Enable arm64 nitro enclaves

Tested by AWS using kernels from https://launchpad.net/~timg-tpi/+archive/ubuntu/aws-nitro-enclave-lp1951873

This bug is awaiting verification that the linux-aws/5.4.0-1064.67 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-focal' to 'verification-done-focal'. If the problem still exists, change the tag 'verification-needed-focal' to 'verification-failed-focal'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

This bug is awaiting verification that the linux-aws/5.11.0-1028.31 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-hirsute' to 'verification-done-hirsute'. If the problem still exists, change the tag 'verification-needed-hirsute' to 'verification-failed-hirsute'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

This bug is awaiting verification that the linux-aws/5.13.0-1012.13 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-impish' to 'verification-done-impish'. If the problem still exists, change the tag 'verification-needed-impish' to 'verification-failed-impish'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

This bug was fixed in the package linux-aws - 5.4.0-1064.67

---------------
linux-aws (5.4.0-1064.67) focal; urgency=medium

  * focal/linux-aws: 5.4.0-1064.67 -proposed tracker (LP: #1955214)

  * Enable arm64 nitro enclaves (LP: #1951873)
    - nitro_enclaves: Fixup type and simplify logic of the poll mask setup
    - nitro_enclaves: Fix stale file descriptors on failed usercopy
    - nitro_enclaves: Set Bus Master for the NE PCI device
    - nitro_enclaves: Enable Arm64 support
    - nitro_enclaves: Update documentation for Arm64 support
    - nitro_enclaves: Add fix for the kernel-doc report
    - nitro_enclaves: Update copyright statement to include 2021
    - nitro_enclaves: Add fixes for checkpatch match open parenthesis reports
    - nitro_enclaves: Add fixes for checkpatch spell check reports
    - nitro_enclaves: Add fixes for checkpatch blank line reports

  [ Ubuntu: 5.4.0-97.110 ]

  * icmp_redirect from selftests fails on F/kvm (unary operator expected)
    (LP: #1938964)
    - selftests: icmp_redirect: pass xfail=0 to log_test()
  * Focal: CIFS stable updates (LP: #1954926)
    - cifs: use the expiry output of dns_query to schedule next resolution
    - cifs: set a minimum of 120s for next dns resolution
    - cifs: To match file servers, make sure the server hostname matches
  * seccomp_bpf in seccomp from ubuntu_kernel_selftests failed to build on B-5.4
    (LP: #1896420)
    - SAUCE: selftests/seccomp: fix "storage size of 'md' isn't known" build issue
    - SAUCE: selftests/seccomp: Fix s390x regs not defined issue
  * system crash when removing ipmi_msghandler module (LP: #1950666)
    - ipmi: Move remove_work to dedicated workqueue
    - ipmi: msghandler: Make symbol 'remove_work_wq' static
  * zcrypt DD: Toleration for new IBM Z Crypto Hardware - (Backport to Ubuntu
    20.04) (LP: #1954680)
    - s390/AP: support new dynamic AP bus size limit
  * [UBUNTU 20.04] KVM hardware diagnose data improvements for guest kernel -
    kernel part (LP: #1953334)
    - s390/setup: diag 318: refactor struct
    - s390/kvm: diagnose 0x318 sync and reset
    - KVM: s390: remove diag318 reset code
    - KVM: s390: add debug statement for diag 318 CPNC data
  * Updates to ib_peer_memory requested by Nvidia (LP: #1947206)
    - SAUCE: RDMA/core: Updated ib_peer_memory
  * Include Infiniband Peer Memory interface (LP: #1923104)
    - IB: Allow calls to ib_umem_get from kernel ULPs
    - SAUCE: RDMA/core: Introduce peer memory interface
  * Focal update: v5.4.162 upstream stable release (LP: #1954834)
    - arm64: zynqmp: Do not duplicate flash partition label property
    - arm64: zynqmp: Fix serial compatible string
    - ARM: dts: NSP: Fix mpcore, mmc node names
    - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq()
    - arm64: dts: hisilicon: fix arm,sp805 compatible string
    - RDMA/bnxt_re: Check if the vlan is valid before reporting
    - usb: musb: tusb6010: check return value after calling
      platform_get_resource()
    - usb: typec: tipd: Remove WARN_ON in tps6598x_block_read
    - arm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency
    - arm64: dts: freescale: fix arm,sp805 compatible string
    -...

This bug was fixed in the package linux-aws - 5.13.0-1012.13

---------------
linux-aws (5.13.0-1012.13) impish; urgency=medium

  * impish/linux-aws: 5.13.0-1012.13 -proposed tracker (LP: #1955187)

  * [SRU][Ubuntu 21.10][Broadcom] mpi3mr driver submission request
    (LP: #1933359)
    - [Config] aws: updateconfigs for CONFIG_SCSI_MPI3MR

  * Enable arm64 nitro enclaves (LP: #1951873)
    - nitro_enclaves: Set Bus Master for the NE PCI device
    - [Config] aws: Update annotations for CONFIG_NITRO_ENCLAVES
    - nitro_enclaves: Enable Arm64 support
    - nitro_enclaves: Update documentation for Arm64 support
    - nitro_enclaves: Add fix for the kernel-doc report
    - nitro_enclaves: Update copyright statement to include 2021
    - nitro_enclaves: Add fixes for checkpatch match open parenthesis reports
    - nitro_enclaves: Add fixes for checkpatch spell check reports
    - nitro_enclaves: Add fixes for checkpatch blank line reports

  [ Ubuntu: 5.13.0-28.31 ]

  * amd_sfh: Null pointer dereference on early device init causes early panic
    and fails to boot (LP: #1956519)
    - HID: amd_sfh: Fix potential NULL pointer dereference
  * impish: ddebs build take too long and times out (LP: #1957810)
    - [Packaging] enforce xz compression for ddebs
  * audio mute/ mic mute are not working on a HP machine (LP: #1955691)
    - ALSA: hda/realtek: fix mute/micmute LEDs for a HP ProBook
  * rtw88_8821ce causes freeze (LP: #1927808)
    - rtw88: Disable PCIe ASPM while doing NAPI poll on 8821CE
  * alsa/sdw: fix the audio sdw codec parsing logic in the acpi table
    (LP: #1955686)
    - ALSA: hda: intel-sdw-acpi: harden detection of controller
    - ALSA: hda: intel-sdw-acpi: go through HDAS ACPI at max depth of 2
  * icmp_redirect from selftests fails on F/kvm (unary operator expected)
    (LP: #1938964)
    - selftests: icmp_redirect: pass xfail=0 to log_test()
  * Impish update: upstream stable patchset 2021-12-17 (LP: #1955180)
    - arm64: zynqmp: Do not duplicate flash partition label property
    - arm64: zynqmp: Fix serial compatible string
    - ARM: dts: sunxi: Fix OPPs node name
    - arm64: dts: allwinner: h5: Fix GPU thermal zone node name
    - arm64: dts: allwinner: a100: Fix thermal zone node name
    - staging: wfx: ensure IRQ is ready before enabling it
    - ARM: dts: NSP: Fix mpcore, mmc node names
    - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq()
    - arm64: dts: rockchip: Disable CDN DP on Pinebook Pro
    - arm64: dts: hisilicon: fix arm,sp805 compatible string
    - RDMA/bnxt_re: Check if the vlan is valid before reporting
    - bus: ti-sysc: Add quirk handling for reinit on context lost
    - bus: ti-sysc: Use context lost quirk for otg
    - usb: musb: tusb6010: check return value after calling
      platform_get_resource()
    - usb: typec: tipd: Remove WARN_ON in tps6598x_block_read
    - ARM: dts: ux500: Skomer regulator fixes
    - staging: rtl8723bs: remove possible deadlock when disconnect (v2)
    - ARM: BCM53016: Specify switch ports for Meraki MR32
    - arm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency
    - arm64: dts: qcom: ipq6018: Fix qcom,controlled-remotely property
...

This bug was fixed in the package linux-aws - 5.15.0-1002.4

---------------
linux-aws (5.15.0-1002.4) jammy; urgency=medium

  * jammy/linux-aws: 5.15.0-1002.4 -proposed tracker (LP: #1960330)

  * Miscellaneous Ubuntu changes
    - [Config] aws: toolchain version update
    - [Config] aws: CONFIG_SYSFB_SIMPLEFB=y

  [ Ubuntu: 5.15.0-22.22 ]

  * jammy/linux: 5.15.0-22.22 -proposed tracker (LP: #1960290)

  [ Ubuntu: 5.15.0-21.21 ]

  * jammy/linux: 5.15.0-21.21 -proposed tracker (LP: #1960211)
  * Miscellaneous Ubuntu changes
    - [packaging] unhook lowlatency flavours from the build

  [ Ubuntu: 5.15.0-20.20 ]

  * jammy/linux: 5.15.0-20.20 -proposed tracker (LP: #1959881)
  * Jammy update: v5.15.19 upstream stable release (LP: #1959879)
    - can: m_can: m_can_fifo_{read,write}: don't read or write from/to FIFO if
      length is 0
    - net: sfp: ignore disabled SFP node
    - net: stmmac: configure PTP clock source prior to PTP initialization
    - net: stmmac: skip only stmmac_ptp_register when resume from suspend
    - ARM: 9179/1: uaccess: avoid alignment faults in
      copy_[from|to]_kernel_nofault
    - ARM: 9180/1: Thumb2: align ALT_UP() sections in modules sufficiently
    - KVM: arm64: Use shadow SPSR_EL1 when injecting exceptions on !VHE
    - s390/hypfs: include z/VM guests with access control group set
    - s390/nmi: handle guarded storage validity failures for KVM guests
    - s390/nmi: handle vector validity failures for KVM guests
    - bpf: Guard against accessing NULL pt_regs in bpf_get_task_stack()
    - powerpc32/bpf: Fix codegen for bpf-to-bpf calls
    - powerpc/bpf: Update ldimm64 instructions during extra pass
    - scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP
      devices
    - udf: Restore i_lenAlloc when inode expansion fails
    - udf: Fix NULL ptr deref when converting from inline format
    - efi: runtime: avoid EFIv2 runtime services on Apple x86 machines
    - PM: wakeup: simplify the output logic of pm_show_wakelocks()
    - tracing/histogram: Fix a potential memory leak for kstrdup()
    - tracing: Don't inc err_log entry count if entry allocation fails
    - ceph: properly put ceph_string reference after async create attempt
    - ceph: set pool_ns in new inode layout for async creates
    - fsnotify: fix fsnotify hooks in pseudo filesystems
    - Revert "KVM: SVM: avoid infinite loop on NPF from bad address"
    - psi: Fix uaf issue when psi trigger is destroyed while being polled
    - powerpc/audit: Fix syscall_get_arch()
    - perf/x86/intel/uncore: Fix CAS_COUNT_WRITE issue for ICX
    - perf/x86/intel: Add a quirk for the calculation of the number of counters on
      Alder Lake
    - drm/etnaviv: relax submit size limits
    - drm/atomic: Add the crtc to affected crtc only if uapi.enable = true
    - drm/amd/display: Fix FP start/end for dcn30_internal_validate_bw.
    - KVM: LAPIC: Also cancel preemption timer during SET_LAPIC
    - KVM: SVM: Never reject emulation due to SMAP errata for !SEV guests
    - KVM: SVM: Don't intercept #GP for SEV guests
    - KVM: x86: nSVM: skip eax alignment check for non-SVM instructions
    - KVM: x86: Forcibly leave nested virt when ...