linux: 4.4.0-111.134 -proposed tracker

Snap testing looks good: https://trello.com/c/qD4sObdo/181-pc-kernel-440-111134-100
+1 to promotion

Regression tests results for 4.4.0-110.133 didn't show any regression (tests not finished yet for 4.4.0-111.134).

As mentioned in #1742995, one patch is incomplete and doesn't expose the appropriate CPUID for KVM hosts when running on Intel hardware. 8339cae23d79be97a38df3852ef5dab870806a58 should add speculative control CPUID support for guests. The patch looks truncated as it defines KVM_CPUID_BIT_SPEC_CTRL but doesn't use it. I am using this patch instead: https://github.com/exoscale/pkg-kernel-4.4/blob/xenial/debian/patches/ibrs%2Bkvm/0002-kvm-x86-add-speculative-control-cpuid-support-for-guests.patch. The additional bits compared to the patch from SuSE (https://github.com/openSUSE/kernel-source/blob/SLE12-SP3/patches.suse/27-kvm-x86-add-speculative-control-cpuid-support-for-guests.patch) are needed because this is the first time a CPUID 7.0 feature is exposed on EDX.

4.4.0-111.134 - generic
Regression test CMPL.

Issue to note in amd64:
  ubuntu_kvm_unit_tests - 32 failed on amaura, 31 failed on michael, 30 failed on pepe
  xfstests - btrfs generic/166 timed out, bug 1731455

Issue to note in arm64:
  hwclock - issue for HP m400, bug 1716603
  ubuntu_kvm_smoke_test - uvtool issue, bug 1732338, bug 1729854
  ubuntu_kvm_unit_tests - pmu, gicv2-ipi, gicv2-active failed on starmie, pmu failed on ms10-34-mcdivittB0-kernel
  ubuntu_zfs_xfs_generic - failed with test 079, bug 1732370

Issue to note in i386:
  ubuntu_kvm_unit_tests - 15 failed on pepe (vmexit*, msr, syscall, tsc, taskswitch2, hyperv_clock)

Issue to note in ppc64le:
  ubuntu_ecryptfs - directory-concurrent.sh.ext3 failed
  ubuntu_kvm_smoke_test - uvtool issue, bug 1452016
  ubuntu_kvm_unit_tests - spapr_hcall failed (bug 1712803), sprs failed (bug 1723904), emulator failed (bug 1723914)
  xfstests - btrfs generic/027 timed out

Issue to note in s390x (Ubuntu on LPAR):
  aio_dio_bugs - event res -22, bug 1730895
  libhugetlbfs - 11 failed (Address is not hugepage, Heap not on hugepages, small_const/small_data is not hugepage), 7 killed by signal, 1 bad config
  scrashme - Test failed to build, bug 1689240
  ubuntu_ecryptfs - miscdev-bad-count.sh.xfs ~ namelen.sh failed (28 failed)
  ubuntu_kvm_smoke_test - uvtool issue, bug 1729854
  ubuntu_lxc - lxc-test-ubuntu failed (Failed to start networking in ubuntu-cloud container)

Issue to note in s390x (zKVM):
  aio_dio_bugs - event res -22, bug 1730895
  libhugetlbfs - 11 failed (Address is not hugepage, Heap not on hugepages, small_const/small_data is not hugepage), 7 killed by signal, 1 bad config
  scrashme - Test failed to build, bug 1689240
  ubuntu_ecryptfs - miscdev-bad-count.sh.xfs ~ namelen.sh failed (28 failed)
  ubuntu_kvm_smoke_test - uvtool issue, bug 1729854
  ubuntu_kvm_unit_tests - selftest-setup, intercept and emulator failed, bug 1726225
  ubuntu_lxc - lxc-test-ubuntu failed (Failed to start networking in ubuntu-cloud container)

Issue to note in s390x (zVM):
  aio_dio_bugs - event res -22, bug 1730895
  libhugetlbfs - Unknown error 524, bug 1729510
  scrashme - Test failed to build, bug 1689240
  ubuntu_ecryptfs - miscdev-bad-count.sh.xfs ~ namelen.sh failed (28 failed)
  ubuntu_kvm_smoke_test - uvtool issue, bug 1729854
  ubuntu_lttng_smoke_test - bug 1744270 , issue can be reproduced with the previous kernel, not a regression
  ubuntu_lxc - lxc-test-ubuntu failed (Failed to start networking in ubuntu-cloud container)

4.4.0-111.134 - lowlatency
Regression test CMPL.

Issue to note in amd64:
  monotonic_time - gtod failed on onibi
  ubuntu_kvm_unit_tests - 32 failed on amaura, 31 failed on michael, 30 failed on pepe
  xfstests - btrfs generic/166 timed out, bug 1731455

Issue to note in i386:
  monotonic_time - gtod failed on onibi
  ubuntu_kvm_unit_tests - 15 failed on pepe (vmexit*, msr, syscall, tsc, taskswitch2, hyperv_clock)

Note: we're not testing xfstests on i386 node

IBM test done regression testing on this "-proposed" builds and found no issues.

This bug was fixed in the package linux - 4.4.0-112.135

---------------
linux (4.4.0-112.135) xenial; urgency=low

  * linux: 4.4.0-112.135 -proposed tracker (LP: #1744244)

  * CVE-2017-5715 // CVE-2017-5753
    - x86/cpuid: Provide get_scattered_cpuid_leaf()
    - SAUCE: Fix spec_ctrl support in KVM
    - SAUCE: s390: improve cpu alternative handling for gmb and nobp
    - SAUCE: s390: print messages for gmb and nobp
    - [Config] KERNEL_NOBP=y

linux (4.4.0-111.134) xenial; urgency=low

  * linux: 4.4.0-111.134 -proposed tracker (LP: #1743362)

  * Do not duplicate changelog entries assigned to more than one bug or CVE
    (LP: #1743383)
    - [Packaging] git-ubuntu-log -- handle multiple bugs/cves better

  * CVE-2017-5715 // CVE-2017-5753
    - SAUCE: x86/microcode: Extend post microcode reload to support IBPB feature
      -- repair missmerge
    - Revert "x86/svm: Add code to clear registers on VM exit"
    - kvm: vmx: Scrub hardware GPRs at VM-exit

  * CVE-2017-5754
    - SAUCE: powerpc: use sync instead of hwsync mnemonic

linux (4.4.0-110.133) xenial; urgency=low

  * linux: 4.4.0-110.133 -proposed tracker (LP: #1742995)

  * CVE-2017-5753
    - x86/microcode/AMD: Add support for fam17h microcode loading
    - bpf: add bpf_patch_insn_single helper
    - bpf: prepare bpf_int_jit_compile/bpf_prog_select_runtime apis
    - bpf: add generic constant blinding for use in jits
    - locking/barriers: introduce new memory barrier gmb()
    - bpf: prevent speculative execution in eBPF interpreter
    - x86, bpf, jit: prevent speculative execution when JIT is enabled
    - uvcvideo: prevent speculative execution
    - carl9170: prevent speculative execution
    - qla2xxx: prevent speculative execution
    - Thermal/int340x: prevent speculative execution
    - userns: prevent speculative execution
    - ipv6: prevent speculative execution
    - fs: prevent speculative execution
    - net: mpls: prevent speculative execution
    - udf: prevent speculative execution
    - x86/feature: Enable the x86 feature to control Speculation
    - x86/feature: Report presence of IBPB and IBRS control
    - x86/enter: MACROS to set/clear IBRS and set IBPB
    - x86/enter: Use IBRS on syscall and interrupts
    - x86/idle: Disable IBRS entering idle and enable it on wakeup
    - x86/idle: Disable IBRS when offlining cpu and re-enable on wakeup
    - x86/mm: Set IBPB upon context switch
    - x86/mm: Only set IBPB when the new thread cannot ptrace current thread
    - x86/entry: Stuff RSB for entry to kernel for non-SMEP platform
    - x86/kvm: add MSR_IA32_SPEC_CTRL and MSR_IA32_PRED_CMD to kvm
    - x86/kvm: Set IBPB when switching VM
    - x86/kvm: Toggle IBRS on VM entry and exit
    - x86/kvm: Pad RSB on VM transition
    - x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
    - x86/spec_ctrl: Add lock to serialize changes to ibrs and ibpb control
    - x86/syscall: Clear unused extra registers on syscall entrance
    - x86/syscall: Clear unused extra registers on 32-bit compatible syscall
      entrance
    - x86/entry: Use retpoline for syscall's indirect calls
    - x86/cpu/amd, kvm: Satisfy guest kernel reads of IC_CFG MSR
    - x...