Bug #1949788 “focal/linux-azure-5.11: 5.11.0-1022.23~20.04.1 -pr...” : Bugs : Kernel SRU Workflow

Stefan Bader (smb) on 2021-11-04

tags:	added: kernel-release-tracking-bug-live
description:	updated
tags:	added: kernel-sru-cycle-2021.11.08-1
description:	updated
tags:	added: kernel-sru-backport-of-1949789
Changed in kernel-sru-workflow:
status:	New → Confirmed
importance:	Undecided → Medium

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-04

Changed in linux-azure-5.11 (Ubuntu Focal):
importance:	Undecided → Medium
Changed in kernel-sru-workflow:
status:	Confirmed → Triaged
description:	updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-04

Changed in kernel-sru-workflow:
status:	Triaged → In Progress

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-06

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-06

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-17

description:

updated

Philip Cox (philcox) on 2021-11-18

summary:

- focal/linux-azure-5.11: <version to be filled> -proposed tracker
+ focal/linux-azure-5.11: 5.11.0-1022.23~20.04.1 -proposed tracker

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-18

description:

updated

Stefan Bader (smb) on 2021-11-19

Changed in kernel-sru-workflow:
assignee:	nobody → Philip Cox (philcox)

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-19

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:

updated

Andy Whitcroft (apw) on 2021-11-20

tags:

added: kernel-signing-bot

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:	updated
description:	updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-20

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-21

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-21

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-23

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-25

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-26

tags:

added: kernel-jira-issue-ksru-329

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-26

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-26

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-29

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-29

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-29

description:

updated

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-11-29:

#1

Download full text (56.2 KiB)

This bug was fixed in the package linux-azure-5.11 - 5.11.0-1022.23~20.04.1

---------------
linux-azure-5.11 (5.11.0-1022.23~20.04.1) focal; urgency=medium

* focal/linux-azure-5.11: 5.11.0-1022.23~20.04.1 -proposed tracker
(LP: #1949788)

  * Packaging resync (LP: #1786013)
    - [Packaging] update Ubuntu.md
    - debian/dkms-versions -- update from kernel-versions (main/2021.11.08)

[ Ubuntu: 5.11.0-1022.23 ]

  * hirsute/linux-azure: 5.11.0-1022.23 -proposed tracker (LP: #1949789)
  * linux-azure: make mana.ko built-in (LP: #1949357)
    - [Config] CONFIG_MICROSOFT_MANA=y
    - [Config] remove mana from azure.modules
  * hirsute/linux-azure: Backport CIFS patches (LP: #1947027)
    - Revert "CIFS: Fix a potencially linear read overflow"
    - Revert "smb3: fix posix extensions mount option"
    - Revert "cifs: create sd context must be a multiple of 8"
    - Revert "smb3: rc uninitialized in one fallocate path"
    - Revert "cifs: add missing parsing of backupuid"
    - Revert "cifs: use helpers when parsing uid/gid mount options and validate
      them"
    - Revert "SMB3: fix readpage for large swap cache"
    - Revert "cifs: fix the out of range assignment to bit fields in
      parse_server_interfaces"
    - Revert "cifs: fix fallocate when trying to allocate a hole."
    - Revert "cifs: only write 64kb at a time when fallocating a small region of a
      file"
    - Revert "cifs: prevent NULL deref in cifs_compose_mount_options()"
    - Revert "cifs: Do not use the original cruid when following DFS links for
      multiuser mounts"
    - Revert "cifs: use the expiry output of dns_query to schedule next
      resolution"
    - Revert "cifs: handle reconnect of tcon when there is no cached dfs referral"
    - Revert "smb3: fix uninitialized value for port in witness protocol move"
    - Revert "cifs: fix check of dfs interlinks"
    - Revert "cifs: fix missing spinlock around update to ses->status"
    - Revert "cifs: improve fallocate emulation"
    - Revert "SMB3: incorrect file id in requests compounded with open"
    - Revert "cifs: set server->cipher_type to AES-128-CCM for SMB3.0"
    - Revert "cifs: fix memory leak in smb2_copychunk_range"
    - Revert "smb3: do not attempt multichannel to server which does not support
      it"
    - Revert "smb3: if max_channels set to more than one channel request
      multichannel"
    - Revert "smb3: when mounting with multichannel include it in requested
      capabilities"
    - Revert "smb2: fix use-after-free in smb2_ioctl_query_info()"
    - Revert "cifs: fix regression when mounting shares with prefix paths"
    - Revert "cifs: detect dead connections only when echoes are enabled."
    - Revert "cifs: fix leak in cifs_smb3_do_mount() ctx"
    - Revert "cifs: fix out-of-bound memory access when calling smb3_notify() at
      mount point"
    - Revert "cifs: Return correct error code from smb2_get_enc_key"
    - Revert "cifs: On cifs_reconnect, resolve the hostname again."
    - Revert "cifs: escape spaces in share names"
    - Revert "cifs: Silently ignore unknown oplock break handle"
    - Revert "cifs: revalidate mapping when we open files for SMB1 POSIX"
    - Revert "cifs:...

This bug was fixed in the package linux-azure-5.11 - 5.11.0-1022.23~20.04.1

---------------
linux-azure-5.11 (5.11.0-1022.23~20.04.1) focal; urgency=medium

* focal/linux-azure-5.11: 5.11.0-1022.23~20.04.1 -proposed tracker
    (LP: #1949788)

* Packaging resync (LP: #1786013)
    - [Packaging] update Ubuntu.md
    - debian/dkms-versions -- update from kernel-versions (main/2021.11.08)

[ Ubuntu: 5.11.0-1022.23 ]

* hirsute/linux-azure: 5.11.0-1022.23 -proposed tracker (LP: #1949789)
  * linux-azure: make mana.ko built-in (LP: #1949357)
    - [Config] CONFIG_MICROSOFT_MANA=y
    - [Config] remove mana from azure.modules
  * hirsute/linux-azure: Backport CIFS patches (LP: #1947027)
    - Revert "CIFS: Fix a potencially linear read overflow"
    - Revert "smb3: fix posix extensions mount option"
    - Revert "cifs: create sd context must be a multiple of 8"
    - Revert "smb3: rc uninitialized in one fallocate path"
    - Revert "cifs: add missing parsing of backupuid"
    - Revert "cifs: use helpers when parsing uid/gid mount options and validate
      them"
    - Revert "SMB3: fix readpage for large swap cache"
    - Revert "cifs: fix the out of range assignment to bit fields in
      parse_server_interfaces"
    - Revert "cifs: fix fallocate when trying to allocate a hole."
    - Revert "cifs: only write 64kb at a time when fallocating a small region of a
      file"
    - Revert "cifs: prevent NULL deref in cifs_compose_mount_options()"
    - Revert "cifs: Do not use the original cruid when following DFS links for
      multiuser mounts"
    - Revert "cifs: use the expiry output of dns_query to schedule next
      resolution"
    - Revert "cifs: handle reconnect of tcon when there is no cached dfs referral"
    - Revert "smb3: fix uninitialized value for port in witness protocol move"
    - Revert "cifs: fix check of dfs interlinks"
    - Revert "cifs: fix missing spinlock around update to ses->status"
    - Revert "cifs: improve fallocate emulation"
    - Revert "SMB3: incorrect file id in requests compounded with open"
    - Revert "cifs: set server->cipher_type to AES-128-CCM for SMB3.0"
    - Revert "cifs: fix memory leak in smb2_copychunk_range"
    - Revert "smb3: do not attempt multichannel to server which does not support
      it"
    - Revert "smb3: if max_channels set to more than one channel request
      multichannel"
    - Revert "smb3: when mounting with multichannel include it in requested
      capabilities"
    - Revert "smb2: fix use-after-free in smb2_ioctl_query_info()"
    - Revert "cifs: fix regression when mounting shares with prefix paths"
    - Revert "cifs: detect dead connections only when echoes are enabled."
    - Revert "cifs: fix leak in cifs_smb3_do_mount() ctx"
    - Revert "cifs: fix out-of-bound memory access when calling smb3_notify() at
      mount point"
    - Revert "cifs: Return correct error code from smb2_get_enc_key"
    - Revert "cifs: On cifs_reconnect, resolve the hostname again."
    - Revert "cifs: escape spaces in share names"
    - Revert "cifs: Silently ignore unknown oplock break handle"
    - Revert "cifs: revalidate mapping when we open files for SMB1 POSIX"
    - Revert "cifs: Adjust key sizes and key generation routines for AES256
      encryption"
    - Revert "smb3: fix cached file size problems in duplicate extents (reflink)"
    - Revert "cifs: change noisy error message to FYI"
    - Revert "cifs: ask for more credit on async read/write code paths"
    - Revert "cifs: Fix preauth hash corruption"
    - Revert "cifs: fix allocation size on newly created files"
    - Revert "cifs: warn and fail if trying to use rootfs without the config
      option"
    - Revert "cifs: do not send close in compound create+close requests"
    - Revert "cifs: return proper error code in statfs(2)"
    - Revert "cifs: fix credit accounting for extra channel"
    - Revert "cifs: fix handling of escaped ',' in the password mount argument"
    - Revert "cifs: fix nodfs mount option"
    - Revert "cifs: introduce helper for finding referral server to improve DFS
      target resolution"
    - Revert "cifs: check all path components in resolved dfs target"
    - Revert "cifs: fix DFS failover"
    - Revert "cifs: Fix inconsistent IS_ERR and PTR_ERR"
    - cifs_debug: use %pd instead of messing with ->d_name
    - smb3: negotiate current dialect (SMB3.1.1) when version 3 or greater
      requested
    - cifs: fix trivial typo
    - cifs: New optype for session operations.
    - cifs: Fix in error types returned for out-of-credit situations.
    - cifs: Identify a connection by a conn_id.
    - cifs: Reformat DebugData and index connections by conn_id.
    - cifs: Fix inconsistent IS_ERR and PTR_ERR
    - cifs: change confusing field serverName (to ip_addr)
    - cifs: clarify hostname vs ip address in /proc/fs/cifs/DebugData
    - cifs: Fix cifsacl ACE mask for group and others.
    - cifs: Retain old ACEs when converting between mode bits and ACL.
    - cifs: Change SIDs in ACEs while transferring file ownership.
    - cifs: cleanup a few le16 vs. le32 uses in cifsacl.c
    - TCON Reconnect during STATUS_NETWORK_NAME_DELETED
    - cifs: minor simplification to smb2_is_network_name_deleted
    - cifs: If a corrupted DACL is returned by the server, bail out.
    - cifs: Add new mount parameter "acdirmax" to allow caching directory metadata
    - cifs: convert revalidate of directories to using directory metadata cache
      timeout
    - cifs: Add new parameter "acregmax" for distinct file and directory metadata
      timeout
    - cifs: fix handling of escaped ',' in the password mount argument
    - cifs: fix nodfs mount option
    - cifs: fix DFS failover
    - cifs: check all path components in resolved dfs target
    - cifs: introduce helper for finding referral server to improve DFS target
      resolution
    - cifs: use discard iterator to discard unneeded network data more efficiently
    - cifs: update internal version number
    - cifs: fix credit accounting for extra channel
    - cifs: ask for more credit on async read/write code paths
    - cifs: print MIDs in decimal notation
    - cifs: change noisy error message to FYI
    - cifs: return proper error code in statfs(2)
    - cifs: do not send close in compound create+close requests
    - do_cifs_create(): don't set ->i_mode of something we had not created
    - cifs: have ->mkdir() handle race with another client sanely
    - cifs: update new ACE pointer after populate_new_aces.
    - cifs: Fix preauth hash corruption
    - fs/cifs/: fix misspellings using codespell tool
    - cifs: warn and fail if trying to use rootfs without the config option
    - cifs: fix allocation size on newly created files
    - cifs: Adjust key sizes and key generation routines for AES256 encryption
    - cifs: Fix chmod with modefromsid when an older ACE already exists.
    - cifs: revalidate mapping when we open files for SMB1 POSIX
    - cifs: Silently ignore unknown oplock break handle
    - smb3: fix cached file size problems in duplicate extents (reflink)
    - cifs: On cifs_reconnect, resolve the hostname again.
    - fs: cifs: Remove unnecessary struct declaration
    - cifs: escape spaces in share names
    - cifs: Fix spelling of 'security'
    - cifs: Remove useless variable
    - cifs: correct comments explaining internal semaphore usage in the module
    - smb3: update protocol header definitions based to include new flags
    - cifs: simplify SWN code with dummy funcs instead of ifdefs
    - fs: cifs: Remove repeated struct declaration
    - cifs: cifspdu.h: Replace one-element array with flexible-array member
    - cifs: remove old dead code
    - SMB3: update structures for new compression protocol definitions
    - cifs: don't cargo-cult strndup()
    - cifs: constify get_normalized_path() properly
    - cifs: constify path argument of ->make_node()
    - cifs: constify pathname arguments in a bunch of helpers
    - cifs: make build_path_from_dentry() return const char *
    - cifs: allocate buffer in the caller of build_path_from_dentry()
    - cifs: switch build_path_from_dentry() to using dentry_path_raw()
    - cifs: move the check for nohandlecache into open_shroot
    - cifs: pass a path to open_shroot and check if it is the root or not
    - cifs: rename the *_shroot* functions to *_cached_dir*
    - cifs: store a pointer to the root dentry in cifs_sb_info once we have
      completed mounting the share
    - cifs: Grab a reference for the dentry of the cached directory during the
      lifetime of the cache
    - cifs: add a function to get a cached dir based on its dentry
    - cifs: add a timestamp to track when the lease of the cached dir was taken
    - cifs: pass the dentry instead of the inode down to the revalidation check
      functions
    - cifs: check the timestamp for the cached dirent when deciding on revalidate
    - cifs: add support for FALLOC_FL_COLLAPSE_RANGE
    - cifs: add FALLOC_FL_INSERT_RANGE support
    - cifs: make fs_context error logging wrapper
    - cifs: add fs_context param to parsing helpers
    - cifs: log mount errors using cifs_errorf()
    - cifs: export supported mount options via new mount_params /proc file
    - smb2: fix use-after-free in smb2_ioctl_query_info()
    - cifs: fix out-of-bound memory access when calling smb3_notify() at mount
      point
    - cifs: Return correct error code from smb2_get_enc_key
    - cifs: remove unnecessary copies of tcon->crfid.fid
    - cifs: fix leak in cifs_smb3_do_mount() ctx
    - smb3: limit noisy error
    - smb3: add rasize mount parameter to improve readahead performance
    - cifs: update internal version number
    - smb3.1.1: enable negotiating stronger encryption by default
    - cifs: Deferred close for files
    - cifs: add shutdown support
    - smb3.1.1: allow dumping GCM256 keys to improve debugging of encrypted shares
    - smb3.1.1: allow dumping keys for multiuser mounts
    - cifs: detect dead connections only when echoes are enabled.
    - cifs: use echo_interval even when connection not ready.
    - cifs: fix regression when mounting shares with prefix paths
    - Cifs: Fix kernel oops caused by deferred close for files.
    - fs/cifs: Fix resource leak
    - smb3: when mounting with multichannel include it in requested capabilities
    - smb3: do not attempt multichannel to server which does not support it
    - smb3: if max_channels set to more than one channel request multichannel
    - cifs: remove deadstore in cifs_close_all_deferred_files()
    - SMB3: incorrect file id in requests compounded with open
    - cifs: fix memory leak in smb2_copychunk_range
    - cifs: Fix inconsistent indenting
    - Fix kernel oops when CONFIG_DEBUG_ATOMIC_SLEEP is enabled.
    - Defer close only when lease is enabled.
    - Fix KASAN identified use-after-free issue.
    - cifs: set server->cipher_type to AES-128-CCM for SMB3.0
    - cifs: fix string declarations and assignments in tracepoints
    - cifs: change format of CIFS_FULL_KEY_DUMP ioctl
    - cifs: fix ipv6 formating in cifs_ses_add_channel
    - cifs: remove duplicated prototype
    - cifs: Remove unused inline function is_sysvol_or_netlogon()
    - cifs: Constify static struct genl_ops
    - cifs: remove redundant initialization of variable rc
    - cifs: fix doc warnings in cifs_dfs_ref.c
    - cifs: improve fallocate emulation
    - cifs: do not send tree disconnect to ipc shares
    - cifs: get rid of @noreq param in __dfs_cache_find()
    - cifs: keep referral server sessions alive
    - cifs: handle different charsets in dfs cache
    - cifs: fix path comparison and hash calc
    - cifs: set a minimum of 2 minutes for refreshing dfs cache
    - cifs: do not share tcp servers with dfs mounts
    - cifs: missed ref-counting smb session in find
    - cifs: enable extended stats by default
    - cifs: avoid starvation when refreshing dfs cache
    - cifs: fix check of dfs interlinks
    - cifs: retry lookup and readdir when EAGAIN is returned.
    - cifs: avoid extra calls in posix_info_parse
    - cifs: convert list_for_each to entry variant in smb2misc.c
    - cifs: convert list_for_each to entry variant in cifs_debug.c
    - cifs: use SPDX-Licence-Identifier
    - cifs: fix unneeded null check
    - smb3: fix uninitialized value for port in witness protocol move
    - cifs: fix SMB1 error path in cifs_get_file_info_unix
    - smb311: remove dead code for non compounded posix query info
    - cifs: Avoid field over-reading memcpy()
    - smbdirect: missing rc checks while waiting for rdma events
    - cifs: fix NULL dereference in smb2_check_message()
    - SMB3: Add new info level for query directory
    - cifs: remove two cases where rc is set unnecessarily in sid_to_id
    - cifs: missing null check for newinode pointer
    - smb3: fix possible access to uninitialized pointer to DACL
    - cifs: missing null pointer check in cifs_mount
    - cifs: fix missing spinlock around update to ses->status
    - smb3: prevent races updating CurrentMid
    - cifs: make locking consistent around the server session status
    - cifs: clarify SMB1 code for UnixCreateHardLink
    - CIFS: Clarify SMB1 code for UnixCreateSymLink
    - CIFS: Clarify SMB1 code for UnixSetPathInfo
    - smb3: fix typo in header file
    - CIFS: Clarify SMB1 code for SetFileSize
    - CIFS: Clarify SMB1 code for delete
    - CIFS: Clarify SMB1 code for rename open file
    - CIFS: Clarify SMB1 code for POSIX Lock
    - cifs: use helpers when parsing uid/gid mount options and validate them
    - SMB3.1.1: Add support for negotiating signing algorithm
    - cifs: prevent NULL deref in cifs_compose_mount_options()
    - cifs: update internal version number
    - cifs: use the expiry output of dns_query to schedule next resolution
    - cifs: Do not use the original cruid when following DFS links for multiuser
      mounts
    - cifs: fix the out of range assignment to bit fields in
      parse_server_interfaces
    - cifs: handle reconnect of tcon when there is no cached dfs referral
    - cifs: fix missing null session check in mount
    - cifs: added WARN_ON for all the count decrements
    - SMB3.1.1: fix mount failure to some servers when compression enabled
    - cifs: do not share tcp sessions of dfs connections
    - cifs: only write 64kb at a time when fallocating a small region of a file
    - cifs: support share failover when remounting
    - CIFS: Clarify SMB1 code for POSIX Create
    - CIFS: Clarify SMB1 code for POSIX delete file
    - cifs: fix fallocate when trying to allocate a hole.
    - SMB3: fix readpage for large swap cache
    - smb3: rc uninitialized in one fallocate path
    - cifs: add missing parsing of backupuid
    - cifs: create sd context must be a multiple of 8
    - cifs: use the correct max-length for dentry_path_raw()
    - cifs: fix signed integer overflow when fl_end is OFFSET_MAX
    - cifs: Handle race conditions during rename
    - cifs: Call close synchronously during unlink/rename/lease break.
    - cifs: avoid signed integer overflow in calculating blocks
    - CIFS: Fix a potencially linear read overflow
    - smb3: fix posix extensions mount option
    - cifs: enable fscache usage even for files opened as rw
    - cifs: Do not leak EDEADLK to dgetents64 for STATUS_USER_SESSION_DELETED
    - cifs: update FSCTL definitions
    - cifs: properly invalidate cached root handle when closing it
    - cifs: remove pathname for file from SPDX header
    - cifs: fix incorrect kernel doc comments
    - cifs: Deferred close performance improvements
    - cifs: Fix soft lockup during fsstress
    - cifs: Not to defer close on file when lock is set
    - cifs: Deal with some warnings from W=1
    - cifs: Clear modified attribute bit from inode flags
    - smb3: correct smb3 ACL security descriptor
    - smb3: correct server pointer dereferencing check to be more consistent
  * hirsute/linux: 5.11.0-41.45 -proposed tracker (LP: #1949801)
  * Packaging resync (LP: #1786013)
    - [Packaging] update Ubuntu.md
    - debian/dkms-versions -- update from kernel-versions (main/2021.11.08)
  * aufs: kernel bug with apparmor and fuseblk (LP: #1948470)
    - SAUCE: aufs: bugfix, stop omitting path->mnt
  * ebpf:  bpf_redirect fails with ip6 gre interfaces (LP: #1947164)
    - net: handle ARPHRD_IP6GRE in dev_is_mac_header_xmit()
  * require CAP_NET_ADMIN to attach N_HCI ldisc (LP: #1949516)
    - Bluetooth: hci_ldisc: require CAP_NET_ADMIN to attach N_HCI ldisc
  * CVE-2021-3744 // CVE-2021-3764
    - crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()
  * ppc64 BPF JIT mod by 1 will not return 0 (LP: #1948351)
    - powerpc/bpf: Fix BPF_MOD when imm == 1
  * Fix Screen freeze after resume from suspend with iGPU [1002:6987]
    (LP: #1949050)
    - drm/amdgpu: reenable BACO support for 699F:C7 polaris12 SKU
    - drm/amdgpu: add missing cleanups for Polaris12 UVD/VCE on suspend
    - drm/amdgpu: Fix crash on device remove/driver unload
  * Intel I225-IT ethernet controller: igc: probe of 0000:02:00.0 failed with
    error -1 (LP: #1945576)
    - igc: Remove _I_PHY_ID checking
    - igc: Remove phy->type checking
  * Fail to detect audio output from external monitor (LP: #1948767)
    - ALSA: hda: intel: Allow repeatedly probing on codec configuration errors
  * Drop "UBUNTU: SAUCE: cachefiles: Page leaking in
    cachefiles_read_backing_file while vmscan is active" (LP: #1947709)
    - Revert "UBUNTU: SAUCE: cachefiles: Page leaking in
      cachefiles_read_backing_file while vmscan is active"
  * Hirsute update: upstream stable patchset 2021-11-03 (LP: #1949640)
    - mm: fix uninitialized use in overcommit_policy_handler
    - usb: gadget: r8a66597: fix a loop in set_feature()
    - usb: dwc2: gadget: Fix ISOC flow for BDMA and Slave
    - usb: dwc2: gadget: Fix ISOC transfer complete handling for DDMA
    - usb: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned()
    - cifs: fix incorrect check for null pointer in header_assemble
    - xen/x86: fix PV trap handling on secondary processors
    - usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c
    - USB: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter
    - USB: cdc-acm: fix minor-number release
    - Revert "USB: bcma: Add a check for devm_gpiod_get"
    - binder: make sure fd closes complete
    - staging: greybus: uart: fix tty use after free
    - Re-enable UAS for LaCie Rugged USB3-FW with fk quirk
    - usb: dwc3: core: balance phy init and exit
    - USB: serial: mos7840: remove duplicated 0xac24 device ID
    - USB: serial: option: add Telit LN920 compositions
    - USB: serial: option: remove duplicate USB device ID
    - USB: serial: option: add device id for Foxconn T99W265
    - mcb: fix error handling in mcb_alloc_bus()
    - erofs: fix up erofs_lookup tracepoint
    - btrfs: prevent __btrfs_dump_space_info() to underflow its free space
    - serial: 8250: 8250_omap: Fix RX_LVL register offset
    - serial: mvebu-uart: fix driver's tx_empty callback
    - scsi: sd_zbc: Ensure buffer size is aligned to SECTOR_SIZE
    - drm/amd/pm: Update intermediate power state for SI
    - net: hso: fix muxed tty registration
    - comedi: Fix memory leak in compat_insnlist()
    - afs: Fix incorrect triggering of sillyrename on 3rd-party invalidation
    - afs: Fix updating of i_blocks on file/dir extension
    - platform/x86/intel: punit_ipc: Drop wrong use of ACPI_PTR()
    - enetc: Fix illegal access when reading affinity_hint
    - enetc: Fix uninitialized struct dim_sample field usage
    - bnxt_en: Fix TX timeout when TX ring size is set to the smallest
    - net: hns3: fix change RSS 'hfunc' ineffective issue
    - net: hns3: check queue id range before using
    - net/smc: add missing error check in smc_clc_prfx_set()
    - net/smc: fix 'workqueue leaked lock' in smc_conn_abort_work
    - net: dsa: don't allocate the slave_mii_bus using devres
    - net: dsa: realtek: register the MDIO bus under devres
    - kselftest/arm64: signal: Add SVE to the set of features we can check for
    - kselftest/arm64: signal: Skip tests if required features are missing
    - s390/qeth: fix NULL deref in qeth_clear_working_pool_list()
    - gpio: uniphier: Fix void functions to remove return value
    - qed: rdma - don't wait for resources under hw error recovery flow
    - net/mlx4_en: Don't allow aRFS for encapsulated packets
    - atlantic: Fix issue in the pm resume flow.
    - scsi: iscsi: Adjust iface sysfs attr detection
    - scsi: target: Fix the pgr/alua_support_store functions
    - tty: synclink_gt, drop unneeded forward declarations
    - tty: synclink_gt: rename a conflicting function name
    - fpga: machxo2-spi: Return an error on failure
    - fpga: machxo2-spi: Fix missing error code in machxo2_write_complete()
    - nvme-tcp: fix incorrect h2cdata pdu offset accounting
    - treewide: Change list_sort to use const pointers
    - nvme: keep ctrl->namespaces ordered
    - thermal/core: Potential buffer overflow in thermal_build_list_of_policies()
    - cifs: fix a sign extension bug
    - scsi: qla2xxx: Restore initiator in dual mode
    - scsi: lpfc: Use correct scnprintf() limit
    - irqchip/goldfish-pic: Select GENERIC_IRQ_CHIP to fix build
    - irqchip/gic-v3-its: Fix potential VPE leak on error
    - md: fix a lock order reversal in md_alloc
    - x86/asm: Add a missing __iomem annotation in enqcmds()
    - x86/asm: Fix SETZ size enqcmds() build failure
    - io_uring: put provided buffer meta data under memcg accounting
    - blktrace: Fix uaf in blk_trace access after removing by sysfs
    - net: phylink: Update SFP selected interface on advertising changes
    - net: macb: fix use after free on rmmod
    - net: stmmac: allow CSR clock of 300MHz
    - blk-mq: avoid to iterate over stale request
    - m68k: Double cast io functions to unsigned long
    - ipv6: delay fib6_sernum increase in fib6_add
    - cpufreq: intel_pstate: Override parameters if HWP forced by BIOS
    - bpf: Add oversize check before call kvcalloc()
    - xen/balloon: use a kernel thread instead a workqueue
    - nvme-multipath: fix ANA state updates when a namespace is not present
    - nvme-rdma: destroy cm id before destroy qp to avoid use after free
    - sparc32: page align size in arch_dma_alloc
    - amd/display: downgrade validation failure log level
    - block: check if a profile is actually registered in blk_integrity_unregister
    - block: flush the integrity workqueue in blk_integrity_unregister
    - blk-cgroup: fix UAF by grabbing blkcg lock before destroying blkg pd
    - compiler.h: Introduce absolute_pointer macro
    - net: i825xx: Use absolute_pointer for memcpy from fixed memory location
    - sparc: avoid stringop-overread errors
    - qnx4: avoid stringop-overread errors
    - parisc: Use absolute_pointer() to define PAGE0
    - arm64: Mark __stack_chk_guard as __ro_after_init
    - alpha: Declare virt_to_phys and virt_to_bus parameter as pointer to volatile
    - net: 6pack: Fix tx timeout and slot time
    - spi: Fix tegra20 build with CONFIG_PM=n
    - EDAC/synopsys: Fix wrong value type assignment for edac_mode
    - EDAC/dmc520: Assign the proper type to dimm->edac_mode
    - thermal/drivers/int340x: Do not set a wrong tcc offset on resume
    - USB: serial: cp210x: fix dropped characters with CP2102
    - xen/balloon: fix balloon kthread freezing
    - qnx4: work around gcc false positive warning bug
    - misc: genwqe: Fixes DMA mask setting
    - KVM: rseq: Update rseq when processing NOTIFY_RESUME on xfer to KVM guest
    - platform/x86: amd-pmc: Increase the response register timeout
    - regulator: qcom-rpmh-regulator: fix pm8009-1 ldo7 resource name
    - regulator: max14577: Revert "regulator: max14577: Add proper module aliases
      strings"
    - net: dsa: tear down devlink port regions when tearing down the devlink port
      on error
    - net: hns3: fix inconsistent vf id print
    - net: hns3: check vlan id before using it
    - gpiolib: acpi: Make set-debounce-timeout failures non fatal
    - nexthop: Fix memory leaks in nexthop notification chain listeners
    - scsi: sd_zbc: Support disks with more than 2**32 logical blocks
    - drm/ttm: fix type mismatch error on sparc64
    - drm/amd/display: Fix unstable HPCP compliance on Chrome Barcelo
    - Revert drm/vc4 hdmi runtime PM changes
    - irqchip/armada-370-xp: Fix ack/eoi breakage
  * ACL updates on OCFS2 are not revalidated (LP: #1947161) // Hirsute update:
    upstream stable patchset 2021-11-03 (LP: #1949640)
    - ocfs2: drop acl cache for directories too
  * Hirsute update: upstream stable patchset 2021-11-01 (LP: #1949397)
    - PCI: pci-bridge-emul: Add PCIe Root Capabilities Register
    - PCI: aardvark: Fix reporting CRS value
    - console: consume APC, DM, DCS
    - ARM: Qualify enabling of swiotlb_init()
    - ARM: 9077/1: PLT: Move struct plt_entries definition to header
    - ARM: 9078/1: Add warn suppress parameter to arm_gen_branch_link()
    - ARM: 9079/1: ftrace: Add MODULE_PLTS support
    - ARM: 9098/1: ftrace: MODULE_PLT: Fix build problem without DYNAMIC_FTRACE
    - sctp: validate chunk size in __rcv_asconf_lookup
    - sctp: add param size validation for SCTP_PARAM_SET_PRIMARY
    - staging: rtl8192u: Fix bitwise vs logical operator in
      TranslateRxSignalStuff819xUsb()
    - coredump: fix memleak in dump_vma_snapshot()
    - um: virtio_uml: fix memory leak on init failures
    - dmaengine: acpi: Avoid comparison GSI with Linux vIRQ
    - perf test: Fix bpf test sample mismatch reporting
    - perf tools: Allow build-id with trailing zeros
    - thermal/drivers/exynos: Fix an error code in exynos_tmu_probe()
    - 9p/trans_virtio: Remove sysfs file on probe failure
    - prctl: allow to setup brk for et_dyn executables
    - nilfs2: use refcount_dec_and_lock() to fix potential UAF
    - profiling: fix shift-out-of-bounds bugs
    - PM: sleep: core: Avoid setting power.must_resume to false
    - pwm: lpc32xx: Don't modify HW state in .probe() after the PWM chip was
      registered
    - pwm: mxs: Don't modify HW state in .probe() after the PWM chip was
      registered
    - dmaengine: idxd: fix wq slot allocation index check
    - platform/chrome: sensorhub: Add trace events for sample
    - platform/chrome: cros_ec_trace: Fix format warnings
    - ceph: allow ceph_put_mds_session to take NULL or ERR_PTR
    - ceph: cancel delayed work instead of flushing on mdsc teardown
    - Kconfig.debug: drop selecting non-existing HARDLOCKUP_DETECTOR_ARCH
    - tools/bootconfig: Fix tracing_on option checking in ftrace2bconf.sh
    - thermal/core: Fix thermal_cooling_device_register() prototype
    - drm/amdgpu: Disable PCIE_DPM on Intel RKL Platform
    - drivers: base: cacheinfo: Get rid of DEFINE_SMP_CALL_CACHE_FUNCTION()
    - dma-buf: DMABUF_MOVE_NOTIFY should depend on DMA_SHARED_BUFFER
    - parisc: Move pci_dev_is_behind_card_dino to where it is used
    - iommu/amd: Relocate GAMSup check to early_enable_iommus
    - dmaengine: idxd: depends on !UML
    - dmaengine: sprd: Add missing MODULE_DEVICE_TABLE
    - dmaengine: ioat: depends on !UML
    - dmaengine: xilinx_dma: Set DMA mask for coherent APIs
    - ceph: request Fw caps before updating the mtime in ceph_write_iter
    - ceph: remove the capsnaps when removing caps
    - ceph: lockdep annotations for try_nonblocking_invalidate
    - btrfs: update the bdev time directly when closing
    - btrfs: fix lockdep warning while mounting sprout fs
    - nilfs2: fix memory leak in nilfs_sysfs_create_device_group
    - nilfs2: fix NULL pointer in nilfs_##name##_attr_release
    - nilfs2: fix memory leak in nilfs_sysfs_create_##name##_group
    - nilfs2: fix memory leak in nilfs_sysfs_delete_##name##_group
    - nilfs2: fix memory leak in nilfs_sysfs_create_snapshot_group
    - nilfs2: fix memory leak in nilfs_sysfs_delete_snapshot_group
    - habanalabs: add validity check for event ID received from F/W
    - pwm: img: Don't modify HW state in .remove() callback
    - pwm: rockchip: Don't modify HW state in .remove() callback
    - pwm: stm32-lp: Don't modify HW state in .remove() callback
    - blk-throttle: fix UAF by deleteing timer in blk_throtl_exit()
    - blk-mq: allow 4x BLK_MAX_REQUEST_COUNT at blk_plug for multiple_queues
    - rtc: rx8010: select REGMAP_I2C
    - sched/idle: Make the idle timer expire in hard interrupt context
    - drm/nouveau/nvkm: Replace -ENOSYS with -ENODEV
    - RDMA/mlx5: Fix xlt_chunk_align calculation
    - staging: rtl8723bs: fix wpa_set_auth_algs() function
    - dmaengine: idxd: have command status always set
    - dmaengine: idxd: clear block on fault flag when clear wq
    - arm64: mm: limit linear region to 51 bits for KVM in nVHE mode
    - s390: add kmemleak annotation in stack_alloc()
    - ceph: fix memory leak on decode error in ceph_handle_caps
    - btrfs: delay blkdev_put until after the device remove
    - thermal/drivers/rcar_gen3_thermal: Store TSC id as unsigned int
    - habanalabs: fix nullifying of destroyed mmu pgt pool
    - block: genhd: don't call blkdev_show() with major_names_lock held
    - io_uring: fix off-by-one in BUILD_BUG_ON check of __REQ_F_LAST_BIT
  * Hirsute update: upstream stable patchset 2021-10-26 (LP: #1948873)
    - drm/bridge: lt9611: Fix handling of 4k panels
    - xen: reset legacy rtc flag for PV domU
    - arm64/sve: Use correct size when reinitialising SVE state
    - PM: base: power: don't try to use non-existing RTC for storing data
    - PCI: Add AMD GPU multi-function power dependencies
    - drm/amd/amdgpu: Increase HWIP_MAX_INSTANCE to 10
    - drm/etnaviv: return context from etnaviv_iommu_context_get
    - drm/etnaviv: put submit prev MMU context when it exists
    - drm/etnaviv: stop abusing mmu_context as FE running marker
    - drm/etnaviv: keep MMU context across runtime suspend/resume
    - drm/etnaviv: exec and MMU state is lost when resetting the GPU
    - drm/etnaviv: fix MMU context leak on GPU reset
    - drm/etnaviv: reference MMU context when setting up hardware state
    - drm/etnaviv: add missing MMU context put when reaping MMU mapping
    - s390/sclp: fix Secure-IPL facility detection
    - x86/pat: Pass valid address to sanitize_phys()
    - x86/mm: Fix kern_addr_valid() to cope with existing but not present entries
    - tipc: fix an use-after-free issue in tipc_recvmsg
    - ethtool: Fix rxnfc copy to user buffer overflow
    - net/{mlx5|nfp|bnxt}: Remove unnecessary RTNL lock assert
    - net-caif: avoid user-triggerable WARN_ON(1)
    - ptp: dp83640: don't define PAGE0
    - net/l2tp: Fix reference count leak in l2tp_udp_recv_core
    - r6040: Restore MDIO clock frequency after MAC reset
    - tipc: increase timeout in tipc_sk_enqueue()
    - drm/rockchip: cdn-dp-core: Make cdn_dp_core_resume __maybe_unused
    - perf machine: Initialize srcline string member in add_location struct
    - net/mlx5: FWTrace, cancel work on alloc pd error flow
    - net/mlx5: Fix potential sleeping in atomic context
    - nvme-tcp: fix io_work priority inversion
    - events: Reuse value read using READ_ONCE instead of re-reading it
    - net: ipa: initialize all filter table slots
    - gen_compile_commands: fix missing 'sys' package
    - vhost_net: fix OoB on sendmsg() failure.
    - net/af_unix: fix a data-race in unix_dgram_poll
    - net: dsa: destroy the phylink instance on any error in dsa_slave_phy_setup
    - x86/uaccess: Fix 32-bit __get_user_asm_u64() when CC_HAS_ASM_GOTO_OUTPUT=y
    - tcp: fix tp->undo_retrans accounting in tcp_sacktag_one()
    - selftest: net: fix typo in altname test
    - qed: Handle management FW error
    - udp_tunnel: Fix udp_tunnel_nic work-queue type
    - dt-bindings: arm: Fix Toradex compatible typo
    - ibmvnic: check failover_pending in login response
    - KVM: PPC: Book3S HV: Tolerate treclaim. in fake-suspend mode changing
      registers
    - bnxt_en: make bnxt_free_skbs() safe to call after bnxt_free_mem()
    - net: hns3: pad the short tunnel frame before sending to hardware
    - net: hns3: change affinity_mask to numa node range
    - net: hns3: disable mac in flr process
    - net: hns3: fix the timing issue of VF clearing interrupt sources
    - dt-bindings: mtd: gpmc: Fix the ECC bytes vs. OOB bytes equation
    - mfd: db8500-prcmu: Adjust map to reality
    - PCI: Add ACS quirks for NXP LX2xx0 and LX2xx2 platforms
    - fuse: fix use after free in fuse_read_interrupt()
    - PCI: tegra194: Fix handling BME_CHGED event
    - PCI: tegra194: Fix MSI-X programming
    - PCI: tegra: Fix OF node reference leak
    - mfd: Don't use irq_create_mapping() to resolve a mapping
    - PCI: rcar: Fix runtime PM imbalance in rcar_pcie_ep_probe()
    - tracing/probes: Reject events which have the same name of existing one
    - PCI: cadence: Use bitfield for *quirk_retrain_flag* instead of bool
    - PCI: cadence: Add quirk flag to set minimum delay in LTSSM Detect.Quiet
      state
    - PCI: j721e: Add PCIe support for J7200
    - PCI: j721e: Add PCIe support for AM64
    - PCI: Add ACS quirks for Cavium multi-function devices
    - watchdog: Start watchdog in watchdog_set_last_hw_keepalive only if
      appropriate
    - octeontx2-af: Add additional register check to rvu_poll_reg()
    - Set fc_nlinfo in nh_create_ipv4, nh_create_ipv6
    - net: usb: cdc_mbim: avoid altsetting toggling for Telit LN920
    - PCI: ibmphp: Fix double unmap of io_mem
    - ethtool: Fix an error code in cxgb2.c
    - NTB: Fix an error code in ntb_msit_probe()
    - NTB: perf: Fix an error code in perf_setup_inbuf()
    - mfd: axp20x: Update AXP288 volatile ranges
    - backlight: ktd253: Stabilize backlight
    - PCI: of: Don't fail devm_pci_alloc_host_bridge() on missing 'ranges'
    - PCI: iproc: Fix BCMA probe resource handling
    - netfilter: Fix fall-through warnings for Clang
    - netfilter: nft_ct: protect nft_ct_pcpu_template_refcnt with mutex
    - KVM: arm64: Restrict IPA size to maximum 48 bits on 4K and 16K page size
    - PCI: Fix pci_dev_str_match_path() alloc while atomic bug
    - mfd: tqmx86: Clear GPIO IRQ resource when no IRQ is set
    - tracing/boot: Fix a hist trigger dependency for boot time tracing
    - mtd: mtdconcat: Judge callback existence based on the master
    - mtd: mtdconcat: Check _read, _write callbacks existence before assignment
    - KVM: arm64: Fix read-side race on updates to vcpu reset state
    - KVM: arm64: Handle PSCI resets before userspace touches vCPU state
    - PCI: Sync __pci_register_driver() stub for CONFIG_PCI=n
    - mtd: rawnand: cafe: Fix a resource leak in the error handling path of
      'cafe_nand_probe()'
    - ARC: export clear_user_page() for modules
    - perf unwind: Do not overwrite FEATURE_CHECK_LDFLAGS-libunwind-{x86,aarch64}
    - perf bench inject-buildid: Handle writen() errors
    - gpio: mpc8xxx: Fix a resources leak in the error handling path of
      'mpc8xxx_probe()'
    - gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid
      a leak
    - net: dsa: tag_rtl4_a: Fix egress tags
    - selftests: mptcp: clean tmp files in simult_flows
    - net: hso: add failure handler for add_net_device
    - net: dsa: b53: Fix calculating number of switch ports
    - net: dsa: b53: Set correct number of ports in the DSA struct
    - netfilter: socket: icmp6: fix use-after-scope
    - fq_codel: reject silly quantum parameters
    - qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom
    - ip_gre: validate csum_start only on pull
    - net: dsa: b53: Fix IMP port setup on BCM5301x
    - bnxt_en: fix stored FW_PSID version masks
    - bnxt_en: Fix asic.rev in devlink dev info command
    - bnxt_en: log firmware debug notifications
    - bnxt_en: Consolidate firmware reset event logging.
    - bnxt_en: Convert to use netif_level() helpers.
    - bnxt_en: Improve logging of error recovery settings information.
    - bnxt_en: Fix possible unintended driver initiated error recovery
    - mfd: lpc_sch: Partially revert "Add support for Intel Quark X1000"
    - mfd: lpc_sch: Rename GPIOBASE to prevent build error
    - net: renesas: sh_eth: Fix freeing wrong tx descriptor
    - x86/mce: Avoid infinite loop for copy from user recovery
    - bnxt_en: Fix error recovery regression
    - net: dsa: bcm_sf2: Fix array overrun in bcm_sf2_num_active_ports()
    - net: stmmac: fix MAC not working when system resume back with WoL active
    - drm/amd/display: Get backlight from PWM if DMCU is not initialized
    - drm/amd/display: dsc mst 2 4K displays go dark with 2 lane HBR3
    - net: qrtr: revert check in qrtr_endpoint_post()
    - drm/i915/dp: return proper DPRX link training result
    - powerpc/64s: system call rfscv workaround for TM bugs
    - riscv: fix the global name pfn_base confliction error
    - flow: fix object-size-mismatch warning in flowi{4,6}_to_flowi_common()
    - net: phylink: add suspend/resume support
    - PCI/PTM: Remove error message at boot
  * Hirsute update: upstream stable patchset 2021-10-19 (LP: #1947781)
    - rtc: tps65910: Correct driver module alias
    - io_uring: place fixed tables under memcg limits
    - io_uring: add ->splice_fd_in checks
    - io_uring: fail links of cancelled timeouts
    - io-wq: fix wakeup race when adding new work
    - btrfs: wake up async_delalloc_pages waiters after submit
    - btrfs: reset replace target device to allocation state on close
    - blk-zoned: allow zone management send operations without CAP_SYS_ADMIN
    - blk-zoned: allow BLKREPORTZONE without CAP_SYS_ADMIN
    - PCI/MSI: Skip masking MSI-X on Xen PV
    - powerpc/perf/hv-gpci: Fix counter value parsing
    - xen: fix setting of max_pfn in shared_info
    - 9p/xen: Fix end of loop tests for list_for_each_entry
    - ceph: fix dereference of null pointer cf
    - selftests/ftrace: Fix requirement check of README file
    - tools/thermal/tmon: Add cross compiling support
    - clk: socfpga: agilex: fix the parents of the psi_ref_clk
    - clk: socfpga: agilex: fix up s2f_user0_clk representation
    - clk: socfpga: agilex: add the bypass register for s2f_usr0 clock
    - pinctrl: stmfx: Fix hazardous u8[] to unsigned long cast
    - pinctrl: ingenic: Fix incorrect pull up/down info
    - soc: qcom: aoss: Fix the out of bound usage of cooling_devs
    - soc: aspeed: lpc-ctrl: Fix boundary check for mmap
    - soc: aspeed: p2a-ctrl: Fix boundary check for mmap
    - arm64: mm: Fix TLBI vs ASID rollover
    - arm64: head: avoid over-mapping in map_memory
    - iio: ltc2983: fix device probe
    - wcn36xx: Ensure finish scan is not requested before start scan
    - crypto: public_key: fix overflow during implicit conversion
    - block: bfq: fix bfq_set_next_ioprio_data()
    - power: supply: max17042: handle fails of reading status register
    - dm crypt: Avoid percpu_counter spinlock contention in crypt_page_alloc()
    - crypto: ccp - shutdown SEV firmware on kexec
    - VMCI: fix NULL pointer dereference when unmapping queue pair
    - media: uvc: don't do DMA on stack
    - media: rc-loopback: return number of emitters rather than error
    - s390/qdio: fix roll-back after timeout on ESTABLISH ccw
    - s390/qdio: cancel the ESTABLISH ccw after timeout
    - Revert "dmaengine: imx-sdma: refine to load context only once"
    - dmaengine: imx-sdma: remove duplicated sdma_load_context
    - libata: add ATA_HORKAGE_NO_NCQ_TRIM for Samsung 860 and 870 SSDs
    - ARM: 9105/1: atags_to_fdt: don't warn about stack size
    - f2fs: fix to do sanity check for sb/cp fields correctly
    - PCI/portdrv: Enable Bandwidth Notification only if port supports it
    - PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported
    - PCI: Return ~0 data on pciconfig_read() CAP_SYS_ADMIN failure
    - PCI: xilinx-nwl: Enable the clock through CCF
    - PCI: aardvark: Configure PCIe resources from 'ranges' DT property
    - PCI: Export pci_pio_to_address() for module use
    - PCI: aardvark: Fix checking for PIO status
    - PCI: aardvark: Fix masking and unmasking legacy INTx interrupts
    - HID: input: do not report stylus battery state as "full"
    - f2fs: quota: fix potential deadlock
    - pinctrl: remove empty lines in pinctrl subsystem
    - pinctrl: armada-37xx: Correct PWM pins definitions
    - scsi: bsg: Remove support for SCSI_IOCTL_SEND_COMMAND
    - clk: rockchip: drop GRF dependency for rk3328/rk3036 pll types
    - IB/hfi1: Adjust pkey entry in index 0
    - RDMA/iwcm: Release resources if iw_cm module initialization fails
    - docs: Fix infiniband uverbs minor number
    - scsi: BusLogic: Use %X for u32 sized integer rather than %lX
    - pinctrl: samsung: Fix pinctrl bank pin count
    - vfio: Use config not menuconfig for VFIO_NOIOMMU
    - scsi: ufs: Fix memory corruption by ufshcd_read_desc_param()
    - cpuidle: pseries: Fixup CEDE0 latency only for POWER10 onwards
    - powerpc/stacktrace: Include linux/delay.h
    - RDMA/efa: Remove double QP type assignment
    - RDMA/mlx5: Delete not-available udata check
    - cpuidle: pseries: Mark pseries_idle_proble() as __init
    - f2fs: reduce the scope of setting fsck tag when de->name_len is zero
    - openrisc: don't printk() unconditionally
    - dma-debug: fix debugfs initialization order
    - NFSv4/pNFS: Fix a layoutget livelock loop
    - NFSv4/pNFS: Always allow update of a zero valued layout barrier
    - NFSv4/pnfs: The layout barrier indicate a minimal value for the seqid
    - SUNRPC: Fix potential memory corruption
    - SUNRPC/xprtrdma: Fix reconnection locking
    - SUNRPC query transport's source port
    - sunrpc: Fix return value of get_srcport()
    - scsi: fdomain: Fix error return code in fdomain_probe()
    - pinctrl: single: Fix error return code in pcs_parse_bits_in_pinctrl_entry()
    - powerpc/numa: Consider the max NUMA node for migratable LPAR
    - scsi: smartpqi: Fix an error code in pqi_get_raid_map()
    - scsi: qedi: Fix error codes in qedi_alloc_global_queues()
    - scsi: qedf: Fix error codes in qedf_alloc_global_queues()
    - powerpc/config: Renable MTD_PHYSMAP_OF
    - iommu/vt-d: Update the virtual command related registers
    - HID: i2c-hid: Fix Elan touchpad regression
    - clk: imx8m: fix clock tree update of TF-A managed clocks
    - KVM: PPC: Book3S HV: Fix copy_tofrom_guest routines
    - scsi: ufs: ufs-exynos: Fix static checker warning
    - KVM: PPC: Book3S HV Nested: Reflect guest PMU in-use to L0 when guest SPRs
      are live
    - platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from
      run_smbios_call
    - powerpc/smp: Update cpu_core_map on all PowerPc systems
    - RDMA/hns: Fix QP's resp incomplete assignment
    - fscache: Fix cookie key hashing
    - clk: at91: clk-generated: Limit the requested rate to our range
    - KVM: PPC: Fix clearing never mapped TCEs in realmode
    - soc: mediatek: cmdq: add address shift in jump
    - f2fs: fix to account missing .skipped_gc_rwsem
    - f2fs: fix unexpected ENOENT comes from f2fs_map_blocks()
    - f2fs: fix to unmap pages from userspace process in punch_hole()
    - f2fs: deallocate compressed pages when error happens
    - f2fs: should put a page beyond EOF when preparing a write
    - MIPS: Malta: fix alignment of the devicetree buffer
    - kbuild: Fix 'no symbols' warning when CONFIG_TRIM_UNUSD_KSYMS=y
    - userfaultfd: prevent concurrent API initialization
    - drm/vc4: hdmi: Set HD_CTL_WHOLSMP and HD_CTL_CHALIGN_SET
    - drm/amdgpu: Fix amdgpu_ras_eeprom_init()
    - ASoC: atmel: ATMEL drivers don't need HAS_DMA
    - media: dib8000: rewrite the init prbs logic
    - libbpf: Fix reuse of pinned map on older kernel
    - x86/hyperv: fix for unwanted manipulation of sched_clock when TSC marked
      unstable
    - crypto: mxs-dcp - Use sg_mapping_iter to copy data
    - PCI: Use pci_update_current_state() in pci_enable_device_flags()
    - tipc: keep the skb in rcv queue until the whole data is read
    - net: phy: Fix data type in DP83822 dp8382x_disable_wol()
    - iio: dac: ad5624r: Fix incorrect handling of an optional regulator.
    - iavf: do not override the adapter state in the watchdog task
    - iavf: fix locking of critical sections
    - ARM: dts: qcom: apq8064: correct clock names
    - video: fbdev: kyro: fix a DoS bug by restricting user input
    - netlink: Deal with ESRCH error in nlmsg_notify()
    - Smack: Fix wrong semantics in smk_access_entry()
    - drm: avoid blocking in drm_clients_info's rcu section
    - drm: serialize drm_file.master with a new spinlock
    - drm: protect drm_master pointers in drm_lease.c
    - rcu: Fix macro name CONFIG_TASKS_RCU_TRACE
    - igc: Check if num of q_vectors is smaller than max before array access
    - usb: host: fotg210: fix the endpoint's transactional opportunities
      calculation
    - usb: host: fotg210: fix the actual_length of an iso packet
    - usb: gadget: u_ether: fix a potential null pointer dereference
    - USB: EHCI: ehci-mv: improve error handling in mv_ehci_enable()
    - usb: gadget: composite: Allow bMaxPower=0 if self-powered
    - staging: board: Fix uninitialized spinlock when attaching genpd
    - tty: serial: jsm: hold port lock when reporting modem line changes
    - bus: fsl-mc: fix mmio base address for child DPRCs
    - selftests: firmware: Fix ignored return val of asprintf() warn
    - drm/amd/display: Fix timer_per_pixel unit error
    - media: hantro: vp8: Move noisy WARN_ON to vpu_debug
    - media: platform: stm32: unprepare clocks at handling errors in probe
    - media: atomisp: Fix runtime PM imbalance in atomisp_pci_probe
    - media: atomisp: pci: fix error return code in atomisp_pci_probe()
    - nfp: fix return statement in nfp_net_parse_meta()
    - ethtool: improve compat ioctl handling
    - drm/amdgpu: Fix a printing message
    - drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex
    - bpf/tests: Fix copy-and-paste error in double word test
    - bpf/tests: Do not PASS tests without actually testing the result
    - drm/bridge: nwl-dsi: Avoid potential multiplication overflow on 32-bit
    - arm64: dts: allwinner: h6: tanix-tx6: Fix regulator node names
    - video: fbdev: asiliantfb: Error out if 'pixclock' equals zero
    - video: fbdev: kyro: Error out if 'pixclock' equals zero
    - video: fbdev: riva: Error out if 'pixclock' equals zero
    - ipv4: ip_output.c: Fix out-of-bounds warning in ip_copy_addrs()
    - flow_dissector: Fix out-of-bounds warnings
    - s390/jump_label: print real address in a case of a jump label bug
    - s390: make PCI mio support a machine flag
    - serial: 8250: Define RX trigger levels for OxSemi 950 devices
    - xtensa: ISS: don't panic in rs_init
    - hvsi: don't panic on tty_register_driver failure
    - serial: 8250_pci: make setup_port() parameters explicitly unsigned
    - staging: ks7010: Fix the initialization of the 'sleep_status' structure
    - samples: bpf: Fix tracex7 error raised on the missing argument
    - libbpf: Fix race when pinning maps in parallel
    - ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init()
    - Bluetooth: skip invalid hci_sync_conn_complete_evt
    - workqueue: Fix possible memory leaks in wq_numa_init()
    - ARM: dts: stm32: Set {bitclock,frame}-master phandles on DHCOM SoM
    - ARM: dts: stm32: Set {bitclock,frame}-master phandles on ST DKx
    - ARM: dts: stm32: Update AV96 adv7513 node per dtbs_check
    - bonding: 3ad: fix the concurrency between __bond_release_one() and
      bond_3ad_state_machine_handler()
    - ARM: dts: at91: use the right property for shutdown controller
    - arm64: tegra: Fix Tegra194 PCIe EP compatible string
    - ASoC: Intel: bytcr_rt5640: Move "Platform Clock" routes to the maps for the
      matching in-/output
    - ASoC: Intel: update sof_pcm512x quirks
    - media: imx258: Rectify mismatch of VTS value
    - media: imx258: Limit the max analogue gain to 480
    - media: v4l2-dv-timings.c: fix wrong condition in two for-loops
    - media: TDA1997x: fix tda1997x_query_dv_timings() return value
    - media: tegra-cec: Handle errors of clk_prepare_enable()
    - gfs2: Fix glock recursion in freeze_go_xmote_bh
    - arm64: dts: qcom: sdm630: Rewrite memory map
    - arm64: dts: qcom: sdm630: Fix TLMM node and pinctrl configuration
    - serial: 8250_omap: Handle optional overrun-throttle-ms property
    - ARM: dts: imx53-ppd: Fix ACHC entry
    - arm64: dts: qcom: ipq8074: fix pci node reg property
    - arm64: dts: qcom: sdm660: use reg value for memory node
    - arm64: dts: qcom: ipq6018: drop '0x' from unit address
    - arm64: dts: qcom: sdm630: don't use underscore in node name
    - arm64: dts: qcom: msm8994: don't use underscore in node name
    - arm64: dts: qcom: msm8996: don't use underscore in node name
    - arm64: dts: qcom: sm8250: Fix epss_l3 unit address
    - nvmem: qfprom: Fix up qfprom_disable_fuse_blowing() ordering
    - net: ethernet: stmmac: Do not use unreachable() in ipq806x_gmac_probe()
    - drm/msm: mdp4: drop vblank get/put from prepare/complete_commit
    - drm/msm/dsi: Fix DSI and DSI PHY regulator config from SDM660
    - drm: xlnx: zynqmp_dpsub: Call pm_runtime_get_sync before setting pixel clock
    - drm: xlnx: zynqmp: release reset to DP controller before accessing DP
      registers
    - thunderbolt: Fix port linking by checking all adapters
    - drm/amd/display: fix missing writeback disablement if plane is removed
    - drm/amd/display: fix incorrect CM/TF programming sequence in dwb
    - selftests/bpf: Fix xdp_tx.c prog section name
    - drm/vmwgfx: fix potential UAF in vmwgfx_surface.c
    - Bluetooth: schedule SCO timeouts with delayed_work
    - Bluetooth: avoid circular locks in sco_sock_connect
    - drm/msm/dp: return correct edid checksum after corrupted edid checksum read
    - net/mlx5: Fix variable type to match 64bit
    - gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable
      access in amdgpu_i2c_router_select_ddc_port()
    - drm/display: fix possible null-pointer dereference in dcn10_set_clock()
    - mac80211: Fix monitor MTU limit so that A-MSDUs get through
    - ARM: tegra: acer-a500: Remove bogus USB VBUS regulators
    - ARM: tegra: tamonten: Fix UART pad setting
    - arm64: tegra: Fix compatible string for Tegra132 CPUs
    - arm64: dts: ls1046a: fix eeprom entries
    - nvme-tcp: don't check blk_mq_tag_to_rq when receiving pdu data
    - nvme: code command_id with a genctr for use-after-free validation
    - Bluetooth: Fix handling of LE Enhanced Connection Complete
    - opp: Don't print an error if required-opps is missing
    - serial: sh-sci: fix break handling for sysrq
    - iomap: pass writeback errors to the mapping
    - tcp: enable data-less, empty-cookie SYN with TFO_SERVER_COOKIE_NOT_REQD
    - rpc: fix gss_svc_init cleanup on failure
    - selftests/bpf: Fix flaky send_signal test
    - hwmon: (pmbus/ibm-cffps) Fix write bits for LED control
    - staging: rts5208: Fix get_ms_information() heap buffer size
    - net: Fix offloading indirect devices dependency on qdisc order creation
    - kselftest/arm64: mte: Fix misleading output when skipping tests
    - kselftest/arm64: pac: Fix skipping of tests on systems without PAC
    - gfs2: Don't call dlm after protocol is unmounted
    - usb: chipidea: host: fix port index underflow and UBSAN complains
    - lockd: lockd server-side shouldn't set fl_ops
    - drm/exynos: Always initialize mapping in exynos_drm_register_dma()
    - rtl8xxxu: Fix the handling of TX A-MPDU aggregation
    - rtw88: use read_poll_timeout instead of fixed sleep
    - rtw88: wow: build wow function only if CONFIG_PM is on
    - rtw88: wow: fix size access error of probe request
    - octeontx2-pf: Fix NIX1_RX interface backpressure
    - m68knommu: only set CONFIG_ISA_DMA_API for ColdFire sub-arch
    - btrfs: tree-log: check btrfs_lookup_data_extent return value
    - soundwire: intel: fix potential race condition during power down
    - ASoC: Intel: Skylake: Fix module configuration for KPB and MIXER
    - ASoC: Intel: Skylake: Fix passing loadable flag for module
    - of: Don't allow __of_attached_node_sysfs() without CONFIG_SYSFS
    - mmc: sdhci-of-arasan: Modified SD default speed to 19MHz for ZynqMP
    - mmc: sdhci-of-arasan: Check return value of non-void funtions
    - mmc: rtsx_pci: Fix long reads when clock is prescaled
    - selftests/bpf: Enlarge select() timeout for test_maps
    - mmc: core: Return correct emmc response in case of ioctl error
    - cifs: fix wrong release in sess_alloc_buffer() failed path
    - Revert "USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST
      quirk set"
    - usb: musb: musb_dsps: request_irq() after initializing musb
    - usbip: give back URBs for unsent unlink requests during cleanup
    - usbip:vhci_hcd USB port can get stuck in the disabled state
    - ASoC: rockchip: i2s: Fix regmap_ops hang
    - ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B
    - drm/amdkfd: Account for SH/SE count when setting up cu masks.
    - nfsd: fix crash on LOCKT on reexported NFSv3
    - iwlwifi: pcie: free RBs during configure
    - iwlwifi: mvm: fix a memory leak in iwl_mvm_mac_ctxt_beacon_changed
    - iwlwifi: mvm: avoid static queue number aliasing
    - iwlwifi: mvm: fix access to BSS elements
    - iwlwifi: fw: correctly limit to monitor dump
    - iwlwifi: mvm: Fix scan channel flags settings
    - net/mlx5: DR, fix a potential use-after-free bug
    - net/mlx5: DR, Enable QP retransmission
    - parport: remove non-zero check on count
    - selftests/bpf: Fix potential unreleased lock
    - wcn36xx: Fix missing frame timestamp for beacon/probe-resp
    - ath9k: fix OOB read ar9300_eeprom_restore_internal
    - ath9k: fix sleeping in atomic context
    - net: fix NULL pointer reference in cipso_v4_doi_free
    - fix array-index-out-of-bounds in taprio_change
    - net: w5100: check return value after calling platform_get_resource()
    - net: hns3: clean up a type mismatch warning
    - parisc: fix crash with signals and alloca
    - ovl: fix BUG_ON() in may_delete() when called from ovl_cleanup()
    - scsi: BusLogic: Fix missing pr_cont() use
    - scsi: qla2xxx: Changes to support kdump kernel
    - scsi: qla2xxx: Sync queue idx with queue_pair_map idx
    - cpufreq: powernv: Fix init_chip_info initialization in numa=off
    - s390/pv: fix the forcing of the swiotlb
    - hugetlb: fix hugetlb cgroup refcounting during vma split
    - mm/hmm: bypass devmap pte when all pfn requested flags are fulfilled
    - mm/hugetlb: initialize hugetlb_usage in mm_init
    - mm,vmscan: fix divide by zero in get_scan_count
    - memcg: enable accounting for pids in nested pid namespaces
    - libnvdimm/pmem: Fix crash triggered when I/O in-flight during unbind
    - platform/chrome: cros_ec_proto: Send command again when timeout occurs
    - lib/test_stackinit: Fix static initializer test
    - net: dsa: lantiq_gswip: fix maximum frame length
    - drm/mgag200: Select clock in PLL update functions
    - drm/msi/mdp4: populate priv->kms in mdp4_kms_init
    - drm/dp_mst: Fix return code on sideband message failure
    - drm/panfrost: Make sure MMU context lifetime is not bound to panfrost_priv
    - drm/amdgpu: Fix BUG_ON assert
    - drm/amd/display: Update number of DCN3 clock states
    - drm/amd/display: Update bounding box states (v2)
    - drm/panfrost: Simplify lock_region calculation
    - drm/panfrost: Use u64 for size in lock_region
    - drm/panfrost: Clamp lock region to Bifrost minimum
    - fanotify: limit number of event merge attempts
    - btrfs: wait on async extents when flushing delalloc
    - btrfs: fix upper limit for max_inline for page size 64K
    - spi: fsi: Reduce max transfer size to 8 bytes
    - nvmem: core: fix error handling while validating keepout regions
    - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response
    - f2fs: fix wrong checkpoint_changed value in f2fs_remount()
    - HID: amd_sfh: Fix period data field to enable sensor
    - powerpc/perf: Fix the check for SIAR value
    - drm/vmwgfx: Fix subresource updates with new contexts
    - drm/vmwgfx/vmwgfx_cmdbuf_res: Remove unused variable 'ret'
    - drm/vmwgfx: Fix some static checker warnings
    - drm/omap: Follow implicit fencing in prepare_fb
    - ASoC: ti: davinci-mcasp: Fix DIT mode support
    - staging: hisilicon,hi6421-spmi-pmic.yaml: fix patternProperties
    - net: ipa: fix ipa_cmd_table_valid()
    - staging: rtl8723bs: fix right side of condition
    - drm/msm/dp: reduce link rate if failed at link training 1
    - drm/msm/dp: do not end dp link training until video is ready
    - selftests/bpf: Correctly display subtest skip status
    - btrfs: remove racy and unnecessary inode transaction update when using no-
      holes
    - nfs: don't atempt blocking locks on nfs reexports
    - iwlwifi: mvm: Do not use full SSIDs in 6GHz scan
    - iwlwifi: mvm: Fix umac scan request probe parameters
    - mtd: rawnand: intel: Fix error handling in probe
    - mm/memory_hotplug: use "unsigned long" for PFN in zone_for_pfn_range()
    - drm/amdgpu: Fix a deadlock if previous GEM object allocation fails
    - drm/amd/display: setup system context for APUs

-- Philip Cox <philip.cox@canonical.com>  Thu, 18 Nov 2021 14:41:07 -0500

Changed in linux-azure-5.11 (Ubuntu Focal):
status:	New → Fix Released

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-29

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-29

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-29

description:

updated

Ubuntu Kernel Bot (ubuntu-kernel-bot) on 2021-11-29

description:

updated

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2021-11-29: Workflow done!

#2

All tasks have been completed and the bug is being set to Fix Released

Changed in kernel-sru-workflow:
status:	In Progress → Fix Released
tags:	removed: kernel-release-tracking-bug-live

Kernel SRU Workflow

focal/linux-azure-5.11: 5.11.0-1022.23~20.04.1 -proposed tracker

Bug Description

CVE References

Other bug subscribers

Remote bug watches

	Status	Importance	Assigned to
Kernel SRU Workflow	Fix Released	Medium	Philip Cox
Automated-testing	Fix Released	Medium	Canonical Kernel Team
Boot-testing	Fix Released	Medium	Unassigned
Certification-testing	Invalid	Medium	Unassigned
Prepare-package	Fix Released	Medium	Philip Cox
Prepare-package-lrg	Fix Released	Medium	Philip Cox
Prepare-package-lrm	Fix Released	Medium	Philip Cox
Prepare-package-lrs	Fix Released	Medium	Philip Cox
Prepare-package-meta	Fix Released	Medium	Philip Cox
Prepare-package-signed	Fix Released	Medium	Philip Cox
Promote-signing-to-proposed	Invalid	Medium	Unassigned
Promote-to-proposed	Fix Released	Medium	Andy Whitcroft
Promote-to-security	Fix Released	Medium	Andy Whitcroft
Promote-to-updates	Fix Released	Medium	Andy Whitcroft
Regression-testing	Fix Released	Medium	Canonical Kernel Team
Security-signoff	Fix Released	Medium	Canonical Security Team
Sru-review	Fix Released	Medium	Andy Whitcroft
Stakeholder-signoff	Fix Released	Medium	linux-azure stakeholder signoff
Verification-testing	Fix Released	Medium	Canonical Kernel Team
linux-azure-5.11 (Ubuntu)
Focal	Fix Released	Medium	Unassigned