Bug #1931254 “Google Confidential Compute fails to boot with shi...” : Bugs : linux package : Ubuntu

Chris Newcomer (cnewcomer) on 2021-06-08

summary:

- Google Confidnetial Compute fails to boot with 1.47
+ Google Confidential Compute fails to boot with 1.47

Revision history for this message

Peter Gonda (pgonda) wrote on 2021-06-08: Re: Google Confidential Compute fails to boot with 1.47

#1

I think that this kernel needs a new fix that has been posted to KVM mailing list. The stack trace seems to match the report and the fix.

https://www.spinics.net/lists/kernel/msg3968888.html

Revision history for this message

Steve Langasek (vorlon) wrote on 2021-06-08:

#2

Per the last comment, if the kernel is panicking, we should look at this from the kernel side.

Revision history for this message

Khaled El Mously (kmously) wrote on 2021-06-30:

#3

@Peter Gonda -- You seem to be 100% correct.

Thank you for the helpful pointer!

I have confirmed the fix and shim-side of the changes that exposed the issue.

I will SRU the fix asap.

no longer affects:

shim-signed (Ubuntu)

Khaled El Mously (kmously) on 2021-07-08

description:	updated
description:	updated
description:	updated
no longer affects:	linux-gcp (Ubuntu)
no longer affects:	linux-gcp (Ubuntu Hirsute)
Changed in linux (Ubuntu):
assignee:	nobody → Khaled El Mously (kmously)
Changed in linux (Ubuntu Hirsute):
assignee:	nobody → Khaled El Mously (kmously)
Changed in linux (Ubuntu):
status:	New → In Progress
Changed in linux (Ubuntu Hirsute):
status:	New → In Progress

Khaled El Mously (kmously) on 2021-07-08

description:	updated
description:	updated

Khaled El Mously (kmously) on 2021-07-08

description:	updated
summary:	- Google Confidential Compute fails to boot with 1.47 + Google Confidential Compute fails to boot with shim version 1.47

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2021-07-22:

#4

This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-hirsute' to 'verification-done-hirsute'. If the problem still exists, change the tag 'verification-needed-hirsute' to 'verification-failed-hirsute'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: verification-needed-hirsute

Revision history for this message

Joshua Powers (powersj) wrote on 2021-07-23:

#5

Verification steps:

1. Enabled Confidential Compute
2. Change image to daily-ubuntu-2104-hirsute-v20210510 (last working image)
3. Launched image
4. Enabled proposed
5. Updated system https://paste.ubuntu.com/p/mNrZNkVYtB/
6. Rebooted sucessfully! https://paste.ubuntu.com/p/G9CmvhW9tx/

Marking verification-done

tags:

added: verification-done-hirsute
removed: verification-needed-hirsute

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2021-08-03:

#6

This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-focal' to 'verification-done-focal'. If the problem still exists, change the tag 'verification-needed-focal' to 'verification-failed-focal'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: verification-needed-focal

Revision history for this message

Kleber Sacilotto de Souza (kleber-souza) wrote on 2021-08-06:

#7

This fix has already been released with hirsute/linux-gcp 5.11.0-1015.17 which is currently in hirsute-updates. For the generic hirsute/linux kernel the fix will be applied for the next SRU cycle.

Kleber Sacilotto de Souza (kleber-souza) on 2021-08-06

no longer affects:	linux-gcp (Ubuntu)
no longer affects:	linux (Ubuntu Hirsute)
Changed in linux (Ubuntu Hirsute):
status:	New → In Progress
assignee:	nobody → Khaled El Mously (kmously)
Changed in linux-gcp (Ubuntu Hirsute):
status:	New → Fix Released

Revision history for this message

Kleber Sacilotto de Souza (kleber-souza) wrote on 2021-08-06:

#8

This fix has already been released with impish/linux 5.13.0-11.1. Marking the task for the development kernel as fix released.

Changed in linux (Ubuntu):
status:	In Progress → Fix Released
Changed in linux-gcp (Ubuntu):
status:	New → Fix Committed

Kelsey Steele (kelsey-steele) on 2021-08-06

Changed in linux (Ubuntu Hirsute):
status:	In Progress → Fix Committed

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-08-18:

#9

Download full text (48.8 KiB)

This bug was fixed in the package linux-gcp - 5.11.0-1016.18+21.10.2

---------------
linux-gcp (5.11.0-1016.18+21.10.2) impish; urgency=medium

* impish/linux-gcp: 5.11.0-1016.18+21.10.2 -proposed tracker (LP: #1936486)

  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * Disable Bluetooth in cloud kernels (LP: #1840488)
    - [Config] gcp: Disable CONFIG_BT

[ Ubuntu: 5.11.0-1016.18 ]

  * hirsute/linux-gcp: 5.11.0-1016.18 -proposed tracker (LP: #1938651)
  * Some cloud kernels have Android related config options disabled
    (LP: #1928686)
    - [config] gcp: Enable Android options for anbox
  * Disable Bluetooth in cloud kernels (LP: #1840488)
    - [config] gcp: Disable CONFIG_BT
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * large_dir in ext4 broken (LP: #1933074)
    - SAUCE: ext4: fix directory index node split corruption
  * Add l2tp.sh in net from ubuntu_kernel_selftests back (LP: #1934293)
    - Revert "UBUNTU: SAUCE: selftests/net -- disable l2tp.sh test"
  * icmp_redirect.sh in net from ubuntu_kernel_selftests failed on F-OEM-5.6 /
    F-OEM-5.10 / F-OEM-5.13 / F / G / H (LP: #1880645)
    - selftests: icmp_redirect: support expected failures
  * Mute/mic LEDs no function on some HP platfroms (LP: #1934878)
    - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 450 G8
    - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G8
    - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 630 G8
  * [SRU][OEM-5.10/H] Fix HDMI output issue on Intel TGL GPU (LP: #1934864)
    - drm/i915: Fix HAS_LSPCON macro for platforms between GEN9 and GEN10
  * mute/micmute LEDs no function on HP EliteBook 830 G8 Notebook PC
    (LP: #1934239)
    - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 830 G8 Notebook PC
  * ubuntu-host driver lacks lseek ops (LP: #1934110)
    - ubuntu-host: add generic lseek op
  * ubuntu_kernel_selftests ftrace fails on arm64 F / aws-5.8 / amd64 F
    azure-5.8 (LP: #1927749)
    - selftests/ftrace: fix event-no-pid on 1-core machine
  * Hirsute update: upstream stable patchset 2021-06-29 (LP: #1934012)
    - proc: Track /proc/$pid/attr/ opener mm_struct
    - ASoC: max98088: fix ni clock divider calculation
    - ASoC: amd: fix for pcm_read() error
    - spi: Fix spi device unregister flow
    - spi: spi-zynq-qspi: Fix stack violation bug
    - bpf: Forbid trampoline attach for functions with variable arguments
    - net/nfc/rawsock.c: fix a permission check bug
    - usb: cdns3: Fix runtime PM imbalance on error
    - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet
    - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet
    - vfio-ccw: Reset FSM state to IDLE inside FSM
    - vfio-ccw: Serialize FSM IDLE state with I/O completion
    - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE
    - spi: sprd: Add missing MODULE_DEVICE_TABLE
    - usb: chipidea: udc: assign interrupt number to USB gadget structure
    - isdn: mISDN: netjet: Fix crash in nj_probe:
    - bonding: init notify_work earlier to avoid uninitialized use
    - netlink: disable IRQs for netlink_lock_table()
    - net: mdiobus: get...

This bug was fixed in the package linux-gcp - 5.11.0-1016.18+21.10.2

---------------
linux-gcp (5.11.0-1016.18+21.10.2) impish; urgency=medium

* impish/linux-gcp: 5.11.0-1016.18+21.10.2 -proposed tracker (LP: #1936486)

* Packaging resync (LP: #1786013)
    - update dkms package versions
  * Disable Bluetooth in cloud kernels (LP: #1840488)
    - [Config] gcp: Disable CONFIG_BT

[ Ubuntu: 5.11.0-1016.18 ]

* hirsute/linux-gcp: 5.11.0-1016.18 -proposed tracker (LP: #1938651)
  * Some cloud kernels have Android related config options disabled
    (LP: #1928686)
    - [config] gcp: Enable Android options for anbox
  * Disable Bluetooth in cloud kernels (LP: #1840488)
    - [config] gcp: Disable CONFIG_BT
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * large_dir in ext4 broken (LP: #1933074)
    - SAUCE: ext4: fix directory index node split corruption
  * Add l2tp.sh in net from ubuntu_kernel_selftests back (LP: #1934293)
    - Revert "UBUNTU: SAUCE: selftests/net -- disable l2tp.sh test"
  * icmp_redirect.sh in net from ubuntu_kernel_selftests failed on F-OEM-5.6 /
    F-OEM-5.10 / F-OEM-5.13 / F / G / H (LP: #1880645)
    - selftests: icmp_redirect: support expected failures
  * Mute/mic LEDs no function on some HP platfroms (LP: #1934878)
    - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 450 G8
    - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G8
    - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 630 G8
  * [SRU][OEM-5.10/H] Fix HDMI output issue on Intel TGL GPU (LP: #1934864)
    - drm/i915: Fix HAS_LSPCON macro for platforms between GEN9 and GEN10
  * mute/micmute LEDs no function on HP EliteBook 830 G8 Notebook PC
    (LP: #1934239)
    - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 830 G8 Notebook PC
  * ubuntu-host driver lacks lseek ops (LP: #1934110)
    - ubuntu-host: add generic lseek op
  * ubuntu_kernel_selftests ftrace fails on arm64 F / aws-5.8 / amd64 F
    azure-5.8 (LP: #1927749)
    - selftests/ftrace: fix event-no-pid on 1-core machine
  * Hirsute update: upstream stable patchset 2021-06-29 (LP: #1934012)
    - proc: Track /proc/$pid/attr/ opener mm_struct
    - ASoC: max98088: fix ni clock divider calculation
    - ASoC: amd: fix for pcm_read() error
    - spi: Fix spi device unregister flow
    - spi: spi-zynq-qspi: Fix stack violation bug
    - bpf: Forbid trampoline attach for functions with variable arguments
    - net/nfc/rawsock.c: fix a permission check bug
    - usb: cdns3: Fix runtime PM imbalance on error
    - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet
    - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet
    - vfio-ccw: Reset FSM state to IDLE inside FSM
    - vfio-ccw: Serialize FSM IDLE state with I/O completion
    - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE
    - spi: sprd: Add missing MODULE_DEVICE_TABLE
    - usb: chipidea: udc: assign interrupt number to USB gadget structure
    - isdn: mISDN: netjet: Fix crash in nj_probe:
    - bonding: init notify_work earlier to avoid uninitialized use
    - netlink: disable IRQs for netlink_lock_table()
    - net: mdiobus: get rid of a BUG_ON()
    - cgroup: disable controllers at parse time
    - wq: handle VM suspension in stall detection
    - net/qla3xxx: fix schedule while atomic in ql_sem_spinlock
    - RDS tcp loopback connection can hang
    - net:sfc: fix non-freed irq in legacy irq mode
    - scsi: bnx2fc: Return failure if io_req is already in ABTS processing
    - scsi: vmw_pvscsi: Set correct residual data length
    - scsi: hisi_sas: Drop free_irq() of devm_request_irq() allocated irq
    - scsi: target: qla2xxx: Wait for stop_phase1 at WWN removal
    - net: macb: ensure the device is available before accessing GEMGXL control
      registers
    - net: appletalk: cops: Fix data race in cops_probe1
    - net: dsa: microchip: enable phy errata workaround on 9567
    - nvme-fabrics: decode host pathing error for connect
    - MIPS: Fix kernel hang under FUNCTION_GRAPH_TRACER and PREEMPT_TRACER
    - dm verity: fix require_signatures module_param permissions
    - bnx2x: Fix missing error code in bnx2x_iov_init_one()
    - nvme-tcp: remove incorrect Kconfig dep in BLK_DEV_NVME
    - nvmet: fix false keep-alive timeout when a controller is torn down
    - powerpc/fsl: set fsl,i2c-erratum-a004447 flag for P2041 i2c controllers
    - powerpc/fsl: set fsl,i2c-erratum-a004447 flag for P1010 i2c controllers
    - spi: Don't have controller clean up spi device before driver unbind
    - spi: Cleanup on failure of initial setup
    - i2c: mpc: Make use of i2c_recover_bus()
    - i2c: mpc: implement erratum A-004447 workaround
    - ALSA: seq: Fix race of snd_seq_timer_open()
    - ALSA: firewire-lib: fix the context to call snd_pcm_stop_xrun()
    - spi: bcm2835: Fix out-of-bounds access with more than 4 slaves
    - Revert "ACPI: sleep: Put the FACS table after using it"
    - drm: Fix use-after-free read in drm_getunique()
    - drm: Lock pointer access in drm_master_release()
    - perf/x86/intel/uncore: Fix M2M event umask for Ice Lake server
    - KVM: X86: MMU: Use the correct inherited permissions to get shadow page
    - kvm: avoid speculation-based attacks from out-of-range memslot accesses
    - staging: rtl8723bs: Fix uninitialized variables
    - async_xor: check src_offs is not NULL before updating it
    - btrfs: return value from btrfs_mark_extent_written() in case of error
    - btrfs: promote debugging asserts to full-fledged checks in validate_super
    - cgroup1: don't allow '\n' in renaming
    - ftrace: Do not blindly read the ip address in ftrace_bug()
    - mmc: renesas_sdhi: abort tuning when timeout detected
    - mmc: renesas_sdhi: Fix HS400 on R-Car M3-W+
    - USB: f_ncm: ncm_bitrate (speed) is unsigned
    - usb: f_ncm: only first packet of aggregate needs to start timer
    - usb: pd: Set PD_T_SINK_WAIT_CAP to 310ms
    - usb: dwc3-meson-g12a: fix usb2 PHY glue init when phy0 is disabled
    - usb: dwc3: meson-g12a: Disable the regulator in the error handling path of
      the probe
    - usb: dwc3: gadget: Bail from dwc3_gadget_exit() if dwc->gadget is NULL
    - usb: dwc3: ep0: fix NULL pointer exception
    - usb: musb: fix MUSB_QUIRK_B_DISCONNECT_99 handling
    - usb: typec: wcove: Use LE to CPU conversion when accessing msg->header
    - usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path
    - usb: typec: intel_pmc_mux: Put fwnode in error case during ->probe()
    - usb: typec: intel_pmc_mux: Add missed error check for
      devm_ioremap_resource()
    - usb: gadget: f_fs: Ensure io_completion_wq is idle during unbind
    - USB: serial: ftdi_sio: add NovaTech OrionMX product ID
    - USB: serial: omninet: add device id for Zyxel Omni 56K Plus
    - USB: serial: quatech2: fix control-request directions
    - USB: serial: cp210x: fix alternate function for CP2102N QFN20
    - usb: gadget: eem: fix wrong eem header operation
    - usb: fix various gadgets null ptr deref on 10gbps cabling.
    - usb: fix various gadget panics on 10gbps cabling
    - usb: typec: tcpm: cancel vdm and state machine hrtimer when unregister tcpm
      port
    - usb: typec: tcpm: cancel frs hrtimer when unregister tcpm port
    - regulator: core: resolve supply for boot-on/always-on regulators
    - regulator: max77620: Use device_set_of_node_from_dev()
    - regulator: bd718x7: Fix the BUCK7 voltage setting on BD71837
    - regulator: fan53880: Fix missing n_voltages setting
    - regulator: bd71828: Fix .n_voltages settings
    - regulator: rtmv20: Fix .set_current_limit/.get_current_limit callbacks
    - phy: usb: Fix misuse of IS_ENABLED
    - usb: dwc3: gadget: Disable gadget IRQ during pullup disable
    - usb: typec: mux: Fix copy-paste mistake in typec_mux_match
    - drm/mcde: Fix off by 10^3 in calculation
    - drm/msm/a6xx: fix incorrectly set uavflagprd_inv field for A650
    - drm/msm/a6xx: update/fix CP_PROTECT initialization
    - drm/msm/a6xx: avoid shadow NULL reference in failure path
    - RDMA/ipoib: Fix warning caused by destroying non-initial netns
    - RDMA/mlx4: Do not map the core_clock page to user space unless enabled
    - ARM: cpuidle: Avoid orphan section warning
    - vmlinux.lds.h: Avoid orphan section with !SMP
    - tools/bootconfig: Fix error return code in apply_xbc()
    - phy: cadence: Sierra: Fix error return code in cdns_sierra_phy_probe()
    - ASoC: core: Fix Null-point-dereference in fmt_single_name()
    - ASoC: meson: gx-card: fix sound-dai dt schema
    - phy: ti: Fix an error code in wiz_probe()
    - gpio: wcd934x: Fix shift-out-of-bounds error
    - perf: Fix data race between pin_count increment/decrement
    - sched/fair: Keep load_avg and load_sum synced
    - sched/fair: Make sure to update tg contrib for blocked load
    - sched/fair: Fix util_est UTIL_AVG_UNCHANGED handling
    - x86/nmi_watchdog: Fix old-style NMI watchdog regression on old Intel CPUs
    - KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message
    - IB/mlx5: Fix initializing CQ fragments buffer
    - NFS: Fix a potential NULL dereference in nfs_get_client()
    - NFSv4: Fix deadlock between nfs4_evict_inode() and nfs4_opendata_get_inode()
    - perf session: Correct buffer copying when peeking events
    - kvm: fix previous commit for 32-bit builds
    - NFS: Fix use-after-free in nfs4_init_client()
    - NFSv4: Fix second deadlock in nfs4_evict_inode()
    - NFSv4: nfs4_proc_set_acl needs to restore NFS_CAP_UIDGID_NOMAP on error.
    - scsi: core: Fix error handling of scsi_host_alloc()
    - scsi: core: Fix failure handling of scsi_add_host_with_dma()
    - scsi: core: Put .shost_dev in failure path if host state changes to RUNNING
    - scsi: core: Only put parent device if host state differs from SHOST_CREATED
    - tracing: Correct the length check which causes memory corruption
    - proc: only require mm_struct for writing
    - bpf: Add deny list of btf ids check for tracing programs
    - KVM: x86: Unload MMU on guest TLB flush if TDP disabled to force MMU sync
    - usb: misc: brcmstb-usb-pinmap: check return value after calling
      platform_get_resource()
    - tick/nohz: Only check for RCU deferred wakeup on user/guest entry when
      needed
    - bcache: remove bcache device self-defined readahead
    - btrfs: do not write supers if we have an fs error
    - coredump: Limit what can interrupt coredumps
    - tools/bootconfig: Fix a build error accroding to undefined fallthrough
    - usb: pci-quirks: disable D3cold on xhci suspend for s2idle on AMD Renoir
    - regulator: da9121: Return REGULATOR_MODE_INVALID for invalid mode
    - regulator: fixed: Ensure enable_counter is correct if reg_domain_disable
      fails
    - regulator: scmi: Fix off-by-one for linear regulators .n_voltages setting
    - usb: cdns3: Enable TDL_CHK only for OUT ep
    - hwmon: (corsair-psu) fix suspend behavior
    - RDMA/mlx5: Use different doorbell memory for different processes
    - RDMA/mlx5: Block FDB rules when not in switchdev mode
    - IB/mlx4: Use port iterator and validation APIs
    - RDMA: Verify port when creating flow rule
    - pinctrl: qcom: Fix duplication in gpio_groups
  * Acer Aspire 5 sound driver issues (LP: #1930188) // Hirsute update: upstream
    stable patchset 2021-06-29 (LP: #1934012)
    - ALSA: hda/realtek: headphone and mic don't work on an Acer laptop
  * Update SmartPQI driver  (LP: #1933518)
    - scsi: smartpqi: Add support for new product ids
    - scsi: smartpqi: Refactor aio submission code
    - scsi: smartpqi: Refactor scatterlist code
    - scsi: smartpqi: Add support for RAID5 and RAID6 writes
    - scsi: smartpqi: Add support for RAID1 writes
    - scsi: smartpqi: Add support for BMIC sense feature cmd and feature bits
    - scsi: smartpqi: Add support for long firmware version
    - scsi: smartpqi: Align code with oob driver
    - scsi: smartpqi: Add stream detection
    - scsi: smartpqi: Add host level stream detection enable
    - scsi: smartpqi: Disable WRITE SAME for HBA NVMe disks
    - scsi: smartpqi: Remove timeouts from internal cmds
    - scsi: smartpqi: Add support for wwid
    - scsi: smartpqi: Update event handler
    - scsi: smartpqi: Update soft reset management for OFA
    - scsi: smartpqi: Synchronize device resets with mutex
    - scsi: smartpqi: Update suspend/resume and shutdown
    - scsi: smartpqi: Update RAID bypass handling
    - scsi: smartpqi: Update OFA management
    - scsi: smartpqi: Update device scan operations
    - scsi: smartpqi: Fix driver synchronization issues
    - scsi: smartpqi: Convert snprintf() to scnprintf()
    - scsi: smartpqi: Add phy ID support for the physical drives
    - scsi: smartpqi: Update SAS initiator_port_protocols and
      target_port_protocols
    - scsi: smartpqi: Add additional logging for LUN resets
    - scsi: smartpqi: Update enclosure identifier in sysfs
    - scsi: smartpqi: Correct system hangs when resuming from hibernation
    - scsi: smartpqi: Update version to 2.1.8-045
    - scsi: smartpqi: Fix blocks_per_row static checker issue
    - scsi: smartpqi: Fix device pointer variable reference static checker issue
    - scsi: smartpqi: Remove unused functions
  * mute/micmute LEDs no function on HP EliteBook x360 830 G8 (LP: #1933508)
    - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook x360 830 G8
  * devlink_port_split in net from ubuntu_kernel_selftests linux ADT test
    failure with linux/5.11.0-18.19 ( list index out of range) (LP: #1928889)
    - selftests: net: devlink_port_split.py: skip the test if no devlink device
  * Pixel format change broken for Elgato Cam Link 4K (LP: #1932367)
    - (upstream) media: uvcvideo: Fix pixel format change for Elgato Cam Link 4K
  * net kselftest failures in the tls bidir test case (LP: #1933268)
    - SAUCE: selftests: tls: fix chacha+bidir tests
  * Hirsute update: upstream stable patchset 2021-06-25 (LP: #1933691)
    - hwmon: (dell-smm-hwmon) Fix index values
    - hwmon: (pmbus/isl68137) remove READ_TEMPERATURE_3 for RAA228228
    - netfilter: conntrack: unregister ipv4 sockopts on error unwind
    - efi/fdt: fix panic when no valid fdt found
    - efi: Allow EFI_MEMORY_XP and EFI_MEMORY_RO both to be cleared
    - efi/libstub: prevent read overflow in find_file_option()
    - efi: cper: fix snprintf() use in cper_dimm_err_location()
    - vfio/pci: Fix error return code in vfio_ecap_init()
    - vfio/pci: zap_vma_ptes() needs MMU
    - samples: vfio-mdev: fix error handing in mdpy_fb_probe()
    - vfio/platform: fix module_put call in error flow
    - ipvs: ignore IP_VS_SVC_F_HASHED flag when adding service
    - HID: logitech-hidpp: initialize level variable
    - HID: pidff: fix error return code in hid_pidff_init()
    - HID: i2c-hid: fix format string mismatch
    - devlink: Correct VIRTUAL port to not have phys_port attributes
    - net/sched: act_ct: Offload connections with commit action
    - net/sched: act_ct: Fix ct template allocation for zone 0
    - mptcp: always parse mptcp options for MPC reqsk
    - nvme-rdma: fix in-casule data send for chained sgls
    - ACPICA: Clean up context mutex during object deletion
    - perf probe: Fix NULL pointer dereference in convert_variable_location()
    - net: dsa: tag_8021q: fix the VLAN IDs used for encoding sub-VLANs
    - net: sock: fix in-kernel mark setting
    - net/tls: Replace TLS_RX_SYNC_RUNNING with RCU
    - net/tls: Fix use-after-free after the TLS device goes down and up
    - net/mlx5e: Fix incompatible casting
    - net/mlx5: Check firmware sync reset requested is set before trying to abort
      it
    - net/mlx5e: Check for needed capability for cvlan matching
    - net/mlx5: DR, Create multi-destination flow table with level less than 64
    - nvmet: fix freeing unallocated p2pmem
    - netfilter: nft_ct: skip expectations for confirmed conntrack
    - netfilter: nfnetlink_cthelper: hit EBUSY on updates if size mismatches
    - drm/i915/selftests: Fix return value check in live_breadcrumbs_smoketest()
    - bpf: Simplify cases in bpf_base_func_proto
    - bpf, lockdown, audit: Fix buggy SELinux lockdown permission checks
    - ieee802154: fix error return code in ieee802154_add_iface()
    - ieee802154: fix error return code in ieee802154_llsec_getparams()
    - igb: add correct exception tracing for XDP
    - ixgbevf: add correct exception tracing for XDP
    - cxgb4: fix regression with HASH tc prio value update
    - ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions
    - ice: Fix allowing VF to request more/less queues via virtchnl
    - ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared
    - ice: handle the VF VSI rebuild failure
    - ice: report supported and advertised autoneg using PHY capabilities
    - ice: Allow all LLDP packets from PF to Tx
    - i2c: qcom-geni: Add shutdown callback for i2c
    - cxgb4: avoid link re-train during TC-MQPRIO configuration
    - i40e: optimize for XDP_REDIRECT in xsk path
    - i40e: add correct exception tracing for XDP
    - ice: simplify ice_run_xdp
    - ice: optimize for XDP_REDIRECT in xsk path
    - ice: add correct exception tracing for XDP
    - ixgbe: optimize for XDP_REDIRECT in xsk path
    - ixgbe: add correct exception tracing for XDP
    - arm64: dts: ti: j7200-main: Mark Main NAVSS as dma-coherent
    - optee: use export_uuid() to copy client UUID
    - bus: ti-sysc: Fix am335x resume hang for usb otg module
    - arm64: dts: ls1028a: fix memory node
    - arm64: dts: zii-ultra: fix 12V_MAIN voltage
    - arm64: dts: freescale: sl28: var4: fix RGMII clock and voltage
    - ARM: dts: imx7d-meerkat96: Fix the 'tuning-step' property
    - ARM: dts: imx7d-pico: Fix the 'tuning-step' property
    - ARM: dts: imx: emcon-avari: Fix nxp,pca8574 #gpio-cells
    - bus: ti-sysc: Fix flakey idling of uarts and stop using swsup_sidle_act
    - tipc: add extack messages for bearer/media failure
    - tipc: fix unique bearer names sanity check
    - serial: stm32: fix threaded interrupt handling
    - riscv: vdso: fix and clean-up Makefile
    - io_uring: fix link timeout refs
    - io_uring: use better types for cflags
    - drm/amdgpu/vcn3: add cancel_delayed_work_sync before power gate
    - drm/amdgpu/jpeg2.5: add cancel_delayed_work_sync before power gate
    - drm/amdgpu/jpeg3: add cancel_delayed_work_sync before power gate
    - Bluetooth: fix the erroneous flush_work() order
    - Bluetooth: use correct lock to prevent UAF of hdev object
    - wireguard: do not use -O3
    - wireguard: peer: allocate in kmem_cache
    - wireguard: use synchronize_net rather than synchronize_rcu
    - wireguard: selftests: remove old conntrack kconfig value
    - wireguard: selftests: make sure rp_filter is disabled on vethc
    - wireguard: allowedips: initialize list head in selftest
    - wireguard: allowedips: remove nodes in O(1)
    - wireguard: allowedips: allocate nodes in kmem_cache
    - wireguard: allowedips: free empty intermediate nodes when removing single
      node
    - net: caif: added cfserl_release function
    - net: caif: add proper error handling
    - net: caif: fix memory leak in caif_device_notify
    - net: caif: fix memory leak in cfusbl_device_notify
    - HID: i2c-hid: Skip ELAN power-on command after reset
    - HID: magicmouse: fix NULL-deref on disconnect
    - HID: multitouch: require Finger field to mark Win8 reports as MT
    - gfs2: fix scheduling while atomic bug in glocks
    - ALSA: timer: Fix master timer notification
    - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx
    - ALSA: hda: update the power_state during the direct-complete
    - ARM: dts: imx6dl-yapp4: Fix RGMII connection to QCA8334 switch
    - ARM: dts: imx6q-dhcom: Add PU,VDD1P1,VDD2P5 regulators
    - ext4: fix memory leak in ext4_fill_super
    - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed
    - ext4: fix fast commit alignment issues
    - ext4: fix memory leak in ext4_mb_init_backend on error path.
    - ext4: fix accessing uninit percpu counter variable with fast_commit
    - usb: dwc2: Fix build in periphal-only mode
    - pid: take a reference when initializing `cad_pid`
    - ocfs2: fix data corruption by fallocate
    - mm/debug_vm_pgtable: fix alignment for pmd/pud_advanced_tests()
    - mm/page_alloc: fix counting of free pages after take off from buddy
    - x86/cpufeatures: Force disable X86_FEATURE_ENQCMD and remove update_pasid()
    - x86/sev: Check SME/SEV support in CPUID first
    - nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect
    - drm/amdgpu: Don't query CE and UE errors
    - drm/amdgpu: make sure we unpin the UVD BO
    - x86/apic: Mark _all_ legacy interrupts when IO/APIC is missing
    - powerpc/kprobes: Fix validation of prefixed instructions across page
      boundary
    - btrfs: mark ordered extent and inode with error if we fail to finish
    - btrfs: fix error handling in btrfs_del_csums
    - btrfs: return errors from btrfs_del_csums in cleanup_ref_head
    - btrfs: fixup error handling in fixup_inode_link_counts
    - btrfs: abort in rename_exchange if we fail to insert the second ref
    - btrfs: fix deadlock when cloning inline extents and low on available space
    - mm, hugetlb: fix simple resv_huge_pages underflow on UFFDIO_COPY
    - drm/msm/dpu: always use mdp device to scale bandwidth
    - btrfs: fix unmountable seed device after fstrim
    - KVM: SVM: Truncate GPR value for DR and CR accesses in !64-bit mode
    - i2c: qcom-geni: Suspend and resume the bus during SYSTEM_SLEEP_PM ops
    - netfilter: nf_tables: missing error reporting for not selected expressions
    - xen-netback: take a reference to the RX task thread
    - neighbour: allow NUD_NOARP entries to be forced GCed
    - mt76: mt76x0e: fix device hang during suspend/resume
    - HID: amd_sfh: Fix memory leak in amd_sfh_work
    - kbuild: Quote OBJCOPY var to avoid a pahole call break the build
    - mptcp: do not reset MP_CAPABLE subflow on mapping errors
    - arm64: meson: select COMMON_CLK
    - amdgpu: fix GEM obj leak in amdgpu_display_user_framebuffer_create
    - io_uring: fix ltout double free on completion race
    - scsi: lpfc: Fix failure to transmit ABTS on FC link
    - dmaengine: idxd: Use cpu_feature_enabled()
    - KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path
    - btrfs: fix fsync failure and transaction abort after writes to prealloc
      extents
    - btrfs: check error value from btrfs_update_inode in tree log
    - KVM: arm64: Commit pending PC adjustemnts before returning to userspace
    - ARM: OMAP1: isp1301-omap: Add missing gpiod_add_lookup_table function
    - x86/fault: Don't send SIGSEGV twice on SEGV_PKUERR
  * Hirsute update: upstream stable patchset 2021-06-14 (LP: #1931896)
    - x86/msr: Fix wr/rdmsr_safe_regs_on_cpu() prototypes
    - drm/i915/display: fix compiler warning about array overrun
    - airo: work around stack usage warning
    - kgdb: fix gcc-11 warning on indentation
    - usb: sl811-hcd: improve misleading indentation
    - isdn: capi: fix mismatched prototypes
    - virtio_net: Do not pull payload in skb->head
    - PCI: thunder: Fix compile testing
    - dmaengine: dw-edma: Fix crash on loading/unloading driver
    - ARM: 9066/1: ftrace: pause/unpause function graph tracer in cpu_suspend()
    - ACPI / hotplug / PCI: Fix reference count leak in enable_slot()
    - PCI: tegra: Fix runtime PM imbalance in pex_ep_event_pex_rst_deassert()
    - Input: elants_i2c - do not bind to i2c-hid compatible ACPI instantiated
      devices
    - Input: silead - add workaround for x86 BIOS-es which bring the chip up in a
      stuck state
    - NFS: NFS_INO_REVAL_PAGECACHE should mark the change attribute invalid
    - um: Mark all kernel symbols as local
    - um: Disable CONFIG_GCOV with MODULES
    - ARM: 9075/1: kernel: Fix interrupted SMC calls
    - platform/chrome: cros_ec_typec: Add DP mode check
    - riscv: Use $(LD) instead of $(CC) to link vDSO
    - scripts/recordmcount.pl: Fix RISC-V regex for clang
    - riscv: Workaround mcount name prior to clang-13
    - scsi: lpfc: Fix illegal memory access on Abort IOCBs
    - ceph: fix fscache invalidation
    - ceph: don't clobber i_snap_caps on non-I_NEW inode
    - ceph: don't allow access to MDS-private inodes
    - scsi: target: tcmu: Return from tcmu_handle_completions() if cmd_id not
      found
    - amdgpu/pm: Prevent force of DCEFCLK on NAVI10 and SIENNA_CICHLID
    - bridge: Fix possible races between assigning rx_handler_data and setting
      IFF_BRIDGE_PORT bit
    - net: hsr: check skb can contain struct hsr_ethhdr in fill_frame_info
    - nvmet: remove unsupported command noise
    - drm/amd/display: Fix two cursor duplication when using overlay
    - gpiolib: acpi: Add quirk to ignore EC wakeups on Dell Venue 10 Pro 5055
    - net:CXGB4: fix leak if sk_buff is not used
    - block: reexpand iov_iter after read/write
    - lib: stackdepot: turn depot_lock spinlock to raw_spinlock
    - net: stmmac: Do not enable RX FIFO overflow interrupts
    - NFS: Fix fscache invalidation in nfs_set_cache_invalid()
    - f2fs: fix to avoid NULL pointer dereference
    - svcrdma: Don't leak send_ctxt on Send errors
    - firmware: arm_scpi: Prevent the ternary sign expansion bug
    - openrisc: Fix a memory leak
    - tee: amdtee: unload TA only when its refcount becomes 0
    - RDMA/siw: Properly check send and receive CQ pointers
    - RDMA/siw: Release xarray entry
    - RDMA/core: Prevent divide-by-zero error triggered by the user
    - RDMA/rxe: Clear all QP fields if creation failed
    - scsi: ufs: core: Increase the usable queue depth
    - scsi: qedf: Add pointer checks in qedf_update_link_speed()
    - scsi: qla2xxx: Fix error return code in qla82xx_write_flash_dword()
    - RDMA/mlx5: Recover from fatal event in dual port mode
    - RDMA/core: Don't access cm_id after its destruction
    - nvmet: fix memory leak in nvmet_alloc_ctrl()
    - nvme-loop: fix memory leak in nvme_loop_create_ctrl()
    - nvme-tcp: rerun io_work if req_list is not empty
    - nvme-fc: clear q_live at beginning of association teardown
    - platform/mellanox: mlxbf-tmfifo: Fix a memory barrier issue
    - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using
      s2idle
    - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios
    - RDMA/mlx5: Fix query DCT via DEVX
    - RDMA/uverbs: Fix a NULL vs IS_ERR() bug
    - tools/testing/selftests/exec: fix link error
    - powerpc/pseries: Fix hcall tracing recursion in pv queued spinlocks
    - ptrace: make ptrace() fail if the tracee changed its pid unexpectedly
    - nvmet: seset ns->file when open fails
    - perf/x86: Avoid touching LBR_TOS MSR for Arch LBR
    - locking/lockdep: Correct calling tracepoints
    - locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal
    - powerpc: Fix early setup to make early_ioremap() work
    - btrfs: avoid RCU stalls while running delayed iputs
    - cifs: fix memory leak in smb2_copychunk_range
    - misc: eeprom: at24: check suspend status before disable regulator
    - ALSA: dice: fix stream format for TC Electronic Konnekt Live at high
      sampling transfer frequency
    - ALSA: intel8x0: Don't update period unless prepared
    - ALSA: firewire-lib: fix amdtp_packet tracepoints event for packet_index
      field
    - ALSA: line6: Fix racy initialization of LINE6 MIDI
    - ALSA: dice: fix stream format at middle sampling rate for Alesis iO 26
    - ALSA: firewire-lib: fix calculation for size of IR context payload
    - ALSA: usb-audio: Validate MS endpoint descriptors
    - ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro
    - ALSA: hda: fixup headset for ASUS GU502 laptop
    - Revert "ALSA: sb8: add a check for request_region"
    - ALSA: firewire-lib: fix check for the size of isochronous packet payload
    - ALSA: hda/realtek: Add some CLOVE SSIDs of ALC293
    - ALSA: hda/realtek: Fix silent headphone output on ASUS UX430UA
    - ALSA: hda/realtek: Add fixup for HP OMEN laptop
    - ALSA: hda/realtek: Add fixup for HP Spectre x360 15-df0xxx
    - uio_hv_generic: Fix a memory leak in error handling paths
    - Revert "rapidio: fix a NULL pointer dereference when create_workqueue()
      fails"
    - rapidio: handle create_workqueue() failure
    - Revert "serial: mvebu-uart: Fix to avoid a potential NULL pointer
      dereference"
    - nvme-tcp: fix possible use-after-completion
    - x86/sev-es: Move sev_es_put_ghcb() in prep for follow on patch
    - x86/sev-es: Invalidate the GHCB after completing VMGEXIT
    - x86/sev-es: Don't return NULL from sev_es_get_ghcb()
    - x86/sev-es: Use __put_user()/__get_user() for data accesses
    - x86/sev-es: Forward page-faults which happen during emulation
    - drm/amdgpu: Fix GPU TLB update error when PAGE_SIZE > AMDGPU_PAGE_SIZE
    - drm/amdgpu: disable 3DCGCG on picasso/raven1 to avoid compute hang
    - drm/amdgpu: update gc golden setting for Navi12
    - drm/amdgpu: update sdma golden setting for Navi12
    - powerpc/64s/syscall: Use pt_regs.trap to distinguish syscall ABI difference
      between sc and scv syscalls
    - powerpc/64s/syscall: Fix ptrace syscall info with scv syscalls
    - mmc: sdhci-pci-gli: increase 1.8V regulator wait
    - xen-pciback: redo VF placement in the virtual topology
    - xen-pciback: reconfigure also from backend watch handler
    - ipc/mqueue, msg, sem: avoid relying on a stack reference past its expiry
    - dm snapshot: fix crash with transient storage and zero chunk size
    - kcsan: Fix debugfs initcall return type
    - Revert "video: hgafb: fix potential NULL pointer dereference"
    - Revert "net: stmicro: fix a missing check of clk_prepare"
    - Revert "leds: lp5523: fix a missing check of return value of lp55xx_read"
    - Revert "hwmon: (lm80) fix a missing check of bus read in lm80 probe"
    - Revert "video: imsttfb: fix potential NULL pointer dereferences"
    - Revert "ecryptfs: replace BUG_ON with error handling code"
    - Revert "scsi: ufs: fix a missing check of devm_reset_control_get"
    - Revert "gdrom: fix a memory leak bug"
    - cdrom: gdrom: deallocate struct gdrom_unit fields in remove_gdrom
    - cdrom: gdrom: initialize global variable at init time
    - Revert "media: rcar_drif: fix a memory disclosure"
    - Revert "rtlwifi: fix a potential NULL pointer dereference"
    - Revert "qlcnic: Avoid potential NULL pointer dereference"
    - Revert "niu: fix missing checks of niu_pci_eeprom_read"
    - ethernet: sun: niu: fix missing checks of niu_pci_eeprom_read()
    - net: stmicro: handle clk_prepare() failure during init
    - scsi: ufs: handle cleanup correctly on devm_reset_control_get error
    - net: rtlwifi: properly check for alloc_workqueue() failure
    - ics932s401: fix broken handling of errors when word reading fails
    - leds: lp5523: check return value of lp5xx_read and jump to cleanup code
    - qlcnic: Add null check after calling netdev_alloc_skb
    - video: hgafb: fix potential NULL pointer dereference
    - vgacon: Record video mode changes with VT_RESIZEX
    - vt_ioctl: Revert VT_RESIZEX parameter handling removal
    - vt: Fix character height handling with VT_RESIZEX
    - tty: vt: always invoke vc->vc_sw->con_resize callback
    - drm/i915/gt: Disable HiZ Raw Stall Optimization on broken gen7
    - openrisc: mm/init.c: remove unused memblock_region variable in map_ram()
    - x86/Xen: swap NX determination and GDT setup on BSP
    - nvme-multipath: fix double initialization of ANA state
    - rtc: pcf85063: fallback to parent of_node
    - x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path
    - nvmet: use new ana_log_size instead the old one
    - video: hgafb: correctly handle card detect failure during probe
    - Bluetooth: SMP: Fail if remote and local public keys are identical
    - RDMA/rxe: Return CQE error if invalid lkey was supplied
    - ALSA: usb-audio: Configure Pioneer DJM-850 samplerate
    - ALSA: usb-audio: DJM-750: ensure format is set
    - uio/uio_pci_generic: fix return value changed in refactoring
    - uio_hv_generic: Fix another memory leak in error handling paths
    - drm/amd/display: Use the correct max downscaling value for DCN3.x family
    - gpio: tegra186: Don't set parent IRQ affinity
    - context_tracking: Move guest exit context tracking to separate helpers
    - context_tracking: Move guest exit vtime accounting to separate helpers
    - KVM: x86: Defer vtime accounting 'til after IRQ handling
    - NFC: nci: fix memory leak in nci_allocate_device
    - ALSA: hda/realtek: Headphone volume is controlled by Front mixer
    - ALSA: hda/realtek: Chain in pop reduction fixup for ThinkStation P340
    - ALSA: usb-audio: scarlett2: Fix device hang with ehci-pci
    - ALSA: usb-audio: scarlett2: Improve driver startup messages
    - cifs: set server->cipher_type to AES-128-CCM for SMB3.0
    - NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return()
    - iommu/vt-d: Fix sysfs leak in alloc_iommu()
    - perf intel-pt: Fix sample instruction bytes
    - perf intel-pt: Fix transaction abort handling
    - perf scripts python: exported-sql-viewer.py: Fix copy to clipboard from Top
      Calls by elapsed Time report
    - perf scripts python: exported-sql-viewer.py: Fix Array TypeError
    - perf scripts python: exported-sql-viewer.py: Fix warning display
    - proc: Check /proc/$pid/attr/ writes against file opener
    - net: hso: fix control-request directions
    - net/sched: fq_pie: re-factor fix for fq_pie endless loop
    - net/sched: fq_pie: fix OOB access in the traffic path
    - netfilter: nft_set_pipapo_avx2: Add irq_fpu_usable() check, fallback to non-
      AVX2 version
    - ath10k: Validate first subframe of A-MSDU before processing the list
    - dm snapshot: properly fix a crash when an origin has no snapshots
    - drm/amd/pm: correct MGpuFanBoost setting
    - drm/amdgpu/vcn1: add cancel_delayed_work_sync before power gate
    - drm/amdkfd: correct sienna_cichlid SDMA RLC register offset error
    - drm/amdgpu/vcn2.0: add cancel_delayed_work_sync before power gate
    - drm/amdgpu/vcn2.5: add cancel_delayed_work_sync before power gate
    - drm/amdgpu/jpeg2.0: add cancel_delayed_work_sync before power gate
    - kgdb: fix gcc-11 warnings harder
    - Documentation: seccomp: Fix user notification documentation
    - seccomp: Refactor notification handler to prepare for new semantics
    - serial: core: fix suspicious security_locked_down() call
    - misc/uss720: fix memory leak in uss720_probe
    - thunderbolt: usb4: Fix NVM read buffer bounds and offset issue
    - thunderbolt: dma_port: Fix NVM read buffer bounds and offset issue
    - KVM: X86: Fix vCPU preempted state from guest's point of view
    - KVM: arm64: Prevent mixed-width VM creation
    - mei: request autosuspend after sending rx flow control
    - staging: iio: cdc: ad7746: avoid overwrite of num_channels
    - iio: gyro: fxas21002c: balance runtime power in error path
    - iio: dac: ad5770r: Put fwnode in error case during ->probe()
    - iio: adc: ad7768-1: Fix too small buffer passed to
      iio_push_to_buffers_with_timestamp()
    - iio: adc: ad7124: Fix missbalanced regulator enable / disable on error.
    - iio: adc: ad7124: Fix potential overflow due to non sequential channel
      numbers
    - iio: adc: ad7923: Fix undersized rx buffer.
    - iio: adc: ad7793: Add missing error code in ad7793_setup()
    - iio: adc: ad7192: Avoid disabling a clock that was never enabled.
    - iio: adc: ad7192: handle regulator voltage error first
    - serial: 8250: Add UART_BUG_TXRACE workaround for Aspeed VUART
    - serial: 8250_dw: Add device HID for new AMD UART controller
    - serial: 8250_pci: Add support for new HPE serial device
    - serial: 8250_pci: handle FL_NOIRQ board flag
    - USB: trancevibrator: fix control-request direction
    - Revert "irqbypass: do not start cons/prod when failed connect"
    - USB: usbfs: Don't WARN about excessively large memory allocations
    - drivers: base: Fix device link removal
    - serial: tegra: Fix a mask operation that is always true
    - serial: sh-sci: Fix off-by-one error in FIFO threshold register setting
    - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait'
    - USB: serial: ti_usb_3410_5052: add startech.com device id
    - USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011
    - USB: serial: ftdi_sio: add IDs for IDS GmbH Products
    - USB: serial: pl2303: add device id for ADLINK ND-6530 GC
    - thermal/drivers/intel: Initialize RW trip to THERMAL_TEMP_INVALID
    - usb: dwc3: gadget: Properly track pending and queued SG
    - usb: gadget: udc: renesas_usb3: Fix a race in usb3_start_pipen()
    - usb: typec: mux: Fix matching with typec_altmode_desc
    - net: usb: fix memory leak in smsc75xx_bind
    - Bluetooth: cmtp: fix file refcount when cmtp_attach_device fails
    - fs/nfs: Use fatal_signal_pending instead of signal_pending
    - NFS: fix an incorrect limit in filelayout_decode_layout()
    - NFS: Fix an Oopsable condition in __nfs_pageio_add_request()
    - NFS: Don't corrupt the value of pg_bytes_written in nfs_do_recoalesce()
    - NFSv4: Fix v4.0/v4.1 SEEK_DATA return -ENOTSUPP when set NFS_V4_2 config
    - drm/meson: fix shutdown crash when component not probed
    - net/mlx5e: reset XPS on error flow if netdev isn't registered yet
    - net/mlx5e: Fix multipath lag activation
    - net/mlx5e: Fix error path of updating netdev queues
    - {net,vdpa}/mlx5: Configure interface MAC into mpfs L2 table
    - net/mlx5e: Fix nullptr in add_vlan_push_action()
    - net/mlx5: Set reformat action when needed for termination rules
    - net/mlx5e: Fix null deref accessing lag dev
    - net/mlx4: Fix EEPROM dump support
    - net/mlx5: Set term table as an unmanaged flow table
    - SUNRPC in case of backlog, hand free slots directly to waiting task
    - Revert "net:tipc: Fix a double free in tipc_sk_mcast_rcv"
    - tipc: wait and exit until all work queues are done
    - tipc: skb_linearize the head skb when reassembling msgs
    - spi: spi-fsl-dspi: Fix a resource leak in an error handling path
    - netfilter: flowtable: Remove redundant hw refresh bit
    - net: dsa: mt7530: fix VLAN traffic leaks
    - net: dsa: fix a crash if ->get_sset_count() fails
    - net: dsa: sja1105: update existing VLANs from the bridge VLAN list
    - net: dsa: sja1105: use 4095 as the private VLAN for untagged traffic
    - net: dsa: sja1105: error out on unsupported PHY mode
    - net: dsa: sja1105: add error handling in sja1105_setup()
    - net: dsa: sja1105: call dsa_unregister_switch when allocating memory fails
    - net: dsa: sja1105: fix VL lookup command packing for P/Q/R/S
    - i2c: s3c2410: fix possible NULL pointer deref on read message after write
    - i2c: mediatek: Disable i2c start_en and clear intr_stat brfore reset
    - i2c: i801: Don't generate an interrupt on bus reset
    - i2c: sh_mobile: Use new clock calculation formulas for RZ/G2E
    - afs: Fix the nlink handling of dir-over-dir rename
    - perf jevents: Fix getting maximum number of fds
    - nvmet-tcp: fix inline data size comparison in nvmet_tcp_queue_response
    - mptcp: avoid error message on infinite mapping
    - mptcp: drop unconditional pr_warn on bad opt
    - mptcp: fix data stream corruption
    - gpio: cadence: Add missing MODULE_DEVICE_TABLE
    - Revert "crypto: cavium/nitrox - add an error message to explain the failure
      of pci_request_mem_regions"
    - Revert "media: usb: gspca: add a missed check for goto_low_power"
    - Revert "ALSA: sb: fix a missing check of snd_ctl_add"
    - Revert "serial: max310x: pass return value of spi_register_driver"
    - serial: max310x: unregister uart driver in case of failure and abort
    - Revert "net: fujitsu: fix a potential NULL pointer dereference"
    - net: fujitsu: fix potential null-ptr-deref
    - Revert "net/smc: fix a NULL pointer dereference"
    - net/smc: properly handle workqueue allocation failure
    - Revert "net: caif: replace BUG_ON with recovery code"
    - net: caif: remove BUG_ON(dev == NULL) in caif_xmit
    - Revert "char: hpet: fix a missing check of ioremap"
    - char: hpet: add checks after calling ioremap
    - Revert "ALSA: gus: add a check of the status of snd_ctl_add"
    - Revert "ALSA: usx2y: Fix potential NULL pointer dereference"
    - Revert "isdn: mISDNinfineon: fix potential NULL pointer dereference"
    - isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io
    - Revert "ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd()"
    - ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd()
    - Revert "isdn: mISDN: Fix potential NULL pointer dereference of kzalloc"
    - isdn: mISDN: correctly handle ph_info allocation failure in hfcsusb_ph_info
    - Revert "dmaengine: qcom_hidma: Check for driver register failure"
    - dmaengine: qcom_hidma: comment platform_driver_register call
    - Revert "libertas: add checks for the return value of sysfs_create_group"
    - libertas: register sysfs groups properly
    - Revert "ASoC: cs43130: fix a NULL pointer dereference"
    - ASoC: cs43130: handle errors in cs43130_probe() properly
    - Revert "media: dvb: Add check on sp8870_readreg"
    - media: dvb: Add check on sp8870_readreg return
    - Revert "media: gspca: mt9m111: Check write_bridge for timeout"
    - media: gspca: mt9m111: Check write_bridge for timeout
    - Revert "media: gspca: Check the return value of write_bridge for timeout"
    - media: gspca: properly check for errors in po1030_probe()
    - Revert "net: liquidio: fix a NULL pointer dereference"
    - net: liquidio: Add missing null pointer checks
    - Revert "brcmfmac: add a check for the status of usb_register"
    - brcmfmac: properly check for bus register errors
    - btrfs: return whole extents in fiemap
    - scsi: ufs: ufs-mediatek: Fix power down spec violation
    - scsi: BusLogic: Fix 64-bit system enumeration error for Buslogic
    - openrisc: Define memory barrier mb
    - scsi: pm80xx: Fix drives missing during rmmod/insmod loop
    - btrfs: release path before starting transaction when cloning inline extent
    - btrfs: do not BUG_ON in link_to_fixup_dir
    - platform/x86: intel_punit_ipc: Append MODULE_DEVICE_TABLE for ACPI
    - platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700
      tablet
    - SMB3: incorrect file id in requests compounded with open
    - drm/amd/display: Disconnect non-DP with no EDID
    - drm/amd/amdgpu: fix refcount leak
    - drm/amdgpu: Fix a use-after-free
    - drm/amd/amdgpu: fix a potential deadlock in gpu reset
    - drm/amdgpu: stop touching sched.ready in the backend
    - platform/x86: touchscreen_dmi: Add info for the Chuwi Hi10 Pro (CWI529)
      tablet
    - block: fix a race between del_gendisk and BLKRRPART
    - net: netcp: Fix an error message
    - net: dsa: fix error code getting shifted with 4 in dsa_slave_get_sset_count
    - interconnect: qcom: bcm-voter: add a missing of_node_put()
    - interconnect: qcom: Add missing MODULE_DEVICE_TABLE
    - ASoC: cs42l42: Regmap must use_single_read/write
    - net: stmmac: Fix MAC WoL not working if PHY does not support WoL
    - net: ipa: memory region array is variable size
    - vfio-ccw: Check initialized flag in cp_init()
    - spi: Assume GPIO CS active high in ACPI case
    - net: really orphan skbs tied to closing sk
    - net: packetmmap: fix only tx timestamp on request
    - net: fec: fix the potential memory leak in fec_enet_init()
    - chelsio/chtls: unlock on error in chtls_pt_recvmsg()
    - net: mdio: thunder: Fix a double free issue in the .remove function
    - net: mdio: octeon: Fix some double free issues
    - cxgb4/ch_ktls: Clear resources when pf4 device is removed
    - openvswitch: meter: fix race when getting now_ms.
    - tls splice: check SPLICE_F_NONBLOCK instead of MSG_DONTWAIT
    - net: sched: fix packet stuck problem for lockless qdisc
    - net: sched: fix tx action rescheduling issue during deactivation
    - net: sched: fix tx action reschedule issue with stopped queue
    - net: hso: check for allocation failure in hso_create_bulk_serial_device()
    - net: bnx2: Fix error return code in bnx2_init_board()
    - bnxt_en: Include new P5 HV definition in VF check.
    - bnxt_en: Fix context memory setup for 64K page size.
    - mld: fix panic in mld_newpack()
    - net/smc: remove device from smcd_dev_list after failed device_add()
    - gve: Check TX QPL was actually assigned
    - gve: Update mgmt_msix_idx if num_ntfy changes
    - gve: Add NULL pointer checks when freeing irqs.
    - gve: Upgrade memory barrier in poll routine
    - gve: Correct SKB queue index validation.
    - iommu/virtio: Add missing MODULE_DEVICE_TABLE
    - net: hns3: fix incorrect resp_msg issue
    - net: hns3: put off calling register_netdev() until client initialize
      complete
    - iommu/vt-d: Use user privilege for RID2PASID translation
    - cxgb4: avoid accessing registers when clearing filters
    - staging: emxx_udc: fix loop in _nbu2ss_nuke()
    - ASoC: cs35l33: fix an error code in probe()
    - bpf, offload: Reorder offload callback 'prepare' in verifier
    - bpf: Set mac_len in bpf_skb_change_head
    - ixgbe: fix large MTU request from VF
    - ASoC: qcom: lpass-cpu: Use optional clk APIs
    - scsi: libsas: Use _safe() loop in sas_resume_port()
    - net: lantiq: fix memory corruption in RX ring
    - ipv6: record frag_max_size in atomic fragments in input path
    - ALSA: usb-audio: scarlett2: snd_scarlett_gen2_controls_create() can be
      static
    - net: ethernet: mtk_eth_soc: Fix packet statistics support for MT7628/88
    - sch_dsmark: fix a NULL deref in qdisc_reset()
    - net: hsr: fix mac_len checks
    - MIPS: alchemy: xxs1500: add gpio-au1000.h header file
    - MIPS: ralink: export rt_sysc_membase for rt2880_wdt.c
    - net: zero-initialize tc skb extension on allocation
    - net: mvpp2: add buffer header handling in RX
    - samples/bpf: Consider frame size in tx_only of xdpsock sample
    - net: hns3: check the return of skb_checksum_help()
    - bpftool: Add sock_release help info for cgroup attach/prog load command
    - SUNRPC: More fixes for backlog congestion
    - Revert "Revert "ALSA: usx2y: Fix potential NULL pointer dereference""
    - net: hso: bail out on interrupt URB allocation failure
    - neighbour: Prevent Race condition in neighbour subsytem
    - usb: core: reduce power-on-good delay time of root hub
    - ALSA: usb-audio: fix control-request direction
    - mtd: rawnand: cs553x: Fix external use of SW Hamming ECC helper
    - mtd: rawnand: txx9ndfmc: Fix external use of SW Hamming ECC helper
    - mtd: rawnand: sharpsl: Fix external use of SW Hamming ECC helper
    - mtd: rawnand: lpc32xx_slc: Fix external use of SW Hamming ECC helper
    - mtd: rawnand: ndfc: Fix external use of SW Hamming ECC helper
    - mtd: rawnand: tmio: Fix external use of SW Hamming ECC helper
    - mtd: rawnand: fsmc: Fix external use of SW Hamming ECC helper
    - scsi: target: core: Avoid smp_processor_id() in preemptible code
    - s390/dasd: add missing discipline function
    - debugfs: fix security_locked_down() call for SELinux
    - KVM: arm64: Move __adjust_pc out of line
    - KVM: arm64: Fix debug register indexing
    - usb: typec: ucsi: Clear pending after acking connector change
    - usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header
    - {net, RDMA}/mlx5: Fix override of log_max_qp by other device
    - KVM: X86: Fix warning caused by stale emulation context
    - KVM: X86: Use _BITUL() macro in UAPI headers
    - KVM: selftests: Fix 32-bit truncation of vm_get_max_gfn()
    - sctp: fix the proc_handler for sysctl encap_port
    - sctp: add the missing setting for asoc encap_port
    - perf debug: Move debug initialization earlier
    - ALSA: dice: disable double_pcm_frames mode for M-Audio Profire 610, 2626 and
      Avid M-Box 3 Pro
    - ptp: ocp: Fix a resource leak in an error handling path
    - iommu/amd: Clear DMA ops when switching domain
    - net: hns3: fix user's coalesce configuration lost issue
    - iommu/vt-d: Check for allocation failure in aux_detach_device()
  * Hirsute update: upstream stable patchset 2021-06-14 (LP: #1931896) // Race
    betwee
    - Revert "UBUNTU: SAUCE: Revert "can: isotp: add SF_BROADCAST support for
      functional addressing""
    - can: isotp: prevent race between isotp_bind() and isotp_setsockopt()
  * Bass speakers not enabled on Lenovo Yoga 9i (LP: #1926165) // Hirsute
    update: upstream stable patchset 2021-06-14 (LP: #1931896)
    - ALSA: hda/realtek: the bass speaker can't output sound on Yoga 9i
  * [82A1, Realtek ALC287, Speaker, Internal] Underruns, dropouts or crackling
    sound (LP: #1925057) // Hirsute update: upstream stable patchset 2021-06-14
    (LP: #1931896)
    - ALSA: hda/realtek: reset eapd coeff to default value for alc287
  * Hirsute update: upstream stable patchset 2021-06-14 (LP: #1931896) //
    "Front" ALSA volume control affects headphones on some machines
    (LP: #804178)
    - ALSA: hda: generic: change the DAC ctl name for LO+SPK or LO+HP

[ Ubuntu: 5.11.0-1015.17 ]

* hirsute/linux-gcp: 5.11.0-1015.17 -proposed tracker (LP: #1937030)
  * Google Confidential Compute fails to boot with shim version 1.47
    (LP: #1931254)
    - x86/ioremap: Map EFI-reserved memory as encrypted for SEV

[ Ubuntu: 5.11.0-1014.16 ]

* CVE-2021-33909
    - SAUCE: seq_file: Disallow extremely large seq buffer allocations

-- Stefan Bader <stefan.bader@canonical.com>  Tue, 03 Aug 2021 10:41:10 +0200

Changed in linux-gcp (Ubuntu):
status:	Fix Committed → Fix Released

Revision history for this message

Brian Murray (brian-murray) wrote on 2022-01-26:

#10

The Hirsute Hippo has reached End of Life, so this bug will not be fixed for that release.

Changed in linux (Ubuntu Hirsute):
status:	Fix Committed → Won't Fix

	Status	Importance	Assigned to
linux (Ubuntu)	Fix Released	Undecided	Khaled El Mously
Hirsute	Won't Fix	Undecided	Khaled El Mously
linux-gcp (Ubuntu)	Fix Released	Undecided	Unassigned
Hirsute	Fix Released	Undecided	Unassigned

Ubuntu
linux package

Google Confidential Compute fails to boot with shim version 1.47

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntulinux package

Google Confidential Compute fails to boot with shim version 1.47

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntu
linux package