns()
    - hrtimer: Ensure timerfd notification for HIGHRES=n
    - udf: Check LVID earlier
    - udf: Fix iocharset=utf8 mount option
    - isofs: joliet: Fix iocharset=utf8 mount option
    - bcache: add proper error unwinding in bcache_device_init
    - nbd: add the check to prevent overflow in __nbd_ioctl()
    - blk-throtl: optimize IOPS throttle for large IO scenarios
    - nvme-tcp: don't update queue count when failing to set io queues
    - nvme-rdma: don't update queue count when failing to set io queues
    - nvmet: pass back cntlid on successful completion
    - power: supply: smb347-charger: Add missing pin control activation
    - power: supply: max17042_battery: fix typo in MAx17042_TOFF
    - s390/cio: add dev_busid sysfs entry for each subchannel
    - s390/zcrypt: fix wrong offset index for APKA master key valid state
    - libata: fix ata_host_start()
    - sched/topology: Skip updating masks for non-online nodes
    - crypto: omap - Fix inconsistent locking of device lists
    - crypto: qat - do not ignore errors from enable_vf2pf_comms()
    - crypto: qat - handle both source of interrupt in VF ISR
    - crypto: qat - fix reuse of completion variable
    - crypto: qat - fix naming for init/shutdown VF to PF notifications
    - crypto: qat - do not export adf_iov_putmsg()
    - crypto: hisilicon/sec - fix the abnormal exiting process
    - crypto: hisilicon/sec - modify the hardware endian configuration
    - crypto: tcrypt - Fix missing return value check
    - fcntl: fix potential deadlocks for &fown_struct.lock
    - fcntl: fix potential deadlock for &fasync_struct.fa_lock
    - udf_get_extendedattr() had no boundary checks.
    - io-wq: remove GFP_ATOMIC allocation off schedule out path
    - s390/kasan: fix large PMD pages address alignment check
    - s390/pci: fix misleading rc in clp_set_pci_fn()
    - s390/debug: keep debug data on resize
    - s390/debug: fix debug area life cycle
    - s390/ap: fix state machine hang after failure to enable irq
    - sched/debug: Don't update sched_domain debug directories before
      sched_debug_init()
    - power: supply: cw2015: use dev_err_probe to allow deferred probe
    - m68k: emu: Fix invalid free in nfeth_cleanup()
    - crypto: x86/aes-ni - add missing error checks in XTS code
    - crypto: ecc - handle unaligned input buffer in ecc_swap_digits
    - sched/numa: Fix is_core_idle()
    - sched: Fix UCLAMP_FLAG_IDLE setting
    - rcu: Fix to include first blocked task in stall warning
    - rcu: Fix stall-warning deadlock due to non-release of rcu_node ->lock
    - m68k: Fix invalid RMW_INSNS on CPUs that lack CAS
    - block: return ELEVATOR_DISCARD_MERGE if possible
    - spi: spi-fsl-dspi: Fix issue with uninitialized dma_slave_config
    - spi: spi-pic32: Fix issue with uninitialized dma_slave_config
    - genirq/timings: Fix error return code in irq_timings_test_irqs()
    - irqchip/loongson-pch-pic: Improve edge triggered interrupt support
    - lib/mpi: use kcalloc in mpi_resize
    - clocksource/drivers/sh_cmt: Fix wrong setting if don't request IRQ for clock
      source channel
    - block: nbd: add sanity check for first_minor
    - spi: coldfire-qspi: Use clk_disable_unprepare in the remove function
    - irqchip/apple-aic: Fix irq_disable from within irq handlers
    - irqchip/gic-v3: Fix priority comparison when non-secure priorities are used
    - crypto: qat - use proper type for vf_mask
    - certs: Trigger creation of RSA module signing key if it's not an RSA key
    - tpm: ibmvtpm: Avoid error message when process gets signal while waiting
    - io_uring: refactor io_submit_flush_completions()
    - x86/mce: Defer processing of early errors
    - spi: davinci: invoke chipselect callback
    - blk-crypto: fix check for too-large dun_bytes
    - regulator: vctrl: Use locked regulator_get_voltage in probe path
    - regulator: vctrl: Avoid lockdep warning in enable/disable ops
    - spi: sprd: Fix the wrong WDG_LOAD_VAL
    - spi: spi-zynq-qspi: use wait_for_completion_timeout to make
      zynq_qspi_exec_mem_op not interruptible
    - crypto: rmd320 - remove rmd320 in Makefile
    - EDAC/i10nm: Fix NVDIMM detection
    - drm/panfrost: Fix missing clk_disable_unprepare() on error in
      panfrost_clk_init()
    - drm/gma500: Fix end of loop tests for list_for_each_entry
    - ASoC: mediatek: mt8192:Fix Unbalanced pm_runtime_enable in
      mt8192_afe_pcm_dev_probe
    - ASoC: mediatek: mt8183: Fix Unbalanced pm_runtime_enable in
      mt8183_afe_pcm_dev_probe
    - media: TDA1997x: enable EDID support
    - leds: is31fl32xx: Fix missing error code in is31fl32xx_parse_dt()
    - soc: rockchip: ROCKCHIP_GRF should not default to y, unconditionally
    - media: cxd2880-spi: Fix an error handling path
    - drm/of: free the right object
    - bpf: Fix a typo of reuseport map in bpf.h.
    - bpf: Fix potential memleak and UAF in the verifier.
    - drm/of: free the iterator object on failure
    - gve: fix the wrong AdminQ buffer overflow check
    - libbpf: Fix the possible memory leak on error
    - ARM: dts: aspeed-g6: Fix HVI3C function-group in pinctrl dtsi
    - arm64: dts: renesas: r8a77995: draak: Remove bogus adv7511w properties
    - i40e: improve locking of mac_filter_hash
    - arm64: dts: qcom: sc7180: Set adau wakeup delay to 80 ms
    - soc: qcom: rpmhpd: Use corner in power_off
    - libbpf: Fix removal of inner map in bpf_object__create_map
    - gfs2: Fix memory leak of object lsi on error return path
    - arm64: dts: qcom: sm8250: fix usb2 qmp phy node
    - bpf, selftests: Fix test_maps now that sockmap supports UDP
    - firmware: fix theoretical UAF race with firmware cache and resume
    - driver core: Fix error return code in really_probe()
    - ionic: cleanly release devlink instance
    - media: dvb-usb: fix uninit-value in dvb_usb_adapter_dvb_init
    - media: dvb-usb: fix uninit-value in vp702x_read_mac_addr
    - media: dvb-usb: Fix error handling in dvb_usb_i2c_init
    - media: go7007: fix memory leak in go7007_usb_probe
    - media: go7007: remove redundant initialization
    - media: rockchip/rga: use pm_runtime_resume_and_get()
    - media: rockchip/rga: fix error handling in probe
    - media: coda: fix frame_mem_ctrl for YUV420 and YVU420 formats
    - media: atomisp: fix the uninitialized use and rename "retvalue"
    - Bluetooth: sco: prevent information leak in sco_conn_defer_accept()
    - Bluetooth: btusb: Fix a unspported condition to set available debug features
    - 6lowpan: iphc: Fix an off-by-one check of array index
    - tcp: seq_file: Avoid skipping sk during tcp_seek_last_pos
    - ARM: dts: meson8: Use a higher default GPU clock frequency
    - ARM: dts: meson8b: odroidc1: Fix the pwm regulator supply properties
    - ARM: dts: meson8b: mxq: Fix the pwm regulator supply properties
    - ARM: dts: meson8b: ec100: Fix the pwm regulator supply properties
    - net/mlx5e: Prohibit inner indir TIRs in IPoIB
    - net/mlx5e: Block LRO if firmware asks for tunneled LRO
    - cgroup/cpuset: Fix a partition bug with hotplug
    - drm: mxsfb: Enable recovery on underflow
    - drm: mxsfb: Increase number of outstanding requests on V4 and newer HW
    - drm: mxsfb: Clear FIFO_CLEAR bit
    - net: cipso: fix warnings in netlbl_cipsov4_add_std
    - net: ti: am65-cpsw-nuss: fix wrong devlink release order
    - drm: rcar-du: Don't put reference to drm_device in rcar_du_remove()
    - Bluetooth: mgmt: Fix wrong opcode in the response for add_adv cmd
    - tools: Free BTF objects at various locations
    - arm64: dts: renesas: hihope-rzg2-ex: Add EtherAVB internal rx delay
    - devlink: Break parameter notification sequence to be before/after
      unload/load driver
    - net/mlx5: Fix missing return value in mlx5_devlink_eswitch_inline_mode_set()
    - i2c: highlander: add IRQ check
    - leds: lgm-sso: Put fwnode in any case during ->probe()
    - leds: lgm-sso: Don't spam logs when probe is deferred
    - leds: lt3593: Put fwnode in any case during ->probe()
    - leds: rt8515: Put fwnode in any case during ->probe()
    - leds: trigger: audio: Add an activate callback to ensure the initial
      brightness is set
    - media: em28xx-input: fix refcount bug in em28xx_usb_disconnect
    - media: omap3isp: Fix missing unlock in isp_subdev_notifier_complete()
    - media: venus: hfi: fix return value check in sys_get_prop_image_version()
    - media: venus: venc: Fix potential null pointer dereference on pointer fmt
    - media: venus: helper: do not set constrained parameters for UBWC
    - soc: mmsys: mediatek: add mask to mmsys routes
    - PCI: PM: Avoid forcing PCI_D0 for wakeup reasons inconsistently
    - PCI: PM: Enable PME if it can be signaled from D3cold
    - bpf, samples: Add missing mprog-disable to xdp_redirect_cpu's optstring
    - soc: qcom: smsm: Fix missed interrupts if state changes while masked
    - debugfs: Return error during {full/open}_proxy_open() on rmmod
    - Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow
    - net: ti: am65-cpsw-nuss: fix RX IRQ state after .ndo_stop()
    - net: dsa: stop syncing the bridge mcast_router attribute at join time
    - net: dsa: mt7530: remove the .port_set_mrouter implementation
    - net: dsa: don't disable multicast flooding to the CPU even without an IGMP
      querier
    - PM: EM: Increase energy calculation precision
    - selftests/bpf: Fix bpf-iter-tcp4 test to print correctly the dest IP
    - leds: lgm-sso: Propagate error codes from callee to caller
    - drm/msm/mdp4: refactor HW revision detection into read_mdp_hw_revision
    - drm/msm/mdp4: move HW revision detection to earlier phase
    - drm/msm/dp: update is_connected status base on sink count at dp_pm_resume()
    - drm/msm/dpu: make dpu_hw_ctl_clear_all_blendstages clear necessary LMs
    - arm64: dts: exynos: correct GIC CPU interfaces address range on Exynos7
    - counter: 104-quad-8: Return error when invalid mode during ceiling_write
    - cgroup/cpuset: Miscellaneous code cleanup
    - cgroup/cpuset: Fix violation of cpuset locking rule
    - ASoC: Intel: Fix platform ID matching
    - Bluetooth: fix repeated calls to sco_sock_kill
    - drm/msm/dsi: Fix some reference counted resource leaks
    - drm/msm/dp: replug event is converted into an unplug followed by an plug
      events
    - net/mlx5: Fix unpublish devlink parameters
    - ASoC: rt5682: Implement remove callback
    - ASoC: rt5682: Properly turn off regulators if wrong device ID
    - usb: dwc3: meson-g12a: add IRQ check
    - usb: dwc3: qcom: add IRQ check
    - usb: gadget: udc: at91: add IRQ check
    - usb: gadget: udc: s3c2410: add IRQ check
    - usb: misc: brcmstb-usb-pinmap: add IRQ check
    - usb: phy: fsl-usb: add IRQ check
    - usb: phy: twl6030: add IRQ checks
    - usb: gadget: udc: renesas_usb3: Fix soc_device_match() abuse
    - selftests/bpf: Fix test_core_autosize on big-endian machines
    - devlink: Clear whole devlink_flash_notify struct
    - samples: pktgen: add missing IPv6 option to pktgen scripts
    - net: stmmac: fix INTR TBU status affecting irq count statistic
    - PM: cpu: Make notifier chain use a raw_spinlock_t
    - usb: host: ohci-tmio: add IRQ check
    - usb: phy: tahvo: add IRQ check
    - libbpf: Re-build libbpf.so when libbpf.map changes
    - mac80211: Fix insufficient headroom issue for AMSDU
    - locking/local_lock: Add missing owner initialization
    - lockd: Fix invalid lockowner cast after vfs_test_lock
    - SUNRPC: Fix a NULL pointer deref in trace_svc_stats_latency()
    - nfsd4: Fix forced-expiry locking
    - arm64: dts: marvell: armada-37xx: Extend PCIe MEM space
    - clk: staging: correct reference to config IOMEM to config HAS_IOMEM
    - [Config] updateconfigs for COMMON_CLK_XLNX_CLKWZRD
    - i2c: synquacer: fix deferred probing
    - hwmon: (pmbus/bpa-rs600) Don't use rated limits as warn limits
    - hwmon: remove amd_energy driver in Makefile
    - ASoC: fsl_rpmsg: Check -EPROBE_DEFER for getting clocks
    - firmware: raspberrypi: Fix a leak in 'rpi_firmware_get()'
    - usb: gadget: mv_u3d: request_irq() after initializing UDC
    - mm/swap: consider max pages in iomap_swapfile_add_extent
    - lkdtm: replace SCSI_DISPATCH_CMD with SCSI_QUEUE_RQ
    - Bluetooth: add timeout sanity check to hci_inquiry
    - i2c: iop3xx: fix deferred probing
    - i2c: s3c2410: fix IRQ check
    - i2c: hix5hd2: fix IRQ check
    - gfs2: init system threads before freeze lock
    - rsi: fix error code in rsi_load_9116_firmware()
    - rsi: fix an error code in rsi_probe()
    - octeontx2-af: cn10k: Fix SDP base channel number
    - octeontx2-pf: send correct vlan priority mask to npc_install_flow_req
    - octeontx2-pf: Don't install VLAN offload rule if netdev is down
    - octeontx2-pf: Fix algorithm index in MCAM rules with RSS action
    - m68k: coldfire: return success for clk_enable(NULL)
    - ASoC: Intel: kbl_da7219_max98927: Fix format selection for max98373
    - ASoC: Intel: Skylake: Leave data as is when invoking TLV IPCs
    - ASoC: Intel: Skylake: Fix module resource and format selection
    - mmc: sdhci: Fix issue with uninitialized dma_slave_config
    - mmc: dw_mmc: Fix issue with uninitialized dma_slave_config
    - mmc: moxart: Fix issue with uninitialized dma_slave_config
    - bpf: Fix possible out of bound write in narrow load handling
    - CIFS: Fix a potencially linear read overflow
    - i2c: mt65xx: fix IRQ check
    - i2c: xlp9xx: fix main IRQ check
    - octeontx2-pf: cn10k: Fix error return code in otx2_set_flowkey_cfg()
    - usb: ehci-orion: Handle errors of clk_prepare_enable() in probe
    - usb: bdc: Fix an error handling path in 'bdc_probe()' when no suitable DMA
      config is available
    - usb: bdc: Fix a resource leak in the error handling path of 'bdc_probe()'
    - tty: serial: fsl_lpuart: fix the wrong mapbase value
    - ASoC: wcd9335: Fix a double irq free in the remove function
    - ASoC: wcd9335: Fix a memory leak in the error handling path of the probe
      function
    - ASoC: wcd9335: Disable irq on slave ports in the remove function
    - iwlwifi: skip first element in the WTAS ACPI table
    - net/mlx5: Remove all auxiliary devices at the unregister event
    - net/mlx5e: Fix possible use-after-free deleting fdb rule
    - net/mlx5: E-Switch, Set vhca id valid flag when creating indir fwd group
    - net/mlx5e: Use correct eswitch for stack devices with lag
    - ice: Only lock to update netdev dev_addr
    - net: phy: marvell10g: fix broken PHY interrupts for anyone after us in the
      driver probe list
    - ath6kl: wmi: fix an error code in ath6kl_wmi_sync_point()
    - atlantic: Fix driver resume flow.
    - bcma: Fix memory leak for internally-handled cores
    - brcmfmac: pcie: fix oops on failure to resume and reprobe
    - ipv6: make exception cache less predictible
    - ipv4: make exception cache less predictible
    - net: qrtr: make checks in qrtr_endpoint_post() stricter
    - sch_htb: Fix inconsistency when leaf qdisc creation fails
    - net: sched: Fix qdisc_rate_table refcount leak when get tcf_block failed
    - net: qualcomm: fix QCA7000 checksum handling
    - octeontx2-af: Fix loop in free and unmap counter
    - octeontx2-af: Fix mailbox errors in nix_rss_flowkey_cfg
    - octeontx2-af: Fix static code analyzer reported issues
    - octeontx2-af: Set proper errorcode for IPv4 checksum errors
    - ipv4: fix endianness issue in inet_rtm_getroute_build_skb()
    - amdgpu/pm: add extra info to SMU msg pre-check failed message
    - ASoC: rt5682: Remove unused variable in rt5682_i2c_remove()
    - iwlwifi Add support for ax201 in Samsung Galaxy Book Flex2 Alpha
    - f2fs: guarantee to write dirty data when enabling checkpoint back
    - auxdisplay: hd44780: Fix oops on module unloading
    - io_uring: limit fixed table size by RLIMIT_NOFILE
    - io_uring: IORING_OP_WRITE needs hash_reg_file set
    - io_uring: io_uring_complete() trace should take an integer
    - bio: fix page leak bio_add_hw_page failure
    - raid1: ensure write behind bio has less than BIO_MAX_VECS sectors
    - cifs: Do not leak EDEADLK to dgetents64 for STATUS_USER_SESSION_DELETED
    - smb3: fix posix extensions mount option
    - tty: Fix data race between tiocsti() and flush_to_ldisc()
    - x86/efi: Restore Firmware IDT before calling ExitBootServices()
    - perf/x86/amd/ibs: Extend PERF_PMU_CAP_NO_EXCLUDE to IBS Op
    - x86/resctrl: Fix a maybe-uninitialized build warning treated as error
    - Revert "KVM: x86: mmu: Add guest physical address check in translate_gpa()"
    - KVM: s390: index kvm->arch.idle_mask by vcpu_idx
    - KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is
      adjusted
    - KVM: x86: clamp host mapping level to max_level in kvm_mmu_max_mapping_level
    - KVM: x86/mmu: Avoid collision with !PRESENT SPTEs in TDP MMU lpage stats
    - KVM: VMX: avoid running vmx_handle_exit_irqoff in case of emulation
    - KVM: nVMX: Unconditionally clear nested.pi_pending on nested VM-Enter
    - KVM: arm64: Unregister HYP sections from kmemleak in protected mode
    - ARM: dts: at91: add pinctrl-{names, 0} for all gpios
    - io-wq: check max_worker limits if a worker transitions bound state
    - md/raid10: Remove unnecessary rcu_dereference in raid10_handle_discard
    - char: tpm: Kconfig: remove bad i2c cr50 select
    - fuse: truncate pagecache on atomic_o_trunc
    - fuse: flush extending writes
    - fuse: wait for writepages in syncfs
    - IMA: remove -Wmissing-prototypes warning
    - IMA: remove the dependency on CRYPTO_MD5
    - fbmem: don't allow too huge resolutions
    - RDMA/mlx5: Fix number of allocated XLT entries
    - backlight: pwm_bl: Improve bootloader/kernel device handover
    - clk: kirkwood: Fix a clocking boot regression
    - Linux 5.13.17
  * AMD A8-7680 (amdgpu): broken Xorg acceleration and hibernation
    (LP: #1920674) // Impish update: v5.13.17 upstream stable release
    (LP: #1946247)
    - drm/amdgpu/acp: Make PM domain really work
  * Impish update: v5.13.16 upstream stable release (LP: #1946245)
    - firmware: dmi: Move product_sku info to the end of the modalias
    - igmp: Add ip_mc_list lock in ip_check_mc_rcu
    - net: ll_temac: Remove left-over debug message
    - Revert "r8169: avoid link-up interrupt issue on RTL8106e if user enables
      ASPM"
    - blk-mq: fix kernel panic during iterating over flush request
    - blk-mq: fix is_flush_rq
    - blk-mq: clearing flush request reference in tags->rqs[]
    - ALSA: usb-audio: Add registration quirk for JBL Quantum 800
    - Bluetooth: Add additional Bluetooth part for Realtek 8852AE
    - Bluetooth: btusb: Make the CSR clone chip force-suspend workaround more
      generic
    - usb: host: xhci-rcar: Don't reload firmware after the completion
    - usb: xhci-mtk: fix issue of out-of-bounds array access
    - usb: cdnsp: fix the wrong mult value for HS isoc or intr
    - usb: gadget: tegra-xudc: fix the wrong mult value for HS isoc or intr
    - usb: mtu3: restore HS function when set SS/SSP
    - usb: mtu3: use @mult for HS isoc or intr
    - usb: mtu3: fix the wrong HS mult value
    - xhci: fix even more unsafe memory usage in xhci tracing
    - xhci: fix unsafe memory usage in xhci tracing
    - xhci: Fix failure to give back some cached cancelled URBs.
    - x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions
    - PCI: Call Max Payload Size-related fixup quirks early
    - Linux 5.13.16
  * Impish update: v5.13.15 upstream stable release (LP: #1946242)
    - ext4: fix e2fsprogs checksum failure for mounted filesystem
    - gpu: ipu-v3: Fix i.MX IPU-v3 offset calculations for (semi)planar U/V
      formats
    - reset: reset-zynqmp: Fixed the argument data type
    - qed: Fix the VF msix vectors flow
    - net: dsa: mv88e6xxx: Update mv88e6393x serdes errata
    - riscv: dts: microchip: Use 'local-mac-address' for emac1
    - riscv: dts: microchip: Add ethernet0 to the aliases node
    - net: macb: Add a NULL check on desc_ptp
    - qede: Fix memset corruption
    - perf/x86/intel/pt: Fix mask of num_address_ranges
    - ceph: fix possible null-pointer dereference in ceph_mdsmap_decode()
    - perf/x86/amd/ibs: Work around erratum #1197
    - perf/x86/amd/power: Assign pmu.module
    - cryptoloop: add a deprecation warning
    - xtensa: fix kconfig unmet dependency warning for HAVE_FUTEX_CMPXCHG
    - USB: serial: pl2303: fix GL type detection
    - USB: serial: cp210x: fix control-characters error handling
    - USB: serial: cp210x: fix flow-control error handling
    - ALSA: hda/realtek: Quirk for HP Spectre x360 14 amp setup
    - ALSA: usb-audio: Fix regression on Sony WALKMAN NW-A45 DAC
    - ALSA: hda/realtek: Workaround for conflicting SSID on ASUS ROG Strix G17
    - ALSA: pcm: fix divide error in snd_pcm_lib_ioctl
    - media: stkwebcam: fix memory leak in stk_camera_probe
    - Linux 5.13.15
  * Re-enable DEBUG_INFO_BTF where it was dissabled (LP: #1945632)
    - [Config] Re-enable CONFIG_DEBUG_INFO_BTF=y on armhf
  * Fix missing HDMI audio on Intel RKL (LP: #1945556)
    - drm/i915/audio: Use BIOS provided value for RKL HDA link
  * USB Type-C hotplug event not handled properly in TGL-H system during s2idle
    (LP: #1931072)
    - drm/i915: Force a TypeC PHY disconnect during suspend/shutdown
  * Packaging resync (LP: #1786013)
    - [Packaging] update Ubuntu.md
  * impish/linux: 5.13.0-20.20 -proposed tracker (LP: #1947380)
  * PANIC at zfs_znode.c:335:zfs_znode_sa_init() // VERIFY(0 ==
    sa_handle_get_from_db(zfsvfs->z_os, db, zp, SA_HDL_SHARED, &zp->z_sa_hdl))
    failed (LP: #1906476)
    - debian/dkms-versions -- Update zfs to latest version

-- Stefan Bader <stefan.bader@canonical.com>  Tue, 16 Nov 2021 11:35:31 +0100

Changed in linux-kvm (Ubuntu):
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntulinux-kvm package

When booting with UEFI, mokvar table and %:.platform keyring must be available

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntu
linux-kvm package