Bug #1873809 “Make linux-kvm bootable in LXD VMs” : Focal (20.04) : Bugs : linux-kvm package : Ubuntu

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-04-20:

#1

Ff we can't easily track down & fix the source of this issue, an alternative is to modify the streams to strip the kvm-img hash from the LXD metadata record, forcing all our users onto the non-kvm image. Do note that this comes with its own issues though.

Those non-kvm images attempt to boot without an initrd, which fails under LXD due to missing virtio drivers. The kernel then panics and reboots back into grub, this time booting with an initrd.

On top of the added boot time and CPU load this causes, it also means that the VMs never boot properly on first boot. This breaks LXD's cloud-init support, so those VMs will never get their cloud-init data.

Revision history for this message

Robert C Jennings (rcj) wrote on 2020-04-20:

#2

I'm seeing this on boot...

BdsDxe: failed to load Boot0001 "UEFI QEMU DVD-ROM QM00003 " from PciRoot(0x0)/Pci(0x1,0x1)/Ata(Secondary,Master,0x0): Not Found
BdsDxe: loading Boot0002 "UEFI Misc Device" from PciRoot(0x0)/Pci(0x4,0x0)
BdsDxe: starting Boot0002 "UEFI Misc Device" from PciRoot(0x0)/Pci(0x4,0x0)
error: kernel doesn't support EFI handover.
error: you need to load the kernel first.

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-04-20:

#3

Yeah, I think that's when you're lucky and the firmware doesn't explode on you instead.

Revision history for this message

Louis Bouchard (louis) wrote on 2020-04-20:

#4

FWIW, I can confirm that the issue is also present on QEMU on Bionic hosts.

This was working correctly with the following image version :

ubuntu@focal:/etc$ cat /etc/cloud/build.info
build_name: server
serial: 20200223

Revision history for this message

Colin Ian King (colin-king) wrote on 2020-04-20:

#5

I could only boot when using a minimum of 2GB of memory, for some reason 1GB was not enough. Also, when using 2GB.

Secondly I get the error:

error: kernel doesn't support EFI handover
error: you need to load the kernel firs.

Press any key to continue...

and then one returns back to grub.

Revision history for this message

Colin Ian King (colin-king) wrote on 2020-04-20:

#6

Can't boot the 20200414.1 image either.

Revision history for this message

Colin Ian King (colin-king) wrote on 2020-04-20:

#7

I mounted the boot partition and looked at the kernel config and it is missing CONFIG_EFI_STUB which I believe is required to make the kernel bootable.

Revision history for this message

Robert C Jennings (rcj) wrote on 2020-04-20:

#8

@colin-king, Can we get that config option added for this kernel?

Revision history for this message

Colin Ian King (colin-king) wrote on 2020-04-20:

#9

config-5.4.0-1008-kvm.xz Edit (17.8 KiB, application/octet-stream)

Attached is the kvm 5.4 kernel config with the missing EFI stub config

Revision history for this message

Colin Ian King (colin-king) wrote on 2020-04-20:

#10

So I just tested the same focal kernel with:

git diff
diff --git a/debian.kvm/config/config.common.ubuntu b/debian.kvm/config/config.common.ubuntu
index b69d54e43965..1d4ac88b9db2 100644
--- a/debian.kvm/config/config.common.ubuntu
+++ b/debian.kvm/config/config.common.ubuntu
@@ -695,7 +695,7 @@ CONFIG_EFI_PARTITION=y
# CONFIG_EFI_RCI2_TABLE is not set
# CONFIG_EFI_RUNTIME_MAP is not set
CONFIG_EFI_RUNTIME_WRAPPERS=y
-# CONFIG_EFI_STUB is not set
+CONFIG_EFI_STUB=y
# CONFIG_EFI_TEST is not set
CONFIG_EFI_VARS=y
CONFIG_EFS_FS=m

and co-erced it onto the same image and was able to boot it successfully using:

qemu-system-x86_64 -bios /usr/share/ovmf/OVMF.fd -hda focal-server-cloudimg-amd64-disk-kvm.img -m 1G -nographic

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-04-20:

#11

Ok, so the fact that we thought this worked is clearly the result from bad testing on our part, probably because of our simplestreams parsing code we fixed yesterday...

We obviously still need to move LXD onto this images as booting the non-kvm images takes twice as long as it should (due to them panic + reboot every time) AND also breaks cloud-init, at least in the way we'd like to use it.

Now realistically this can't be fixed in time for 20.04, so what we've done is submitted a change to simplestreams to force all LXD users onto the non-kvm image:
https://code.launchpad.net/~stgraber/simplestreams/+git/simplestreams/+merge/382597

We'll also tell all users of `ubuntu:` and `ubuntu-daily:` that they need to do:
- lxc config device add NAME config disk source=cloud-init:config

Which passes a stable config drive to cloud-init, avoiding the cloud-init issue they'd be getting out of the box.

Moving forward, we'd like the -kvm kernel to be both EFI enabled AND signed. This will then allow those images to work properly inside LXD, at which point we can undo the simplestreams change and have those images used once again by our users.

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-04-20:

#12

I've tested a kernel with CONFIG_EFI_STUB added (thanks cking!).

This does boot with secureboot enabled, though the LXD agent fails to start due to lack of vsock.

So in addition to CONFIG_EFI_STUB, it looks like we also need:
- CONFIG_VSOCKETS
- CONFIG_VIRTIO_VSOCKETS
- CONFIG_VIRTIO_VSOCKETS_COMMON

Which should give us the bits needed for virtio vsock.

The rest all looked good, so we should be fine with those tweaks and the kernel getting signed.

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-04-20:

#13

Marking cloud-images side of this as Invalid since the images themselves are built correctly.
Re-packing with an updated kernel boots just fine, so we only need to track this against linux-kvm.

Changed in cloud-images:
status:	New → Invalid
summary:	- disk-kvm.img aren't UEFI bootable + Make linux-kvm bootable in LXD VMs

Stéphane Graber (stgraber) on 2020-04-20

description:

updated

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-04-20:

#14

Test build with the vsock options:

https://people.canonical.com/~sforshee/lp1873809/linux-kvm-5.4.0-1008-kvm/

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-04-20:

#15

Just tested it now, confirmed that this still boots fine and that this time the LXD agent successfully starts too.

So this config seems suitable for us. That + enabling kernel signing will get us working images.

Thanks!

Colin Ian King (colin-king) on 2020-04-20

Changed in linux-kvm (Ubuntu):
assignee:	nobody → Colin Ian King (colin-king)
importance:	Undecided → High

Roufique Hossain (roufique) on 2020-04-20

Changed in cloud-images:
status:	Invalid → Confirmed
assignee:	nobody → Roufique Hossain (roufique)
Changed in linux-kvm (Ubuntu):
assignee:	Colin Ian King (colin-king) → Roufique Hossain (roufique)
status:	New → Incomplete
status:	Incomplete → Confirmed
Changed in cloud-bl-tutorials:
status:	New → Confirmed

Revision history for this message

Louis Bouchard (louis) wrote on 2020-04-21:

#16

Hello,
thanks for the quick turnaround.

For the record, some EFI configs did exist in prior 5.3 images :

root@focal:/boot# cat /etc/cloud/build.info
build_name: server
serial: 20200223
root@focal:/boot# uname -r
5.3.0-1009-kvm
root@focal:/boot# grep -i ^CONFIG_EFI config-5.3.0-1009-kvm
CONFIG_EFI=y
CONFIG_EFI_VARS=y
CONFIG_EFI_ESRT=y
CONFIG_EFI_RUNTIME_WRAPPERS=y
CONFIG_EFI_EARLYCON=y
CONFIG_EFI_PARTITION=y
CONFIG_EFIVAR_FS=m

I'll be using the other image for testing in the meantime
...Louis

Revision history for this message

Launchpad Janitor (janitor) wrote on 2020-04-21:

#17

This bug was fixed in the package linux-kvm - 5.4.0-1009.9

---------------
linux-kvm (5.4.0-1009.9) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1009.9 -proposed tracker (LP: #1873934)

* multipathd.service fails to start with linux-kvm kernel (LP: #1873912)
- [Config] Enable dm-multipath modules

  * Make linux-kvm bootable in LXD VMs (LP: #1873809)
    - [Config] CONFIG_EFI_STUB=y
    - [Config] Enable vsocket config options

-- Seth Forshee <email address hidden> Mon, 20 Apr 2020 14:30:41 -0500

Changed in linux-kvm (Ubuntu):
status:	Confirmed → Fix Released

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-04-21:

#18

Thanks Louis, so our testing may in fact have been accurate and things regressed afterwards :)

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-04-21:

#19

Hmm, actually, CONFIG_EFI_STUB is the one we were missing and I'm not seeing that in your VM either, which makes me wonder how it was booted in the first place :)

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-04-21:

#20

Ok, fixed the bug tasks and re-opened the bug as we still need this kernel to get signed.

Changed in linux-kvm (Ubuntu):
status:	Fix Released → Triaged
Changed in cloud-images:
assignee:	Roufique Hossain (roufique) → nobody
Changed in linux-kvm (Ubuntu):
assignee:	Roufique Hossain (roufique) → nobody
Changed in cloud-bl-tutorials:
status:	Confirmed → Invalid
status:	Invalid → New
affects:	cloud-bl-tutorials → linux (Ubuntu)
no longer affects:	linux (Ubuntu)
Changed in cloud-images:
status:	Confirmed → Invalid

Revision history for this message

Louis Bouchard (louis) wrote on 2020-04-22:

#21

Hello,

Just tested the latest image in ./current and it boots fine :

root@focal-ok:~# uname -a
Linux focal-ok 5.4.0-1009-kvm #9-Ubuntu SMP Mon Apr 20 20:23:56 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux
root@focal-ok:~# cat /etc/cloud/build.info
build_name: server
serial: 20200421
root@focal-ok:~# uname -r
5.4.0-1009-kvm
root@focal-ok:~# grep -i ^CONFIG_EFI /boot/config-5.4.0-1009-kvm
CONFIG_EFI=y
CONFIG_EFI_STUB=y
CONFIG_EFI_MIXED=y
CONFIG_EFI_VARS=y
CONFIG_EFI_ESRT=y
CONFIG_EFI_RUNTIME_WRAPPERS=y
CONFIG_EFI_EARLYCON=y
CONFIG_EFI_PARTITION=y
CONFIG_EFIVAR_FS=m

Thanks for the quick turnaround !
...Louis

Revision history for this message

Khaled El Mously (kmously) wrote on 2020-05-04:

#22

@stgraber I'm getting mixed messages from the last few comments about whether CONFIG_EFI_STUB is needed or not - can you please clarify?

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-05-05:

#23

@Khaled yes, it is and we have it now. What's still needed is for the kernel to be signed so it can be used under secureboot.

Revision history for this message

Khaled El Mously (kmously) wrote on 2020-05-07:

#24

@stgraber sorry I should have clarified that I'm referring to Eoan specifically.
In Eoan, EFI_STUB is still not enabled. Is it needed there?

Revision history for this message

Launchpad Janitor (janitor) wrote on 2020-05-19:

#25

Download full text (39.0 KiB)

This bug was fixed in the package linux-kvm - 5.3.0-1017.19

---------------
linux-kvm (5.3.0-1017.19) eoan; urgency=medium

* eoan/linux-kvm: 5.3.0-1017.18 -proposed tracker (LP: #1877951)

  * Packaging resync (LP: #1786013)
    - [Packaging] resync dkms-build and family
    - [Packaging] add libcap-dev dependency

  * Make linux-kvm bootable in LXD VMs (LP: #1873809)
    - [config] Enable CONFIG_EFI_STUB
    - [Config] Enable VSOCKETS in KVM

[ Ubuntu: 5.3.0-53.47 ]

  * eoan/linux: 5.3.0-53.47 -proposed tracker (LP: #1877257)
  * Intermittent display blackouts on event (LP: #1875254)
    - drm/i915: Limit audio CDCLK>=2*BCLK constraint back to GLK only
  * Unable to handle kernel pointer dereference in virtual kernel address space
    on Eoan (LP: #1876645)
    - SAUCE: overlayfs: fix shitfs special-casing

[ Ubuntu: 5.3.0-52.46 ]

  * eoan/linux: 5.3.0-52.46 -proposed tracker (LP: #1874752)
  * alsa: make the dmic detection align to the mainline kernel-5.6
    (LP: #1871284)
    - ALSA: hda: add Intel DSP configuration / probe code
    - ALSA: hda: fix intel DSP config
    - ALSA: hda: Allow non-Intel device probe gracefully
    - ALSA: hda: More constifications
    - ALSA: hda: Rename back to dmic_detect option
    - [Config] SND_INTEL_DSP_CONFIG=m
    - [packaging] Remove snd-intel-nhlt from modules
  * built-using constraints preventing uploads (LP: #1875601)
    - temporarily drop Built-Using data
  * ubuntu/focal64 fails to mount Vagrant shared folders (LP: #1873506)
    - [Packaging] Move virtualbox modules to linux-modules
    - [Packaging] Remove vbox and zfs modules from generic.inclusion-list
  * linux-image-5.0.0-35-generic breaks checkpointing of container
    (LP: #1857257)
    - SAUCE: overlayfs: use shiftfs hacks only with shiftfs as underlay
  * shiftfs: broken shiftfs nesting (LP: #1872094)
    - SAUCE: shiftfs: record correct creator credentials
  * Add debian/rules targets to compile/run kernel selftests (LP: #1874286)
    - [Packaging] add support to compile/run selftests
  * shiftfs: O_TMPFILE reports ESTALE (LP: #1872757)
    - SAUCE: shiftfs: fix dentry revalidation
  * getitimer returns it_value=0 erroneously (LP: #1349028)
    - [Config] CONTEXT_TRACKING_FORCE policy should be unset
  * 5.3.0-46-generic - i915 - frequent GPU hangs / resets rcs0 (LP: #1872001)
    - drm/i915/execlists: Preempt-to-busy
    - drm/i915/gt: Detect if we miss WaIdleLiteRestore
    - drm/i915/execlists: Always force a context reload when rewinding RING_TAIL
  * alsa/sof: external mic can't be deteced on Lenovo and HP laptops
    (LP: #1872569)
    - SAUCE: ASoC: intel/skl/hda - set autosuspend timeout for hda codecs
  * Eoan update: upstream stable patchset 2020-04-22 (LP: #1874325)
    - ARM: dts: sun8i-a83t-tbs-a711: HM5065 doesn't like such a high voltage
    - bus: sunxi-rsb: Return correct data when mixing 16-bit and 8-bit reads
    - net: vxge: fix wrong __VA_ARGS__ usage
    - hinic: fix a bug of waitting for IO stopped
    - hinic: fix wrong para of wait_for_completion_timeout
    - cxgb4/ptp: pass the sign of offset delta in FW CMD
    - qlcnic: Fix bad kzalloc null test
    - i2c: st: fix missing struct parameter descr...

This bug was fixed in the package linux-kvm - 5.3.0-1017.19

---------------
linux-kvm (5.3.0-1017.19) eoan; urgency=medium

* eoan/linux-kvm: 5.3.0-1017.18 -proposed tracker (LP: #1877951)

* Packaging resync (LP: #1786013)
    - [Packaging] resync dkms-build and family
    - [Packaging] add libcap-dev dependency

* Make linux-kvm bootable in LXD VMs (LP: #1873809)
    - [config] Enable CONFIG_EFI_STUB
    - [Config] Enable VSOCKETS in KVM

[ Ubuntu: 5.3.0-53.47 ]

* eoan/linux: 5.3.0-53.47 -proposed tracker (LP: #1877257)
  * Intermittent display blackouts on event (LP: #1875254)
    - drm/i915: Limit audio CDCLK>=2*BCLK constraint back to GLK only
  * Unable to handle kernel pointer dereference in virtual kernel address space
    on Eoan (LP: #1876645)
    - SAUCE: overlayfs: fix shitfs special-casing

[ Ubuntu: 5.3.0-52.46 ]

* eoan/linux: 5.3.0-52.46 -proposed tracker (LP: #1874752)
  * alsa: make the dmic detection align to the mainline kernel-5.6
    (LP: #1871284)
    - ALSA: hda: add Intel DSP configuration / probe code
    - ALSA: hda: fix intel DSP config
    - ALSA: hda: Allow non-Intel device probe gracefully
    - ALSA: hda: More constifications
    - ALSA: hda: Rename back to dmic_detect option
    - [Config] SND_INTEL_DSP_CONFIG=m
    - [packaging] Remove snd-intel-nhlt from modules
  * built-using constraints preventing uploads (LP: #1875601)
    - temporarily drop Built-Using data
  * ubuntu/focal64 fails to mount Vagrant shared folders  (LP: #1873506)
    - [Packaging] Move virtualbox modules to linux-modules
    - [Packaging] Remove vbox and zfs modules from generic.inclusion-list
  * linux-image-5.0.0-35-generic breaks checkpointing of container
    (LP: #1857257)
    - SAUCE: overlayfs: use shiftfs hacks only with shiftfs as underlay
  * shiftfs: broken shiftfs nesting (LP: #1872094)
    - SAUCE: shiftfs: record correct creator credentials
  * Add debian/rules targets to compile/run kernel selftests (LP: #1874286)
    - [Packaging] add support to compile/run selftests
  * shiftfs: O_TMPFILE reports ESTALE (LP: #1872757)
    - SAUCE: shiftfs: fix dentry revalidation
  * getitimer returns it_value=0 erroneously (LP: #1349028)
    - [Config] CONTEXT_TRACKING_FORCE policy should be unset
  * 5.3.0-46-generic - i915 - frequent GPU hangs  / resets rcs0 (LP: #1872001)
    - drm/i915/execlists: Preempt-to-busy
    - drm/i915/gt: Detect if we miss WaIdleLiteRestore
    - drm/i915/execlists: Always force a context reload when rewinding RING_TAIL
  * alsa/sof: external mic can't be deteced on Lenovo and HP laptops
    (LP: #1872569)
    - SAUCE: ASoC: intel/skl/hda - set autosuspend timeout for hda codecs
  * Eoan update: upstream stable patchset 2020-04-22 (LP: #1874325)
    - ARM: dts: sun8i-a83t-tbs-a711: HM5065 doesn't like such a high voltage
    - bus: sunxi-rsb: Return correct data when mixing 16-bit and 8-bit reads
    - net: vxge: fix wrong __VA_ARGS__ usage
    - hinic: fix a bug of waitting for IO stopped
    - hinic: fix wrong para of wait_for_completion_timeout
    - cxgb4/ptp: pass the sign of offset delta in FW CMD
    - qlcnic: Fix bad kzalloc null test
    - i2c: st: fix missing struct parameter description
    - cpufreq: imx6q: Fixes unwanted cpu overclocking on i.MX6ULL
    - media: venus: hfi_parser: Ignore HEVC encoding for V1
    - firmware: arm_sdei: fix double-lock on hibernate with shared events
    - null_blk: Fix the null_add_dev() error path
    - null_blk: Handle null_add_dev() failures properly
    - null_blk: fix spurious IO errors after failed past-wp access
    - xhci: bail out early if driver can't accress host in resume
    - x86: Don't let pgprot_modify() change the page encryption bit
    - block: keep bdi->io_pages in sync with max_sectors_kb for stacked devices
    - irqchip/versatile-fpga: Handle chained IRQs properly
    - sched: Avoid scale real weight down to zero
    - selftests/x86/ptrace_syscall_32: Fix no-vDSO segfault
    - PCI/switchtec: Fix init_completion race condition with poll_wait()
    - media: i2c: video-i2c: fix build errors due to 'imply hwmon'
    - libata: Remove extra scsi_host_put() in ata_scsi_add_hosts()
    - pstore/platform: fix potential mem leak if pstore_init_fs failed
    - gfs2: Don't demote a glock until its revokes are written
    - x86/boot: Use unsigned comparison for addresses
    - efi/x86: Ignore the memory attributes table on i386
    - genirq/irqdomain: Check pointer in irq_domain_alloc_irqs_hierarchy()
    - block: Fix use-after-free issue accessing struct io_cq
    - media: i2c: ov5695: Fix power on and off sequences
    - usb: dwc3: core: add support for disabling SS instances in park mode
    - irqchip/gic-v4: Provide irq_retrigger to avoid circular locking dependency
    - md: check arrays is suspended in mddev_detach before call quiesce operations
    - firmware: fix a double abort case with fw_load_sysfs_fallback
    - locking/lockdep: Avoid recursion in lockdep_count_{for,back}ward_deps()
    - block, bfq: fix use-after-free in bfq_idle_slice_timer_body
    - btrfs: qgroup: ensure qgroup_rescan_running is only set when the worker is
      at least queued
    - btrfs: remove a BUG_ON() from merge_reloc_roots()
    - btrfs: track reloc roots based on their commit root bytenr
    - ASoC: fix regwmask
    - ASoC: dapm: connect virtual mux with default value
    - ASoC: dpcm: allow start or stop during pause for backend
    - ASoC: topology: use name_prefix for new kcontrol
    - usb: gadget: f_fs: Fix use after free issue as part of queue failure
    - usb: gadget: composite: Inform controller driver of self-powered
    - ALSA: usb-audio: Add mixer workaround for TRX40 and co
    - ALSA: hda: Add driver blacklist
    - ALSA: hda: Fix potential access overflow in beep helper
    - ALSA: ice1724: Fix invalid access for enumerated ctl items
    - ALSA: pcm: oss: Fix regression by buffer overflow fix
    - ALSA: doc: Document PC Beep Hidden Register on Realtek ALC256
    - ALSA: hda/realtek - Set principled PC Beep configuration for ALC256
    - ALSA: hda/realtek - Remove now-unnecessary XPS 13 headphone noise fixups
    - ALSA: hda/realtek - Add quirk for MSI GL63
    - media: ti-vpe: cal: fix disable_irqs to only the intended target
    - acpi/x86: ignore unspecified bit positions in the ACPI global lock field
    - thermal: devfreq_cooling: inline all stubs for CONFIG_DEVFREQ_THERMAL=n
    - nvme-fc: Revert "add module to ops template to allow module references"
    - nvme: Treat discovery subsystems as unique subsystems
    - PCI: pciehp: Fix indefinite wait on sysfs requests
    - PCI/ASPM: Clear the correct bits when enabling L1 substates
    - PCI: Add boot interrupt quirk mechanism for Xeon chipsets
    - PCI: endpoint: Fix for concurrent memory allocation in OB address region
    - tpm: Don't make log failures fatal
    - tpm: tpm1_bios_measurements_next should increase position index
    - tpm: tpm2_bios_measurements_next should increase position index
    - irqchip/versatile-fpga: Apply clear-mask earlier
    - pstore: pstore_ftrace_seq_next should increase position index
    - MIPS/tlbex: Fix LDDIR usage in setup_pw() for Loongson-3
    - MIPS: OCTEON: irq: Fix potential NULL pointer dereference
    - ath9k: Handle txpower changes even when TPC is disabled
    - signal: Extend exec_id to 64bits
    - x86/entry/32: Add missing ASM_CLAC to general_protection entry
    - KVM: nVMX: Properly handle userspace interrupt window request
    - KVM: s390: vsie: Fix region 1 ASCE sanity shadow address checks
    - KVM: s390: vsie: Fix delivery of addressing exceptions
    - KVM: x86: Allocate new rmap and large page tracking when moving memslot
    - KVM: VMX: Always VMCLEAR in-use VMCSes during crash with kexec support
    - KVM: x86: Gracefully handle __vmalloc() failure during VM allocation
    - KVM: VMX: fix crash cleanup when KVM wasn't used
    - CIFS: Fix bug which the return value by asynchronous read is error
    - mtd: spinand: Stop using spinand->oobbuf for buffering bad block markers
    - mtd: spinand: Do not erase the block before writing a bad block marker
    - Btrfs: fix crash during unmount due to race with delayed inode workers
    - btrfs: set update the uuid generation as soon as possible
    - btrfs: drop block from cache on error in relocation
    - btrfs: fix missing file extent item for hole after ranged fsync
    - btrfs: fix missing semaphore unlock in btrfs_sync_file
    - crypto: mxs-dcp - fix scatterlist linearization for hash
    - erofs: correct the remaining shrink objects
    - powerpc/pseries: Drop pointless static qualifier in vpa_debugfs_init()
    - tools: gpio: Fix out-of-tree build regression
    - net: qualcomm: rmnet: Allow configuration updates to existing devices
    - arm64: dts: allwinner: h6: Fix PMU compatible
    - dm writecache: add cond_resched to avoid CPU hangs
    - dm verity fec: fix memory leak in verity_fec_dtr
    - scsi: zfcp: fix missing erp_lock in port recovery trigger for point-to-point
    - arm64: armv8_deprecated: Fix undef_hook mask for thumb setend
    - selftests: vm: drop dependencies on page flags from mlock2 tests
    - drm/etnaviv: rework perfmon query infrastructure
    - powerpc/pseries: Avoid NULL pointer dereference when drmem is unavailable
    - NFS: Fix a page leak in nfs_destroy_unlinked_subrequests()
    - ext4: fix a data race at inode->i_blocks
    - fs/filesystems.c: downgrade user-reachable WARN_ONCE() to pr_warn_once()
    - ocfs2: no need try to truncate file beyond i_size
    - perf tools: Support Python 3.8+ in Makefile
    - s390/diag: fix display of diagnose call statistics
    - Input: i8042 - add Acer Aspire 5738z to nomux list
    - clk: ingenic/jz4770: Exit with error if CGU init failed
    - kmod: make request_module() return an error when autoloading is disabled
    - cpufreq: powernv: Fix use-after-free
    - hfsplus: fix crash and filesystem corruption when deleting files
    - ipmi: fix hung processes in __get_guid()
    - xen/blkfront: fix memory allocation flags in blkfront_setup_indirect()
    - powerpc/64/tm: Don't let userspace set regs->trap via sigreturn
    - powerpc/hash64/devmap: Use H_PAGE_THP_HUGE when setting up huge devmap PTE
      entries
    - powerpc/xive: Use XIVE_BAD_IRQ instead of zero to catch non configured IPIs
    - powerpc/kprobes: Ignore traps that happened in real mode
    - scsi: mpt3sas: Fix kernel panic observed on soft HBA unplug
    - powerpc: Add attributes for setjmp/longjmp
    - powerpc: Make setjmp/longjmp signature standard
    - btrfs: use nofs allocations for running delayed items
    - dm zoned: remove duplicate nr_rnd_zones increase in dmz_init_zone()
    - crypto: caam - update xts sector size for large input length
    - crypto: ccree - dec auth tag size from cryptlen map
    - crypto: ccree - only try to map auth tag if needed
    - Revert "drm/dp_mst: Remove VCPI while disabling topology mgr"
    - drm/dp_mst: Fix clearing payload state on topology disable
    - drm: Remove PageReserved manipulation from drm_pci_alloc
    - ftrace/kprobe: Show the maxactive number on kprobe_events
    - powerpc/fsl_booke: Avoid creating duplicate tlb1 entry
    - etnaviv: perfmon: fix total and idle HI cyleces readout
    - mfd: dln2: Fix sanity checking for endpoints
    - efi/x86: Fix the deletion of variables in mixed mode
    - ARM: dts: Fix dm814x Ethernet by changing to use rgmii-id mode
    - bpf: Fix deadlock with rq_lock in bpf_send_signal()
    - Input: tm2-touchkey - add support for Coreriver TC360 variant
    - soc: fsl: dpio: register dpio irq handlers after dpio create
    - rxrpc: Abstract out the calculation of whether there's Tx space
    - rxrpc: Fix call interruptibility handling
    - hinic: fix the bug of clearing event queue
    - hinic: fix out-of-order excution in arm cpu
    - hinic: fix wrong value of MIN_SKB_LEN
    - selftests/net: add definition for SOL_DCCP to fix compilation errors for old
      libc
    - drm/scheduler: fix rare NULL ptr race
    - staging: wilc1000: avoid double unlocking of 'wilc->hif_cs' mutex
    - media: imx: imx7_mipi_csis: Power off the source when stopping streaming
    - media: imx: imx7-media-csi: Fix video field handling
    - dma-mapping: Fix dma_pgprot() for unencrypted coherent pages
    - debugfs: Check module state before warning in {full/open}_proxy_open()
    - media: allegro: fix type of gop_length in channel_create message
    - block, bfq: move forward the getting of an extra ref in bfq_bfqq_move
    - gfs2: Do log_flush in gfs2_ail_empty_gl even if ail list is empty
    - cpufreq: imx6q: fix error handling
    - btrfs: restart relocate_tree_blocks properly
    - ALSA: hda/realtek: Enable mute LED on an HP system
    - ALSA: hda/realtek - a fake key event is triggered by running shutup
    - ALSA: hda/realtek - Add quirk for Lenovo Carbon X1 8th gen
    - media: venus: firmware: Ignore secure call error on first resume
    - media: hantro: Read be32 words starting at every fourth byte
    - media: ti-vpe: cal: fix a kernel oops when unloading module
    - seccomp: Add missing compat_ioctl for notify
    - nvmet-tcp: fix maxh2cdata icresp parameter
    - PCI: qcom: Fix the fixup of PCI_VENDOR_ID_QCOM
    - sched/fair: Fix enqueue_task_fair warning
    - cpu/hotplug: Ignore pm_wakeup_pending() for disable_nonboot_cpus()
    - genirq/debugfs: Add missing sanity checks to interrupt injection
    - io_uring: remove bogus RLIMIT_NOFILE check in file registration
    - PM / Domains: Allow no domain-idle-states DT property in genpd when parsing
    - x86/tsc_msr: Use named struct initializers
    - x86/tsc_msr: Fix MSR_FSB_FREQ mask for Cherry Trail devices
    - x86/tsc_msr: Make MSR derived TSC frequency more accurate
    - btrfs: Don't submit any btree write bio if the fs has errors
    - btrfs: reloc: clean dirty subvols if we fail to start a transaction
    - btrfs: unset reloc control if we fail to recover
    - remoteproc: qcom_q6v5_mss: Don't reassign mpss region on shutdown
    - remoteproc: qcom_q6v5_mss: Reload the mba region on coredump
    - remoteproc: Fix NULL pointer dereference in rproc_virtio_notify
    - crypto: rng - Fix a refcounting bug in crypto_rng_reset()
    - io_uring: honor original task RLIMIT_FSIZE
    - mmc: sdhci-of-esdhc: fix esdhc_reset() for different controller versions
    - sched/core: Remove duplicate assignment in sched_tick_remote()
    - arm64: dts: allwinner: h5: Fix PMU compatible
    - dm integrity: fix a crash with unusually large tag size
    - XArray: Fix xas_pause for large multi-index entries
    - xarray: Fix early termination of xas_for_each_marked
    - crypto: caam/qi2 - fix chacha20 data size error
    - crypto: ccree - protect against empty or NULL scatterlists
    - scsi: ufs: fix Auto-Hibern8 error detection
    - ARM: dts: exynos: Fix polarity of the LCD SPI bus on UniversalC210 board
    - selftests/vm: fix map_hugetlb length used for testing read and write
    - selftests/powerpc: Add tlbie_test in .gitignore
    - drm/i915/gem: Flush all the reloc_gpu batch
    - drm/amdgpu: unify fw_write_wait for new gfx9 asics
    - nfsd: fsnotify on rmdir under nfsd/clients/
    - NFS: Fix use-after-free issues in nfs_pageio_add_request()
    - powerpc/64: Setup a paca before parsing device tree etc.
    - powerpc/64: Prevent stack protection in early boot
    - arm64: Always force a branch protection mode when the compiler has one
    - scsi: lpfc: Add registration for CPU Offline/Online events
    - scsi: lpfc: Fix Fabric hostname registration if system hostname changes
    - scsi: lpfc: Fix configuration of BB credit recovery in service parameters
    - scsi: lpfc: Fix broken Credit Recovery after driver load
    - drm/amdgpu: fix gfx hang during suspend with video playback (v2)
    - powerpc/kasan: Fix kasan_remap_early_shadow_ro()
    - mmc: sdhci: Convert sdhci_set_timeout_irq() to non-static
    - mmc: sdhci: Refactor sdhci_set_timeout()
    - bpf: Fix tnum constraints for 32-bit comparisons
    - ASoC: stm32: sai: Add missing cleanup
    - scsi: lpfc: fix inlining of lpfc_sli4_cleanup_poll_list()
  * Panic on suspend/resume Kernel panic - not syncing: stack-protector: Kernel
    stack is corrupted in: sata_pmp_eh_recover+0xa2b/0xa40 (LP: #1821434) //
    Eoan update: upstream stable patchset 2020-04-22 (LP: #1874325)
    - libata: Return correct status in sata_pmp_eh_recover_pm() when
      ATA_DFLAG_DETACH is set
  * Eoan update: upstream stable patchset 2020-04-13 (LP: #1872533)
    - ipv4: fix a RCU-list lock in fib_triestat_seq_show
    - net, ip_tunnel: fix interface lookup with no key
    - sctp: fix refcount bug in sctp_wfree
    - sctp: fix possibly using a bad saddr with a given dst
    - nvme-rdma: Avoid double freeing of async event data
    - drm/amd/display: Add link_rate quirk for Apple 15" MBP 2017
    - drm/bochs: downgrade pci_request_region failure from error to warning
    - initramfs: restore default compression behavior
    - drm/amdgpu: fix typo for vcn1 idle check
    - tools/power turbostat: Fix gcc build warnings
    - tools/power turbostat: Fix missing SYS_LPI counter on some Chromebooks
    - drm/etnaviv: replace MMU flush marker with flush sequence
    - misc: rtsx: set correct pcr_ops for rts522A
    - misc: pci_endpoint_test: Fix to support > 10 pci-endpoint-test devices
    - misc: pci_endpoint_test: Avoid using module parameter to determine irqtype
    - coresight: do not use the BIT() macro in the UAPI header
    - mei: me: add cedar fork device ids
    - extcon: axp288: Add wakeup support
    - power: supply: axp288_charger: Add special handling for HP Pavilion x2 10
    - ALSA: hda/ca0132 - Add Recon3Di quirk to handle integrated sound on EVGA X99
      Classified motherboard
    - rxrpc: Fix sendmsg(MSG_WAITALL) handling
    - net: Fix Tx hash bound checking
    - padata: always acquire cpu_hotplug_lock before pinst->lock
    - mm: mempolicy: require at least one nodeid for MPOL_PREFERRED
    - ipv6: don't auto-add link-local address to lag ports
    - net: dsa: bcm_sf2: Do not register slave MDIO bus with OF
    - net: dsa: bcm_sf2: Ensure correct sub-node is parsed
    - net: phy: micrel: kszphy_resume(): add delay after genphy_resume() before
      accessing PHY registers
    - net: stmmac: dwmac1000: fix out-of-bounds mac address reg setting
    - mlxsw: spectrum_flower: Do not stop at FLOW_ACTION_VLAN_MANGLE
    - random: always use batched entropy for get_random_u{32,64}
    - usb: dwc3: gadget: Wrap around when skip TRBs
    - tools/accounting/getdelays.c: fix netlink attribute length
    - hwrng: imx-rngc - fix an error path
    - ASoC: jz4740-i2s: Fix divider written at incorrect offset in register
    - IB/hfi1: Call kobject_put() when kobject_init_and_add() fails
    - IB/hfi1: Fix memory leaks in sysfs registration and unregistration
    - ceph: remove the extra slashes in the server path
    - ceph: canonicalize server path in place
    - RDMA/ucma: Put a lock around every call to the rdma_cm layer
    - RDMA/cma: Teach lockdep about the order of rtnl and lock
    - Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl
    - RDMA/cm: Update num_paths in cma_resolve_iboe_route error flow
    - fbcon: fix null-ptr-deref in fbcon_switch
    - clk: qcom: rcg: Return failure for RCG update
    - usb: dwc3: don't set gadget->is_otg flag
    - kconfig: introduce m32-flag and m64-flag
    - tools/power turbostat: Fix 32-bit capabilities warning
    - XArray: Fix xa_find_next for large multi-index entries
    - brcmfmac: abort and release host after error
    - nvmem: check for NULL reg_read and reg_write before dereferencing
    - Revert "dm: always call blk_queue_split() in dm_process_bio()"
    - soc: mediatek: knows_txdone needs to be set in Mediatek CMDQ helper
    - net/mlx5e: kTLS, Fix wrong value in record tracker enum
    - iwlwifi: consider HE capability when setting LDPC
    - iwlwifi: yoyo: don't add TLV offset when reading FIFOs
    - IB/hfi1: Ensure pq is not left on waitlist
    - tcp: fix TFO SYNACK undo to avoid double-timestamp-undo
    - watchdog: iTCO_wdt: Export vendorsupport
    - watchdog: iTCO_wdt: Make ICH_RES_IO_SMI optional
    - net: phy: realtek: fix handling of RTL8105e-integrated PHY
    - cxgb4: fix MPS index overwrite when setting MAC address
    - net_sched: add a temporary refcnt for struct tcindex_data
    - net_sched: fix a missing refcnt in tcindex_init()
    - tun: Don't put_page() for all negative return values from XDP program
    - s390: prevent leaking kernel address in BEAR
    - uapi: rename ext2_swab() to swab() and share globally in swab.h
    - slub: improve bit diffusion for freelist ptr obfuscation
    - ARM: imx: Enable ARM_ERRATA_814220 for i.MX6UL and i.MX7D
    - ARM: imx: only select ARM_ERRATA_814220 for ARMv7-A
    - include/uapi/linux/swab.h: fix userspace breakage, use __BITS_PER_LONG for
      swap
    - RDMA/siw: Fix passive connection establishment
    - blk-mq: Keep set->nr_hw_queues and set->map[].nr_queues in sync
    - iommu/vt-d: Allow devices with RMRRs to use identity domain
    - SUNRPC: fix krb5p mount to provide large enough buffer in rq_rcvsize
  * Disco update: upstream stable patchset 2020-04-13 (LP: #1872500) // Eoan
    update: upstream stable patchset 2020-04-13 (LP: #1872533)
    - [Packaging] add libcap-dev dependency
  * CVE-2020-11608
    - media: ov519: add missing endpoint sanity checks
  * Add hw timestamps to received skbs in peak_canfd (LP: #1874124)
    - can: peak_canfd: provide hw timestamps in rx skbs
  * dscr_sysfs_test / futex_bench / tm-unavailable  in powerpc from
    ubuntu_kernel_selftests timeout on PowerPC nodes with B-5.3 (LP: #1864642)
    - selftests/powerpc: Turn off timeout setting for benchmarks, dscr, signal, tm
  * Fix potential null pointer dereference on kernfs (LP: #1874221)
    - kernfs: fix potential null pointer dereference
  * alsa/sof: headphone can't be detected when sof driver enters rt_suspend
    (LP: #1872380)
    - ASoC: SOF: remove unused state variable in suspend function
    - ASoC: SOF: Intel: hda: correct ROM state mask
    - ASoC: SOF: Intel: hda: reduce ifdef usage for hda
    - ASoC: SOF: Intel: hda: Enable jack detection
  * kselftest: seccomp kill_after_ptrace() timeout (LP: #1872047)
    - SAUCE: kselftest/runner: allow to properly deliver signals to tests
  * [Selftests] Apply various fixes and improvements (LP: #1870543)
    - SAUCE: kselftest/runner: avoid using timeout if timeout is disabled
  * Kernel Oops - general protection fault: 0000 [#1] SMP PTI after
    disconnecting thunderbolt docking station (LP: #1864754)
    - igb/igc: Don't warn on fatal read failures when the device is removed
  * user_notification_basic in seccomp of ubuntu_kernel_selftest failed on
    Bionic-5.0 Kernels (LP: #1862588)
    - Revert "selftests/seccomp: Catch garbage on SECCOMP_IOCTL_NOTIF_RECV"
  * CVE-2020-11494
    - slcan: Don't transmit uninitialized stack data in padding
  * add_key05 from ubuntu_ltp_syscalls failed (LP: #1869644)
    - KEYS: reaching the keys quotas correctly
  * Eoan update: upstream stable patchset 2020-04-08 (LP: #1871697)
    - mmc: core: Allow host controllers to require R1B for CMD6
    - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for erase/trim/discard
    - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for eMMC sleep command
    - mmc: sdhci-omap: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY
    - mmc: sdhci-tegra: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY
    - geneve: move debug check after netdev unregister
    - hsr: fix general protection fault in hsr_addr_is_self()
    - macsec: restrict to ethernet devices
    - mlxsw: spectrum_mr: Fix list iteration in error path
    - net: cbs: Fix software cbs to consider packet sending time
    - net: dsa: Fix duplicate frames flooded by learning
    - net: mvneta: Fix the case where the last poll did not process all rx
    - net/packet: tpacket_rcv: avoid a producer race condition
    - net: qmi_wwan: add support for ASKEY WWHC050
    - net_sched: cls_route: remove the right filter from hashtable
    - net_sched: keep alloc_hash updated after hash allocation
    - net: stmmac: dwmac-rk: fix error path in rk_gmac_probe
    - NFC: fdp: Fix a signedness bug in fdp_nci_send_patch()
    - slcan: not call free_netdev before rtnl_unlock in slcan_open
    - bnxt_en: fix memory leaks in bnxt_dcbnl_ieee_getets()
    - bnxt_en: Reset rings if ring reservation fails during open()
    - net: ip_gre: Separate ERSPAN newlink / changelink callbacks
    - net: ip_gre: Accept IFLA_INFO_DATA-less configuration
    - net: dsa: mt7530: Change the LINK bit to reflect the link status
    - net: phy: mdio-mux-bcm-iproc: check clk_prepare_enable() return value
    - r8169: re-enable MSI on RTL8168c
    - tcp: repair: fix TCP_QUEUE_SEQ implementation
    - vxlan: check return value of gro_cells_init()
    - hsr: use rcu_read_lock() in hsr_get_node_{list/status}()
    - hsr: add restart routine into hsr_get_node_list()
    - hsr: set .netnsok flag
    - cgroup-v1: cgroup_pidlist_next should update position index
    - nfs: add minor version to nfs_server_key for fscache
    - cpupower: avoid multiple definition with gcc -fno-common
    - drivers/of/of_mdio.c:fix of_mdiobus_register()
    - cgroup1: don't call release_agent when it is ""
    - [Config] updateconfigs for DPAA_ERRATUM_A050385
    - dt-bindings: net: FMan erratum A050385
    - arm64: dts: ls1043a: FMan erratum A050385
    - fsl/fman: detect FMan erratum A050385
    - s390/qeth: handle error when backing RX buffer
    - scsi: ipr: Fix softlockup when rescanning devices in petitboot
    - mac80211: Do not send mesh HWMP PREQ if HWMP is disabled
    - dpaa_eth: Remove unnecessary boolean expression in dpaa_get_headroom
    - sxgbe: Fix off by one in samsung driver strncpy size arg
    - i2c: hix5hd2: add missed clk_disable_unprepare in remove
    - Input: raydium_i2c_ts - fix error codes in raydium_i2c_boot_trigger()
    - Input: synaptics - enable RMI on HP Envy 13-ad105ng
    - Input: avoid BIT() macro usage in the serio.h UAPI header
    - ceph: check POOL_FLAG_FULL/NEARFULL in addition to OSDMAP_FULL/NEARFULL
    - ARM: dts: dra7: Add bus_dma_limit for L3 bus
    - ARM: dts: omap5: Add bus_dma_limit for L3 bus
    - perf probe: Do not depend on dwfl_module_addrsym()
    - tools: Let O= makes handle a relative path with -C option
    - scripts/dtc: Remove redundant YYLOC global declaration
    - scsi: sd: Fix optimal I/O size for devices that change reported values
    - nl80211: fix NL80211_ATTR_CHANNEL_WIDTH attribute type
    - mac80211: mark station unauthorized before key removal
    - gpiolib: acpi: Correct comment for HP x2 10 honor_wakeup quirk
    - gpiolib: acpi: Rework honor_wakeup option into an ignore_wake option
    - gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 BYT + AXP288 model
    - RDMA/core: Ensure security pkey modify is not lost
    - genirq: Fix reference leaks on irq affinity notifiers
    - xfrm: handle NETDEV_UNREGISTER for xfrm device
    - vti[6]: fix packet tx through bpf_redirect() in XinY cases
    - RDMA/mlx5: Block delay drop to unprivileged users
    - xfrm: fix uctx len check in verify_sec_ctx_len
    - xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire
    - xfrm: policy: Fix doulbe free in xfrm_policy_timer
    - afs: Fix some tracing details
    - netfilter: flowtable: reload ip{v6}h in nf_flow_tuple_ip{v6}
    - netfilter: nft_fwd_netdev: validate family and chain type
    - bpf/btf: Fix BTF verification of enum members in struct/union
    - vti6: Fix memory leak of skb if input policy check fails
    - Revert "r8169: check that Realtek PHY driver module is loaded"
    - mac80211: set IEEE80211_TX_CTRL_PORT_CTRL_PROTO for nl80211 TX
    - USB: serial: option: add support for ASKEY WWHC050
    - USB: serial: option: add BroadMobi BM806U
    - USB: serial: option: add Wistron Neweb D19Q1
    - USB: cdc-acm: restore capability check order
    - USB: serial: io_edgeport: fix slab-out-of-bounds read in
      edge_interrupt_callback
    - usb: musb: fix crash with highmen PIO and usbmon
    - media: flexcop-usb: fix endpoint sanity check
    - media: usbtv: fix control-message timeouts
    - staging: rtl8188eu: Add ASUS USB-N10 Nano B1 to device table
    - staging: wlan-ng: fix ODEBUG bug in prism2sta_disconnect_usb
    - staging: wlan-ng: fix use-after-free Read in hfa384x_usbin_callback
    - ahci: Add Intel Comet Lake H RAID PCI ID
    - libfs: fix infoleak in simple_attr_read()
    - media: ov519: add missing endpoint sanity checks
    - media: dib0700: fix rc endpoint lookup
    - media: stv06xx: add missing descriptor sanity checks
    - media: xirlink_cit: add missing descriptor sanity checks
    - mac80211: Check port authorization in the ieee80211_tx_dequeue() case
    - mac80211: fix authentication with iwlwifi/mvm
    - vt: selection, introduce vc_is_sel
    - vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines
    - vt: switch vt_dont_switch to bool
    - vt: vt_ioctl: remove unnecessary console allocation checks
    - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
    - vt: vt_ioctl: fix use-after-free in vt_in_use()
    - platform/x86: pmc_atom: Add Lex 2I385SW to critclk_systems DMI table
    - bpf: Explicitly memset the bpf_attr structure
    - bpf: Explicitly memset some bpf info structures declared on the stack
    - gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 CHT + AXP288 model
    - net: ks8851-ml: Fix IO operations, again
    - arm64: alternative: fix build with clang integrated assembler
    - perf map: Fix off by one in strncpy() size argument
    - ARM: dts: oxnas: Fix clear-mask property
    - ARM: bcm2835-rpi-zero-w: Add missing pinctrl name
    - ARM: dts: imx6: phycore-som: fix arm and soc minimum voltage
    - ARM: dts: N900: fix onenand timings
    - arm64: dts: ls1043a-rdb: correct RGMII delay mode to rgmii-id
    - arm64: dts: ls1046ardb: set RGMII interfaces to RGMII_ID mode
    - ACPI: PM: s2idle: Rework ACPI events synchronization
    - cxgb4: fix throughput drop during Tx backpressure
    - cxgb4: fix Txq restart check during backpressure
    - ipv4: fix a RCU-list lock in inet_dump_fib()
    - mlxsw: pci: Only issue reset when system is ready
    - net/bpfilter: fix dprintf usage for /dev/kmsg
    - net: dsa: tag_8021q: replace dsa_8021q_remove_header with __skb_vlan_pop
    - net: phy: dp83867: w/a for fld detect threshold bootstrapping issue
    - net: phy: mdio-bcm-unimac: Fix clock handling
    - net/sched: act_ct: Fix leak of ct zone template on replace
    - net_sched: hold rtnl lock in tcindex_partial_destroy_work()
    - tcp: also NULL skb->dev when copy was needed
    - tcp: ensure skb->dev is NULL before leaving TCP stack
    - bnxt_en: Fix Priority Bytes and Packets counters in ethtool -S.
    - bnxt_en: Return error if bnxt_alloc_ctx_mem() fails.
    - bnxt_en: Free context memory after disabling PCI in probe error path.
    - net/mlx5e: Enhance ICOSQ WQE info fields
    - net/mlx5e: Fix missing reset of SW metadata in Striding RQ reset
    - drm/exynos: Fix cleanup of IOMMU related objects
    - s390/qeth: don't reset default_out_queue
    - net: hns3: fix "tc qdisc del" failed issue
    - iommu/vt-d: Fix debugfs register reads
    - iommu/vt-d: Populate debugfs if IOMMUs are detected
    - IB/rdmavt: Free kernel completion queue when done
    - RDMA/core: Fix missing error check on dev_set_name()
    - gpiolib: Fix irq_disable() semantics
    - RDMA/nl: Do not permit empty devices names during RDMA_NLDEV_CMD_NEWLINK/SET
    - RDMA/mad: Do not crash if the rdma device does not have a umad interface
    - ceph: fix memory leak in ceph_cleanup_snapid_map()
    - x86/ioremap: Fix CONFIG_EFI=n build
    - perf probe: Fix to delete multiple probe event
    - mm/sparse: fix kernel crash with pfn_section_valid check
    - mm: fork: fix kernel_stack memcg stats for various stack implementations
    - bpf: Fix cgroup ref leak in cgroup_bpf_inherit on out-of-memory
    - afs: Fix handling of an abort from a service handler
    - RDMA/mlx5: Fix access to wrong pointer while performing flush due to error
    - afs: Fix client call Rx-phase signal handling
    - afs: Fix unpinned address list during probing
    - netfilter: nft_fwd_netdev: allow to redirect to ifb via ingress
    - bpf, x32: Fix bug with JMP32 JSET BPF_X checking upper bits
    - bpf: Initialize storage pointers to NULL to prevent freeing garbage pointer
    - bpf, sockmap: Remove bucket->lock from sock_{hash|map}_free
    - ARM: dts: sun8i-a83t-tbs-a711: Fix USB OTG mode detection
    - staging: kpc2000: prevent underflow in cpld_reconfigure()
    - media: v4l2-core: fix a use-after-free bug of sd->devnode
    - [Config] updateconfigs for NET_REDIRECT
    - net: Fix CONFIG_NET_CLS_ACT=n and CONFIG_NFT_FWD_NETDEV={y, m} build
    - serial: sprd: Fix a dereference warning
    - clk: imx: Align imx sc clock msg structs to 4
    - clk: imx: Align imx sc clock parent msg structs to 4
    - clk: ti: am43xx: Fix clock parent for RTC clock
    - libceph: fix alloc_msg_with_page_vector() memory leaks
    - ARM: dts: sun8i: r40: Move AHCI device node based on address order
  * Eoan update: upstream stable patchset 2020-04-06 (LP: #1871225)
    - drm/mediatek: Find the cursor plane instead of hard coding it
    - spi: qup: call spi_qup_pm_resume_runtime before suspending
    - powerpc: Include .BTF section
    - ARM: dts: dra7: Add "dma-ranges" property to PCIe RC DT nodes
    - spi: pxa2xx: Add CS control clock quirk
    - spi/zynqmp: remove entry that causes a cs glitch
    - drm/exynos: dsi: propagate error value and silence meaningless warning
    - drm/exynos: dsi: fix workaround for the legacy clock name
    - drivers/perf: arm_pmu_acpi: Fix incorrect checking of gicc pointer
    - altera-stapl: altera_get_note: prevent write beyond end of 'key'
    - dm bio record: save/restore bi_end_io and bi_integrity
    - dm integrity: use dm_bio_record and dm_bio_restore
    - riscv: avoid the PIC offset of static percpu data in module beyond 2G limits
    - drm/amd/display: Clear link settings on MST disable connector
    - drm/amd/display: fix dcc swath size calculations on dcn1
    - xenbus: req->body should be updated before req->state
    - xenbus: req->err should be updated before req->state
    - block, bfq: fix overwrite of bfq_group pointer in bfq_find_set_group()
    - parse-maintainers: Mark as executable
    - usb: quirks: add NO_LPM quirk for RTL8153 based ethernet adapters
    - USB: serial: option: add ME910G1 ECM composition 0x110b
    - usb: host: xhci-plat: add a shutdown
    - USB: serial: pl2303: add device-id for HP LD381
    - usb: xhci: apply XHCI_SUSPEND_DELAY to AMD XHCI controller 1022:145c
    - ALSA: line6: Fix endless MIDI read loop
    - ALSA: seq: virmidi: Fix running status after receiving sysex
    - ALSA: seq: oss: Fix running status after receiving sysex
    - ALSA: pcm: oss: Avoid plugin buffer overflow
    - ALSA: pcm: oss: Remove WARNING from snd_pcm_plug_alloc() checks
    - iio: trigger: stm32-timer: disable master mode when stopping
    - iio: magnetometer: ak8974: Fix negative raw values in sysfs
    - iio: adc: at91-sama5d2_adc: fix differential channels in triggered mode
    - mmc: rtsx_pci: Fix support for speed-modes that relies on tuning
    - mmc: sdhci-of-at91: fix cd-gpios for SAMA5D2
    - staging: rtl8188eu: Add device id for MERCUSYS MW150US v2
    - staging: greybus: loopback_test: fix poll-mask build breakage
    - staging/speakup: fix get_word non-space look-ahead
    - intel_th: Fix user-visible error codes
    - intel_th: pci: Add Elkhart Lake CPU support
    - rtc: max8907: add missing select REGMAP_IRQ
    - xhci: Do not open code __print_symbolic() in xhci trace events
    - btrfs: fix log context list corruption after rename whiteout error
    - drm/amd/amdgpu: Fix GPR read from debugfs (v2)
    - drm/lease: fix WARNING in idr_destroy
    - memcg: fix NULL pointer dereference in __mem_cgroup_usage_unregister_event
    - mm: slub: be more careful about the double cmpxchg of freelist
    - mm, slub: prevent kmalloc_node crashes and memory leaks
    - page-flags: fix a crash at SetPageError(THP_SWAP)
    - x86/mm: split vmalloc_sync_all()
    - USB: cdc-acm: fix close_delay and closing_wait units in TIOCSSERIAL
    - USB: cdc-acm: fix rounding error in TIOCSSERIAL
    - iio: light: vcnl4000: update sampling periods for vcnl4200
    - kbuild: Disable -Wpointer-to-enum-cast
    - futex: Fix inode life-time issue
    - futex: Unbreak futex hashing
    - arm64: smp: fix smp_send_stop() behaviour
    - arm64: smp: fix crash_smp_send_stop() behaviour
    - drm/bridge: dw-hdmi: fix AVI frame colorimetry
    - staging: greybus: loopback_test: fix potential path truncation
    - staging: greybus: loopback_test: fix potential path truncations
    - locks: fix a potential use-after-free problem when wakeup a waiter
    - locks: reinstate locks_delete_block optimization
    - spi: spi-omap2-mcspi: Support probe deferral for DMA channels
    - phy: ti: gmii-sel: fix set of copy-paste errors
    - phy: ti: gmii-sel: do not fail in case of gmii
    - ARM: dts: dra7-l4: mark timer13-16 as pwm capable
    - cifs: fix potential mismatch of UNC paths
    - drm/exynos: hdmi: don't leak enable HDMI_EN regulator if probe fails
    - drivers/perf: fsl_imx8_ddr: Correct the CLEAR bit definition
    - ASoC: stm32: sai: manage rebind issue
    - spi: spi_register_controller(): free bus id on error paths
    - riscv: Fix range looking for kernel image memblock
    - drm/amdgpu: clean wptr on wb when gpu recovery
    - binderfs: use refcount for binder control devices too
    - Revert "drm/fbdev: Fallback to non tiled mode if all tiles not present"
    - usb: typec: ucsi: displayport: Fix NULL pointer dereference
    - usb: typec: ucsi: displayport: Fix a potential race during registration
    - ALSA: hda/realtek - Enable headset mic of Acer X2660G with ALC662
    - ALSA: hda/realtek - Enable the headset of Acer N50-600 with ALC662
    - tty: fix compat TIOCGSERIAL leaking uninitialized memory
    - tty: fix compat TIOCGSERIAL checking wrong function ptr
    - iio: chemical: sps30: fix missing triggered buffer dependency
    - iio: accel: adxl372: Set iio_chan BE
    - iio: adc: stm32-dfsdm: fix sleep in atomic context
    - iio: light: vcnl4000: update sampling periods for vcnl4040
    - mmc: sdhci-cadence: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN for UniPhier
    - CIFS: fiemap: do not return EINVAL if get nothing
    - arm64: compat: Fix syscall number of compat_clock_getres
    - stm class: sys-t: Fix the use of time_after()
    - mm/hotplug: fix hot remove failure in SPARSEMEM|!VMEMMAP case
    - epoll: fix possible lost wakeup on epoll_ctl() path
    - nvmet-tcp: set MSG_MORE only if we actually have more to send
  * Pop sound from build-in speaker during cold boot and resume from S3
    (LP: #1866357) // Eoan update: upstream stable patchset 2020-04-06
    (LP: #1871225)
    - ALSA: hda/realtek: Fix pop noise on ALC225

[ Ubuntu: 5.3.0-51.44 ]

* CVE-2020-11884
    - SAUCE: s390/mm: fix page table upgrade vs 2ndary address mode accesses

[ Ubuntu: 5.3.0-48.41 ]

* eoan/linux: 5.3.0-48.41 -proposed tracker (LP: #1871900)
  * ubuntu_bpf test failed to build on Eoan (LP: #1871613)
    - SAUCE: Revert "bpf: Selftests build error in sockmap_basic.c"
    - SAUCE: Revert "selftests/bpf: Test freeing sockmap/sockhash with a socket in
      it"
    - SAUCE: selftests: Fix bpf reuseport test
  * dkms artifacts may expire from the pool (LP: #1850958)
    - [packaging] handle downloads from the librarian better
    - [Packaging] autoreconstruct -- manage executable debian files

-- Stefan Bader <stefan.bader@canonical.com>  Mon, 11 May 2020 12:33:08 +0200

Changed in linux-kvm (Ubuntu):
status:	Triaged → Fix Released

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-05-26:

#26

Re-opening as I'm not seeing any mention of this being signed now.

Changed in linux-kvm (Ubuntu):
status:	Fix Released → Triaged

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-01:

#27

Pinged in #ubuntu-kernel today for an update. It'd be good to have groovy signed soon so we can then roll this out to focal users.

Stefan Bader (smb) on 2020-06-15

Changed in linux-kvm (Ubuntu Focal):
assignee:	nobody → Stefan Bader (smb)
importance:	Undecided → High
status:	New → In Progress

Stefan Bader (smb) on 2020-06-15

Changed in linux-kvm (Ubuntu Focal):
status:	In Progress → Fix Committed

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-18:

#28

This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-focal' to 'verification-done-focal'. If the problem still exists, change the tag 'verification-needed-focal' to 'verification-failed-focal'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: verification-needed-focal

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-18:

#29

Trying to boot the proposed kernel in LXD:

"""
BdsDxe: loading Boot0007 "ubuntu" from HD(1,GPT,25633192-5DBD-412A-8A50-E29B79F72A50,0x800,0x32000)/\EFI\ubuntu\shimx64.efi
BdsDxe: starting Boot0007 "ubuntu" from HD(1,GPT,25633192-5DBD-412A-8A50-E29B79F72A50,0x800,0x32000)/\EFI\ubuntu\shimx64.efi
RAMDISK: incomplete write (4194304 != 8388608)
Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(0,0)
CPU: 0 PID: 1 Comm: swapper/0 Not tainted 5.4.0-1017-kvm #17-Ubuntu
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS 0.0.0 02/06/2015
Call Trace:
0xffffffff9392230d
0xffffffff932a8a21
0xffffffff9412e5c1
0xffffffff9412e80f
0xffffffff9412e976
0xffffffff9412e274
? 0xffffffff93938a70
0xffffffff93938a79
0xffffffff93a00215
Kernel Offset: 0x12200000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
---[ end Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(0,0) ]---
"""

This appears to be lz4 related. Changing the initramfs to gzip makes the VM boot just fine.
It's worth noting that when booting the generic kernel, we get the unpack error showed in https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1835660 but things still boot fine.

Marking verification as failed based on this. We need images to work properly with a standard Ubuntu config so need lz4 fixed.

tags:

added: verification-failed-focal
removed: verification-needed-focal

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-18:

#30

"""
Jun 18 13:56:15 f1 kernel: [ 0.383207] Trying to unpack rootfs image as initramfs...
Jun 18 13:56:15 f1 kernel: [ 0.463102] Initramfs unpacking failed: Decoding failed
"""

Is what we're getting on current generic kernel, though boot continues after that.
I don't know if when that happens we're actually skipping the initrd entirely and just get lucky that the generic kernel has everything we need builtin so it boots or if the error in that case is just wrong and the initrd is still properly unpacked and run.

Either way, this needs sorting, looking at the other bug report, there's been something wrong with our kernel and lz4 initrd for a long time and it's apparently biting us a lot more now.

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-18:

#31

@Stephane, if this bug was not phrased that generically I would feel inclined to say it verified ok if the kernel image can be booted in secureboot mode and has the requested config options set. And treat the initrd issue as a separate one on the path to completion.

For us, I would propose to count this feedback as success (and still release the kernel that way if there is no other problems).

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-18:

#32

@Stefan, so actually this is an actual regression.

1015 will boot just fine in LXD with secureboot disabled.
1017 will not boot at all in LXD with or without secureboot disabled.

I don't know if it's switching to a signed kernel which causes the lz4 issue but the result is a clear regression so I would not consider this kernel suitable for release to anyone.

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-23:

#33

@Stéphane, the uncompress message appears to be something that may happen if blocks are not aligned but not harming anything. By now I have played around with both a self created secureboot VM on bionic and also (following your turorial) a LXD 4.0 vM. And for both I could not repeat what you saw. Both booted. There is a minor issue for people creating their own VMs and using a graphical interface (like virt-manager). The kvm kernel has no framebuffer devices enabled so one does not see anything if one does not enable a serial console.

For LXD, when I repeated the steps from https://discuss.linuxcontainers.org/t/running-virtual-machines-with-lxd-4-0/7519 I saw one crash not finding the root disk after the initial lxc start when I ran lxc console. But that was with the generic kernel and that seems to be handled by the panic handler. Attaching to he console a second time I saw cloud-init finishing and then I installed the proposed kvm kernel in that running vm and rebooted. And this gave me a working boot:

ubuntu@ubuntu:~$ uname -a
Linux ubuntu 5.4.0-1017-kvm #17-Ubuntu SMP Mon Jun 15 13:05:31 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux
ubuntu@ubuntu:~$ dmesg|grep secure
[ 0.000000] secureboot: Secure boot enabled
[ 0.260090] secureboot: Secure boot enabled

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-23:

#34

Yeah, I think you're right, I also had the exact same panic happen now on 1015, so it's likely some grub weirdness rather than kernel regression.

It just so happened that in my last test I managed to get a working grub config after moving to 1015 and not with 1017. Looks like we'll need to poke at grub...

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-23:

#35

Hmm, actually no luck at booting either 1015 or 1017 on security.secureboot=false here, poked at grub and it does load both kernel and initrd...

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-23:

#36

Download full text (24.0 KiB)

"""
Loading Linux 5.4.0-1015-kvm ...
Loading initial ramdisk ...
Linux version 5.4.0-1015-kvm (buildd@lcy01-amd64-027) (gcc version 9.3.0 (Ubuntu 9.3.0-10ubuntu2)) #15-Ubuntu SMP Fri Jun 5 00:55:20 UTC 2020 (Ubuntu 5.4.0-1015.15-kvm 5.4.41)
Command line: BOOT_IMAGE=/boot/vmlinuz-5.4.0-1015-kvm root=UUID=03167f19-fb7f-4ba9-b4da-5e4acc0d97e3 ro single nomodeset
x86/fpu: Supporting XSAVE feature 0x001: 'x87 floating point registers'
x86/fpu: Supporting XSAVE feature 0x002: 'SSE registers'
x86/fpu: Supporting XSAVE feature 0x004: 'AVX registers'
x86/fpu: Supporting XSAVE feature 0x008: 'MPX bounds registers'
x86/fpu: Supporting XSAVE feature 0x010: 'MPX CSR'
x86/fpu: xstate_offset[2]: 576, xstate_sizes[2]: 256
x86/fpu: xstate_offset[3]: 832, xstate_sizes[3]: 64
x86/fpu: xstate_offset[4]: 896, xstate_sizes[4]: 64
x86/fpu: Enabled xstate features 0x1f, context size is 960 bytes, using 'compacted' format.
BIOS-provided physical RAM map:
BIOS-e820: [mem 0x0000000000000000-0x000000000009ffff] usable
BIOS-e820: [mem 0x0000000000100000-0x000000003ee6afff] usable
BIOS-e820: [mem 0x000000003ee6b000-0x000000003ef2bfff] reserved
BIOS-e820: [mem 0x000000003ef2c000-0x000000003f8eefff] usable
BIOS-e820: [mem 0x000000003f8ef000-0x000000003faeefff] reserved
BIOS-e820: [mem 0x000000003faef000-0x000000003fb75fff] usable
BIOS-e820: [mem 0x000000003fb76000-0x000000003fb7efff] ACPI data
BIOS-e820: [mem 0x000000003fb7f000-0x000000003fbfefff] ACPI NVS
BIOS-e820: [mem 0x000000003fbff000-0x000000003ffdffff] usable
BIOS-e820: [mem 0x000000003ffe0000-0x000000003fffffff] reserved
BIOS-e820: [mem 0x00000000b0000000-0x00000000bfffffff] reserved
BIOS-e820: [mem 0x00000000ffe00000-0x00000000ffffffff] reserved
NX (Execute Disable) protection: active
extended physical RAM map:
reserve setup_data: [mem 0x0000000000000000-0x000000000009ffff] usable
reserve setup_data: [mem 0x0000000000100000-0x000000003df4b017] usable
reserve setup_data: [mem 0x000000003df4b018-0x000000003df86457] usable
reserve setup_data: [mem 0x000000003df86458-0x000000003df87017] usable
reserve setup_data: [mem 0x000000003df87018-0x000000003df90a57] usable
reserve setup_data: [mem 0x000000003df90a58-0x000000003ee6afff] usable
reserve setup_data: [mem 0x000000003ee6b000-0x000000003ef2bfff] reserved
reserve setup_data: [mem 0x000000003ef2c000-0x000000003f8eefff] usable
reserve setup_data: [mem 0x000000003f8ef000-0x000000003faeefff] reserved
reserve setup_data: [mem 0x000000003faef000-0x000000003fb75fff] usable
reserve setup_data: [mem 0x000000003fb76000-0x000000003fb7efff] ACPI data
reserve setup_data: [mem 0x000000003fb7f000-0x000000003fbfefff] ACPI NVS
reserve setup_data: [mem 0x000000003fbff000-0x000000003ffdffff] usable
reserve setup_data: [mem 0x000000003ffe0000-0x000000003fffffff] reserved
reserve setup_data: [mem 0x00000000b0000000-0x00000000bfffffff] reserved
reserve setup_data: [mem 0x00000000ffe00000-0x00000000ffffffff] reserved
efi: EFI v2.70 by EDK II
efi: SMBIOS=0x3f915000 ACPI=0x3fb7e000 ACPI 2.0=0x3fb7e014 MEMATTR=0x3e115118
secureboot: Secure boot disabled
SMBIOS 2.8 present.
DMI: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS 0.0.0 02/06/2015
Hypervisor detected: KVM
kvm-clock: Using ...

"""
Loading Linux 5.4.0-1015-kvm ...
Loading initial ramdisk ...
Linux version 5.4.0-1015-kvm (buildd@lcy01-amd64-027) (gcc version 9.3.0 (Ubuntu 9.3.0-10ubuntu2)) #15-Ubuntu SMP Fri Jun 5 00:55:20 UTC 2020 (Ubuntu 5.4.0-1015.15-kvm 5.4.41)
Command line: BOOT_IMAGE=/boot/vmlinuz-5.4.0-1015-kvm root=UUID=03167f19-fb7f-4ba9-b4da-5e4acc0d97e3 ro single nomodeset
x86/fpu: Supporting XSAVE feature 0x001: 'x87 floating point registers'
x86/fpu: Supporting XSAVE feature 0x002: 'SSE registers'
x86/fpu: Supporting XSAVE feature 0x004: 'AVX registers'
x86/fpu: Supporting XSAVE feature 0x008: 'MPX bounds registers'
x86/fpu: Supporting XSAVE feature 0x010: 'MPX CSR'
x86/fpu: xstate_offset[2]:  576, xstate_sizes[2]:  256
x86/fpu: xstate_offset[3]:  832, xstate_sizes[3]:   64
x86/fpu: xstate_offset[4]:  896, xstate_sizes[4]:   64
x86/fpu: Enabled xstate features 0x1f, context size is 960 bytes, using 'compacted' format.
BIOS-provided physical RAM map:
BIOS-e820: [mem 0x0000000000000000-0x000000000009ffff] usable
BIOS-e820: [mem 0x0000000000100000-0x000000003ee6afff] usable
BIOS-e820: [mem 0x000000003ee6b000-0x000000003ef2bfff] reserved
BIOS-e820: [mem 0x000000003ef2c000-0x000000003f8eefff] usable
BIOS-e820: [mem 0x000000003f8ef000-0x000000003faeefff] reserved
BIOS-e820: [mem 0x000000003faef000-0x000000003fb75fff] usable
BIOS-e820: [mem 0x000000003fb76000-0x000000003fb7efff] ACPI data
BIOS-e820: [mem 0x000000003fb7f000-0x000000003fbfefff] ACPI NVS
BIOS-e820: [mem 0x000000003fbff000-0x000000003ffdffff] usable
BIOS-e820: [mem 0x000000003ffe0000-0x000000003fffffff] reserved
BIOS-e820: [mem 0x00000000b0000000-0x00000000bfffffff] reserved
BIOS-e820: [mem 0x00000000ffe00000-0x00000000ffffffff] reserved
NX (Execute Disable) protection: active
extended physical RAM map:
reserve setup_data: [mem 0x0000000000000000-0x000000000009ffff] usable
reserve setup_data: [mem 0x0000000000100000-0x000000003df4b017] usable
reserve setup_data: [mem 0x000000003df4b018-0x000000003df86457] usable
reserve setup_data: [mem 0x000000003df86458-0x000000003df87017] usable
reserve setup_data: [mem 0x000000003df87018-0x000000003df90a57] usable
reserve setup_data: [mem 0x000000003df90a58-0x000000003ee6afff] usable
reserve setup_data: [mem 0x000000003ee6b000-0x000000003ef2bfff] reserved
reserve setup_data: [mem 0x000000003ef2c000-0x000000003f8eefff] usable
reserve setup_data: [mem 0x000000003f8ef000-0x000000003faeefff] reserved
reserve setup_data: [mem 0x000000003faef000-0x000000003fb75fff] usable
reserve setup_data: [mem 0x000000003fb76000-0x000000003fb7efff] ACPI data
reserve setup_data: [mem 0x000000003fb7f000-0x000000003fbfefff] ACPI NVS
reserve setup_data: [mem 0x000000003fbff000-0x000000003ffdffff] usable
reserve setup_data: [mem 0x000000003ffe0000-0x000000003fffffff] reserved
reserve setup_data: [mem 0x00000000b0000000-0x00000000bfffffff] reserved
reserve setup_data: [mem 0x00000000ffe00000-0x00000000ffffffff] reserved
efi: EFI v2.70 by EDK II
efi:  SMBIOS=0x3f915000  ACPI=0x3fb7e000  ACPI 2.0=0x3fb7e014  MEMATTR=0x3e115118 
secureboot: Secure boot disabled
SMBIOS 2.8 present.
DMI: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS 0.0.0 02/06/2015
Hypervisor detected: KVM
kvm-clock: Using msrs 4b564d01 and 4b564d00
kvm-clock: cpu 0, msr 14630001, primary cpu clock
kvm-clock: using sched offset of 4626558194 cycles
clocksource: kvm-clock: mask: 0xffffffffffffffff max_cycles: 0x1cd42e4dffb, max_idle_ns: 881590591483 ns
tsc: Detected 2712.000 MHz processor
last_pfn = 0x3ffe0 max_arch_pfn = 0x400000000
x86/PAT: Configuration [0-7]: WB  WT  UC- UC  WB  WT  UC- UC  
Using GB pages for direct mapping
secureboot: Secure boot disabled
RAMDISK: [mem 0x2c111000-0x2cbadfff]
ACPI: Early table checksum verification disabled
ACPI: RSDP 0x000000003FB7E014 000024 (v02 BOCHS )
ACPI: XSDT 0x000000003FB7D0E8 00004C (v01 BOCHS  BXPCFACP 00000001      01000013)
ACPI: FACP 0x000000003FB7A000 0000F4 (v03 BOCHS  BXPCFACP 00000001 BXPC 00000001)
ACPI: DSDT 0x000000003FB7B000 001E86 (v01 BOCHS  BXPCDSDT 00000001 BXPC 00000001)
ACPI: FACS 0x000000003FBDD000 000040
ACPI: APIC 0x000000003FB79000 000078 (v01 BOCHS  BXPCAPIC 00000001 BXPC 00000001)
ACPI: HPET 0x000000003FB78000 000038 (v01 BOCHS  BXPCHPET 00000001 BXPC 00000001)
ACPI: MCFG 0x000000003FB77000 00003C (v01 BOCHS  BXPCMCFG 00000001 BXPC 00000001)
ACPI: BGRT 0x000000003FB76000 000038 (v01 INTEL  EDK2     00000002      01000013)
No NUMA configuration found
Faking a node at [mem 0x0000000000000000-0x000000003ffdffff]
NODE_DATA(0) allocated [mem 0x3ff80000-0x3ff82fff]
Zone ranges:
  DMA32    [mem 0x0000000000001000-0x000000003ffdffff]
  Normal   empty
Movable zone start for each node
Early memory node ranges
  node   0: [mem 0x0000000000001000-0x000000000009ffff]
  node   0: [mem 0x0000000000100000-0x000000003ee6afff]
  node   0: [mem 0x000000003ef2c000-0x000000003f8eefff]
  node   0: [mem 0x000000003faef000-0x000000003fb75fff]
  node   0: [mem 0x000000003fbff000-0x000000003ffdffff]
Zeroed struct page in unavailable ranges: 971 pages
Initmem setup node 0 [mem 0x0000000000001000-0x000000003ffdffff]
ACPI: LAPIC_NMI (acpi_id[0xff] dfl dfl lint[0x1])
IOAPIC[0]: apic_id 0, version 17, address 0xfec00000, GSI 0-23
ACPI: INT_SRC_OVR (bus 0 bus_irq 0 global_irq 2 dfl dfl)
ACPI: INT_SRC_OVR (bus 0 bus_irq 5 global_irq 5 high level)
ACPI: INT_SRC_OVR (bus 0 bus_irq 9 global_irq 9 high level)
ACPI: INT_SRC_OVR (bus 0 bus_irq 10 global_irq 10 high level)
ACPI: INT_SRC_OVR (bus 0 bus_irq 11 global_irq 11 high level)
Using ACPI (MADT) for SMP configuration information
ACPI: HPET id: 0x8086a201 base: 0xfed00000
smpboot: Allowing 1 CPUs, 0 hotplug CPUs
KVM setup pv sched yield
[mem 0x40000000-0xafffffff] available for PCI devices
Booting paravirtualized kernel on KVM
clocksource: refined-jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 7645519600211568 ns
setup_percpu: NR_CPUS:64 nr_cpumask_bits:64 nr_cpu_ids:1 nr_node_ids:1
percpu: Embedded 51 pages/cpu s169240 r8192 d31464 u2097152
KVM setup async PF for cpu 0
kvm-stealtime: cpu 0, msr 3e215dc0
Built 1 zonelists, mobility grouping on.  Total pages: 255038
Policy zone: DMA32
Kernel command line: BOOT_IMAGE=/boot/vmlinuz-5.4.0-1015-kvm root=UUID=03167f19-fb7f-4ba9-b4da-5e4acc0d97e3 ro single nomodeset
Dentry cache hash table entries: 131072 (order: 8, 1048576 bytes, linear)
Inode-cache hash table entries: 65536 (order: 7, 524288 bytes, linear)
mem auto-init: stack:off, heap alloc:on, heap free:off
Memory: 963176K/1044692K available (10243K kernel code, 961K rwdata, 1480K rodata, 1112K init, 1916K bss, 81516K reserved, 0K cma-reserved)
random: get_random_u64 called from 0xffffffff82635378 with crng_init=0
SLUB: HWalign=64, Order=0-3, MinObjects=0, CPUs=1, Nodes=1
Kernel/User page tables isolation: enabled
rcu: Hierarchical RCU implementation.
rcu:    RCU restricting CPUs from NR_CPUS=64 to nr_cpu_ids=1.
rcu: RCU calculated value of scheduler-enlistment delay is 25 jiffies.
rcu: Adjusting geometry for rcu_fanout_leaf=16, nr_cpu_ids=1
NR_IRQS: 4352, nr_irqs: 48, preallocated irqs: 16
printk: console [ttyS0] enabled
ACPI: Core revision 20190816
clocksource: hpet: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 19112604467 ns
APIC: Switch to symmetric I/O mode setup
x2apic enabled
Switched APIC routing to physical x2apic.
KVM setup pv IPIs
..TIMER: vector=0x30 apic1=0 pin1=2 apic2=-1 pin2=-1
clocksource: tsc-early: mask: 0xffffffffffffffff max_cycles: 0x2717868ea45, max_idle_ns: 440795316085 ns
Calibrating delay loop (skipped) preset value.. 5424.00 BogoMIPS (lpj=10848000)
pid_max: default: 4096 minimum: 301
LSM: Security Framework initializing
Yama: becoming mindful.
AppArmor: AppArmor initialized
Mount-cache hash table entries: 2048 (order: 2, 16384 bytes, linear)
Mountpoint-cache hash table entries: 2048 (order: 2, 16384 bytes, linear)
*** VALIDATE tmpfs ***
*** VALIDATE proc ***
*** VALIDATE cgroup1 ***
*** VALIDATE cgroup2 ***
Last level iTLB entries: 4KB 0, 2MB 0, 4MB 0
Last level dTLB entries: 4KB 0, 2MB 0, 4MB 0, 1GB 0
Spectre V1 : Mitigation: usercopy/swapgs barriers and __user pointer sanitization
Spectre V2 : Mitigation: Full generic retpoline
Spectre V2 : Spectre v2 / SpectreRSB mitigation: Filling RSB on context switch
Spectre V2 : Enabling Restricted Speculation for firmware calls
Spectre V2 : mitigation: Enabling conditional Indirect Branch Prediction Barrier
Speculative Store Bypass: Mitigation: Speculative Store Bypass disabled via prctl and seccomp
TAA: Mitigation: Clear CPU buffers
SRBDS: Unknown: Dependent on hypervisor status
MDS: Mitigation: Clear CPU buffers
Freeing SMP alternatives memory: 32K
smpboot: CPU0: Intel(R) Core(TM) i5-7300U CPU @ 2.60GHz (family: 0x6, model: 0x8e, stepping: 0x9)
Performance Events: Skylake events, Intel PMU driver.
... version:                2
... bit width:              48
... generic registers:      4
... value mask:             0000ffffffffffff
... max period:             000000007fffffff
... fixed-purpose events:   3
... event mask:             000000070000000f
rcu: Hierarchical SRCU implementation.
smp: Bringing up secondary CPUs ...
smp: Brought up 1 node, 1 CPU
smpboot: Max logical packages: 1
smpboot: Total of 1 processors activated (5424.00 BogoMIPS)
devtmpfs: initialized
x86/mm: Memory block size: 128MB
clocksource: jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 7645041785100000 ns
futex hash table entries: 16 (order: -2, 1024 bytes, linear)
NET: Registered protocol family 16
audit: initializing netlink subsys (disabled)
cpuidle: using governor ladder
cpuidle: using governor menu
KVM setup pv remote TLB flush
ACPI: bus type PCI registered
acpiphp: ACPI Hot Plug PCI Controller Driver version: 0.5
PCI: Using configuration type 1 for base access
audit: type=2000 audit(1592930346.878:1): state=initialized audit_enabled=0 res=1
HugeTLB registered 2.00 MiB page size, pre-allocated 0 pages
ACPI: Added _OSI(Module Device)
ACPI: Added _OSI(Processor Device)
ACPI: Added _OSI(3.0 _SCP Extensions)
ACPI: Added _OSI(Processor Aggregator Device)
ACPI: Added _OSI(Linux-Dell-Video)
ACPI: Added _OSI(Linux-Lenovo-NV-HDMI-Audio)
ACPI: Added _OSI(Linux-HPI-Hybrid-Graphics)
ACPI: 1 ACPI AML tables successfully acquired and loaded
ACPI: Interpreter enabled
ACPI: (supports S0 S5)
ACPI: Using IOAPIC for interrupt routing
PCI: Using host bridge windows from ACPI; if necessary, use "pci=nocrs" and report a bug
ACPI: Enabled 1 GPEs in block 00 to 3F
ACPI: PCI Root Bridge [PCI0] (domain 0000 [bus 00-ff])
acpi PNP0A08:00: _OSC: OS supports [ASPM ClockPM Segments HPX-Type3]
acpi PNP0A08:00: _OSC: not requesting OS control; OS requires [ExtendedConfig ASPM ClockPM MSI]
PCI host bridge to bus 0000:00
pci_bus 0000:00: root bus resource [io  0x0000-0x0cf7 window]
pci_bus 0000:00: root bus resource [io  0x0d00-0xffff window]
pci_bus 0000:00: root bus resource [mem 0x000a0000-0x000bffff window]
pci_bus 0000:00: root bus resource [mem 0x40000000-0xafffffff window]
pci_bus 0000:00: root bus resource [mem 0xc0000000-0xfebfffff window]
pci_bus 0000:00: root bus resource [mem 0x800000000-0xfffffffff window]
pci_bus 0000:00: root bus resource [bus 00-ff]
pci 0000:00:00.0: [8086:29c0] type 00 class 0x060000
pci 0000:00:01.0: [1b36:000c] type 01 class 0x060400
pci 0000:00:01.0: reg 0x10: [mem 0xc1245000-0xc1245fff]
pci 0000:00:01.1: [1b36:000c] type 01 class 0x060400
pci 0000:00:01.1: reg 0x10: [mem 0xc1244000-0xc1244fff]
pci 0000:00:01.2: [1b36:000c] type 01 class 0x060400
pci 0000:00:01.2: reg 0x10: [mem 0xc1243000-0xc1243fff]
pci 0000:00:01.3: [1b36:000c] type 01 class 0x060400
pci 0000:00:01.3: reg 0x10: [mem 0xc1242000-0xc1242fff]
pci 0000:00:01.4: [1b36:000c] type 01 class 0x060400
pci 0000:00:01.4: reg 0x10: [mem 0xc1241000-0xc1241fff]
pci 0000:00:1f.0: [8086:2918] type 00 class 0x060100
pci 0000:00:1f.0: quirk: [io  0x0600-0x067f] claimed by ICH6 ACPI/GPIO/TCO
pci 0000:00:1f.2: [8086:2922] type 00 class 0x010601
pci 0000:00:1f.2: reg 0x20: [io  0xa240-0xa25f]
pci 0000:00:1f.2: reg 0x24: [mem 0xc1240000-0xc1240fff]
pci 0000:00:1f.3: [8086:2930] type 00 class 0x0c0500
pci 0000:00:1f.3: reg 0x20: [io  0xa200-0xa23f]
pci 0000:01:00.0: [1af4:1045] type 00 class 0x00ff00
pci 0000:01:00.0: reg 0x20: [mem 0x800014000-0x800017fff 64bit pref]
pci 0000:01:00.1: [1af4:1044] type 00 class 0x00ff00
pci 0000:01:00.1: reg 0x20: [mem 0x800010000-0x800013fff 64bit pref]
pci 0000:01:00.2: [1af4:1052] type 00 class 0x090000
pci 0000:01:00.2: reg 0x14: [mem 0xc1003000-0xc1003fff]
pci 0000:01:00.2: reg 0x20: [mem 0x80000c000-0x80000ffff 64bit pref]
pci 0000:01:00.3: [1af4:1052] type 00 class 0x098000
pci 0000:01:00.3: reg 0x14: [mem 0xc1002000-0xc1002fff]
pci 0000:01:00.3: reg 0x20: [mem 0x800008000-0x80000bfff 64bit pref]
pci 0000:01:00.4: [1af4:1053] type 00 class 0x078000
pci 0000:01:00.4: reg 0x14: [mem 0xc1001000-0xc1001fff]
pci 0000:01:00.4: reg 0x20: [mem 0x800004000-0x800007fff 64bit pref]
pci 0000:01:00.5: [1af4:1043] type 00 class 0x078000
pci 0000:01:00.5: reg 0x14: [mem 0xc1000000-0xc1000fff]
pci 0000:01:00.5: reg 0x20: [mem 0x800000000-0x800003fff 64bit pref]
pci 0000:00:01.0: PCI bridge to [bus 01]
pci 0000:00:01.0:   bridge window [io  0xa000-0xafff]
pci 0000:00:01.0:   bridge window [mem 0xc1000000-0xc11fffff]
pci 0000:00:01.0:   bridge window [mem 0x800000000-0x8000fffff 64bit pref]
pci 0000:02:00.0: [1af4:1048] type 00 class 0x010000
pci 0000:02:00.0: reg 0x14: [mem 0xc0e00000-0xc0e00fff]
pci 0000:02:00.0: reg 0x20: [mem 0x800100000-0x800103fff 64bit pref]
pci 0000:00:01.1: PCI bridge to [bus 02]
pci 0000:00:01.1:   bridge window [io  0x9000-0x9fff]
pci 0000:00:01.1:   bridge window [mem 0xc0e00000-0xc0ffffff]
pci 0000:00:01.1:   bridge window [mem 0x800100000-0x8001fffff 64bit pref]
pci 0000:03:00.0: [1af4:1049] type 00 class 0x000200
pci 0000:03:00.0: reg 0x14: [mem 0xc0c00000-0xc0c00fff]
pci 0000:03:00.0: reg 0x20: [mem 0x800200000-0x800203fff 64bit pref]
pci 0000:00:01.2: PCI bridge to [bus 03]
pci 0000:00:01.2:   bridge window [io  0x8000-0x8fff]
pci 0000:00:01.2:   bridge window [mem 0xc0c00000-0xc0dfffff]
pci 0000:00:01.2:   bridge window [mem 0x800200000-0x8002fffff 64bit pref]
pci 0000:04:00.0: [1af4:1050] type 00 class 0x030000
pci 0000:04:00.0: reg 0x10: [mem 0xc0000000-0xc07fffff pref]
pci 0000:04:00.0: reg 0x18: [mem 0x800300000-0x800303fff 64bit pref]
pci 0000:04:00.0: reg 0x20: [mem 0xc0800000-0xc0800fff]
pci 0000:04:00.0: reg 0x30: [mem 0xffff0000-0xffffffff pref]
pci 0000:00:01.3: PCI bridge to [bus 04]
pci 0000:00:01.3:   bridge window [io  0x7000-0x7fff]
pci 0000:00:01.3:   bridge window [mem 0xc0000000-0xc08fffff]
pci 0000:00:01.3:   bridge window [mem 0x800300000-0x8003fffff 64bit pref]
pci 0000:05:00.0: [1af4:1041] type 00 class 0x020000
pci 0000:05:00.0: reg 0x14: [mem 0xc0a00000-0xc0a00fff]
pci 0000:05:00.0: reg 0x20: [mem 0x800400000-0x800403fff 64bit pref]
pci 0000:05:00.0: reg 0x30: [mem 0xfffc0000-0xffffffff pref]
pci 0000:00:01.4: PCI bridge to [bus 05]
pci 0000:00:01.4:   bridge window [io  0x6000-0x6fff]
pci 0000:00:01.4:   bridge window [mem 0xc0a00000-0xc0bfffff]
pci 0000:00:01.4:   bridge window [mem 0x800400000-0x8004fffff 64bit pref]
ACPI: PCI Interrupt Link [LNKA] (IRQs 5 *10 11)
ACPI: PCI Interrupt Link [LNKB] (IRQs 5 *10 11)
ACPI: PCI Interrupt Link [LNKC] (IRQs 5 10 *11)
ACPI: PCI Interrupt Link [LNKD] (IRQs 5 10 *11)
ACPI: PCI Interrupt Link [LNKE] (IRQs 5 *10 11)
ACPI: PCI Interrupt Link [LNKF] (IRQs 5 *10 11)
ACPI: PCI Interrupt Link [LNKG] (IRQs 5 10 *11)
ACPI: PCI Interrupt Link [LNKH] (IRQs 5 10 *11)
ACPI: PCI Interrupt Link [GSIA] (IRQs *16)
ACPI: PCI Interrupt Link [GSIB] (IRQs *17)
ACPI: PCI Interrupt Link [GSIC] (IRQs *18)
ACPI: PCI Interrupt Link [GSID] (IRQs *19)
ACPI: PCI Interrupt Link [GSIE] (IRQs *20)
ACPI: PCI Interrupt Link [GSIF] (IRQs *21)
ACPI: PCI Interrupt Link [GSIG] (IRQs *22)
ACPI: PCI Interrupt Link [GSIH] (IRQs *23)
SCSI subsystem initialized
pci 0000:04:00.0: vgaarb: setting as boot VGA device
pci 0000:04:00.0: vgaarb: VGA device added: decodes=io+mem,owns=io+mem,locks=none
pci 0000:04:00.0: vgaarb: bridge control possible
vgaarb: loaded
Registered efivars operations
PCI: Using ACPI for IRQ routing
pci 0000:00:1f.2: can't claim BAR 4 [io  0xa240-0xa25f]: address conflict with PCI Bus 0000:01 [io  0xa000-0xafff]
pci 0000:00:1f.3: can't claim BAR 4 [io  0xa200-0xa23f]: address conflict with PCI Bus 0000:01 [io  0xa000-0xafff]
NetLabel: Initializing
NetLabel:  domain hash size = 128
NetLabel:  protocols = UNLABELED CIPSOv4 CALIPSO
NetLabel:  unlabeled traffic allowed by default
clocksource: Switched to clocksource kvm-clock
*** VALIDATE bpf ***
VFS: Disk quotas dquot_6.6.0
VFS: Dquot-cache hash table entries: 512 (order 0, 4096 bytes)
*** VALIDATE ramfs ***
*** VALIDATE hugetlbfs ***
AppArmor: AppArmor Filesystem Enabled
pnp: PnP ACPI init
pnp: PnP ACPI: found 4 devices
thermal_sys: Registered thermal governor 'step_wise'
pci 0000:04:00.0: can't claim BAR 6 [mem 0xffff0000-0xffffffff pref]: no compatible bridge window
pci 0000:05:00.0: can't claim BAR 6 [mem 0xfffc0000-0xffffffff pref]: no compatible bridge window
pci 0000:00:1f.3: BAR 4: assigned [io  0x1000-0x103f]
pci 0000:00:1f.2: BAR 4: assigned [io  0x1040-0x105f]
pci 0000:00:01.0: PCI bridge to [bus 01]
pci 0000:00:01.0:   bridge window [io  0xa000-0xafff]
pci 0000:00:01.0:   bridge window [mem 0xc1000000-0xc11fffff]
pci 0000:00:01.0:   bridge window [mem 0x800000000-0x8000fffff 64bit pref]
pci 0000:00:01.1: PCI bridge to [bus 02]
pci 0000:00:01.1:   bridge window [io  0x9000-0x9fff]
pci 0000:00:01.1:   bridge window [mem 0xc0e00000-0xc0ffffff]
pci 0000:00:01.1:   bridge window [mem 0x800100000-0x8001fffff 64bit pref]
pci 0000:00:01.2: PCI bridge to [bus 03]
pci 0000:00:01.2:   bridge window [io  0x8000-0x8fff]
pci 0000:00:01.2:   bridge window [mem 0xc0c00000-0xc0dfffff]
pci 0000:00:01.2:   bridge window [mem 0x800200000-0x8002fffff 64bit pref]
pci 0000:04:00.0: BAR 6: assigned [mem 0xc0810000-0xc081ffff pref]
pci 0000:00:01.3: PCI bridge to [bus 04]
pci 0000:00:01.3:   bridge window [io  0x7000-0x7fff]
pci 0000:00:01.3:   bridge window [mem 0xc0000000-0xc08fffff]
pci 0000:00:01.3:   bridge window [mem 0x800300000-0x8003fffff 64bit pref]
pci 0000:05:00.0: BAR 6: assigned [mem 0xc0a40000-0xc0a7ffff pref]
pci 0000:00:01.4: PCI bridge to [bus 05]
pci 0000:00:01.4:   bridge window [io  0x6000-0x6fff]
pci 0000:00:01.4:   bridge window [mem 0xc0a00000-0xc0bfffff]
pci 0000:00:01.4:   bridge window [mem 0x800400000-0x8004fffff 64bit pref]
pci_bus 0000:00: resource 4 [io  0x0000-0x0cf7 window]
pci_bus 0000:00: resource 5 [io  0x0d00-0xffff window]
pci_bus 0000:00: resource 6 [mem 0x000a0000-0x000bffff window]
pci_bus 0000:00: resource 7 [mem 0x40000000-0xafffffff window]
pci_bus 0000:00: resource 8 [mem 0xc0000000-0xfebfffff window]
pci_bus 0000:00: resource 9 [mem 0x800000000-0xfffffffff window]
pci_bus 0000:01: resource 0 [io  0xa000-0xafff]
pci_bus 0000:01: resource 1 [mem 0xc1000000-0xc11fffff]
pci_bus 0000:01: resource 2 [mem 0x800000000-0x8000fffff 64bit pref]
pci_bus 0000:02: resource 0 [io  0x9000-0x9fff]
pci_bus 0000:02: resource 1 [mem 0xc0e00000-0xc0ffffff]
pci_bus 0000:02: resource 2 [mem 0x800100000-0x8001fffff 64bit pref]
pci_bus 0000:03: resource 0 [io  0x8000-0x8fff]
pci_bus 0000:03: resource 1 [mem 0xc0c00000-0xc0dfffff]
pci_bus 0000:03: resource 2 [mem 0x800200000-0x8002fffff 64bit pref]
pci_bus 0000:04: resource 0 [io  0x7000-0x7fff]
pci_bus 0000:04: resource 1 [mem 0xc0000000-0xc08fffff]
pci_bus 0000:04: resource 2 [mem 0x800300000-0x8003fffff 64bit pref]
pci_bus 0000:05: resource 0 [io  0x6000-0x6fff]
pci_bus 0000:05: resource 1 [mem 0xc0a00000-0xc0bfffff]
pci_bus 0000:05: resource 2 [mem 0x800400000-0x8004fffff 64bit pref]
NET: Registered protocol family 2
tcp_listen_portaddr_hash hash table entries: 512 (order: 1, 8192 bytes, linear)
TCP established hash table entries: 8192 (order: 4, 65536 bytes, linear)
TCP bind hash table entries: 8192 (order: 5, 131072 bytes, linear)
TCP: Hash tables configured (established 8192 bind 8192)
UDP hash table entries: 512 (order: 2, 16384 bytes, linear)
UDP-Lite hash table entries: 512 (order: 2, 16384 bytes, linear)
NET: Registered protocol family 1
NET: Registered protocol family 44
pci 0000:04:00.0: Video device with shadowed ROM at [mem 0x000c0000-0x000dffff]
PCI: CLS 0 bytes, default 64
Trying to unpack rootfs image as initramfs...
rootfs image is not initramfs (Decoding failed); looks like an initrd
Freeing initrd memory: 10868K
clocksource: tsc: mask: 0xffffffffffffffff max_cycles: 0x2717868ea45, max_idle_ns: 440795316085 ns
Initialise system trusted keyrings
workingset: timestamp_bits=40 max_order=18 bucket_order=0
squashfs: version 4.0 (2009/01/31) Phillip Lougher
9p: Installing v9fs 9p2000 file system support
Key type asymmetric registered
Asymmetric key parser 'x509' registered
Block layer SCSI generic (bsg) driver version 0.4 loaded (major 251)
io scheduler mq-deadline registered
io scheduler kyber registered
PCI Interrupt Link [GSIF] enabled at IRQ 21
shpchp: Standard Hot Plug PCI Controller Driver version: 0.4
input: Power Button as /devices/LNXSYSTM:00/LNXPWRBN:00/input/input0
ACPI: Power Button [PWRF]
Serial: 8250/16550 driver, 4 ports, IRQ sharing disabled
00:03: ttyS0 at I/O 0x3f8 (irq = 4, base_baud = 115200) is a 16550A
brd: module loaded
Loading iSCSI transport class v2.0-870.
random: fast init done
iscsi: registered transport (tcp)
random: crng init done
scsi host0: Virtio SCSI HBA
scsi 0:0:0:1: Direct-Access     QEMU     QEMU HARDDISK    2.5+ PQ: 0 ANSI: 5
sd 0:0:0:1: Power-on or device reset occurred
sd 0:0:0:1: [sda] 62914560 512-byte logical blocks: (32.2 GB/30.0 GiB)
sd 0:0:0:1: [sda] Write Protect is off
sd 0:0:0:1: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
 sda: sda1 sda2
sd 0:0:0:1: [sda] Attached SCSI disk
tun: Universal TUN/TAP device driver, 1.6
intel_pstate: CPU model not supported
EFI Variables Facility v0.08 2004-May-17
ipip: IPv4 and MPLS over IPv4 tunneling driver
NET: Registered protocol family 10
Segment Routing with IPv6
sit: IPv6, IPv4 and MPLS over IPv4 tunneling driver
NET: Registered protocol family 17
bridge: filtering via arp/ip/ip6tables is no longer available by default. Update your scripts to load br_netfilter if you need this.
9pnet: Installing 9P2000 support
IPI shorthand broadcast: enabled
sched_clock: Marking stable (948267893, 160278017)->(1200547448, -92001538)
registered taskstats version 1
Loading compiled-in X.509 certificates
Loaded X.509 cert 'Build time autogenerated kernel key: c35385de8b476284e63f3b8866b81b8f7a5f8772'
Key type ._fscrypt registered
Key type .fscrypt registered
AppArmor: AppArmor sha1 policy hashing enabled
RAMDISK: lz4 image found at block 0
RAMDISK: incomplete write (4194304 != 8388608)
VFS: Cannot open root device "UUID=03167f19-fb7f-4ba9-b4da-5e4acc0d97e3" or unknown-block(0,0): error -6
Please append a correct "root=" boot option; here are the available partitions:
0100            4096 ram0 
 (driver?)
0101            4096 ram1 
 (driver?)
0102            4096 ram2 
 (driver?)
0103            4096 ram3 
 (driver?)
0104            4096 ram4 
 (driver?)
0105            4096 ram5 
 (driver?)
0106            4096 ram6 
 (driver?)
0107            4096 ram7 
 (driver?)
0108            4096 ram8 
 (driver?)
0109            4096 ram9 
 (driver?)
010a            4096 ram10 
 (driver?)
010b            4096 ram11 
 (driver?)
010c            4096 ram12 
 (driver?)
010d            4096 ram13 
 (driver?)
010e            4096 ram14 
 (driver?)
010f            4096 ram15 
 (driver?)
0800        31457280 sda 
 driver: sd
  0801          102400 sda1 18400f2c-d8ee-433e-b5db-0b2533da3360

0802        31353839 sda2 f1490ec5-9700-4853-a18f-a2298eb8ea6c

Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(0,0)
CPU: 0 PID: 1 Comm: swapper/0 Not tainted 5.4.0-1015-kvm #15-Ubuntu
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS 0.0.0 02/06/2015
Call Trace:
 0xffffffff82b222ed
 0xffffffff824a8a11
 0xffffffff8332e5be
 0xffffffff8332e80c
 0xffffffff8332e973
 0xffffffff8332e271
 ? 0xffffffff82b389a0
 0xffffffff82b389a9
 0xffffffff82c00215
Kernel Offset: 0x1400000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
---[ end Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(0,0) ]---
"""

This seems to indicate that the initrd is never actually loaded here and so the kernel tries to direct boot the partition but isn't finding the partition because it's matched bv UUID and it only lists PARTUUID.

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-23:

#37

@smb Can you confirm that your system indeed goes through the initrd and isn't just silently falling back to directly mounting and booting /?

Booting with break=mount would likely be a valid way to test this (should drop you in a shell).

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-23:

#38

Download full text (25.4 KiB)

"""
stgraber@castiana:~$ lxc launch images:ubuntu/focal f1 --vm
Creating f1
Starting f1
stgraber@castiana:~$ lxc exec f1 bash
root@f1:~# echo "deb http://archive.ubuntu.com/ubuntu focal-proposed main restricted universe multiverse" >> /etc/apt/sources.list
root@f1:~# apt-get update
Hit:1 http://archive.ubuntu.com/ubuntu focal InRelease
Get:2 http://archive.ubuntu.com/ubuntu focal-updates InRelease [107 kB]
Get:3 http://security.ubuntu.com/ubuntu focal-security InRelease [107 kB]
Get:4 http://archive.ubuntu.com/ubuntu focal-proposed InRelease [265 kB]
Get:5 http://archive.ubuntu.com/ubuntu focal-updates/main amd64 Packages [201 kB]
Get:6 http://archive.ubuntu.com/ubuntu focal-updates/main Translation-en [80.2 kB]
Get:7 http://archive.ubuntu.com/ubuntu focal-updates/restricted amd64 Packages [11.1 kB]
Get:8 http://archive.ubuntu.com/ubuntu focal-updates/restricted Translation-en [3036 B]
Get:9 http://archive.ubuntu.com/ubuntu focal-updates/universe amd64 Packages [114 kB]
Get:10 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 Packages [82.4 kB]
Get:11 http://archive.ubuntu.com/ubuntu focal-proposed/main Translation-en [35.0 kB]
Get:12 http://archive.ubuntu.com/ubuntu focal-proposed/restricted amd64 Packages [7132 B]
Get:13 http://archive.ubuntu.com/ubuntu focal-proposed/restricted Translation-en [2144 B]
Get:14 http://archive.ubuntu.com/ubuntu focal-proposed/universe amd64 Packages [35.8 kB]
Get:15 http://archive.ubuntu.com/ubuntu focal-proposed/universe Translation-en [24.5 kB]
Get:16 http://archive.ubuntu.com/ubuntu focal-proposed/multiverse Translation-en [3404 B]
Fetched 1079 kB in 1s (794 kB/s)
Reading package lists... Done
root@f1:~# apt-get install linux-kvm
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following additional packages will be installed:
  linux-headers-5.4.0-1017-kvm linux-headers-kvm linux-image-5.4.0-1017-kvm linux-image-kvm linux-kvm-headers-5.4.0-1017 linux-modules-5.4.0-1017-kvm
Suggested packages:
  fdutils linux-kvm-doc-5.4.0 | linux-kvm-source-5.4.0 linux-kvm-tools
The following NEW packages will be installed:
  linux-headers-5.4.0-1017-kvm linux-headers-kvm linux-image-5.4.0-1017-kvm linux-image-kvm linux-kvm linux-kvm-headers-5.4.0-1017
  linux-modules-5.4.0-1017-kvm
0 upgraded, 7 newly installed, 0 to remove and 18 not upgraded.
Need to get 28.4 MB of archives.
After this operation, 126 MB of additional disk space will be used.
Do you want to continue? [Y/n]
Get:1 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-kvm-headers-5.4.0-1017 all 5.4.0-1017.17 [11.3 MB]
Get:2 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-headers-5.4.0-1017-kvm amd64 5.4.0-1017.17 [1254 kB]
Get:3 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-headers-kvm amd64 5.4.0.1017.16 [4376 B]
Get:4 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-modules-5.4.0-1017-kvm amd64 5.4.0-1017.17 [10.6 MB]
Get:5 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-image-5.4.0-1017-kvm amd64 5.4.0-1017.17 [5158 kB]
Get:6 http://archive.ubuntu.com/ubuntu focal-proposed/main amd6...

"""
stgraber@castiana:~$ lxc launch images:ubuntu/focal f1 --vm
Creating f1
Starting f1
stgraber@castiana:~$ lxc exec f1 bash
root@f1:~# echo "deb http://archive.ubuntu.com/ubuntu focal-proposed main restricted universe multiverse" >> /etc/apt/sources.list
root@f1:~# apt-get update
Hit:1 http://archive.ubuntu.com/ubuntu focal InRelease
Get:2 http://archive.ubuntu.com/ubuntu focal-updates InRelease [107 kB]
Get:3 http://security.ubuntu.com/ubuntu focal-security InRelease [107 kB]
Get:4 http://archive.ubuntu.com/ubuntu focal-proposed InRelease [265 kB]
Get:5 http://archive.ubuntu.com/ubuntu focal-updates/main amd64 Packages [201 kB]
Get:6 http://archive.ubuntu.com/ubuntu focal-updates/main Translation-en [80.2 kB]
Get:7 http://archive.ubuntu.com/ubuntu focal-updates/restricted amd64 Packages [11.1 kB]
Get:8 http://archive.ubuntu.com/ubuntu focal-updates/restricted Translation-en [3036 B]
Get:9 http://archive.ubuntu.com/ubuntu focal-updates/universe amd64 Packages [114 kB]
Get:10 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 Packages [82.4 kB]
Get:11 http://archive.ubuntu.com/ubuntu focal-proposed/main Translation-en [35.0 kB]
Get:12 http://archive.ubuntu.com/ubuntu focal-proposed/restricted amd64 Packages [7132 B]
Get:13 http://archive.ubuntu.com/ubuntu focal-proposed/restricted Translation-en [2144 B]
Get:14 http://archive.ubuntu.com/ubuntu focal-proposed/universe amd64 Packages [35.8 kB]
Get:15 http://archive.ubuntu.com/ubuntu focal-proposed/universe Translation-en [24.5 kB]
Get:16 http://archive.ubuntu.com/ubuntu focal-proposed/multiverse Translation-en [3404 B]
Fetched 1079 kB in 1s (794 kB/s)                                   
Reading package lists... Done
root@f1:~# apt-get install linux-kvm
Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following additional packages will be installed:
  linux-headers-5.4.0-1017-kvm linux-headers-kvm linux-image-5.4.0-1017-kvm linux-image-kvm linux-kvm-headers-5.4.0-1017 linux-modules-5.4.0-1017-kvm
Suggested packages:
  fdutils linux-kvm-doc-5.4.0 | linux-kvm-source-5.4.0 linux-kvm-tools
The following NEW packages will be installed:
  linux-headers-5.4.0-1017-kvm linux-headers-kvm linux-image-5.4.0-1017-kvm linux-image-kvm linux-kvm linux-kvm-headers-5.4.0-1017
  linux-modules-5.4.0-1017-kvm
0 upgraded, 7 newly installed, 0 to remove and 18 not upgraded.
Need to get 28.4 MB of archives.
After this operation, 126 MB of additional disk space will be used.
Do you want to continue? [Y/n] 
Get:1 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-kvm-headers-5.4.0-1017 all 5.4.0-1017.17 [11.3 MB]
Get:2 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-headers-5.4.0-1017-kvm amd64 5.4.0-1017.17 [1254 kB]
Get:3 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-headers-kvm amd64 5.4.0.1017.16 [4376 B]
Get:4 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-modules-5.4.0-1017-kvm amd64 5.4.0-1017.17 [10.6 MB]
Get:5 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-image-5.4.0-1017-kvm amd64 5.4.0-1017.17 [5158 kB]
Get:6 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-image-kvm amd64 5.4.0.1017.16 [4444 B]
Get:7 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 linux-kvm amd64 5.4.0.1017.16 [4416 B]
Fetched 28.4 MB in 2s (14.2 MB/s)
Selecting previously unselected package linux-kvm-headers-5.4.0-1017.
(Reading database ... 46372 files and directories currently installed.)
Preparing to unpack .../0-linux-kvm-headers-5.4.0-1017_5.4.0-1017.17_all.deb ...
Unpacking linux-kvm-headers-5.4.0-1017 (5.4.0-1017.17) ...
Selecting previously unselected package linux-headers-5.4.0-1017-kvm.
Preparing to unpack .../1-linux-headers-5.4.0-1017-kvm_5.4.0-1017.17_amd64.deb ...
Unpacking linux-headers-5.4.0-1017-kvm (5.4.0-1017.17) ...
Selecting previously unselected package linux-headers-kvm.
Preparing to unpack .../2-linux-headers-kvm_5.4.0.1017.16_amd64.deb ...
Unpacking linux-headers-kvm (5.4.0.1017.16) ...
Selecting previously unselected package linux-modules-5.4.0-1017-kvm.
Preparing to unpack .../3-linux-modules-5.4.0-1017-kvm_5.4.0-1017.17_amd64.deb ...
Unpacking linux-modules-5.4.0-1017-kvm (5.4.0-1017.17) ...
Selecting previously unselected package linux-image-5.4.0-1017-kvm.
Preparing to unpack .../4-linux-image-5.4.0-1017-kvm_5.4.0-1017.17_amd64.deb ...
Unpacking linux-image-5.4.0-1017-kvm (5.4.0-1017.17) ...
Selecting previously unselected package linux-image-kvm.
Preparing to unpack .../5-linux-image-kvm_5.4.0.1017.16_amd64.deb ...
Unpacking linux-image-kvm (5.4.0.1017.16) ...
Selecting previously unselected package linux-kvm.
Preparing to unpack .../6-linux-kvm_5.4.0.1017.16_amd64.deb ...
Unpacking linux-kvm (5.4.0.1017.16) ...
Setting up linux-kvm-headers-5.4.0-1017 (5.4.0-1017.17) ...
Setting up linux-modules-5.4.0-1017-kvm (5.4.0-1017.17) ...
Setting up linux-headers-5.4.0-1017-kvm (5.4.0-1017.17) ...
Setting up linux-headers-kvm (5.4.0.1017.16) ...
Setting up linux-image-5.4.0-1017-kvm (5.4.0-1017.17) ...
I: /boot/vmlinuz is now a symlink to vmlinuz-5.4.0-1017-kvm
I: /boot/initrd.img is now a symlink to initrd.img-5.4.0-1017-kvm
Setting up linux-image-kvm (5.4.0.1017.16) ...
Setting up linux-kvm (5.4.0.1017.16) ...
Processing triggers for linux-image-5.4.0-1017-kvm (5.4.0-1017.17) ...
/etc/kernel/postinst.d/initramfs-tools:
update-initramfs: Generating /boot/initrd.img-5.4.0-1017-kvm
/etc/kernel/postinst.d/zz-update-grub:
Sourcing file `/etc/default/grub'
Sourcing file `/etc/default/grub.d/50-lxd.cfg'
Sourcing file `/etc/default/grub.d/init-select.cfg'
Generating grub configuration file ...
Found linux image: /boot/vmlinuz-5.4.0-1017-kvm
Found initrd image: /boot/initrd.img-5.4.0-1017-kvm
Found linux image: /boot/vmlinuz-5.4.0-37-generic
Found initrd image: /boot/initrd.img-5.4.0-37-generic
Adding boot menu entry for UEFI Firmware Settings
done
root@f1:~# sed -i 's/GRUB_TIMEOUT=0/GRUB_TIMEOUT=10/g' /etc/default/grub.d/50-lxd.cfg
root@f1:~# apt-get remove --purge linux.*generic
Reading package lists... Done
Building dependency tree       
Reading state information... Done
Note, selecting 'linux-modules-nvidia-435-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-generic-hwe-18.04-edge' for regex 'linux.*generic'
Note, selecting 'linux-modules-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-generic-hwe-20.04' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-435-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-unsigned-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-generic-hwe-18.04-edge' for regex 'linux.*generic'
Note, selecting 'linux-buildinfo-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-generic-hwe-18.04-edge' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-390-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-extra-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-440-generic' for regex 'linux.*generic'
Note, selecting 'linux-buildinfo-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-unsigned-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-440-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-generic-hwe-18.04' for regex 'linux.*generic'
Note, selecting 'linux-image-unsigned-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-extra-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-390-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-buildinfo-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-generic-hwe-18.04' for regex 'linux.*generic'
Note, selecting 'linux-modules-extra-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-390-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-435-generic-hwe-20.04' for regex 'linux.*generic'
Note, selecting 'linux-generic-hwe-18.04-edge' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-440-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-buildinfo-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-390-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-unsigned-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-generic-hwe-20.04' for regex 'linux.*generic'
Note, selecting 'linux-modules-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-390-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-buildinfo-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-440-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-generic-hwe-20.04' for regex 'linux.*generic'
Note, selecting 'linux-modules-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'kernel-testing--linux--full--generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-extra-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-440-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-generic-hwe-18.04-edge' for regex 'linux.*generic'
Note, selecting 'linux-modules-extra-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-generic-hwe-20.04' for regex 'linux.*generic'
Note, selecting 'linux-image-generic-hwe-18.04' for regex 'linux.*generic'
Note, selecting 'linux-buildinfo-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-extra-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-430-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-435-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-440-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-buildinfo-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-generic-hwe-18.04' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-440-generic-hwe-20.04' for regex 'linux.*generic'
Note, selecting 'linux-headers-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-435-5.4.0-31-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-unsigned-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-headers-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-extra-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-390-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-unsigned-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-435-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-generic-hwe-18.04' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-435-5.4.0-33-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-440-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-unsigned-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-390-5.4.0-29-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-390-generic-hwe-20.04' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-440-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-modules-nvidia-390-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-5.4.0-28-generic' for regex 'linux.*generic'
Note, selecting 'linux-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-5.4.0-38-generic' for regex 'linux.*generic'
Note, selecting 'linux-image-5.4.0-26-generic' for regex 'linux.*generic'
Note, selecting 'linux-cloud-tools-5.4.0-37-generic' for regex 'linux.*generic'
Note, selecting 'linux-tools-generic-hwe-20.04' for regex 'linux.*generic'
Note, selecting 'linux-generic' instead of 'kernel-testing--linux--full--generic'
Package 'linux-buildinfo-5.4.0-26-generic' is not installed, so not removed
Package 'linux-cloud-tools-5.4.0-26-generic' is not installed, so not removed
Package 'linux-headers-5.4.0-26-generic' is not installed, so not removed
Package 'linux-image-5.4.0-26-generic' is not installed, so not removed
Package 'linux-image-unsigned-5.4.0-26-generic' is not installed, so not removed
Package 'linux-modules-5.4.0-26-generic' is not installed, so not removed
Package 'linux-modules-extra-5.4.0-26-generic' is not installed, so not removed
Package 'linux-tools-5.4.0-26-generic' is not installed, so not removed
Package 'linux-modules-nvidia-390-5.4.0-26-generic' is not installed, so not removed
Package 'linux-modules-nvidia-440-5.4.0-26-generic' is not installed, so not removed
Package 'linux-buildinfo-5.4.0-28-generic' is not installed, so not removed
Package 'linux-buildinfo-5.4.0-29-generic' is not installed, so not removed
Package 'linux-buildinfo-5.4.0-31-generic' is not installed, so not removed
Package 'linux-buildinfo-5.4.0-33-generic' is not installed, so not removed
Package 'linux-buildinfo-5.4.0-37-generic' is not installed, so not removed
Package 'linux-cloud-tools-5.4.0-28-generic' is not installed, so not removed
Package 'linux-cloud-tools-5.4.0-29-generic' is not installed, so not removed
Package 'linux-cloud-tools-5.4.0-31-generic' is not installed, so not removed
Package 'linux-cloud-tools-5.4.0-33-generic' is not installed, so not removed
Package 'linux-cloud-tools-5.4.0-37-generic' is not installed, so not removed
Package 'linux-headers-5.4.0-28-generic' is not installed, so not removed
Package 'linux-headers-5.4.0-29-generic' is not installed, so not removed
Package 'linux-headers-5.4.0-31-generic' is not installed, so not removed
Package 'linux-headers-5.4.0-33-generic' is not installed, so not removed
Package 'linux-image-5.4.0-28-generic' is not installed, so not removed
Package 'linux-image-5.4.0-29-generic' is not installed, so not removed
Package 'linux-image-5.4.0-31-generic' is not installed, so not removed
Package 'linux-image-5.4.0-33-generic' is not installed, so not removed
Package 'linux-image-unsigned-5.4.0-28-generic' is not installed, so not removed
Package 'linux-image-unsigned-5.4.0-29-generic' is not installed, so not removed
Package 'linux-image-unsigned-5.4.0-31-generic' is not installed, so not removed
Package 'linux-image-unsigned-5.4.0-33-generic' is not installed, so not removed
Package 'linux-image-unsigned-5.4.0-37-generic' is not installed, so not removed
Package 'linux-modules-5.4.0-28-generic' is not installed, so not removed
Package 'linux-modules-5.4.0-29-generic' is not installed, so not removed
Package 'linux-modules-5.4.0-31-generic' is not installed, so not removed
Package 'linux-modules-5.4.0-33-generic' is not installed, so not removed
Package 'linux-modules-extra-5.4.0-28-generic' is not installed, so not removed
Package 'linux-modules-extra-5.4.0-29-generic' is not installed, so not removed
Package 'linux-modules-extra-5.4.0-31-generic' is not installed, so not removed
Package 'linux-modules-extra-5.4.0-33-generic' is not installed, so not removed
Package 'linux-modules-extra-5.4.0-37-generic' is not installed, so not removed
Package 'linux-tools-5.4.0-28-generic' is not installed, so not removed
Package 'linux-tools-5.4.0-29-generic' is not installed, so not removed
Package 'linux-tools-5.4.0-31-generic' is not installed, so not removed
Package 'linux-tools-5.4.0-33-generic' is not installed, so not removed
Package 'linux-tools-5.4.0-37-generic' is not installed, so not removed
Package 'linux-modules-nvidia-390-5.4.0-28-generic' is not installed, so not removed
Package 'linux-modules-nvidia-390-5.4.0-29-generic' is not installed, so not removed
Package 'linux-modules-nvidia-390-5.4.0-31-generic' is not installed, so not removed
Package 'linux-modules-nvidia-390-5.4.0-33-generic' is not installed, so not removed
Package 'linux-modules-nvidia-390-5.4.0-37-generic' is not installed, so not removed
Package 'linux-modules-nvidia-435-5.4.0-29-generic' is not installed, so not removed
Package 'linux-modules-nvidia-435-5.4.0-31-generic' is not installed, so not removed
Package 'linux-modules-nvidia-435-5.4.0-33-generic' is not installed, so not removed
Package 'linux-modules-nvidia-435-5.4.0-37-generic' is not installed, so not removed
Package 'linux-modules-nvidia-440-5.4.0-28-generic' is not installed, so not removed
Package 'linux-modules-nvidia-440-5.4.0-29-generic' is not installed, so not removed
Package 'linux-modules-nvidia-440-5.4.0-31-generic' is not installed, so not removed
Package 'linux-modules-nvidia-440-5.4.0-33-generic' is not installed, so not removed
Package 'linux-modules-nvidia-440-5.4.0-37-generic' is not installed, so not removed
Package 'linux-buildinfo-5.4.0-38-generic' is not installed, so not removed
Package 'linux-cloud-tools-5.4.0-38-generic' is not installed, so not removed
Package 'linux-cloud-tools-generic' is not installed, so not removed
Package 'linux-cloud-tools-generic-hwe-18.04' is not installed, so not removed
Package 'linux-cloud-tools-generic-hwe-18.04-edge' is not installed, so not removed
Package 'linux-cloud-tools-generic-hwe-20.04' is not installed, so not removed
Package 'linux-generic' is not installed, so not removed
Package 'linux-generic-hwe-18.04' is not installed, so not removed
Package 'linux-generic-hwe-18.04-edge' is not installed, so not removed
Package 'linux-generic-hwe-20.04' is not installed, so not removed
Package 'linux-headers-5.4.0-38-generic' is not installed, so not removed
Package 'linux-headers-generic-hwe-18.04' is not installed, so not removed
Package 'linux-headers-generic-hwe-18.04-edge' is not installed, so not removed
Package 'linux-headers-generic-hwe-20.04' is not installed, so not removed
Package 'linux-image-5.4.0-38-generic' is not installed, so not removed
Package 'linux-image-generic' is not installed, so not removed
Package 'linux-image-generic-hwe-18.04' is not installed, so not removed
Package 'linux-image-generic-hwe-18.04-edge' is not installed, so not removed
Package 'linux-image-generic-hwe-20.04' is not installed, so not removed
Package 'linux-image-unsigned-5.4.0-38-generic' is not installed, so not removed
Package 'linux-modules-5.4.0-38-generic' is not installed, so not removed
Package 'linux-modules-extra-5.4.0-38-generic' is not installed, so not removed
Package 'linux-tools-5.4.0-38-generic' is not installed, so not removed
Package 'linux-tools-generic' is not installed, so not removed
Package 'linux-tools-generic-hwe-18.04' is not installed, so not removed
Package 'linux-tools-generic-hwe-18.04-edge' is not installed, so not removed
Package 'linux-tools-generic-hwe-20.04' is not installed, so not removed
Package 'linux-modules-nvidia-390-5.4.0-38-generic' is not installed, so not removed
Package 'linux-modules-nvidia-390-generic' is not installed, so not removed
Package 'linux-modules-nvidia-390-generic-hwe-20.04' is not installed, so not removed
Package 'linux-modules-nvidia-430-generic' is not installed, so not removed
Package 'linux-modules-nvidia-435-5.4.0-38-generic' is not installed, so not removed
Package 'linux-modules-nvidia-435-generic' is not installed, so not removed
Package 'linux-modules-nvidia-435-generic-hwe-20.04' is not installed, so not removed
Package 'linux-modules-nvidia-440-5.4.0-38-generic' is not installed, so not removed
Package 'linux-modules-nvidia-440-generic' is not installed, so not removed
Package 'linux-modules-nvidia-440-generic-hwe-20.04' is not installed, so not removed
The following package was automatically installed and is no longer required:
  linux-headers-5.4.0-37
Use 'apt autoremove' to remove it.
The following packages will be REMOVED:
  linux-headers-5.4.0-37-generic* linux-headers-generic* linux-headers-virtual* linux-image-5.4.0-37-generic* linux-image-virtual*
  linux-modules-5.4.0-37-generic* linux-virtual*
0 upgraded, 0 newly installed, 7 to remove and 14 not upgraded.
After this operation, 99.1 MB disk space will be freed.
Do you want to continue? [Y/n] 
(Reading database ... 67679 files and directories currently installed.)
Removing linux-virtual (5.4.0.37.40) ...
Removing linux-headers-virtual (5.4.0.37.40) ...
Removing linux-headers-generic (5.4.0.37.40) ...
Removing linux-headers-5.4.0-37-generic (5.4.0-37.41) ...
Removing linux-image-virtual (5.4.0.37.40) ...
Removing linux-image-5.4.0-37-generic (5.4.0-37.41) ...
W: Removing the running kernel
I: /boot/vmlinuz.old is now a symlink to vmlinuz-5.4.0-1017-kvm
I: /boot/initrd.img.old is now a symlink to initrd.img-5.4.0-1017-kvm
/etc/kernel/postrm.d/initramfs-tools:
update-initramfs: Deleting /boot/initrd.img-5.4.0-37-generic
/etc/kernel/postrm.d/zz-update-grub:
Sourcing file `/etc/default/grub'
Sourcing file `/etc/default/grub.d/50-lxd.cfg'
Sourcing file `/etc/default/grub.d/init-select.cfg'
Generating grub configuration file ...
Found linux image: /boot/vmlinuz-5.4.0-1017-kvm
Found initrd image: /boot/initrd.img-5.4.0-1017-kvm
Adding boot menu entry for UEFI Firmware Settings
done
Removing linux-modules-5.4.0-37-generic (5.4.0-37.41) ...
(Reading database ... 54407 files and directories currently installed.)
Purging configuration files for linux-image-5.4.0-37-generic (5.4.0-37.41) ...
Purging configuration files for linux-modules-5.4.0-37-generic (5.4.0-37.41) ...
root@f1:~# ls -l /boot/
total 20165
-rw------- 1 root root  3034594 Jun 15 12:46 System.map-5.4.0-1017-kvm
-rw-r--r-- 1 root root    83740 Jun 15 12:46 config-5.4.0-1017-kvm
drwxr-xr-x 3 root root      512 Jan  1  1970 efi
drwxr-xr-x 4 root root     4096 Jun 23 17:07 grub
lrwxrwxrwx 1 root root       25 Jun 23 17:06 initrd.img -> initrd.img-5.4.0-1017-kvm
-rw-r--r-- 1 root root 11128402 Jun 23 17:06 initrd.img-5.4.0-1017-kvm
lrwxrwxrwx 1 root root       25 Jun 23 17:07 initrd.img.old -> initrd.img-5.4.0-1017-kvm
lrwxrwxrwx 1 root root       22 Jun 23 17:06 vmlinuz -> vmlinuz-5.4.0-1017-kvm
-rw------- 1 root root  6392576 Jun 15 12:47 vmlinuz-5.4.0-1017-kvm
lrwxrwxrwx 1 root root       22 Jun 23 17:07 vmlinuz.old -> vmlinuz-5.4.0-1017-kvm
root@f1:~# blkid /dev/sda2
/dev/sda2: LABEL="rootfs" UUID="6f205b00-524b-4546-babb-a9b52c4e7ff0" TYPE="ext4" PARTUUID="4f8bde89-ee01-4146-87d4-9c556c88e796"
root@f1:~# grep UUID= /boot/grub/grub.cfg 
	linux	/boot/vmlinuz-5.4.0-1017-kvm root=UUID=6f205b00-524b-4546-babb-a9b52c4e7ff0 ro  quiet splash console=tty1 console=ttyS0 $vt_handoff
		linux	/boot/vmlinuz-5.4.0-1017-kvm root=UUID=6f205b00-524b-4546-babb-a9b52c4e7ff0 ro  quiet splash console=tty1 console=ttyS0 $vt_handoff
		linux	/boot/vmlinuz-5.4.0-1017-kvm root=UUID=6f205b00-524b-4546-babb-a9b52c4e7ff0 ro single nomodeset 
root@f1:~# poweroff 
root@f1:~# Error: websocket: close 1006 (abnormal closure): unexpected EOF
stgraber@castiana:~$ lxc start --console f1
To detach from the console, press: <ctrl>+a q
RAMDISK: incomplete write (4194304 != 8388608)
Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(0,0)
CPU: 0 PID: 1 Comm: swapper/0 Not tainted 5.4.0-1017-kvm #17-Ubuntu
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS 0.0.0 02/06/2015
Call Trace:
 0xffffffff81b2230d
 0xffffffff814a8a21
 0xffffffff8232e5c1
 0xffffffff8232e80f
 0xffffffff8232e976
 0xffffffff8232e274
 ? 0xffffffff81b38a70
 0xffffffff81b38a79
 0xffffffff81c00215
Kernel Offset: 0x400000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
---[ end Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(0,0) ]---
"""

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-23:

#39

https://paste.ubuntu.com/p/7yHDCFt75m/ for additional proof that the initrd is never executed (break=top would immediately drop to a shell).

Revision history for this message

Guilherme G. Piccoli (gpiccoli) wrote on 2020-06-23:

#40

I'm not sure if it's related, but maybe worth the mention: could this be due to the initrd-less boot? I've noticed that in some VMs, it first fails to boot (it tries an initrd-less boot), reboots and then loads the initrd. This is an Ubuntu grub-thing, and you can prevent that by deleting a file *40*partuuid* form /etc/default/grub.d/ (need to recreate grub config file after that).

Cheers,

Guilherme

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-23:

#41

It's not the log above clearly shows the kernel loading an initrd.

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-24:

#42

@Stéphane, I have now followed your steps from commant #38 (was using the official ubuntu image before with cloud-init and that does a initrd-less boot first which is successful for me) but this does not show me the error you see either. And a break=top does work (with some complaints about tty1 which is expected due to the missing efi-fb).
I double-checked the initramfs compression setting and that is lz4.

This is rather weird. I will try on a different hw but that really should not be relevant. For double checking: which LXD version are you using? I am on the focal/stable/4.0 stream:

lxd 4.0.1 15682 4.0/stable/… canonical✓ -

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-24:

#43

Hm, and maybe also relevant: what kind of pool is used? My setup was "lxd init --auto" which is a file based image backend.

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-24:

#44

Ok, so with the same software versions installed but on a different hw platform, I did at least once get this incomplete write error. The working box is an AMD/BIOS one and the non-working an Intel/EFI. Not sure why that has any impact.

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-24:

#45

Alright, at least partially understanding things now. So it looks like "Decoding failed" happens generally on some platforms (and I do not understand still why this is). The difference between the generic kernel and the kvm kernel is that the kvm kernel has a built-in BLK_DEV_RAM of size (4096) whereas the generic kernel uses a module for that.

It looks like only if BLK_DEV_RAM=y is set, the code which populates the initial rootfs does try to flush and refill the ramdisk device. Otherwise the partially expanded rootfs is retained. And I guess the ramdisk size is set to small so we get the incomplete write there.

I guess the solution (which does not solve the decode failure) is to change the kvm kernel config to

BLK_DEV_RAM=m
CONFIG_BLK_DEV_RAM_SIZE=65536

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-26:

#46

Latest version: 5.4.0-1018-kvm

This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-focal' to 'verification-done-focal'. If the problem still exists, change the tag 'verification-needed-focal' to 'verification-failed-focal'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: verification-needed-focal
removed: verification-failed-focal

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-26:

#47

Note that for me the latest kernel works past the decoding failed stage. But it would be good to have a second verification is possible.

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-28:

#48

Confirmed, 1018 boots fine here under Secure Boot, all good!

tags:

added: verification-done-focal
removed: verification-needed-focal

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-06-28:

#49

@smb what's the state of groovy, did you push the config update there too?

For the cloud images, we'll want to switch over to those using linux-kvm in groovy first, then focal, so just want to make sure we'll get a working kernel on there too!

Revision history for this message

Stefan Bader (smb) wrote on 2020-06-29:

#50

@Stéphane, right now (and that might be for a while still) the linux-kvm kernel in Groovy is a copy-forward from Focal. So once this releases, you should be able to use it there as well. I started to have annotated config enforcement for the adjusted config which hopefully will survive when the specific kvm kernel for Groovy gets started.

Revision history for this message

Launchpad Janitor (janitor) wrote on 2020-07-01:

#51

Download full text (30.5 KiB)

This bug was fixed in the package linux-kvm - 5.4.0-1018.18

---------------
linux-kvm (5.4.0-1018.18) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1018.18 -proposed tracker (LP: #1885099)

* LXD 4.2 broken on linux-kvm due to missing VLAN filtering (LP: #1882955)
- [Config] kvm: VLAN_8021Q=m && BRIDGE_VLAN_FILTERING=y

  * Make linux-kvm bootable in LXD VMs (LP: #1873809)
    - [Config] kvm: Match ramdisk config with master
    - [Config] kvm: Build-in EFI framebuffer

linux-kvm (5.4.0-1017.17) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1017.17 -proposed tracker (LP: #1883517)

* Make linux-kvm bootable in LXD VMs (LP: #1873809)
- [Packaging] Start to sign the KVM kernel

linux-kvm (5.4.0-1016.16) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1016.16 -proposed tracker (LP: #1882691)

* Focal update: v5.4.42 upstream stable release (LP: #1879759)
- [Config] kvm: Record CC_HAS_WARN_MAYBE_UNINITIALIZED drop

* Packaging resync (LP: #1786013)
- [Packaging] update helper scripts

[ Ubuntu: 5.4.0-38.42 ]

  * CVE-2020-0543
    - UBUNTU/SAUCE: x86/speculation/srbds: do not try to turn mitigation off when
      not supported
  * Realtek 8723DE [10ec:d723] subsystem [10ec:d738] disconnects unsolicitedly
    when Bluetooth is paired: Reason: 23=IEEE8021X_FAILED (LP: #1878147)
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: Move driver IQK to set channel before
      association for 11N chip"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: fix rate for a while after being
      connected"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: No retry and report for auth and assoc"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: 8723d: Add coex support"
    - rtw88: add a debugfs entry to dump coex's info
    - rtw88: add a debugfs entry to enable/disable coex mechanism
    - rtw88: 8723d: Add coex support
    - SAUCE: rtw88: coex: 8723d: set antanna control owner
    - SAUCE: rtw88: coex: 8723d: handle BT inquiry cases
    - SAUCE: rtw88: fix EAPOL 4-way failure by finish IQK earlier
  * CPU stress test fails with focal kernel (LP: #1867900)
    - [Config] Disable hisi_sec2 temporarily
  * Enforce all config annotations (LP: #1879327)
    - [Config]: do not enforce CONFIG_VERSION_SIGNATURE
    - [Config]: prepare to enforce all
    - [Config]: enforce all config options
  * Focal update: v5.4.44 upstream stable release (LP: #1881927)
    - ax25: fix setsockopt(SO_BINDTODEVICE)
    - dpaa_eth: fix usage as DSA master, try 3
    - net: don't return invalid table id error when we fall back to PF_UNSPEC
    - net: dsa: mt7530: fix roaming from DSA user ports
    - net: ethernet: ti: cpsw: fix ASSERT_RTNL() warning during suspend
    - __netif_receive_skb_core: pass skb by reference
    - net: inet_csk: Fix so_reuseport bind-address cache in tb->fast*
    - net: ipip: fix wrong address family in init error path
    - net/mlx5: Add command entry handling completion
    - net: mvpp2: fix RX hashing for non-10G ports
    - net: nlmsg_cancel() if put fails for nhmsg
    - net: qrtr: Fix passing invalid reference to qrtr_local_enqueue()
    - net: revert "net: get rid of an signed integer overflow in
      ip_idents_reserve()"
    - net sched: f...

This bug was fixed in the package linux-kvm - 5.4.0-1018.18

---------------
linux-kvm (5.4.0-1018.18) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1018.18 -proposed tracker (LP: #1885099)

* LXD 4.2 broken on linux-kvm due to missing VLAN filtering (LP: #1882955)
    - [Config] kvm: VLAN_8021Q=m && BRIDGE_VLAN_FILTERING=y

* Make linux-kvm bootable in LXD VMs (LP: #1873809)
    - [Config] kvm: Match ramdisk config with master
    - [Config] kvm: Build-in EFI framebuffer

linux-kvm (5.4.0-1017.17) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1017.17 -proposed tracker (LP: #1883517)

* Make linux-kvm bootable in LXD VMs (LP: #1873809)
    - [Packaging] Start to sign the KVM kernel

linux-kvm (5.4.0-1016.16) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1016.16 -proposed tracker (LP: #1882691)

* Focal update: v5.4.42 upstream stable release (LP: #1879759)
    - [Config] kvm: Record CC_HAS_WARN_MAYBE_UNINITIALIZED drop

* Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts

[ Ubuntu: 5.4.0-38.42 ]

* CVE-2020-0543
    - UBUNTU/SAUCE: x86/speculation/srbds: do not try to turn mitigation off when
      not supported
  * Realtek 8723DE [10ec:d723] subsystem [10ec:d738]  disconnects unsolicitedly
    when Bluetooth is paired: Reason: 23=IEEE8021X_FAILED (LP: #1878147)
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: Move driver IQK to set channel before
      association for 11N chip"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: fix rate for a while after being
      connected"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: No retry and report for auth and assoc"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: 8723d: Add coex support"
    - rtw88: add a debugfs entry to dump coex's info
    - rtw88: add a debugfs entry to enable/disable coex mechanism
    - rtw88: 8723d: Add coex support
    - SAUCE: rtw88: coex: 8723d: set antanna control owner
    - SAUCE: rtw88: coex: 8723d: handle BT inquiry cases
    - SAUCE: rtw88: fix EAPOL 4-way failure by finish IQK earlier
  * CPU stress test fails with focal kernel (LP: #1867900)
    - [Config] Disable hisi_sec2 temporarily
  * Enforce all config annotations (LP: #1879327)
    - [Config]: do not enforce CONFIG_VERSION_SIGNATURE
    - [Config]: prepare to enforce all
    - [Config]: enforce all config options
  * Focal update: v5.4.44 upstream stable release (LP: #1881927)
    - ax25: fix setsockopt(SO_BINDTODEVICE)
    - dpaa_eth: fix usage as DSA master, try 3
    - net: don't return invalid table id error when we fall back to PF_UNSPEC
    - net: dsa: mt7530: fix roaming from DSA user ports
    - net: ethernet: ti: cpsw: fix ASSERT_RTNL() warning during suspend
    - __netif_receive_skb_core: pass skb by reference
    - net: inet_csk: Fix so_reuseport bind-address cache in tb->fast*
    - net: ipip: fix wrong address family in init error path
    - net/mlx5: Add command entry handling completion
    - net: mvpp2: fix RX hashing for non-10G ports
    - net: nlmsg_cancel() if put fails for nhmsg
    - net: qrtr: Fix passing invalid reference to qrtr_local_enqueue()
    - net: revert "net: get rid of an signed integer overflow in
      ip_idents_reserve()"
    - net sched: fix reporting the first-time use timestamp
    - net/tls: fix race condition causing kernel panic
    - nexthop: Fix attribute checking for groups
    - r8152: support additional Microsoft Surface Ethernet Adapter variant
    - sctp: Don't add the shutdown timer if its already been added
    - sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and
      socket is closed
    - tipc: block BH before using dst_cache
    - net/mlx5e: kTLS, Destroy key object after destroying the TIS
    - net/mlx5e: Fix inner tirs handling
    - net/mlx5: Fix memory leak in mlx5_events_init
    - net/mlx5e: Update netdev txq on completions during closure
    - net/mlx5: Fix error flow in case of function_setup failure
    - net/mlx5: Annotate mutex destroy for root ns
    - net/tls: fix encryption error checking
    - net/tls: free record only on encryption error
    - net: sun: fix missing release regions in cas_init_one().
    - net/mlx4_core: fix a memory leak bug.
    - mlxsw: spectrum: Fix use-after-free of split/unsplit/type_set in case reload
      fails
    - ARM: dts: rockchip: fix phy nodename for rk3228-evb
    - ARM: dts: rockchip: fix phy nodename for rk3229-xms6
    - arm64: dts: rockchip: fix status for &gmac2phy in rk3328-evb.dts
    - arm64: dts: rockchip: swap interrupts interrupt-names rk3399 gpu node
    - ARM: dts: rockchip: swap clock-names of gpu nodes
    - ARM: dts: rockchip: fix pinctrl sub nodename for spi in rk322x.dtsi
    - gpio: tegra: mask GPIO IRQs during IRQ shutdown
    - ALSA: usb-audio: add mapping for ASRock TRX40 Creator
    - net: microchip: encx24j600: add missed kthread_stop
    - gfs2: move privileged user check to gfs2_quota_lock_check
    - gfs2: Grab glock reference sooner in gfs2_add_revoke
    - drm/amdgpu: drop unnecessary cancel_delayed_work_sync on PG ungate
    - drm/amd/powerplay: perform PG ungate prior to CG ungate
    - drm/amdgpu: Use GEM obj reference for KFD BOs
    - cachefiles: Fix race between read_waiter and read_copier involving op->to_do
    - usb: dwc3: pci: Enable extcon driver for Intel Merrifield
    - usb: phy: twl6030-usb: Fix a resource leak in an error handling path in
      'twl6030_usb_probe()'
    - usb: gadget: legacy: fix redundant initialization warnings
    - net: freescale: select CONFIG_FIXED_PHY where needed
    - IB/i40iw: Remove bogus call to netdev_master_upper_dev_get()
    - riscv: stacktrace: Fix undefined reference to `walk_stackframe'
    - clk: ti: am33xx: fix RTC clock parent
    - csky: Fixup msa highest 3 bits mask
    - csky: Fixup perf callchain unwind
    - csky: Fixup remove duplicate irq_disable
    - hwmon: (nct7904) Fix incorrect range of temperature limit registers
    - cifs: Fix null pointer check in cifs_read
    - csky: Fixup raw_copy_from_user()
    - samples: bpf: Fix build error
    - drivers: net: hamradio: Fix suspicious RCU usage warning in bpqether.c
    - Input: usbtouchscreen - add support for BonXeon TP
    - Input: evdev - call input_flush_device() on release(), not flush()
    - Input: xpad - add custom init packet for Xbox One S controllers
    - Input: dlink-dir685-touchkeys - fix a typo in driver name
    - Input: i8042 - add ThinkPad S230u to i8042 reset list
    - Input: synaptics-rmi4 - really fix attn_data use-after-free
    - Input: synaptics-rmi4 - fix error return code in rmi_driver_probe()
    - ARM: 8970/1: decompressor: increase tag size
    - ARM: uaccess: consolidate uaccess asm to asm/uaccess-asm.h
    - ARM: uaccess: integrate uaccess_save and uaccess_restore
    - ARM: uaccess: fix DACR mismatch with nested exceptions
    - gpio: exar: Fix bad handling for ida_simple_get error path
    - arm64: dts: mt8173: fix vcodec-enc clock
    - soc: mediatek: cmdq: return send msg error code
    - gpu/drm: Ingenic: Fix opaque pointer casted to wrong type
    - IB/qib: Call kobject_put() when kobject_init_and_add() fails
    - ARM: dts/imx6q-bx50v3: Set display interface clock parents
    - ARM: dts: bcm2835-rpi-zero-w: Fix led polarity
    - ARM: dts: bcm: HR2: Fix PPI interrupt types
    - mmc: block: Fix use-after-free issue for rpmb
    - gpio: pxa: Fix return value of pxa_gpio_probe()
    - gpio: bcm-kona: Fix return value of bcm_kona_gpio_probe()
    - RDMA/pvrdma: Fix missing pci disable in pvrdma_pci_probe()
    - ALSA: hwdep: fix a left shifting 1 by 31 UB bug
    - ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround
    - ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC
    - exec: Always set cap_ambient in cap_bprm_set_creds
    - clk: qcom: gcc: Fix parent for gpll0_out_even
    - ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio
    - ALSA: hda/realtek - Add new codec supported for ALC287
    - libceph: ignore pool overlay and cache logic on redirects
    - ceph: flush release queue when handling caps for unknown inode
    - RDMA/core: Fix double destruction of uobject
    - drm/amd/display: drop cursor position check in atomic test
    - IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode
    - mm,thp: stop leaking unreleased file pages
    - mm: remove VM_BUG_ON(PageSlab()) from page_mapcount()
    - fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info()
    - include/asm-generic/topology.h: guard cpumask_of_node() macro argument
    - Revert "block: end bio with BLK_STS_AGAIN in case of non-mq devs and
      REQ_NOWAIT"
    - gpio: fix locking open drain IRQ lines
    - iommu: Fix reference count leak in iommu_group_alloc.
    - parisc: Fix kernel panic in mem_init()
    - cfg80211: fix debugfs rename crash
    - x86/syscalls: Revert "x86/syscalls: Make __X32_SYSCALL_BIT be unsigned long"
    - mac80211: mesh: fix discovery timer re-arming issue / crash
    - x86/dma: Fix max PFN arithmetic overflow on 32 bit systems
    - copy_xstate_to_kernel(): don't leave parts of destination uninitialized
    - xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input
    - xfrm: do pskb_pull properly in __xfrm_transport_prep
    - xfrm: remove the xfrm_state_put call becofe going to out_reset
    - xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output
    - xfrm interface: fix oops when deleting a x-netns interface
    - xfrm: fix a warning in xfrm_policy_insert_list
    - xfrm: fix a NULL-ptr deref in xfrm_local_error
    - xfrm: fix error in comment
    - ip_vti: receive ipip packet by calling ip_tunnel_rcv
    - netfilter: nft_reject_bridge: enable reject with bridge vlan
    - netfilter: ipset: Fix subcounter update skip
    - netfilter: conntrack: make conntrack userspace helpers work again
    - netfilter: nfnetlink_cthelper: unbreak userspace helper support
    - netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code
    - esp6: get the right proto for transport mode in esp6_gso_encap
    - bnxt_en: Fix accumulation of bp->net_stats_prev.
    - ieee80211: Fix incorrect mask for default PE duration
    - xsk: Add overflow check for u64 division, stored into u32
    - qlcnic: fix missing release in qlcnic_83xx_interrupt_test.
    - crypto: chelsio/chtls: properly set tp->lsndtime
    - nexthops: Move code from remove_nexthop_from_groups to remove_nh_grp_entry
    - nexthops: don't modify published nexthop groups
    - nexthop: Expand nexthop_is_multipath in a few places
    - ipv4: nexthop version of fib_info_nh_uses_dev
    - net: dsa: declare lockless TX feature for slave ports
    - bonding: Fix reference count leak in bond_sysfs_slave_add.
    - netfilter: conntrack: comparison of unsigned in cthelper confirmation
    - netfilter: conntrack: Pass value of ctinfo to __nf_conntrack_update
    - netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build
    - perf: Make perf able to build with latest libbfd
    - Linux 5.4.44
  * Focal update: v5.4.43 upstream stable release (LP: #1881178)
    - i2c: dev: Fix the race between the release of i2c_dev and cdev
    - KVM: SVM: Fix potential memory leak in svm_cpu_init()
    - ima: Set file->f_mode instead of file->f_flags in ima_calc_file_hash()
    - evm: Check also if *tfm is an error pointer in init_desc()
    - ima: Fix return value of ima_write_policy()
    - ubifs: fix wrong use of crypto_shash_descsize()
    - ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive
    - mtd: spinand: Propagate ECC information to the MTD structure
    - fix multiplication overflow in copy_fdtable()
    - ubifs: remove broken lazytime support
    - i2c: fix missing pm_runtime_put_sync in i2c_device_probe
    - iommu/amd: Fix over-read of ACPI UID from IVRS table
    - evm: Fix a small race in init_desc()
    - i2c: mux: demux-pinctrl: Fix an error handling path in
      'i2c_demux_pinctrl_probe()'
    - ubi: Fix seq_file usage in detailed_erase_block_info debugfs file
    - afs: Don't unlock fetched data pages until the op completes successfully
    - mtd: Fix mtd not registered due to nvmem name collision
    - kbuild: avoid concurrency issue in parallel building dtbs and dtbs_check
    - net: drop_monitor: use IS_REACHABLE() to guard net_dm_hw_report()
    - gcc-common.h: Update for GCC 10
    - HID: multitouch: add eGalaxTouch P80H84 support
    - HID: alps: Add AUI1657 device ID
    - HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY instead
    - scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV
    - scsi: qla2xxx: Delete all sessions before unregister local nvme port
    - configfs: fix config_item refcnt leak in configfs_rmdir()
    - vhost/vsock: fix packet delivery order to monitoring devices
    - aquantia: Fix the media type of AQC100 ethernet controller in the driver
    - component: Silence bind error on -EPROBE_DEFER
    - net/ena: Fix build warning in ena_xdp_set()
    - scsi: ibmvscsi: Fix WARN_ON during event pool release
    - HID: i2c-hid: reset Synaptics SYNA2393 on resume
    - x86/mm/cpa: Flush direct map alias during cpa
    - ibmvnic: Skip fatal error reset after passive init
    - x86/apic: Move TSC deadline timer debug printk
    - gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp()
    - HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A keyboard-dock
    - ceph: fix double unlock in handle_cap_export()
    - stmmac: fix pointer check after utilization in stmmac_interrupt
    - USB: core: Fix misleading driver bug report
    - platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA
    - iommu/amd: Call domain_flush_complete() in update_domain()
    - drm/amd/display: Prevent dpcd reads with passive dongles
    - KVM: selftests: Fix build for evmcs.h
    - ARM: futex: Address build warning
    - scripts/gdb: repair rb_first() and rb_last()
    - ALSA: hda - constify and cleanup static NodeID tables
    - ALSA: hda: patch_realtek: fix empty macro usage in if block
    - ALSA: hda: Manage concurrent reg access more properly
    - ALSA: hda/realtek - Add supported new mute Led for HP
    - ALSA: hda/realtek - Add HP new mute led supported for ALC236
    - ALSA: hda/realtek: Add quirk for Samsung Notebook
    - ALSA: hda/realtek - Enable headset mic of ASUS GL503VM with ALC295
    - ALSA: hda/realtek - Enable headset mic of ASUS UX550GE with ALC295
    - ALSA: hda/realtek: Enable headset mic of ASUS UX581LV with ALC295
    - KVM: x86: Fix pkru save/restore when guest CR4.PKE=0, move it to x86.c
    - ALSA: iec1712: Initialize STDSP24 properly when using the model=staudio
      option
    - ALSA: pcm: fix incorrect hw_base increase
    - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Xtreme
    - ALSA: hda/realtek - Add more fixup entries for Clevo machines
    - scsi: qla2xxx: Do not log message when reading port speed via sysfs
    - scsi: target: Put lun_ref at end of tmr processing
    - arm64: Fix PTRACE_SYSEMU semantics
    - drm/etnaviv: fix perfmon domain interation
    - apparmor: Fix aa_label refcnt leak in policy_update
    - dmaengine: tegra210-adma: Fix an error handling path in 'tegra_adma_probe()'
    - drm/etnaviv: Fix a leak in submit_pin_objects()
    - dmaengine: dmatest: Restore default for channel
    - dmaengine: owl: Use correct lock in owl_dma_get_pchan()
    - vsprintf: don't obfuscate NULL and error pointers
    - drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead of inheritance.
    - drm/i915: Propagate error from completed fences
    - powerpc: Remove STRICT_KERNEL_RWX incompatibility with RELOCATABLE
    - powerpc/64s: Disable STRICT_KERNEL_RWX
    - bpf: Avoid setting bpf insns pages read-only when prog is jited
    - kbuild: Remove debug info from kallsyms linking
    - Revert "gfs2: Don't demote a glock until its revokes are written"
    - media: fdp1: Fix R-Car M3-N naming in debug message
    - staging: iio: ad2s1210: Fix SPI reading
    - staging: kpc2000: fix error return code in kp2000_pcie_probe()
    - staging: greybus: Fix uninitialized scalar variable
    - iio: sca3000: Remove an erroneous 'get_device()'
    - iio: dac: vf610: Fix an error handling path in 'vf610_dac_probe()'
    - iio: adc: ti-ads8344: Fix channel selection
    - misc: rtsx: Add short delay after exit from ASPM
    - tty: serial: add missing spin_lock_init for SiFive serial console
    - mei: release me_cl object reference
    - ipack: tpci200: fix error return code in tpci200_register()
    - s390/kaslr: add support for R_390_JMP_SLOT relocation type
    - device-dax: don't leak kernel memory to user space after unloading kmem
    - rapidio: fix an error in get_user_pages_fast() error handling
    - kasan: disable branch tracing for core runtime
    - rxrpc: Fix the excessive initial retransmission timeout
    - rxrpc: Fix a memory leak in rxkad_verify_response()
    - s390/kexec_file: fix initrd location for kdump kernel
    - flow_dissector: Drop BPF flow dissector prog ref on netns cleanup
    - x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive tasks
    - iio: adc: stm32-adc: Use dma_request_chan() instead
      dma_request_slave_channel()
    - iio: adc: stm32-adc: fix device used to request dma
    - iio: adc: stm32-dfsdm: Use dma_request_chan() instead
      dma_request_slave_channel()
    - iio: adc: stm32-dfsdm: fix device used to request dma
    - rxrpc: Trace discarded ACKs
    - rxrpc: Fix ack discard
    - tpm: check event log version before reading final events
    - sched/fair: Reorder enqueue/dequeue_task_fair path
    - sched/fair: Fix reordering of enqueue/dequeue_task_fair()
    - sched/fair: Fix enqueue_task_fair() warning some more
    - Linux 5.4.43
  * Focal update: v5.4.42 upstream stable release (LP: #1879759)
    - net: dsa: Do not make user port errors fatal
    - shmem: fix possible deadlocks on shmlock_user_lock
    - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy.
    - KVM: arm: vgic: Synchronize the whole guest on GIC{D,R}_I{S,C}ACTIVER read
    - gpio: pca953x: Fix pca953x_gpio_set_config
    - SUNRPC: Add "@len" parameter to gss_unwrap()
    - SUNRPC: Fix GSS privacy computation of auth->au_ralign
    - net/sonic: Fix a resource leak in an error handling path in
      'jazz_sonic_probe()'
    - net: moxa: Fix a potential double 'free_irq()'
    - ftrace/selftests: workaround cgroup RT scheduling issues
    - drop_monitor: work around gcc-10 stringop-overflow warning
    - virtio-blk: handle block_device_operations callbacks after hot unplug
    - sun6i: dsi: fix gcc-4.8
    - net_sched: fix tcm_parent in tc filter dump
    - scsi: sg: add sg_remove_request in sg_write
    - mmc: sdhci-acpi: Add SDHCI_QUIRK2_BROKEN_64_BIT_DMA for AMDI0040
    - dpaa2-eth: properly handle buffer size restrictions
    - net: fix a potential recursive NETDEV_FEAT_CHANGE
    - netlabel: cope with NULL catmap
    - net: phy: fix aneg restart in phy_ethtool_set_eee
    - net: stmmac: fix num_por initialization
    - pppoe: only process PADT targeted at local interfaces
    - Revert "ipv6: add mtu lock check in __ip6_rt_update_pmtu"
    - tcp: fix error recovery in tcp_zerocopy_receive()
    - tcp: fix SO_RCVLOWAT hangs with fat skbs
    - virtio_net: fix lockdep warning on 32 bit
    - dpaa2-eth: prevent array underflow in update_cls_rule()
    - hinic: fix a bug of ndo_stop
    - net: dsa: loop: Add module soft dependency
    - net: ipv4: really enforce backoff for redirects
    - netprio_cgroup: Fix unlimited memory leak of v2 cgroups
    - net: tcp: fix rx timestamp behavior for tcp_recvmsg
    - nfp: abm: fix error return code in nfp_abm_vnic_alloc()
    - r8169: re-establish support for RTL8401 chip version
    - umh: fix memory leak on execve failure
    - riscv: fix vdso build with lld
    - dmaengine: pch_dma.c: Avoid data race between probe and irq handler
    - dmaengine: mmp_tdma: Do not ignore slave config validation errors
    - dmaengine: mmp_tdma: Reset channel error on release
    - selftests/ftrace: Check the first record for kprobe_args_type.tc
    - cpufreq: intel_pstate: Only mention the BIOS disabling turbo mode once
    - ALSA: hda/hdmi: fix race in monitor detection during probe
    - drm/amd/powerplay: avoid using pm_en before it is initialized revised
    - drm/amd/display: check if REFCLK_CNTL register is present
    - drm/amd/display: Update downspread percent to match spreadsheet for DCN2.1
    - drm/qxl: lost qxl_bo_kunmap_atomic_page in qxl_image_init_helper()
    - drm/amdgpu: simplify padding calculations (v2)
    - drm/amdgpu: invalidate L2 before SDMA IBs (v2)
    - ipc/util.c: sysvipc_find_ipc() incorrectly updates position index
    - gfs2: Another gfs2_walk_metadata fix
    - mmc: sdhci-pci-gli: Fix no irq handler from suspend
    - IB/hfi1: Fix another case where pq is left on waitlist
    - ACPI: EC: PM: Avoid premature returns from acpi_s2idle_wake()
    - pinctrl: sunrisepoint: Fix PAD lock register offset for SPT-H
    - pinctrl: baytrail: Enable pin configuration setting for GPIO chip
    - pinctrl: qcom: fix wrong write in update_dual_edge
    - pinctrl: cherryview: Add missing spinlock usage in chv_gpio_irq_handler
    - bpf: Fix error return code in map_lookup_and_delete_elem()
    - ALSA: firewire-lib: fix 'function sizeof not defined' error of tracepoints
      format
    - i40iw: Fix error handling in i40iw_manage_arp_cache()
    - drm/i915: Don't enable WaIncreaseLatencyIPCEnabled when IPC is disabled
    - bpf, sockmap: msg_pop_data can incorrecty set an sge length
    - bpf, sockmap: bpf_tcp_ingress needs to subtract bytes from sg.size
    - mmc: alcor: Fix a resource leak in the error path for ->probe()
    - mmc: sdhci-pci-gli: Fix can not access GL9750 after reboot from Windows 10
    - mmc: core: Check request type before completing the request
    - mmc: core: Fix recursive locking issue in CQE recovery path
    - mmc: block: Fix request completion in the CQE timeout path
    - gfs2: More gfs2_find_jhead fixes
    - fork: prevent accidental access to clone3 features
    - drm/amdgpu: force fbdev into vram
    - NFS: Fix fscache super_cookie index_key from changing after umount
    - nfs: fscache: use timespec64 in inode auxdata
    - NFSv4: Fix fscache cookie aux_data to ensure change_attr is included
    - netfilter: conntrack: avoid gcc-10 zero-length-bounds warning
    - drm/i915/gvt: Fix kernel oops for 3-level ppgtt guest
    - arm64: fix the flush_icache_range arguments in machine_kexec
    - nfs: fix NULL deference in nfs4_get_valid_delegation
    - SUNRPC: Signalled ASYNC tasks need to exit
    - netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start()
    - netfilter: nft_set_rbtree: Add missing expired checks
    - RDMA/rxe: Always return ERR_PTR from rxe_create_mmap_info()
    - IB/mlx4: Test return value of calls to ib_get_cached_pkey
    - IB/core: Fix potential NULL pointer dereference in pkey cache
    - RDMA/core: Fix double put of resource
    - RDMA/iw_cxgb4: Fix incorrect function parameters
    - hwmon: (da9052) Synchronize access with mfd
    - s390/ism: fix error return code in ism_probe()
    - mm, memcg: fix inconsistent oom event behavior
    - NFSv3: fix rpc receive buffer size for MOUNT call
    - pnp: Use list_for_each_entry() instead of open coding
    - net/rds: Use ERR_PTR for rds_message_alloc_sgs()
    - Stop the ad-hoc games with -Wno-maybe-initialized
    - [Config] updateconfigs for CC_HAS_WARN_MAYBE_UNINITIALIZED
    - gcc-10: disable 'zero-length-bounds' warning for now
    - gcc-10: disable 'array-bounds' warning for now
    - gcc-10: disable 'stringop-overflow' warning for now
    - gcc-10: disable 'restrict' warning for now
    - gcc-10 warnings: fix low-hanging fruit
    - gcc-10: mark more functions __init to avoid section mismatch warnings
    - gcc-10: avoid shadowing standard library 'free()' in crypto
    - usb: usbfs: correct kernel->user page attribute mismatch
    - USB: usbfs: fix mmap dma mismatch
    - ALSA: hda/realtek - Limit int mic boost for Thinkpad T530
    - ALSA: hda/realtek - Add COEF workaround for ASUS ZenBook UX431DA
    - ALSA: rawmidi: Fix racy buffer resize under concurrent accesses
    - ALSA: usb-audio: Add control message quirk delay for Kingston HyperX headset
    - usb: core: hub: limit HUB_QUIRK_DISABLE_AUTOSUSPEND to USB5534B
    - usb: host: xhci-plat: keep runtime active when removing host
    - usb: cdns3: gadget: prev_req->trb is NULL for ep0
    - usb: xhci: Fix NULL pointer dereference when enqueuing trbs from urb sg list
    - Make the "Reducing compressed framebufer size" message be DRM_INFO_ONCE()
    - ARM: dts: dra7: Fix bus_dma_limit for PCIe
    - ARM: dts: imx27-phytec-phycard-s-rdk: Fix the I2C1 pinctrl entries
    - ARM: dts: imx6dl-yapp4: Fix Ursa board Ethernet connection
    - drm/amd/display: add basic atomic check for cursor plane
    - powerpc/32s: Fix build failure with CONFIG_PPC_KUAP_DEBUG
    - cifs: fix leaked reference on requeued write
    - x86: Fix early boot crash on gcc-10, third try
    - x86/unwind/orc: Fix error handling in __unwind_start()
    - exec: Move would_dump into flush_old_exec
    - clk: rockchip: fix incorrect configuration of rk3228 aclk_gpu* clocks
    - dwc3: Remove check for HWO flag in dwc3_gadget_ep_reclaim_trb_sg()
    - fanotify: fix merging marks masks with FAN_ONDIR
    - usb: gadget: net2272: Fix a memory leak in an error handling path in
      'net2272_plat_probe()'
    - usb: gadget: audio: Fix a missing error return value in audio_bind()
    - usb: gadget: legacy: fix error return code in gncm_bind()
    - usb: gadget: legacy: fix error return code in cdc_bind()
    - clk: Unlink clock if failed to prepare or enable
    - arm64: dts: meson-g12b-khadas-vim3: add missing frddr_a status property
    - arm64: dts: meson-g12-common: fix dwc2 clock names
    - arm64: dts: rockchip: Replace RK805 PMIC node name with "pmic" on rk3328
      boards
    - arm64: dts: rockchip: Rename dwc3 device nodes on rk3399 to make dtc happy
    - arm64: dts: imx8mn: Change SDMA1 ahb clock for imx8mn
    - ARM: dts: r8a73a4: Add missing CMT1 interrupts
    - arm64: dts: renesas: r8a77980: Fix IPMMU VIP[01] nodes
    - ARM: dts: r8a7740: Add missing extal2 to CPG node
    - SUNRPC: Revert 241b1f419f0e ("SUNRPC: Remove xdr_buf_trim()")
    - bpf: Fix sk_psock refcnt leak when receiving message
    - KVM: x86: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce
    - Makefile: disallow data races on gcc-10 as well
    - Linux 5.4.42
  * upgrading to 4.15.0-99-generic breaks the sound and the trackpad
    (LP: #1875916) // Focal update: v5.4.42 upstream stable release
    (LP: #1879759)
    - Revert "ALSA: hda/realtek: Fix pop noise on ALC225"
  * Pop sound from build-in speaker during cold boot and resume from S3
    (LP: #1866357) // Focal update: v5.4.42 upstream stable release
    (LP: #1879759)
    - ALSA: hda/realtek - Fix S3 pop noise on Dell Wyse
  * tpm: fix TIS locality timeout problems (LP: #1881710)
    - SAUCE: tpm: fix TIS locality timeout problems
  * [UBUNTU 20.04] s390x/pci: fix linking between PF and VF for multifunction
    devices (LP: #1879704)
    - PCI/IOV: Introduce pci_iov_sysfs_link() function
    - s390/pci: create links between PFs and VFs
  * Performing function level reset of AMD onboard USB and audio devices causes
    system lockup (LP: #1865988)
    - SAUCE: PCI: Avoid FLR for AMD Matisse HD Audio & USB 3.0
    - SAUCE: PCI: Avoid FLR for AMD Starship USB 3.0
  * seccomp_benchmark times out on eoan (LP: #1881576)
    - SAUCE: selftests/seccomp: use 90s as timeout
  * ASoC/amd: add audio driver for amd renoir (LP: #1881046)
    - ASoC: amd: add Renoir ACP3x IP register header
    - ASoC: amd: add Renoir ACP PCI driver
    - ASoC: amd: add acp init/de-init functions
    - ASoC: amd: create acp3x pdm platform device
    - ASoC: amd: add ACP3x PDM platform driver
    - ASoC: amd: irq handler changes for ACP3x PDM dma driver
    - ASoC: amd: add acp3x pdm driver dma ops
    - ASoC: amd: add ACP PDM DMA driver dai ops
    - ASoC: amd: add Renoir ACP PCI driver PM ops
    - ASoC: amd: add ACP PDM DMA driver pm ops
    - ASoC: amd: enable Renoir acp3x drivers build
    - ASoC: amd: create platform devices for Renoir
    - ASoC: amd: RN machine driver using dmic
    - ASoC: amd: enable build for RN machine driver
    - ASoC: amd: fix kernel warning
    - ASoC: amd: refactoring dai_hw_params() callback
    - ASoC: amd: return error when acp de-init fails
    - [Config]: enable amd renoir ASoC audio
  * Fix for secure boot rules in IMA arch policy on powerpc (LP: #1877955)
    - powerpc/ima: Fix secure boot rules in ima arch policy
  * [UBUNTU 20.04] s390x/pci: s390_pci_mmio_write/read fail when MIO
    instructions are available (LP: #1874055)
    - s390/pci: Fix s390_mmio_read/write with MIO
  * security: lockdown: remove trailing semicolon before function body
    (LP: #1880660)
    - SAUCE: (lockdown) security: lockdown: remove trailing semicolon before
      function body
  * Fix incorrect speed/duplex when I210 device is runtime suspended
    (LP: #1880656)
    - igb: Report speed and duplex as unknown when device is runtime suspended
  * [OMEN by HP Laptop 15-dh0xxx, Realtek ALC285, Black Mic, Left] Recording
    problem (LP: #1874698)
    - ASoC: SOF: Intel: hda: allow operation without i915 gfx
    - ASoC: intel/skl/hda - add no-HDMI cases to generic HDA driver
  * CVE-2020-13143
    - USB: gadget: fix illegal array access in binding with UDC
  * rtl8723bu wifi issue after being turned off (LP: #1878296)
    - rtl8xxxu: Improve TX performance of RTL8723BU on rtl8xxxu driver
    - rtl8xxxu: add bluetooth co-existence support for single antenna
    - rtl8xxxu: remove set but not used variable 'rate_mask'
    - rtl8xxxu: Remove set but not used variable 'vif', 'dev', 'len'
  * Fix Pericom USB controller OHCI/EHCI PME# defect (LP: #1879321)
    - serial: 8250_pci: Move Pericom IDs to pci_ids.h
    - PCI: Avoid Pericom USB controller OHCI/EHCI PME# defect
  * shiftfs: fix btrfs snapshot deletion (LP: #1879688)
    - SAUCE: shiftfs: let userns root destroy subvolumes from other users
  * [UBUNTU 20.04] s390x/pci: enumerate pci functions per physical adapter
    (LP: #1874056)
    - s390/pci: Improve handling of unset UID
    - s390/pci: embedding hotplug_slot in zdev
    - s390/pci: Expose new port attribute for PCIe functions
    - s390/pci: adaptation of iommu to multifunction
    - s390/pci: define kernel parameters for PCI multifunction
    - s390/pci: define RID and RID available
    - s390/pci: create zPCI bus
    - s390/pci: adapt events for zbus
    - s390/pci: Handling multifunctions
    - s390/pci: Do not disable PF when VFs exist
    - s390/pci: Documentation for zPCI
    - s390/pci: removes wrong PCI multifunction assignment
  * update-initramfs complains of missing amdgpu firmware files (LP: #1873325)
    - SAUCE: drm/amdgpu: Remove unreleased arcturus and navi12 firmware from
      modinfo

-- Stefan Bader <stefan.bader@canonical.com>  Thu, 25 Jun 2020 11:31:16 +0200

Changed in linux-kvm (Ubuntu Focal):
status:	Fix Committed → Fix Released

Revision history for this message

Michał Sawicz (saviq) wrote on 2020-08-24:

#52

Hey all, will we get backports of this to previous releases?

Revision history for this message

Stéphane Graber (stgraber) wrote on 2020-08-25:

#53

We weren't planning to as the previous releases (xenial and bionic) did not have "-kvm" image and their default image includes an initrd making them boot just fine under LXD.

So it's really just groovy+focal that we need before we can start using those images.
focal has been taken care of so we're just waiting for linux-kvm to hit the release pocket on groovy before we can switch over to those.

Revision history for this message

Launchpad Janitor (janitor) wrote on 2020-08-25:

#54

Download full text (31.6 KiB)

This bug was fixed in the package linux-kvm - 5.4.0-1020.20

---------------
linux-kvm (5.4.0-1020.20) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1020.20 -proposed tracker (LP: #1887063)

[ Ubuntu: 5.4.0-42.46 ]

  * focal/linux: 5.4.0-42.46 -proposed tracker (LP: #1887069)
  * linux 4.15.0-109-generic network DoS regression vs -108 (LP: #1886668)
    - SAUCE: Revert "netprio_cgroup: Fix unlimited memory leak of v2 cgroups"

linux-kvm (5.4.0-1019.19) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1019.19 -proposed tracker (LP: #1885848)

[ Ubuntu: 5.4.0-41.45 ]

  * focal/linux: 5.4.0-41.45 -proposed tracker (LP: #1885855)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * CVE-2019-19642
    - kernel/relay.c: handle alloc_percpu returning NULL in relay_open
  * CVE-2019-16089
    - SAUCE: nbd_genl_status: null check for nla_nest_start
  * CVE-2020-11935
    - aufs: do not call i_readcount_inc()
  * ip_defrag.sh in net from ubuntu_kernel_selftests failed with 5.0 / 5.3 / 5.4
    kernel (LP: #1826848)
    - selftests: net: ip_defrag: ignore EPERM
  * Update lockdown patches (LP: #1884159)
    - SAUCE: acpi: disallow loading configfs acpi tables when locked down
  * seccomp_bpf fails on powerpc (LP: #1885757)
    - SAUCE: selftests/seccomp: fix ptrace tests on powerpc
  * Introduce the new NVIDIA 418-server and 440-server series, and update the
    current NVIDIA drivers (LP: #1881137)
    - [packaging] add signed modules for the 418-server and the 440-server
      flavours

[ Ubuntu: 5.4.0-40.44 ]

  * linux-oem-5.6-tools-common and -tools-host should be dropped (LP: #1881120)
    - [Packaging] Add Conflicts/Replaces to remove linux-oem-5.6-tools-common and
      -tools-host
  * Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts
  * Slow send speed with Intel I219-V on Ubuntu 18.04.1 (LP: #1802691)
    - e1000e: Disable TSO for buffer overrun workaround
  * CVE-2020-0543
    - UBUNTU/SAUCE: x86/speculation/srbds: do not try to turn mitigation off when
      not supported
  * Realtek 8723DE [10ec:d723] subsystem [10ec:d738] disconnects unsolicitedly
    when Bluetooth is paired: Reason: 23=IEEE8021X_FAILED (LP: #1878147)
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: Move driver IQK to set channel before
      association for 11N chip"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: fix rate for a while after being
      connected"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: No retry and report for auth and assoc"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: 8723d: Add coex support"
    - rtw88: add a debugfs entry to dump coex's info
    - rtw88: add a debugfs entry to enable/disable coex mechanism
    - rtw88: 8723d: Add coex support
    - SAUCE: rtw88: coex: 8723d: set antanna control owner
    - SAUCE: rtw88: coex: 8723d: handle BT inquiry cases
    - SAUCE: rtw88: fix EAPOL 4-way failure by finish IQK earlier
  * CPU stress test fails with focal kernel (LP: #1867900)
    - [Config] Disable hisi_sec2 temporarily
  * Enforce all config annotations (LP: #1879327)
    - [Config]: do not enforce CONFIG_VERSION_SIGNATURE
    - [Config]: prepare to enforce all
    - [Config]: enforce all config opt...

This bug was fixed in the package linux-kvm - 5.4.0-1020.20

---------------
linux-kvm (5.4.0-1020.20) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1020.20 -proposed tracker (LP: #1887063)

[ Ubuntu: 5.4.0-42.46 ]

* focal/linux: 5.4.0-42.46 -proposed tracker (LP: #1887069)
  * linux 4.15.0-109-generic network DoS regression vs -108 (LP: #1886668)
    - SAUCE: Revert "netprio_cgroup: Fix unlimited memory leak of v2 cgroups"

linux-kvm (5.4.0-1019.19) focal; urgency=medium

* focal/linux-kvm: 5.4.0-1019.19 -proposed tracker (LP: #1885848)

[ Ubuntu: 5.4.0-41.45 ]

* focal/linux: 5.4.0-41.45 -proposed tracker (LP: #1885855)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
  * CVE-2019-19642
    - kernel/relay.c: handle alloc_percpu returning NULL in relay_open
  * CVE-2019-16089
    - SAUCE: nbd_genl_status: null check for nla_nest_start
  * CVE-2020-11935
    - aufs: do not call i_readcount_inc()
  * ip_defrag.sh in net from ubuntu_kernel_selftests failed with 5.0 / 5.3 / 5.4
    kernel (LP: #1826848)
    - selftests: net: ip_defrag: ignore EPERM
  * Update lockdown patches (LP: #1884159)
    - SAUCE: acpi: disallow loading configfs acpi tables when locked down
  * seccomp_bpf fails on powerpc (LP: #1885757)
    - SAUCE: selftests/seccomp: fix ptrace tests on powerpc
  * Introduce the new NVIDIA 418-server and 440-server series, and update the
    current NVIDIA drivers (LP: #1881137)
    - [packaging] add signed modules for the 418-server and the 440-server
      flavours

[ Ubuntu: 5.4.0-40.44 ]

* linux-oem-5.6-tools-common and -tools-host should be dropped (LP: #1881120)
    - [Packaging] Add Conflicts/Replaces to remove linux-oem-5.6-tools-common and
      -tools-host
  * Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts
  * Slow send speed with Intel I219-V on Ubuntu 18.04.1 (LP: #1802691)
    - e1000e: Disable TSO for buffer overrun workaround
  * CVE-2020-0543
    - UBUNTU/SAUCE: x86/speculation/srbds: do not try to turn mitigation off when
      not supported
  * Realtek 8723DE [10ec:d723] subsystem [10ec:d738]  disconnects unsolicitedly
    when Bluetooth is paired: Reason: 23=IEEE8021X_FAILED (LP: #1878147)
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: Move driver IQK to set channel before
      association for 11N chip"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: fix rate for a while after being
      connected"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: No retry and report for auth and assoc"
    - SAUCE: Revert "UBUNTU: SAUCE: rtw88: 8723d: Add coex support"
    - rtw88: add a debugfs entry to dump coex's info
    - rtw88: add a debugfs entry to enable/disable coex mechanism
    - rtw88: 8723d: Add coex support
    - SAUCE: rtw88: coex: 8723d: set antanna control owner
    - SAUCE: rtw88: coex: 8723d: handle BT inquiry cases
    - SAUCE: rtw88: fix EAPOL 4-way failure by finish IQK earlier
  * CPU stress test fails with focal kernel (LP: #1867900)
    - [Config] Disable hisi_sec2 temporarily
  * Enforce all config annotations (LP: #1879327)
    - [Config]: do not enforce CONFIG_VERSION_SIGNATURE
    - [Config]: prepare to enforce all
    - [Config]: enforce all config options
  * Focal update: v5.4.44 upstream stable release (LP: #1881927)
    - ax25: fix setsockopt(SO_BINDTODEVICE)
    - dpaa_eth: fix usage as DSA master, try 3
    - net: don't return invalid table id error when we fall back to PF_UNSPEC
    - net: dsa: mt7530: fix roaming from DSA user ports
    - net: ethernet: ti: cpsw: fix ASSERT_RTNL() warning during suspend
    - __netif_receive_skb_core: pass skb by reference
    - net: inet_csk: Fix so_reuseport bind-address cache in tb->fast*
    - net: ipip: fix wrong address family in init error path
    - net/mlx5: Add command entry handling completion
    - net: mvpp2: fix RX hashing for non-10G ports
    - net: nlmsg_cancel() if put fails for nhmsg
    - net: qrtr: Fix passing invalid reference to qrtr_local_enqueue()
    - net: revert "net: get rid of an signed integer overflow in
      ip_idents_reserve()"
    - net sched: fix reporting the first-time use timestamp
    - net/tls: fix race condition causing kernel panic
    - nexthop: Fix attribute checking for groups
    - r8152: support additional Microsoft Surface Ethernet Adapter variant
    - sctp: Don't add the shutdown timer if its already been added
    - sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and
      socket is closed
    - tipc: block BH before using dst_cache
    - net/mlx5e: kTLS, Destroy key object after destroying the TIS
    - net/mlx5e: Fix inner tirs handling
    - net/mlx5: Fix memory leak in mlx5_events_init
    - net/mlx5e: Update netdev txq on completions during closure
    - net/mlx5: Fix error flow in case of function_setup failure
    - net/mlx5: Annotate mutex destroy for root ns
    - net/tls: fix encryption error checking
    - net/tls: free record only on encryption error
    - net: sun: fix missing release regions in cas_init_one().
    - net/mlx4_core: fix a memory leak bug.
    - mlxsw: spectrum: Fix use-after-free of split/unsplit/type_set in case reload
      fails
    - ARM: dts: rockchip: fix phy nodename for rk3228-evb
    - ARM: dts: rockchip: fix phy nodename for rk3229-xms6
    - arm64: dts: rockchip: fix status for &gmac2phy in rk3328-evb.dts
    - arm64: dts: rockchip: swap interrupts interrupt-names rk3399 gpu node
    - ARM: dts: rockchip: swap clock-names of gpu nodes
    - ARM: dts: rockchip: fix pinctrl sub nodename for spi in rk322x.dtsi
    - gpio: tegra: mask GPIO IRQs during IRQ shutdown
    - ALSA: usb-audio: add mapping for ASRock TRX40 Creator
    - net: microchip: encx24j600: add missed kthread_stop
    - gfs2: move privileged user check to gfs2_quota_lock_check
    - gfs2: Grab glock reference sooner in gfs2_add_revoke
    - drm/amdgpu: drop unnecessary cancel_delayed_work_sync on PG ungate
    - drm/amd/powerplay: perform PG ungate prior to CG ungate
    - drm/amdgpu: Use GEM obj reference for KFD BOs
    - cachefiles: Fix race between read_waiter and read_copier involving op->to_do
    - usb: dwc3: pci: Enable extcon driver for Intel Merrifield
    - usb: phy: twl6030-usb: Fix a resource leak in an error handling path in
      'twl6030_usb_probe()'
    - usb: gadget: legacy: fix redundant initialization warnings
    - net: freescale: select CONFIG_FIXED_PHY where needed
    - IB/i40iw: Remove bogus call to netdev_master_upper_dev_get()
    - riscv: stacktrace: Fix undefined reference to `walk_stackframe'
    - clk: ti: am33xx: fix RTC clock parent
    - csky: Fixup msa highest 3 bits mask
    - csky: Fixup perf callchain unwind
    - csky: Fixup remove duplicate irq_disable
    - hwmon: (nct7904) Fix incorrect range of temperature limit registers
    - cifs: Fix null pointer check in cifs_read
    - csky: Fixup raw_copy_from_user()
    - samples: bpf: Fix build error
    - drivers: net: hamradio: Fix suspicious RCU usage warning in bpqether.c
    - Input: usbtouchscreen - add support for BonXeon TP
    - Input: evdev - call input_flush_device() on release(), not flush()
    - Input: xpad - add custom init packet for Xbox One S controllers
    - Input: dlink-dir685-touchkeys - fix a typo in driver name
    - Input: i8042 - add ThinkPad S230u to i8042 reset list
    - Input: synaptics-rmi4 - really fix attn_data use-after-free
    - Input: synaptics-rmi4 - fix error return code in rmi_driver_probe()
    - ARM: 8970/1: decompressor: increase tag size
    - ARM: uaccess: consolidate uaccess asm to asm/uaccess-asm.h
    - ARM: uaccess: integrate uaccess_save and uaccess_restore
    - ARM: uaccess: fix DACR mismatch with nested exceptions
    - gpio: exar: Fix bad handling for ida_simple_get error path
    - arm64: dts: mt8173: fix vcodec-enc clock
    - soc: mediatek: cmdq: return send msg error code
    - gpu/drm: Ingenic: Fix opaque pointer casted to wrong type
    - IB/qib: Call kobject_put() when kobject_init_and_add() fails
    - ARM: dts/imx6q-bx50v3: Set display interface clock parents
    - ARM: dts: bcm2835-rpi-zero-w: Fix led polarity
    - ARM: dts: bcm: HR2: Fix PPI interrupt types
    - mmc: block: Fix use-after-free issue for rpmb
    - gpio: pxa: Fix return value of pxa_gpio_probe()
    - gpio: bcm-kona: Fix return value of bcm_kona_gpio_probe()
    - RDMA/pvrdma: Fix missing pci disable in pvrdma_pci_probe()
    - ALSA: hwdep: fix a left shifting 1 by 31 UB bug
    - ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround
    - ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC
    - exec: Always set cap_ambient in cap_bprm_set_creds
    - clk: qcom: gcc: Fix parent for gpll0_out_even
    - ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio
    - ALSA: hda/realtek - Add new codec supported for ALC287
    - libceph: ignore pool overlay and cache logic on redirects
    - ceph: flush release queue when handling caps for unknown inode
    - RDMA/core: Fix double destruction of uobject
    - drm/amd/display: drop cursor position check in atomic test
    - IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode
    - mm,thp: stop leaking unreleased file pages
    - mm: remove VM_BUG_ON(PageSlab()) from page_mapcount()
    - fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info()
    - include/asm-generic/topology.h: guard cpumask_of_node() macro argument
    - Revert "block: end bio with BLK_STS_AGAIN in case of non-mq devs and
      REQ_NOWAIT"
    - gpio: fix locking open drain IRQ lines
    - iommu: Fix reference count leak in iommu_group_alloc.
    - parisc: Fix kernel panic in mem_init()
    - cfg80211: fix debugfs rename crash
    - x86/syscalls: Revert "x86/syscalls: Make __X32_SYSCALL_BIT be unsigned long"
    - mac80211: mesh: fix discovery timer re-arming issue / crash
    - x86/dma: Fix max PFN arithmetic overflow on 32 bit systems
    - copy_xstate_to_kernel(): don't leave parts of destination uninitialized
    - xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input
    - xfrm: do pskb_pull properly in __xfrm_transport_prep
    - xfrm: remove the xfrm_state_put call becofe going to out_reset
    - xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output
    - xfrm interface: fix oops when deleting a x-netns interface
    - xfrm: fix a warning in xfrm_policy_insert_list
    - xfrm: fix a NULL-ptr deref in xfrm_local_error
    - xfrm: fix error in comment
    - ip_vti: receive ipip packet by calling ip_tunnel_rcv
    - netfilter: nft_reject_bridge: enable reject with bridge vlan
    - netfilter: ipset: Fix subcounter update skip
    - netfilter: conntrack: make conntrack userspace helpers work again
    - netfilter: nfnetlink_cthelper: unbreak userspace helper support
    - netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code
    - esp6: get the right proto for transport mode in esp6_gso_encap
    - bnxt_en: Fix accumulation of bp->net_stats_prev.
    - ieee80211: Fix incorrect mask for default PE duration
    - xsk: Add overflow check for u64 division, stored into u32
    - qlcnic: fix missing release in qlcnic_83xx_interrupt_test.
    - crypto: chelsio/chtls: properly set tp->lsndtime
    - nexthops: Move code from remove_nexthop_from_groups to remove_nh_grp_entry
    - nexthops: don't modify published nexthop groups
    - nexthop: Expand nexthop_is_multipath in a few places
    - ipv4: nexthop version of fib_info_nh_uses_dev
    - net: dsa: declare lockless TX feature for slave ports
    - bonding: Fix reference count leak in bond_sysfs_slave_add.
    - netfilter: conntrack: comparison of unsigned in cthelper confirmation
    - netfilter: conntrack: Pass value of ctinfo to __nf_conntrack_update
    - netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build
    - perf: Make perf able to build with latest libbfd
    - Linux 5.4.44
  * Focal update: v5.4.43 upstream stable release (LP: #1881178)
    - i2c: dev: Fix the race between the release of i2c_dev and cdev
    - KVM: SVM: Fix potential memory leak in svm_cpu_init()
    - ima: Set file->f_mode instead of file->f_flags in ima_calc_file_hash()
    - evm: Check also if *tfm is an error pointer in init_desc()
    - ima: Fix return value of ima_write_policy()
    - ubifs: fix wrong use of crypto_shash_descsize()
    - ACPI: EC: PM: Avoid flushing EC work when EC GPE is inactive
    - mtd: spinand: Propagate ECC information to the MTD structure
    - fix multiplication overflow in copy_fdtable()
    - ubifs: remove broken lazytime support
    - i2c: fix missing pm_runtime_put_sync in i2c_device_probe
    - iommu/amd: Fix over-read of ACPI UID from IVRS table
    - evm: Fix a small race in init_desc()
    - i2c: mux: demux-pinctrl: Fix an error handling path in
      'i2c_demux_pinctrl_probe()'
    - ubi: Fix seq_file usage in detailed_erase_block_info debugfs file
    - afs: Don't unlock fetched data pages until the op completes successfully
    - mtd: Fix mtd not registered due to nvmem name collision
    - kbuild: avoid concurrency issue in parallel building dtbs and dtbs_check
    - net: drop_monitor: use IS_REACHABLE() to guard net_dm_hw_report()
    - gcc-common.h: Update for GCC 10
    - HID: multitouch: add eGalaxTouch P80H84 support
    - HID: alps: Add AUI1657 device ID
    - HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY instead
    - scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV
    - scsi: qla2xxx: Delete all sessions before unregister local nvme port
    - configfs: fix config_item refcnt leak in configfs_rmdir()
    - vhost/vsock: fix packet delivery order to monitoring devices
    - aquantia: Fix the media type of AQC100 ethernet controller in the driver
    - component: Silence bind error on -EPROBE_DEFER
    - net/ena: Fix build warning in ena_xdp_set()
    - scsi: ibmvscsi: Fix WARN_ON during event pool release
    - HID: i2c-hid: reset Synaptics SYNA2393 on resume
    - x86/mm/cpa: Flush direct map alias during cpa
    - ibmvnic: Skip fatal error reset after passive init
    - x86/apic: Move TSC deadline timer debug printk
    - gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp()
    - HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A keyboard-dock
    - ceph: fix double unlock in handle_cap_export()
    - stmmac: fix pointer check after utilization in stmmac_interrupt
    - USB: core: Fix misleading driver bug report
    - platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA
    - iommu/amd: Call domain_flush_complete() in update_domain()
    - drm/amd/display: Prevent dpcd reads with passive dongles
    - KVM: selftests: Fix build for evmcs.h
    - ARM: futex: Address build warning
    - scripts/gdb: repair rb_first() and rb_last()
    - ALSA: hda - constify and cleanup static NodeID tables
    - ALSA: hda: patch_realtek: fix empty macro usage in if block
    - ALSA: hda: Manage concurrent reg access more properly
    - ALSA: hda/realtek - Add supported new mute Led for HP
    - ALSA: hda/realtek - Add HP new mute led supported for ALC236
    - ALSA: hda/realtek: Add quirk for Samsung Notebook
    - ALSA: hda/realtek - Enable headset mic of ASUS GL503VM with ALC295
    - ALSA: hda/realtek - Enable headset mic of ASUS UX550GE with ALC295
    - ALSA: hda/realtek: Enable headset mic of ASUS UX581LV with ALC295
    - KVM: x86: Fix pkru save/restore when guest CR4.PKE=0, move it to x86.c
    - ALSA: iec1712: Initialize STDSP24 properly when using the model=staudio
      option
    - ALSA: pcm: fix incorrect hw_base increase
    - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Xtreme
    - ALSA: hda/realtek - Add more fixup entries for Clevo machines
    - scsi: qla2xxx: Do not log message when reading port speed via sysfs
    - scsi: target: Put lun_ref at end of tmr processing
    - arm64: Fix PTRACE_SYSEMU semantics
    - drm/etnaviv: fix perfmon domain interation
    - apparmor: Fix aa_label refcnt leak in policy_update
    - dmaengine: tegra210-adma: Fix an error handling path in 'tegra_adma_probe()'
    - drm/etnaviv: Fix a leak in submit_pin_objects()
    - dmaengine: dmatest: Restore default for channel
    - dmaengine: owl: Use correct lock in owl_dma_get_pchan()
    - vsprintf: don't obfuscate NULL and error pointers
    - drm/i915/gvt: Init DPLL/DDI vreg for virtual display instead of inheritance.
    - drm/i915: Propagate error from completed fences
    - powerpc: Remove STRICT_KERNEL_RWX incompatibility with RELOCATABLE
    - powerpc/64s: Disable STRICT_KERNEL_RWX
    - bpf: Avoid setting bpf insns pages read-only when prog is jited
    - kbuild: Remove debug info from kallsyms linking
    - Revert "gfs2: Don't demote a glock until its revokes are written"
    - media: fdp1: Fix R-Car M3-N naming in debug message
    - staging: iio: ad2s1210: Fix SPI reading
    - staging: kpc2000: fix error return code in kp2000_pcie_probe()
    - staging: greybus: Fix uninitialized scalar variable
    - iio: sca3000: Remove an erroneous 'get_device()'
    - iio: dac: vf610: Fix an error handling path in 'vf610_dac_probe()'
    - iio: adc: ti-ads8344: Fix channel selection
    - misc: rtsx: Add short delay after exit from ASPM
    - tty: serial: add missing spin_lock_init for SiFive serial console
    - mei: release me_cl object reference
    - ipack: tpci200: fix error return code in tpci200_register()
    - s390/kaslr: add support for R_390_JMP_SLOT relocation type
    - device-dax: don't leak kernel memory to user space after unloading kmem
    - rapidio: fix an error in get_user_pages_fast() error handling
    - kasan: disable branch tracing for core runtime
    - rxrpc: Fix the excessive initial retransmission timeout
    - rxrpc: Fix a memory leak in rxkad_verify_response()
    - s390/kexec_file: fix initrd location for kdump kernel
    - flow_dissector: Drop BPF flow dissector prog ref on netns cleanup
    - x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive tasks
    - iio: adc: stm32-adc: Use dma_request_chan() instead
      dma_request_slave_channel()
    - iio: adc: stm32-adc: fix device used to request dma
    - iio: adc: stm32-dfsdm: Use dma_request_chan() instead
      dma_request_slave_channel()
    - iio: adc: stm32-dfsdm: fix device used to request dma
    - rxrpc: Trace discarded ACKs
    - rxrpc: Fix ack discard
    - tpm: check event log version before reading final events
    - sched/fair: Reorder enqueue/dequeue_task_fair path
    - sched/fair: Fix reordering of enqueue/dequeue_task_fair()
    - sched/fair: Fix enqueue_task_fair() warning some more
    - Linux 5.4.43
  * Focal update: v5.4.42 upstream stable release (LP: #1879759)
    - net: dsa: Do not make user port errors fatal
    - shmem: fix possible deadlocks on shmlock_user_lock
    - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy.
    - KVM: arm: vgic: Synchronize the whole guest on GIC{D,R}_I{S,C}ACTIVER read
    - gpio: pca953x: Fix pca953x_gpio_set_config
    - SUNRPC: Add "@len" parameter to gss_unwrap()
    - SUNRPC: Fix GSS privacy computation of auth->au_ralign
    - net/sonic: Fix a resource leak in an error handling path in
      'jazz_sonic_probe()'
    - net: moxa: Fix a potential double 'free_irq()'
    - ftrace/selftests: workaround cgroup RT scheduling issues
    - drop_monitor: work around gcc-10 stringop-overflow warning
    - virtio-blk: handle block_device_operations callbacks after hot unplug
    - sun6i: dsi: fix gcc-4.8
    - net_sched: fix tcm_parent in tc filter dump
    - scsi: sg: add sg_remove_request in sg_write
    - mmc: sdhci-acpi: Add SDHCI_QUIRK2_BROKEN_64_BIT_DMA for AMDI0040
    - dpaa2-eth: properly handle buffer size restrictions
    - net: fix a potential recursive NETDEV_FEAT_CHANGE
    - netlabel: cope with NULL catmap
    - net: phy: fix aneg restart in phy_ethtool_set_eee
    - net: stmmac: fix num_por initialization
    - pppoe: only process PADT targeted at local interfaces
    - Revert "ipv6: add mtu lock check in __ip6_rt_update_pmtu"
    - tcp: fix error recovery in tcp_zerocopy_receive()
    - tcp: fix SO_RCVLOWAT hangs with fat skbs
    - virtio_net: fix lockdep warning on 32 bit
    - dpaa2-eth: prevent array underflow in update_cls_rule()
    - hinic: fix a bug of ndo_stop
    - net: dsa: loop: Add module soft dependency
    - net: ipv4: really enforce backoff for redirects
    - netprio_cgroup: Fix unlimited memory leak of v2 cgroups
    - net: tcp: fix rx timestamp behavior for tcp_recvmsg
    - nfp: abm: fix error return code in nfp_abm_vnic_alloc()
    - r8169: re-establish support for RTL8401 chip version
    - umh: fix memory leak on execve failure
    - riscv: fix vdso build with lld
    - dmaengine: pch_dma.c: Avoid data race between probe and irq handler
    - dmaengine: mmp_tdma: Do not ignore slave config validation errors
    - dmaengine: mmp_tdma: Reset channel error on release
    - selftests/ftrace: Check the first record for kprobe_args_type.tc
    - cpufreq: intel_pstate: Only mention the BIOS disabling turbo mode once
    - ALSA: hda/hdmi: fix race in monitor detection during probe
    - drm/amd/powerplay: avoid using pm_en before it is initialized revised
    - drm/amd/display: check if REFCLK_CNTL register is present
    - drm/amd/display: Update downspread percent to match spreadsheet for DCN2.1
    - drm/qxl: lost qxl_bo_kunmap_atomic_page in qxl_image_init_helper()
    - drm/amdgpu: simplify padding calculations (v2)
    - drm/amdgpu: invalidate L2 before SDMA IBs (v2)
    - ipc/util.c: sysvipc_find_ipc() incorrectly updates position index
    - gfs2: Another gfs2_walk_metadata fix
    - mmc: sdhci-pci-gli: Fix no irq handler from suspend
    - IB/hfi1: Fix another case where pq is left on waitlist
    - ACPI: EC: PM: Avoid premature returns from acpi_s2idle_wake()
    - pinctrl: sunrisepoint: Fix PAD lock register offset for SPT-H
    - pinctrl: baytrail: Enable pin configuration setting for GPIO chip
    - pinctrl: qcom: fix wrong write in update_dual_edge
    - pinctrl: cherryview: Add missing spinlock usage in chv_gpio_irq_handler
    - bpf: Fix error return code in map_lookup_and_delete_elem()
    - ALSA: firewire-lib: fix 'function sizeof not defined' error of tracepoints
      format
    - i40iw: Fix error handling in i40iw_manage_arp_cache()
    - drm/i915: Don't enable WaIncreaseLatencyIPCEnabled when IPC is disabled
    - bpf, sockmap: msg_pop_data can incorrecty set an sge length
    - bpf, sockmap: bpf_tcp_ingress needs to subtract bytes from sg.size
    - mmc: alcor: Fix a resource leak in the error path for ->probe()
    - mmc: sdhci-pci-gli: Fix can not access GL9750 after reboot from Windows 10
    - mmc: core: Check request type before completing the request
    - mmc: core: Fix recursive locking issue in CQE recovery path
    - mmc: block: Fix request completion in the CQE timeout path
    - gfs2: More gfs2_find_jhead fixes
    - fork: prevent accidental access to clone3 features
    - drm/amdgpu: force fbdev into vram
    - NFS: Fix fscache super_cookie index_key from changing after umount
    - nfs: fscache: use timespec64 in inode auxdata
    - NFSv4: Fix fscache cookie aux_data to ensure change_attr is included
    - netfilter: conntrack: avoid gcc-10 zero-length-bounds warning
    - drm/i915/gvt: Fix kernel oops for 3-level ppgtt guest
    - arm64: fix the flush_icache_range arguments in machine_kexec
    - nfs: fix NULL deference in nfs4_get_valid_delegation
    - SUNRPC: Signalled ASYNC tasks need to exit
    - netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start()
    - netfilter: nft_set_rbtree: Add missing expired checks
    - RDMA/rxe: Always return ERR_PTR from rxe_create_mmap_info()
    - IB/mlx4: Test return value of calls to ib_get_cached_pkey
    - IB/core: Fix potential NULL pointer dereference in pkey cache
    - RDMA/core: Fix double put of resource
    - RDMA/iw_cxgb4: Fix incorrect function parameters
    - hwmon: (da9052) Synchronize access with mfd
    - s390/ism: fix error return code in ism_probe()
    - mm, memcg: fix inconsistent oom event behavior
    - NFSv3: fix rpc receive buffer size for MOUNT call
    - pnp: Use list_for_each_entry() instead of open coding
    - net/rds: Use ERR_PTR for rds_message_alloc_sgs()
    - Stop the ad-hoc games with -Wno-maybe-initialized
    - [Config] updateconfigs for CC_HAS_WARN_MAYBE_UNINITIALIZED
    - gcc-10: disable 'zero-length-bounds' warning for now
    - gcc-10: disable 'array-bounds' warning for now
    - gcc-10: disable 'stringop-overflow' warning for now
    - gcc-10: disable 'restrict' warning for now
    - gcc-10 warnings: fix low-hanging fruit
    - gcc-10: mark more functions __init to avoid section mismatch warnings
    - gcc-10: avoid shadowing standard library 'free()' in crypto
    - usb: usbfs: correct kernel->user page attribute mismatch
    - USB: usbfs: fix mmap dma mismatch
    - ALSA: hda/realtek - Limit int mic boost for Thinkpad T530
    - ALSA: hda/realtek - Add COEF workaround for ASUS ZenBook UX431DA
    - ALSA: rawmidi: Fix racy buffer resize under concurrent accesses
    - ALSA: usb-audio: Add control message quirk delay for Kingston HyperX headset
    - usb: core: hub: limit HUB_QUIRK_DISABLE_AUTOSUSPEND to USB5534B
    - usb: host: xhci-plat: keep runtime active when removing host
    - usb: cdns3: gadget: prev_req->trb is NULL for ep0
    - usb: xhci: Fix NULL pointer dereference when enqueuing trbs from urb sg list
    - Make the "Reducing compressed framebufer size" message be DRM_INFO_ONCE()
    - ARM: dts: dra7: Fix bus_dma_limit for PCIe
    - ARM: dts: imx27-phytec-phycard-s-rdk: Fix the I2C1 pinctrl entries
    - ARM: dts: imx6dl-yapp4: Fix Ursa board Ethernet connection
    - drm/amd/display: add basic atomic check for cursor plane
    - powerpc/32s: Fix build failure with CONFIG_PPC_KUAP_DEBUG
    - cifs: fix leaked reference on requeued write
    - x86: Fix early boot crash on gcc-10, third try
    - x86/unwind/orc: Fix error handling in __unwind_start()
    - exec: Move would_dump into flush_old_exec
    - clk: rockchip: fix incorrect configuration of rk3228 aclk_gpu* clocks
    - dwc3: Remove check for HWO flag in dwc3_gadget_ep_reclaim_trb_sg()
    - fanotify: fix merging marks masks with FAN_ONDIR
    - usb: gadget: net2272: Fix a memory leak in an error handling path in
      'net2272_plat_probe()'
    - usb: gadget: audio: Fix a missing error return value in audio_bind()
    - usb: gadget: legacy: fix error return code in gncm_bind()
    - usb: gadget: legacy: fix error return code in cdc_bind()
    - clk: Unlink clock if failed to prepare or enable
    - arm64: dts: meson-g12b-khadas-vim3: add missing frddr_a status property
    - arm64: dts: meson-g12-common: fix dwc2 clock names
    - arm64: dts: rockchip: Replace RK805 PMIC node name with "pmic" on rk3328
      boards
    - arm64: dts: rockchip: Rename dwc3 device nodes on rk3399 to make dtc happy
    - arm64: dts: imx8mn: Change SDMA1 ahb clock for imx8mn
    - ARM: dts: r8a73a4: Add missing CMT1 interrupts
    - arm64: dts: renesas: r8a77980: Fix IPMMU VIP[01] nodes
    - ARM: dts: r8a7740: Add missing extal2 to CPG node
    - SUNRPC: Revert 241b1f419f0e ("SUNRPC: Remove xdr_buf_trim()")
    - bpf: Fix sk_psock refcnt leak when receiving message
    - KVM: x86: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce
    - Makefile: disallow data races on gcc-10 as well
    - Linux 5.4.42
  * upgrading to 4.15.0-99-generic breaks the sound and the trackpad
    (LP: #1875916) // Focal update: v5.4.42 upstream stable release
    (LP: #1879759)
    - Revert "ALSA: hda/realtek: Fix pop noise on ALC225"
  * Pop sound from build-in speaker during cold boot and resume from S3
    (LP: #1866357) // Focal update: v5.4.42 upstream stable release
    (LP: #1879759)
    - ALSA: hda/realtek - Fix S3 pop noise on Dell Wyse
  * tpm: fix TIS locality timeout problems (LP: #1881710)
    - SAUCE: tpm: fix TIS locality timeout problems
  * [UBUNTU 20.04] s390x/pci: fix linking between PF and VF for multifunction
    devices (LP: #1879704)
    - PCI/IOV: Introduce pci_iov_sysfs_link() function
    - s390/pci: create links between PFs and VFs
  * Performing function level reset of AMD onboard USB and audio devices causes
    system lockup (LP: #1865988)
    - SAUCE: PCI: Avoid FLR for AMD Matisse HD Audio & USB 3.0
    - SAUCE: PCI: Avoid FLR for AMD Starship USB 3.0
  * seccomp_benchmark times out on eoan (LP: #1881576)
    - SAUCE: selftests/seccomp: use 90s as timeout
  * ASoC/amd: add audio driver for amd renoir (LP: #1881046)
    - ASoC: amd: add Renoir ACP3x IP register header
    - ASoC: amd: add Renoir ACP PCI driver
    - ASoC: amd: add acp init/de-init functions
    - ASoC: amd: create acp3x pdm platform device
    - ASoC: amd: add ACP3x PDM platform driver
    - ASoC: amd: irq handler changes for ACP3x PDM dma driver
    - ASoC: amd: add acp3x pdm driver dma ops
    - ASoC: amd: add ACP PDM DMA driver dai ops
    - ASoC: amd: add Renoir ACP PCI driver PM ops
    - ASoC: amd: add ACP PDM DMA driver pm ops
    - ASoC: amd: enable Renoir acp3x drivers build
    - ASoC: amd: create platform devices for Renoir
    - ASoC: amd: RN machine driver using dmic
    - ASoC: amd: enable build for RN machine driver
    - ASoC: amd: fix kernel warning
    - ASoC: amd: refactoring dai_hw_params() callback
    - ASoC: amd: return error when acp de-init fails
    - [Config]: enable amd renoir ASoC audio
  * Fix for secure boot rules in IMA arch policy on powerpc (LP: #1877955)
    - powerpc/ima: Fix secure boot rules in ima arch policy
  * [UBUNTU 20.04] s390x/pci: s390_pci_mmio_write/read fail when MIO
    instructions are available (LP: #1874055)
    - s390/pci: Fix s390_mmio_read/write with MIO
  * security: lockdown: remove trailing semicolon before function body
    (LP: #1880660)
    - SAUCE: (lockdown) security: lockdown: remove trailing semicolon before
      function body
  * Fix incorrect speed/duplex when I210 device is runtime suspended
    (LP: #1880656)
    - igb: Report speed and duplex as unknown when device is runtime suspended
  * [OMEN by HP Laptop 15-dh0xxx, Realtek ALC285, Black Mic, Left] Recording
    problem (LP: #1874698)
    - ASoC: SOF: Intel: hda: allow operation without i915 gfx
    - ASoC: intel/skl/hda - add no-HDMI cases to generic HDA driver
  * CVE-2020-13143
    - USB: gadget: fix illegal array access in binding with UDC
  * rtl8723bu wifi issue after being turned off (LP: #1878296)
    - rtl8xxxu: Improve TX performance of RTL8723BU on rtl8xxxu driver
    - rtl8xxxu: add bluetooth co-existence support for single antenna
    - rtl8xxxu: remove set but not used variable 'rate_mask'
    - rtl8xxxu: Remove set but not used variable 'vif', 'dev', 'len'
  * Fix Pericom USB controller OHCI/EHCI PME# defect (LP: #1879321)
    - serial: 8250_pci: Move Pericom IDs to pci_ids.h
    - PCI: Avoid Pericom USB controller OHCI/EHCI PME# defect
  * shiftfs: fix btrfs snapshot deletion (LP: #1879688)
    - SAUCE: shiftfs: let userns root destroy subvolumes from other users
  * [UBUNTU 20.04] s390x/pci: enumerate pci functions per physical adapter
    (LP: #1874056)
    - s390/pci: Improve handling of unset UID
    - s390/pci: embedding hotplug_slot in zdev
    - s390/pci: Expose new port attribute for PCIe functions
    - s390/pci: adaptation of iommu to multifunction
    - s390/pci: define kernel parameters for PCI multifunction
    - s390/pci: define RID and RID available
    - s390/pci: create zPCI bus
    - s390/pci: adapt events for zbus
    - s390/pci: Handling multifunctions
    - s390/pci: Do not disable PF when VFs exist
    - s390/pci: Documentation for zPCI
    - s390/pci: removes wrong PCI multifunction assignment
  * update-initramfs complains of missing amdgpu firmware files (LP: #1873325)
    - SAUCE: drm/amdgpu: Remove unreleased arcturus and navi12 firmware from
      modinfo

[ Ubuntu: 5.4.0-39.43 ]

* dkms-build: downloads fail in private PPAs (LP: #1883874)
    - dkms-build: apt-cache policy elides username:password information
  * Packaging resync (LP: #1786013)
    - update dkms package versions

-- Khalid Elmously <khalid.elmously@canonical.com>  Fri, 10 Jul 2020 00:37:42 -0400

Changed in linux-kvm (Ubuntu):
status:	Triaged → Fix Released

Revision history for this message

Christopher Townsend (townsend) wrote on 2020-08-25:

#55

Both the 18.04 & 16.04 Ubuntu Minimal cloud images use the kvm kernel by default, so we need this fix applied to those kernels as well. Are there plans for that so that we can use those Minimal images in LXD?

Ubuntu
linux-kvm package

Make linux-kvm bootable in LXD VMs

Bug Description

CVE References

Other bug subscribers

Bug attachments

Remote bug watches

	Status	Importance	Assigned to
cloud-images	Invalid	Undecided	Unassigned
linux-kvm (Ubuntu)	Fix Released	High	Unassigned
Focal	Fix Released	High	Stefan Bader

Ubuntulinux-kvm package

Make linux-kvm bootable in LXD VMs

Bug Description

CVE References

Other bug subscribers

Bug attachments

Remote bug watches

Ubuntu
linux-kvm package