Bug #1983656 “iavf: SR-IOV VFs error with no traffic flow when M...” : Bugs : linux package : Ubuntu

Trent Lloyd (lathiat) on 2022-08-05

Changed in linux (Ubuntu):
assignee:	nobody → Trent Lloyd (lathiat)
status:	New → Confirmed
tags:	added: sts

Revision history for this message

Jeff Lane  (bladernr) wrote on 2022-08-31:

#1

Hi Trent,

What is the expectation here? To update 5.15? Or also 5.4?

Changed in linux (Ubuntu):
status:	Confirmed → Incomplete

Revision history for this message

Jeff Lane  (bladernr) wrote on 2022-08-31:

#2

Also, this will be resolved in Kinetic via 5.19 and Jammy 22.04.2 via HWE.

tags:

added: servcert-472

Revision history for this message

Trent Lloyd (lathiat) wrote on 2022-09-01 (last edit on 2022-09-01):

#3

Updaet: We found that this bug was only triggering when you try to change the MTU to anything other than 1500. With MTU=1500 the VMs work fine even with the current 5.15 kernel.

With MTU=1550 or MTU=9000 it fails even with the upstream 5.19 kernel and these patches. So seems we need to report and work with Intel on this to develop a new patch. Though probably we still need to backport these and maybe other ice patches to 5.15

Revision history for this message

Jeff Lane  (bladernr) wrote on 2022-09-12:

#4

Update from upstream:

Please check out the other patches below that were sent together with the one patch I listed in my previous reply. Cherry-picking patches can be challenging with ice driver from later kernels as new features and bug fixes are sent continuously in each kernel and the dependency can be tricky.

5951a2b9812d v5.16-rc6 iavf: Fix VLAN feature flags after VFR
e6ba5273d4ed v5.16-rc6 ice: Fix race conditions between virtchnl handling and VF ndo ops
b385cca47363 v5.16-rc6 ice: Fix not stopping Tx queues for VFs
0299faeaf8eb v5.16-rc6 ice: Remove toggling of antispoof for VF trusted promiscuous mode
1a8c7778bcde v5.16-rc6 ice: Fix VF true promiscuous mode

Regarding the issue of changing MTU, it is a known one in ice driver and the team is actively working on a fix. I will share once it is ready to be sent Linux upstream.

Another note, for E810 NICs, please recommend customers to update the NVM image on the NIC to the latest one if possible. Here is the latest one:
https://www.intel.com/content/www/us/en/download/19626/non-volatile-memory-nvm-update-utility-for-intel-ethernet-network-adapters-e810-series-linux.html

Revision history for this message

Jeff Lane  (bladernr) wrote on 2022-09-12:

#5

additional patch to pick up that is supposed to help address the issue with MTUs

ice: Fix interface being down after reset with link-down-on-close flag on
https://git.kernel.org/pub/scm/linux/kernel/git/tnguy/next-queue.git/commit/drivers/net/ethernet/intel?h=dev-queue&id=a2aa0cec547579cc137970c772ea82cbf5ee2608

So lets see if we can pull this in too, either with these patches or in a separate PR

Revision history for this message

Michael Reed (mreed8855) wrote on 2022-09-12:

#6

The following patches are already applied to the jammy master-next kernel
(Ubuntu-5.15.0-48.54-2-gd250073d5172)

5951a2b9812d v5.16-rc6 iavf: Fix VLAN feature flags after VFR
e6ba5273d4ed v5.16-rc6 ice: Fix race conditions between virtchnl handling and VF ndo ops
b385cca47363 v5.16-rc6 ice: Fix not stopping Tx queues for VFs
1a8c7778bcde v5.16-rc6 ice: Fix VF true promiscuous mode

I was able to apply (0299faeaf8eb v5.16-rc6 ice: Remove toggling of antispoof for VF trusted promiscuous model) after applying the following patch:

29e71f41e7d2f7069c12c686ca4d222e8be2a2ee ice: Remove boolean vlan_promisc flag from function

Are the three patches in the description still necessary?

Revision history for this message

Michael Reed (mreed8855) wrote on 2022-09-12:

#7

I was unable to locate the patch from comment #5 in linux-next or linus's tree as of yet. This patch may require a separate PR.

Revision history for this message

Jeff Lane  (bladernr) wrote on 2022-09-13:

#8

I may have missed this one... I meant to add it if it's not already picked up in a different commit:

ice: Fix not stopping Tx queues for VFs
https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next.git/commit/drivers/net/ethernet/intel/ice?id=b385cca47363316c6d9a74ae9db407bbc281f815

Revision history for this message

Michael Reed (mreed8855) wrote on 2022-09-13:

#9

I have created a test kernel with the patches listed in comment #4 and comment #6. It does not include the mtu fix from comment #5

https://people.canonical.com/~mreed/misc/lp_1983656_e810_sriov/

Revision history for this message

Paul Lai (pclai) wrote on 2022-09-19: RE: Confirm new features of Ubuntu 22.10

#10

Hi Jeff:
Intel Linux Virtualization is preparing to validate Intel Virtualized features in Ubuntu 22.10.
What kernel and qemu versions can we expect?

From: Lai, Paul C
Sent: Friday, September 16, 2022 7:48 AM
To: Fang, Xun <email address hidden>; Pathi, Pragyansri <email address hidden>; Sethi, Puneet <email address hidden>
Subject: RE: Confirm new features of Ubuntu 22.10

Pragyan:
What are the expected kernel and qemu versions in Ubuntu 22.10?

From: Fang, Xun <<email address hidden><mailto:<email address hidden>>>
Sent: Friday, September 16, 2022 7:01 AM
To: Lai, Paul C <<email address hidden><mailto:<email address hidden>>>
Subject: Confirm new features of Ubuntu 22.10

Paul,

I am drafting a test plan for ubuntu 22.10 and would like to confirm with you about the new features: AMX and SGX, right? Thanks!

Thanks
Xun

Revision history for this message

Arif Ali (arif-ali) wrote on 2022-09-28: Re: SR-IOV VFs no traffic flow and error on Intel E810 (ice / iavf)

#11

Been working with Trent and Intel, and below [1] is the patch for the MTU fix

My test kernels are available in PPA [2] for both 5.4 and 5.15

[1] https://git.kernel.org/pub/scm/linux/kernel/git/tnguy/next-queue.git/commit/drivers/net/ethernet/intel/iavf?h=dev-queue&id=399c98c4dc50b7eb7e9f24da7ffdda6f025676ef
[2] https://launchpad.net/~arif-ali/+archive/ubuntu/sf00343742

Revision history for this message

Trent Lloyd (lathiat) wrote on 2022-09-29:

#12

The patch has now made it upstream into the v6.0-rc7 release:
https://github.com/torvalds/linux/commit/399c98c4dc50b7eb7e9f24da7ffdda6f025676ef

It has also been pushed to the stable-queue for the upstream 5.4 and 5.15 kernels:
https://www.spinics.net/lists/stable-commits/msg266383.html
https://www.spinics.net/lists/stable-commits/msg266285.html

A test kernel for Focal 5.4 and 5.15 was also built and tested. It does resolve the issue as expected.

Revision history for this message

Trent Lloyd (lathiat) wrote on 2022-09-29:

#13

For users of i40e, seems this depends on the following host patch where the max_mtu from the host PF that is now used was not set on i40e (but was for ice).
https://github.com/torvalds/linux/commit/372539def2824c43b6afe2403045b140f65c5acc

It's also queued for stable. We may want to pull this at the same time.

Trent Lloyd (lathiat) on 2022-09-30

description:

updated

Trent Lloyd (lathiat) on 2022-09-30

description:	updated
Changed in linux (Ubuntu):
status:	Incomplete → Confirmed
importance:	Undecided → High

Matthew Ruffell (mruffell) on 2022-10-04

summary:	- SR-IOV VFs no traffic flow and error on Intel E810 (ice / iavf) + iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500
Changed in linux (Ubuntu Kinetic):
status:	Confirmed → In Progress
Changed in linux (Ubuntu Jammy):
status:	New → In Progress
Changed in linux (Ubuntu Focal):
status:	New → In Progress
importance:	Undecided → High
Changed in linux (Ubuntu Jammy):
importance:	Undecided → High
Changed in linux (Ubuntu Focal):
assignee:	nobody → Matthew Ruffell (mruffell)
Changed in linux (Ubuntu Jammy):
assignee:	nobody → Matthew Ruffell (mruffell)
description:	updated
description:	updated

Matthew Ruffell (mruffell) on 2022-10-04

tags:

added: focal jammy kinetic

Stefan Bader (smb) on 2022-10-12

Changed in linux (Ubuntu Kinetic):
status:	In Progress → Fix Committed
Changed in linux (Ubuntu Jammy):
status:	In Progress → Fix Committed
Changed in linux (Ubuntu Focal):
status:	In Progress → Fix Committed

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2022-10-24:

#14

This bug is awaiting verification that the linux/5.4.0-132.148 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-focal' to 'verification-done-focal'. If the problem still exists, change the tag 'verification-needed-focal' to 'verification-failed-focal'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

Revision history for this message

Arif Ali (arif-ali) wrote on 2022-10-25:

#15

The kernel was tested on 2 instances below is my testing transcript

1. Enable proposed on one of the VMs
2. Install linux-image-generic, which installed kernel 5.4.0-132.148
3. Rebooted the node, and was able to set the IP, and ping another VM
4. Set the MTU to 9000, and was still able to ping the other VM
5. On the second VM, changed the MTU 9000 (this still had old kernel), and the ping stopped. The error in dmesg was there as per the first comment
5. Upgraded the kernel on the second VM from proposed, and rebooted the VM
6. Ping started, when the second VM came up
7. Set the MTU to 9000, and the ping still continued

The same steps were repeated with setting the MTU in netplan, and we didn't have any issues
We also tested an MTU of 1550, to go outside of the standard 1500 and 9000, and we didn't see any issues either

tags:

added: verification-done-focal

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2022-10-25:

#16

This bug is awaiting verification that the linux/5.15.0-53.59 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy' to 'verification-done-jammy'. If the problem still exists, change the tag 'verification-needed-jammy' to 'verification-failed-jammy'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

Revision history for this message

Arif Ali (arif-ali) wrote on 2022-10-26:

#17

tested kernel linux/5.15.0-53.59 on both jammy and focal

* Create 2 jammy instances
* Add SRIOV interface with vlan tag
* Configure interface with mtu 9000, and errors in dmesg
* Enabled proposed and installing the linux-image-generic package
* reboot both instances
* network with MTU up via netplan
* We can ping between instances

Followed the same steps for linux-image-generic-hwe-20.04 for the 2 focal nodes in comment #16, and have verified that this works as expected

tags:

added: verification-done-jammy

Revision history for this message

Launchpad Janitor (janitor) wrote on 2022-11-15:

#18

Download full text (31.5 KiB)

This bug was fixed in the package linux - 5.4.0-132.148

---------------
linux (5.4.0-132.148) focal; urgency=medium

  * CVE-2022-42719
    - mac80211: mlme: find auth challenge directly
    - wifi: mac80211: don't parse mbssid in assoc response
    - wifi: mac80211: fix MBSSID parsing use-after-free

  * iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500
    (LP: #1983656)
    - iavf: Fix set max MTU size with port VLAN and jumbo frames
    - i40e: Fix VF set max MTU size

  * fib_nexthop_nongw.sh from ubuntu_kernel_selftests failed on B-5.4
    (LP: #1990800)
    - SAUCE: selftests/net: skipping tests for older ip command releases

  * CVE-2022-29901
    - Revert "x86/speculation: Add RSB VM Exit protections"
    - Revert "x86/cpu: Add a steppings field to struct x86_cpu_id"
    - x86/devicetable: Move x86 specific macro out of generic code
    - x86/cpu: Add consistent CPU match macros
    - x86/cpu: Add a steppings field to struct x86_cpu_id
    - x86/kvm/vmx: Make noinstr clean
    - x86/cpufeatures: Move RETPOLINE flags to word 11
    - x86/bugs: Report AMD retbleed vulnerability
    - x86/bugs: Add AMD retbleed= boot parameter
    - x86/bugs: Keep a per-CPU IA32_SPEC_CTRL value
    - x86/entry: Remove skip_r11rcx
    - x86/entry: Add kernel IBRS implementation
    - x86/bugs: Optimize SPEC_CTRL MSR writes
    - x86/speculation: Add spectre_v2=ibrs option to support Kernel IBRS
    - x86/bugs: Split spectre_v2_select_mitigation() and
      spectre_v2_user_select_mitigation()
    - x86/bugs: Report Intel retbleed vulnerability
    - intel_idle: Disable IBRS during long idle
    - x86/speculation: Change FILL_RETURN_BUFFER to work with objtool
    - x86/speculation: Fix RSB filling with CONFIG_RETPOLINE=n
    - x86/speculation: Fix firmware entry SPEC_CTRL handling
    - x86/speculation: Fix SPEC_CTRL write on SMT state change
    - x86/speculation: Use cached host SPEC_CTRL value for guest entry/exit
    - x86/speculation: Remove x86_spec_ctrl_mask
    - KVM/VMX: Use TEST %REG,%REG instead of CMP $0,%REG in vmenter.S
    - KVM/nVMX: Use __vmx_vcpu_run in nested_vmx_check_vmentry_hw
    - KVM: VMX: Flatten __vmx_vcpu_run()
    - KVM: VMX: Convert launched argument to flags
    - KVM: VMX: Prevent guest RSB poisoning attacks with eIBRS
    - KVM: VMX: Fix IBRS handling after vmexit
    - x86/speculation: Fill RSB on vmexit for IBRS
    - x86/common: Stamp out the stepping madness
    - x86/cpu/amd: Enumerate BTC_NO
    - x86/bugs: Add Cannon lake to RETBleed affected CPU list
    - x86/speculation: Disable RRSBA behavior
    - x86/speculation: Use DECLARE_PER_CPU for x86_spec_ctrl_current
    - x86/bugs: Warn when "ibrs" mitigation is selected on Enhanced IBRS parts
    - x86/speculation: Add RSB VM Exit protections

  * ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
    systems (LP: #1990985)
    - ACPI: processor_idle: Skip dummy wait if kernel is in guest
    - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
      systems

* cgroup: all controllers mounted when using 'cgroup_no_v1=' (LP: #1988584)
- cgroup-v1: add disabled controller check in cgroup1_p...

This bug was fixed in the package linux - 5.4.0-132.148

---------------
linux (5.4.0-132.148) focal; urgency=medium

* CVE-2022-42719
    - mac80211: mlme: find auth challenge directly
    - wifi: mac80211: don't parse mbssid in assoc response
    - wifi: mac80211: fix MBSSID parsing use-after-free

* iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500
    (LP: #1983656)
    - iavf: Fix set max MTU size with port VLAN and jumbo frames
    - i40e: Fix VF set max MTU size

* fib_nexthop_nongw.sh from ubuntu_kernel_selftests failed on B-5.4
    (LP: #1990800)
    - SAUCE: selftests/net: skipping tests for older ip command releases

* CVE-2022-29901
    - Revert "x86/speculation: Add RSB VM Exit protections"
    - Revert "x86/cpu: Add a steppings field to struct x86_cpu_id"
    - x86/devicetable: Move x86 specific macro out of generic code
    - x86/cpu: Add consistent CPU match macros
    - x86/cpu: Add a steppings field to struct x86_cpu_id
    - x86/kvm/vmx: Make noinstr clean
    - x86/cpufeatures: Move RETPOLINE flags to word 11
    - x86/bugs: Report AMD retbleed vulnerability
    - x86/bugs: Add AMD retbleed= boot parameter
    - x86/bugs: Keep a per-CPU IA32_SPEC_CTRL value
    - x86/entry: Remove skip_r11rcx
    - x86/entry: Add kernel IBRS implementation
    - x86/bugs: Optimize SPEC_CTRL MSR writes
    - x86/speculation: Add spectre_v2=ibrs option to support Kernel IBRS
    - x86/bugs: Split spectre_v2_select_mitigation() and
      spectre_v2_user_select_mitigation()
    - x86/bugs: Report Intel retbleed vulnerability
    - intel_idle: Disable IBRS during long idle
    - x86/speculation: Change FILL_RETURN_BUFFER to work with objtool
    - x86/speculation: Fix RSB filling with CONFIG_RETPOLINE=n
    - x86/speculation: Fix firmware entry SPEC_CTRL handling
    - x86/speculation: Fix SPEC_CTRL write on SMT state change
    - x86/speculation: Use cached host SPEC_CTRL value for guest entry/exit
    - x86/speculation: Remove x86_spec_ctrl_mask
    - KVM/VMX: Use TEST %REG,%REG instead of CMP $0,%REG in vmenter.S
    - KVM/nVMX: Use __vmx_vcpu_run in nested_vmx_check_vmentry_hw
    - KVM: VMX: Flatten __vmx_vcpu_run()
    - KVM: VMX: Convert launched argument to flags
    - KVM: VMX: Prevent guest RSB poisoning attacks with eIBRS
    - KVM: VMX: Fix IBRS handling after vmexit
    - x86/speculation: Fill RSB on vmexit for IBRS
    - x86/common: Stamp out the stepping madness
    - x86/cpu/amd: Enumerate BTC_NO
    - x86/bugs: Add Cannon lake to RETBleed affected CPU list
    - x86/speculation: Disable RRSBA behavior
    - x86/speculation: Use DECLARE_PER_CPU for x86_spec_ctrl_current
    - x86/bugs: Warn when "ibrs" mitigation is selected on Enhanced IBRS parts
    - x86/speculation: Add RSB VM Exit protections

* ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
    systems (LP: #1990985)
    - ACPI: processor_idle: Skip dummy wait if kernel is in guest
    - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
      systems

* cgroup: all controllers mounted when using 'cgroup_no_v1=' (LP: #1988584)
    - cgroup-v1: add disabled controller check in cgroup1_parse_param()

* Focal update: v5.4.212 upstream stable release (LP: #1991156)
    - audit: fix potential double free on error path from fsnotify_add_inode_mark
    - parisc: Fix exception handler for fldw and fstw instructions
    - kernel/sys_ni: add compat entry for fadvise64_64
    - usb: cdns3: Fix issue for clear halt endpoint
    - pinctrl: amd: Don't save/restore interrupt status and wake status bits
    - sched/deadline: Unthrottle PI boosted threads while enqueuing
    - sched/deadline: Fix stale throttling on de-/boosted tasks
    - sched/deadline: Fix priority inheritance with multiple scheduling classes
    - kernel/sched: Remove dl_boosted flag comment
    - xfrm: fix refcount leak in __xfrm_policy_check()
    - SUNRPC: RPC level errors should set task->tk_rpc_status
    - rose: check NULL rose_loopback_neigh->loopback
    - net/mlx5e: Properly disable vlan strip on non-UL reps
    - net: moxa: get rid of asymmetry in DMA mapping/unmapping
    - bonding: 802.3ad: fix no transmission of LACPDUs
    - net: ipvtap - add __init/__exit annotations to module init/exit funcs
    - netfilter: ebtables: reject blobs that don't provide all entry points
    - bnxt_en: fix NQ resource accounting during vf creation on 57500 chips
    - netfilter: nft_payload: report ERANGE for too long offset and length
    - netfilter: nft_payload: do not truncate csum_offset and csum_type
    - netfilter: nft_osf: restrict osf to ipv4, ipv6 and inet families
    - netfilter: nft_tunnel: restrict it to netdev family
    - net: Fix data-races around weight_p and dev_weight_[rt]x_bias.
    - net: Fix data-races around netdev_tstamp_prequeue.
    - ratelimit: Fix data-races in ___ratelimit().
    - net: Fix a data-race around sysctl_tstamp_allow_data.
    - net: Fix a data-race around sysctl_net_busy_poll.
    - net: Fix a data-race around sysctl_net_busy_read.
    - net: Fix a data-race around netdev_budget.
    - net: Fix a data-race around netdev_budget_usecs.
    - net: Fix a data-race around sysctl_somaxconn.
    - ixgbe: stop resetting SYSTIME in ixgbe_ptp_start_cyclecounter
    - btrfs: fix silent failure when deleting root reference
    - btrfs: replace: drop assert for suspended replace
    - btrfs: add info when mount fails due to stale replace target
    - btrfs: check if root is readonly while setting security xattr
    - x86/unwind/orc: Unwind ftrace trampolines with correct ORC entry
    - loop: Check for overflow while configuring loop
    - asm-generic: sections: refactor memory_intersects
    - s390: fix double free of GS and RI CBs on fork() failure
    - ACPI: processor: Remove freq Qos request for all CPUs
    - mm/hugetlb: fix hugetlb not supporting softdirty tracking
    - md: call __md_stop_writes in md_stop
    - perf/x86/intel/uncore: Fix broken read_counter() for SNB IMC PMU
    - scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq
    - mm: Force TLB flush for PFNMAP mappings before unlink_file_vma()
    - s390/mm: do not trigger write fault when vma does not allow VM_WRITE
    - x86/bugs: Add "unknown" reporting for MMIO Stale Data
    - kbuild: Fix include path in scripts/Makefile.modpost
    - Bluetooth: L2CAP: Fix build errors in some archs
    - HID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report
    - udmabuf: Set the DMA mask for the udmabuf device (v2)
    - media: pvrusb2: fix memory leak in pvr_probe
    - HID: hidraw: fix memory leak in hidraw_release()
    - fbdev: fb_pm2fb: Avoid potential divide by zero error
    - ftrace: Fix NULL pointer dereference in is_ftrace_trampoline when ftrace is
      dead
    - bpf: Don't redirect packets with invalid pkt_len
    - mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse
    - btrfs: introduce btrfs_lookup_match_dir
    - btrfs: do not pin logs too early during renames
    - btrfs: unify lookup return value when dir entry is missing
    - drm/amd/display: Avoid MPC infinite loop
    - drm/amd/display: clear optc underflow before turn off odm clock
    - neigh: fix possible DoS due to net iface start/stop loop
    - s390/hypfs: avoid error message under KVM
    - drm/amd/display: Fix pixel clock programming
    - netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to y
    - btrfs: tree-checker: check for overlapping extent items
    - lib/vdso: Let do_coarse() return 0 to simplify the callsite
    - lib/vdso: Mark do_hres() and do_coarse() as __always_inline
    - kprobes: don't call disarm_kprobe() for disabled kprobes
    - net/af_packet: check len when min_header_len equals to 0
    - net: neigh: don't call kfree_skb() under spin_lock_irqsave()
    - Linux 5.4.212

* Focal update: v5.4.211 upstream stable release (LP: #1990190)
    - Makefile: link with -z noexecstack --no-warn-rwx-segments
    - x86: link vdso and boot with -z noexecstack --no-warn-rwx-segments
    - scsi: Revert "scsi: qla2xxx: Fix disk failure to rediscover"
    - ALSA: bcd2000: Fix a UAF bug on the error path of probing
    - igc: Remove _I_PHY_ID checking
    - wifi: mac80211_hwsim: fix race condition in pending packet
    - wifi: mac80211_hwsim: add back erroneously removed cast
    - wifi: mac80211_hwsim: use 32-bit skb cookie
    - add barriers to buffer_uptodate and set_buffer_uptodate
    - HID: wacom: Only report rotation for art pen
    - HID: wacom: Don't register pad_input for touch switch
    - KVM: nVMX: Snapshot pre-VM-Enter BNDCFGS for !nested_run_pending case
    - KVM: nVMX: Snapshot pre-VM-Enter DEBUGCTL for !nested_run_pending case
    - KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0
    - KVM: nVMX: Let userspace set nVMX MSR to any _host_ supported value
    - KVM: x86: Mark TSS busy during LTR emulation _after_ all fault checks
    - KVM: x86: Set error code to segment selector on LLDT/LTR non-canonical #GP
    - mm/mremap: hold the rmap lock in write mode when moving page table entries.
    - ALSA: hda/conexant: Add quirk for LENOVO 20149 Notebook model
    - ALSA: hda/cirrus - support for iMac 12,1 model
    - ALSA: hda/realtek: Add quirk for another Asus K42JZ model
    - tty: vt: initialize unicode screen buffer
    - vfs: Check the truncate maximum size in inode_newsize_ok()
    - fs: Add missing umask strip in vfs_tmpfile
    - thermal: sysfs: Fix cooling_device_stats_setup() error code path
    - fbcon: Fix boundary checks for fbcon=vc:n1-n2 parameters
    - usbnet: Fix linkwatch use-after-free on disconnect
    - ovl: drop WARN_ON() dentry is NULL in ovl_encode_fh()
    - parisc: Fix device names in /proc/iomem
    - parisc: io_pgetevents_time64() needs compat syscall in 32-bit compat mode
    - drm/gem: Properly annotate WW context on drm_gem_lock_reservations() error
    - drm/nouveau: fix another off-by-one in nvbios_addr
    - drm/amdgpu: Check BO's requested pinning domains against its
      preferred_domains
    - iio: light: isl29028: Fix the warning in isl29028_remove()
    - fuse: limit nsec
    - serial: mvebu-uart: uart2 error bits clearing
    - md-raid10: fix KASAN warning
    - ia64, processor: fix -Wincompatible-pointer-types in ia64_get_irr()
    - PCI: Add defines for normal and subtractive PCI bridges
    - powerpc/fsl-pci: Fix Class Code of PCIe Root Port
    - powerpc/ptdump: Fix display of RW pages on FSL_BOOK3E
    - powerpc/powernv: Avoid crashing if rng is NULL
    - MIPS: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK
    - coresight: Clear the connection field properly
    - USB: HCD: Fix URB giveback issue in tasklet function
    - ARM: dts: uniphier: Fix USB interrupts for PXs2 SoC
    - arm64: dts: uniphier: Fix USB interrupts for PXs3 SoC
    - netfilter: nf_tables: fix null deref due to zeroed list head
    - epoll: autoremove wakers even more aggressively
    - x86: Handle idle=nomwait cmdline properly for x86_idle
    - arm64: Do not forget syscall when starting a new thread.
    - arm64: fix oops in concurrently setting insn_emulation sysctls
    - ext2: Add more validity checks for inode counts
    - genirq: Don't return error on missing optional irq_request_resources()
    - wait: Fix __wait_event_hrtimeout for RT/DL tasks
    - ARM: dts: imx6ul: add missing properties for sram
    - ARM: dts: imx6ul: change operating-points to uint32-matrix
    - ARM: dts: imx6ul: fix csi node compatible
    - ARM: dts: imx6ul: fix lcdif node compatible
    - ARM: dts: imx6ul: fix qspi node compatible
    - spi: synquacer: Add missing clk_disable_unprepare()
    - ARM: OMAP2+: display: Fix refcount leak bug
    - ACPI: EC: Remove duplicate ThinkPad X1 Carbon 6th entry from DMI quirks
    - ACPI: PM: save NVS memory for Lenovo G40-45
    - ACPI: LPSS: Fix missing check in register_device_clock()
    - arm64: dts: qcom: ipq8074: fix NAND node name
    - arm64: dts: allwinner: a64: orangepi-win: Fix LED node name
    - ARM: shmobile: rcar-gen2: Increase refcount for new reference
    - PM: hibernate: defer device probing when resuming from hibernation
    - selinux: Add boundary check in put_entry()
    - spi: spi-rspi: Fix PIO fallback on RZ platforms
    - ARM: findbit: fix overflowing offset
    - meson-mx-socinfo: Fix refcount leak in meson_mx_socinfo_init
    - ARM: bcm: Fix refcount leak in bcm_kona_smc_init
    - x86/pmem: Fix platform-device leak in error path
    - ARM: dts: ast2500-evb: fix board compatible
    - ARM: dts: ast2600-evb: fix board compatible
    - soc: fsl: guts: machine variable might be unset
    - ARM: dts: qcom: mdm9615: add missing PMIC GPIO reg
    - ARM: OMAP2+: Fix refcount leak in omapdss_init_of
    - ARM: OMAP2+: Fix refcount leak in omap3xxx_prm_late_init
    - cpufreq: zynq: Fix refcount leak in zynq_get_revision
    - soc: qcom: aoss: Fix refcount leak in qmp_cooling_devices_register
    - ARM: dts: qcom: pm8841: add required thermal-sensor-cells
    - bus: hisi_lpc: fix missing platform_device_put() in hisi_lpc_acpi_probe()
    - arm64: dts: mt7622: fix BPI-R64 WPS button
    - erofs: avoid consecutive detection for Highmem memory
    - blk-mq: don't create hctx debugfs dir until q->debugfs_dir is created
    - regulator: of: Fix refcount leak bug in of_get_regulation_constraints()
    - nohz/full, sched/rt: Fix missed tick-reenabling bug in dequeue_task_rt()
    - thermal/tools/tmon: Include pthread and time headers in tmon.h
    - dm: return early from dm_pr_call() if DM device is suspended
    - ath10k: do not enforce interrupt trigger type
    - wifi: rtlwifi: fix error codes in rtl_debugfs_set_write_h2c()
    - drm/mipi-dbi: align max_chunk to 2 in spi_transfer
    - drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers()
    - drm/mediatek: Add pull-down MIPI operation in mtk_dsi_poweroff function
    - drm: adv7511: override i2c address of cec before accessing it
    - i2c: Fix a potential use after free
    - media: tw686x: Register the irq at the end of probe
    - wifi: iwlegacy: 4965: fix potential off-by-one overflow in
      il4965_rs_fill_link_cmd()
    - drm: bridge: adv7511: Add check for mipi_dsi_driver_register
    - drm/mcde: Fix refcount leak in mcde_dsi_bind
    - media: hdpvr: fix error value returns in hdpvr_read
    - drm/vc4: plane: Remove subpixel positioning check
    - drm/vc4: plane: Fix margin calculations for the right/bottom edges
    - drm/vc4: dsi: Correct DSI divider calculations
    - crypto: arm64/gcm - Select AEAD for GHASH_ARM64_CE
    - drm/rockchip: vop: Don't crash for invalid duplicate_state()
    - drm/rockchip: Fix an error handling path rockchip_dp_probe()
    - drm/mediatek: dpi: Remove output format of YUV
    - drm/mediatek: dpi: Only enable dpi after the bridge is enabled
    - drm: bridge: sii8620: fix possible off-by-one
    - drm/msm/mdp5: Fix global state lock backoff
    - crypto: hisilicon - Kunpeng916 crypto driver don't sleep when in softirq
    - media: platform: mtk-mdp: Fix mdp_ipi_comm structure alignment
    - mediatek: mt76: mac80211: Fix missing of_node_put() in mt76_led_init()
    - drm/exynos/exynos7_drm_decon: free resources when clk_set_parent() failed.
    - tcp: make retransmitted SKB fit into the send window
    - libbpf: Fix the name of a reused map
    - selftests: timers: valid-adjtimex: build fix for newer toolchains
    - selftests: timers: clocksource-switch: fix passing errors from child
    - fs: check FMODE_LSEEK to control internal pipe splicing
    - wifi: wil6210: debugfs: fix info leak in wil_write_file_wmi()
    - wifi: p54: Fix an error handling path in p54spi_probe()
    - wifi: p54: add missing parentheses in p54_flush()
    - selftests/bpf: fix a test for snprintf() overflow
    - can: pch_can: do not report txerr and rxerr during bus-off
    - can: rcar_can: do not report txerr and rxerr during bus-off
    - can: sja1000: do not report txerr and rxerr during bus-off
    - can: hi311x: do not report txerr and rxerr during bus-off
    - can: sun4i_can: do not report txerr and rxerr during bus-off
    - can: kvaser_usb_hydra: do not report txerr and rxerr during bus-off
    - can: kvaser_usb_leaf: do not report txerr and rxerr during bus-off
    - can: usb_8dev: do not report txerr and rxerr during bus-off
    - can: error: specify the values of data[5..7] of CAN error frames
    - can: pch_can: pch_can_error(): initialize errc before using it
    - Bluetooth: hci_intel: Add check for platform_driver_register
    - i2c: cadence: Support PEC for SMBus block read
    - i2c: mux-gpmux: Add of_node_put() when breaking out of loop
    - wifi: wil6210: debugfs: fix uninitialized variable use in
      `wil_write_file_wmi()`
    - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue
    - wifi: libertas: Fix possible refcount leak in if_usb_probe()
    - net/mlx5e: Fix the value of MLX5E_MAX_RQ_NUM_MTTS
    - crypto: inside-secure - Add missing MODULE_DEVICE_TABLE for of
    - iavf: Fix max_rate limiting
    - netdevsim: Avoid allocation warnings triggered from user space
    - net: rose: fix netdev reference changes
    - dccp: put dccp_qpolicy_full() and dccp_qpolicy_push() in the same lock
    - clk: renesas: r9a06g032: Fix UART clkgrp bitsel
    - mtd: maps: Fix refcount leak in of_flash_probe_versatile
    - mtd: maps: Fix refcount leak in ap_flash_init
    - mtd: rawnand: meson: Fix a potential double free issue
    - HID: cp2112: prevent a buffer overflow in cp2112_xfer()
    - mtd: sm_ftl: Fix deadlock caused by cancel_work_sync in sm_release
    - mtd: partitions: Fix refcount leak in parse_redboot_of
    - mtd: st_spi_fsm: Add a clk_disable_unprepare() in .probe()'s error path
    - fpga: altera-pr-ip: fix unsigned comparison with less than zero
    - usb: host: Fix refcount leak in ehci_hcd_ppc_of_probe
    - usb: ohci-nxp: Fix refcount leak in ohci_hcd_nxp_probe
    - usb: xhci: tegra: Fix error check
    - clk: mediatek: reset: Fix written reset bit offset
    - misc: rtsx: Fix an error handling path in rtsx_pci_probe()
    - driver core: fix potential deadlock in __driver_attach
    - clk: qcom: clk-krait: unlock spin after mux completion
    - usb: host: xhci: use snprintf() in xhci_decode_trb()
    - clk: qcom: ipq8074: fix NSS port frequency tables
    - clk: qcom: ipq8074: set BRANCH_HALT_DELAY flag for UBI clocks
    - clk: qcom: camcc-sdm845: Fix topology around titan_top power domain
    - soundwire: bus_type: fix remove and shutdown support
    - intel_th: Fix a resource leak in an error handling path
    - intel_th: msu-sink: Potential dereference of null pointer
    - intel_th: msu: Fix vmalloced buffers
    - staging: rtl8192u: Fix sleep in atomic context bug in
      dm_fsync_timer_callback
    - mmc: sdhci-of-esdhc: Fix refcount leak in esdhc_signal_voltage_switch
    - memstick/ms_block: Fix some incorrect memory allocation
    - memstick/ms_block: Fix a memory leak
    - mmc: sdhci-of-at91: fix set_uhs_signaling rewriting of MC1R
    - scsi: smartpqi: Fix DMA direction for RAID requests
    - usb: gadget: udc: amd5536 depends on HAS_DMA
    - RDMA/hns: Fix incorrect clearing of interrupt status register
    - RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event
    - RDMA/hfi1: fix potential memory leak in setup_base_ctxt()
    - gpio: gpiolib-of: Fix refcount bugs in of_mm_gpiochip_add_data()
    - mmc: cavium-octeon: Add of_node_put() when breaking out of loop
    - mmc: cavium-thunderx: Add of_node_put() when breaking out of loop
    - HID: alps: Declare U1_UNICORN_LEGACY support
    - PCI: tegra194: Fix Root Port interrupt handling
    - PCI: tegra194: Fix link up retry sequence
    - USB: serial: fix tty-port initialized comments
    - platform/olpc: Fix uninitialized data in debugfs write
    - mm/mmap.c: fix missing call to vm_unacct_memory in mmap_region
    - RDMA/rxe: Fix error unwind in rxe_create_qp()
    - null_blk: fix ida error handling in null_add_dev()
    - jbd2: fix outstanding credits assert in jbd2_journal_commit_transaction()
    - ext4: recover csum seed of tmp_inode after migrating to extents
    - jbd2: fix assertion 'jh->b_frozen_data == NULL' failure when journal aborted
    - opp: Fix error check in dev_pm_opp_attach_genpd()
    - ASoC: mediatek: mt8173: Fix refcount leak in mt8173_rt5650_rt5676_dev_probe
    - ASoC: mt6797-mt6351: Fix refcount leak in mt6797_mt6351_dev_probe
    - ASoC: codecs: da7210: add check for i2c_add_driver
    - ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe
    - serial: 8250_dw: Store LSR into lsr_saved_flags in dw8250_tx_wait_empty()
    - ASoC: codecs: msm8916-wcd-digital: move gains from SX_TLV to S8_TLV
    - ASoC: codecs: wcd9335: move gains from SX_TLV to S8_TLV
    - profiling: fix shift too large makes kernel panic
    - tty: n_gsm: fix non flow control frames during mux flow off
    - tty: n_gsm: fix packet re-transmission without open control channel
    - tty: n_gsm: fix race condition in gsmld_write()
    - remoteproc: qcom: wcnss: Fix handling of IRQs
    - vfio/ccw: Do not change FSM state in subchannel event
    - tty: n_gsm: fix wrong T1 retry count handling
    - tty: n_gsm: fix DM command
    - tty: n_gsm: fix missing corner cases in gsmld_poll()
    - iommu/exynos: Handle failed IOMMU device registration properly
    - rpmsg: qcom_smd: Fix refcount leak in qcom_smd_parse_edge
    - kfifo: fix kfifo_to_user() return type
    - mfd: t7l66xb: Drop platform disable callback
    - mfd: max77620: Fix refcount leak in max77620_initialise_fps
    - iommu/arm-smmu: qcom_iommu: Add of_node_put() when breaking out of loop
    - s390/zcore: fix race when reading from hardware system area
    - ASoC: qcom: q6dsp: Fix an off-by-one in q6adm_alloc_copp()
    - fuse: Remove the control interface for virtio-fs
    - ASoC: audio-graph-card: Add of_node_put() in fail path
    - watchdog: armada_37xx_wdt: check the return value of devm_ioremap() in
      armada_37xx_wdt_probe()
    - video: fbdev: amba-clcd: Fix refcount leak bugs
    - video: fbdev: sis: fix typos in SiS_GetModeID()
    - powerpc/32: Do not allow selection of e5500 or e6500 CPUs on PPC32
    - powerpc/pci: Prefer PCI domain assignment via DT 'linux,pci-domain' and
      alias
    - powerpc/spufs: Fix refcount leak in spufs_init_isolated_loader
    - powerpc/xive: Fix refcount leak in xive_get_max_prio
    - powerpc/cell/axon_msi: Fix refcount leak in setup_msi_msg_address
    - perf symbol: Fail to read phdr workaround
    - kprobes: Forbid probing on trampoline and BPF code areas
    - powerpc/pci: Fix PHB numbering when using opal-phbid
    - genelf: Use HAVE_LIBCRYPTO_SUPPORT, not the never defined HAVE_LIBCRYPTO
    - scripts/faddr2line: Fix vmlinux detection on arm64
    - x86/numa: Use cpumask_available instead of hardcoded NULL check
    - video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock()
    - tools/thermal: Fix possible path truncations
    - video: fbdev: vt8623fb: Check the size of screen before memset_io()
    - video: fbdev: arkfb: Check the size of screen before memset_io()
    - video: fbdev: s3fb: Check the size of screen before memset_io()
    - scsi: zfcp: Fix missing auto port scan and thus missing target ports
    - scsi: qla2xxx: Fix discovery issues in FC-AL topology
    - scsi: qla2xxx: Turn off multi-queue for 8G adapters
    - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection
    - x86/olpc: fix 'logical not is only applied to the left hand side'
    - spmi: trace: fix stack-out-of-bound access in SPMI tracing functions
    - kexec, KEYS, s390: Make use of built-in and secondary keyring for signature
      verification
    - tpm: eventlog: Fix section mismatch for DEBUG_SECTION_MISMATCH
    - btrfs: reset block group chunk force if we have to wait
    - ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h
    - ext4: make sure ext4_append() always allocates new block
    - ext4: fix use-after-free in ext4_xattr_set_entry
    - ext4: update s_overhead_clusters in the superblock during an on-line resize
    - ext4: fix extent status tree race in writeback error recovery path
    - ext4: correct max_inline_xattr_value_size computing
    - ext4: correct the misjudgment in ext4_iget_extra_inode
    - intel_th: pci: Add Raptor Lake-S CPU support
    - intel_th: pci: Add Raptor Lake-S PCH support
    - intel_th: pci: Add Meteor Lake-P support
    - dm raid: fix address sanitizer warning in raid_resume
    - dm raid: fix address sanitizer warning in raid_status
    - dm thin: fix use-after-free crash in dm_sm_register_threshold_callback
    - dm writecache: set a default MAX_WRITEBACK_JOBS
    - ACPI: CPPC: Do not prevent CPPC from working in the future
    - timekeeping: contribute wall clock to rng on time change
    - firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails
    - iommu/vt-d: avoid invalid memory access via node_online(NUMA_NO_NODE)
    - btrfs: reject log replay if there is unsupported RO compat flag
    - KVM: Add infrastructure and macro to mark VM as bugged
    - KVM: x86: Check lapic_in_kernel() before attempting to set a SynIC irq
    - KVM: x86: Avoid theoretical NULL pointer dereference in
      kvm_irq_delivery_to_apic_fast()
    - tcp: fix over estimation in sk_forced_mem_schedule()
    - scsi: sg: Allow waiting for commands to complete on removed device
    - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression
    - net/9p: Initialize the iounit field during fid creation
    - net_sched: cls_route: disallow handle of 0
    - ALSA: info: Fix llseek return value when using callback
    - rds: add missing barrier to release_refill
    - ata: libata-eh: Add missing command name
    - mmc: pxamci: Fix another error handling path in pxamci_probe()
    - mmc: pxamci: Fix an error handling path in pxamci_probe()
    - btrfs: fix lost error handling when looking up extended ref on log replay
    - tracing: Have filter accept "common_cpu" to be consistent
    - can: ems_usb: fix clang's -Wunaligned-access warning
    - apparmor: fix quiet_denied for file rules
    - apparmor: fix absroot causing audited secids to begin with =
    - apparmor: Fix failed mount permission check error message
    - apparmor: fix aa_label_asxprint return check
    - apparmor: fix overlapping attachment computation
    - apparmor: fix reference count leak in aa_pivotroot()
    - apparmor: Fix memleak in aa_simple_write_to_buffer()
    - Documentation: ACPI: EINJ: Fix obsolete example
    - NFSv4.1: Don't decrease the value of seq_nr_highest_sent
    - NFSv4.1: Handle NFS4ERR_DELAY replies to OP_SEQUENCE correctly
    - NFSv4: Fix races in the legacy idmapper upcall
    - NFSv4.1: RECLAIM_COMPLETE must handle EACCES
    - NFSv4/pnfs: Fix a use-after-free bug in open
    - can: mcp251x: Fix race condition on receive interrupt
    - sunrpc: fix expiry of auth creds
    - SUNRPC: Reinitialise the backchannel request buffers before reuse
    - devlink: Fix use-after-free after a failed reload
    - net: bgmac: Fix a BUG triggered by wrong bytes_compl
    - pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map
    - pinctrl: qcom: msm8916: Allow CAMSS GP clocks to be muxed
    - pinctrl: sunxi: Add I/O bias setting for H6 R-PIO
    - ACPI: property: Return type of acpi_add_nondev_subnodes() should be bool
    - geneve: do not use RT_TOS for IPv6 flowlabel
    - plip: avoid rcu debug splat
    - vsock: Fix memory leak in vsock_connect()
    - vsock: Set socket state back to SS_UNCONNECTED in vsock_connect_timeout()
    - dt-bindings: arm: qcom: fix MSM8916 MTP compatibles
    - tools/vm/slabinfo: use alphabetic order when two values are equal
    - tools build: Switch to new openssl API for test-libcrypto
    - NTB: ntb_tool: uninitialized heap data in tool_fn_write()
    - nfp: ethtool: fix the display error of `ethtool -m DEVNAME`
    - xen/xenbus: fix return type in xenbus_file_read()
    - atm: idt77252: fix use-after-free bugs caused by tst_timer
    - dpaa2-eth: trace the allocated address instead of page struct
    - tee: add overflow check in register_shm_helper()
    - nios2: page fault et.al. are *not* restartable syscalls...
    - nios2: don't leave NULLs in sys_call_table[]
    - nios2: traced syscall does need to check the syscall number
    - nios2: fix syscall restart checks
    - nios2: restarts apply only to the first sigframe we build...
    - nios2: add force_successful_syscall_return()
    - iavf: Fix adminq error handling
    - clk: rockchip: add sclk_mac_lbtest to rk3188_critical_clocks
    - netfilter: nf_tables: really skip inactive sets when allocating name
    - powerpc/pci: Fix get_phb_number() locking
    - net: dsa: mv88e6060: prevent crash on an unused port
    - net: moxa: pass pdev instead of ndev to DMA functions
    - net: dsa: microchip: ksz9477: fix fdb_dump last invalid entry
    - ice: Ignore EEXIST when setting promisc mode
    - i40e: Fix to stop tx_timeout recovery if GLOBR fails
    - fec: Fix timer capture timing in `fec_ptp_enable_pps()`
    - igb: Add lock to avoid data race
    - gcc-plugins: Undefine LATENT_ENTROPY_PLUGIN when plugin disabled for a file
    - locking/atomic: Make test_and_*_bit() ordered on failure
    - drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors()
    - PCI: Add ACS quirk for Broadcom BCM5750x NICs
    - usb: cdns3 fix use-after-free at workaround 2
    - usb: gadget: uvc: call uvc uvcg_warn on completed status instead of
      uvcg_info
    - irqchip/tegra: Fix overflow implicit truncation warnings
    - drm/meson: Fix overflow implicit truncation warnings
    - usb: host: ohci-ppc-of: Fix refcount leak bug
    - usb: renesas: Fix refcount leak bug
    - vboxguest: Do not use devm for irq
    - clk: qcom: ipq8074: dont disable gcc_sleep_clk_src
    - scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user
      input
    - gadgetfs: ep_io - wait until IRQ finishes
    - cxl: Fix a memory leak in an error handling path
    - PCI/ACPI: Guard ARM64-specific mcfg_quirks
    - um: add "noreboot" command line option for PANIC_TIMEOUT=-1 setups
    - selftests/kprobe: Do not test for GRP/ without event failures
    - dmaengine: sprd: Cleanup in .remove() after pm_runtime_get_sync() failed
    - nvmet-tcp: fix lockdep complaint on nvmet_tcp_wq flush during queue teardown
    - drivers:md:fix a potential use-after-free bug
    - ext4: avoid remove directory when directory is corrupted
    - ext4: avoid resizing to a partial cluster size
    - lib/list_debug.c: Detect uninitialized lists
    - tty: serial: Fix refcount leak bug in ucc_uart.c
    - vfio: Clear the caps->buf to NULL after free
    - mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start
    - riscv: mmap with PROT_WRITE but no PROT_READ is invalid
    - RISC-V: Add fast call path of crash_kexec()
    - watchdog: export lockup_detector_reconfigure
    - powerpc/32: Don't always pass -mcpu=powerpc to the compiler
    - ALSA: core: Add async signal helpers
    - ALSA: timer: Use deferred fasync helper
    - f2fs: fix to avoid use f2fs_bug_on() in f2fs_new_node_page()
    - smb3: check xattr value length earlier
    - powerpc/64: Init jump labels before parse_early_param()
    - video: fbdev: i740fb: Check the argument of i740_calc_vclk()
    - MIPS: tlbex: Explicitly compare _PAGE_NO_EXEC against 0
    - tracing/probes: Have kprobes and uprobes use $COMM too
    - can: j1939: j1939_sk_queue_activate_next_locked(): replace WARN_ON_ONCE with
      netdev_warn_once()
    - can: j1939: j1939_session_destroy(): fix memory leak of skbs
    - btrfs: only write the sectors in the vertical stripe which has data stripes
    - btrfs: raid56: don't trust any cached sector in __raid56_parity_recover()
    - Linux 5.4.211

* CVE-2022-3028
    - af_key: Do not call xfrm_probe_algs in parallel

* CVE-2022-2978
    - fs: fix UAF/GPF bug in nilfs_mdt_destroy

* CVE-2022-40768
    - scsi: stex: Properly zero out the passthrough command structure

-- Stefan Bader <stefan.bader@canonical.com>  Mon, 17 Oct 2022 17:19:41 +0200

Changed in linux (Ubuntu Focal):
status:	Fix Committed → Fix Released

Revision history for this message

Launchpad Janitor (janitor) wrote on 2022-11-15:

#19

Download full text (73.3 KiB)

This bug was fixed in the package linux - 5.15.0-53.59

---------------
linux (5.15.0-53.59) jammy; urgency=medium

* Fix blank screen on Thinkpad ADL 4K+ panel (LP: #1980621)
- drm/i915: Implement WaEdpLinkRateDataReload

* Kernel regresses openjdk on riscv64 (LP: #1992484)
- SAUCE: Revert "riscv: mmap with PROT_WRITE but no PROT_READ is invalid"

  * iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500
    (LP: #1983656)
    - iavf: Fix set max MTU size with port VLAN and jumbo frames
    - i40e: Fix VF set max MTU size

  * [Ubuntu 22.04] mpt3sas: Request to include latest bug fix patches
    (LP: #1965927)
    - scsi: mpt3sas: Remove scsi_dma_map() error messages
    - scsi: mpt3sas: Update persistent trigger pages from sysfs interface

  * ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
    systems (LP: #1990985)
    - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
      systems

  * Fix resume on AMD platforms when TBT monitor is plugged (LP: #1990920)
    - SAUCE: Revert "drm/amd/display: Add helper for blanking all dp displays"
    - drm/amd/display: Detect dpcd_rev when hotplug mst monitor
    - drm/amd/display: Release remote dc_sink under mst scenario

* LSM: Configuring Too Many LSMs Causes Kernel Panic on Boot (LP: #1987998)
- SAUCE: LSM: Change Landlock from LSMBLOB_NEEDED to LSMBLOB_NOT_NEEDED

* To support Intel Maple Ridge Thunderbolt [8086:1134] (LP: #1990240)
- thunderbolt: Add support for Intel Maple Ridge single port controller

  * Intel graphic driver is not probing[8086:468b] (LP: #1990242)
    - drm/i915/adl_s: Update ADL-S PCI IDs
    - drm/i915: Add new ADL-S pci id

* Add HDMI codec ID for Intel Raptor Lake (LP: #1989578)
- ALSA: hda: Add PCI and HDMI IDs for Intel Raptor Lake

  * Jammy update: v5.15.64 upstream stable release (LP: #1991717)
    - wifi: rtlwifi: remove always-true condition pointed out by GCC 12
    - eth: sun: cassini: remove dead code
    - audit: fix potential double free on error path from fsnotify_add_inode_mark
    - cgroup: Fix race condition at rebind_subsystems()
    - parisc: Make CONFIG_64BIT available for ARCH=parisc64 only
    - parisc: Fix exception handler for fldw and fstw instructions
    - kernel/sys_ni: add compat entry for fadvise64_64
    - x86/entry: Move CLD to the start of the idtentry macro
    - block: add a bdev_max_zone_append_sectors helper
    - block: add bdev_max_segments() helper
    - btrfs: zoned: revive max_zone_append_bytes
    - btrfs: replace BTRFS_MAX_EXTENT_SIZE with fs_info->max_extent_size
    - btrfs: convert count_max_extents() to use fs_info->max_extent_size
    - Input: i8042 - move __initconst to fix code styling warning
    - Input: i8042 - merge quirk tables
    - Input: i8042 - add TUXEDO devices to i8042 quirk tables
    - Input: i8042 - add additional TUXEDO devices to i8042 quirk tables
    - drivers/base: fix userspace break from using bin_attributes for cpumap and
      cpulist
    - scsi: qla2xxx: Fix response queue handler reading stale packets
    - scsi: qla2xxx: edif: Fix dropped IKE message
    - btrfs: put initial index value of a...

This bug was fixed in the package linux - 5.15.0-53.59

---------------
linux (5.15.0-53.59) jammy; urgency=medium

* Fix blank screen on Thinkpad ADL 4K+ panel (LP: #1980621)
    - drm/i915: Implement WaEdpLinkRateDataReload

* Kernel regresses openjdk on riscv64 (LP: #1992484)
    - SAUCE: Revert "riscv: mmap with PROT_WRITE but no PROT_READ is invalid"

* iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500
    (LP: #1983656)
    - iavf: Fix set max MTU size with port VLAN and jumbo frames
    - i40e: Fix VF set max MTU size

* [Ubuntu 22.04] mpt3sas: Request to include latest bug fix patches
    (LP: #1965927)
    - scsi: mpt3sas: Remove scsi_dma_map() error messages
    - scsi: mpt3sas: Update persistent trigger pages from sysfs interface

* ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
    systems (LP: #1990985)
    - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
      systems

* Fix resume on AMD platforms when TBT monitor is plugged (LP: #1990920)
    - SAUCE: Revert "drm/amd/display: Add helper for blanking all dp displays"
    - drm/amd/display: Detect dpcd_rev when hotplug mst monitor
    - drm/amd/display: Release remote dc_sink under mst scenario

* LSM: Configuring Too Many LSMs Causes Kernel Panic on Boot (LP: #1987998)
    - SAUCE: LSM: Change Landlock from LSMBLOB_NEEDED to LSMBLOB_NOT_NEEDED

* To support Intel Maple Ridge Thunderbolt [8086:1134] (LP: #1990240)
    - thunderbolt: Add support for Intel Maple Ridge single port controller

* Intel graphic driver is not probing[8086:468b] (LP: #1990242)
    - drm/i915/adl_s: Update ADL-S PCI IDs
    - drm/i915: Add new ADL-S pci id

* Add HDMI codec ID for Intel Raptor Lake (LP: #1989578)
    - ALSA: hda: Add PCI and HDMI IDs for Intel Raptor Lake

* Jammy update: v5.15.64 upstream stable release (LP: #1991717)
    - wifi: rtlwifi: remove always-true condition pointed out by GCC 12
    - eth: sun: cassini: remove dead code
    - audit: fix potential double free on error path from fsnotify_add_inode_mark
    - cgroup: Fix race condition at rebind_subsystems()
    - parisc: Make CONFIG_64BIT available for ARCH=parisc64 only
    - parisc: Fix exception handler for fldw and fstw instructions
    - kernel/sys_ni: add compat entry for fadvise64_64
    - x86/entry: Move CLD to the start of the idtentry macro
    - block: add a bdev_max_zone_append_sectors helper
    - block: add bdev_max_segments() helper
    - btrfs: zoned: revive max_zone_append_bytes
    - btrfs: replace BTRFS_MAX_EXTENT_SIZE with fs_info->max_extent_size
    - btrfs: convert count_max_extents() to use fs_info->max_extent_size
    - Input: i8042 - move __initconst to fix code styling warning
    - Input: i8042 - merge quirk tables
    - Input: i8042 - add TUXEDO devices to i8042 quirk tables
    - Input: i8042 - add additional TUXEDO devices to i8042 quirk tables
    - drivers/base: fix userspace break from using bin_attributes for cpumap and
      cpulist
    - scsi: qla2xxx: Fix response queue handler reading stale packets
    - scsi: qla2xxx: edif: Fix dropped IKE message
    - btrfs: put initial index value of a directory in a constant
    - btrfs: pass the dentry to btrfs_log_new_name() instead of the inode
    - btrfs: remove unnecessary parameter delalloc_start for writepage_delalloc()
    - riscv: lib: uaccess: fold fixups into body
    - riscv: lib: uaccess: fix CSR_STATUS SR_SUM bit
    - xfrm: fix refcount leak in __xfrm_policy_check()
    - xfrm: clone missing x->lastused in xfrm_do_migrate
    - xfrm: policy: fix metadata dst->dev xmit null pointer dereference
    - fs: require CAP_SYS_ADMIN in target namespace for idmapped mounts
    - net: use eth_hw_addr_set() instead of ether_addr_copy()
    - Revert "net: macsec: update SCI upon MAC address change."
    - NFS: Don't allocate nfs_fattr on the stack in __nfs42_ssc_open()
    - NFSv4.2 fix problems with __nfs42_ssc_open
    - SUNRPC: RPC level errors should set task->tk_rpc_status
    - mm/smaps: don't access young/dirty bit if pte unpresent
    - ntfs: fix acl handling
    - rose: check NULL rose_loopback_neigh->loopback
    - r8152: fix the units of some registers for RTL8156A
    - r8152: fix the RX FIFO settings when suspending
    - nfc: pn533: Fix use-after-free bugs caused by pn532_cmd_timeout
    - ice: xsk: Force rings to be sized to power of 2
    - ice: xsk: prohibit usage of non-balanced queue id
    - net/mlx5e: Properly disable vlan strip on non-UL reps
    - net/mlx5: Avoid false positive lockdep warning by adding lock_class_key
    - net/mlx5e: Fix wrong application of the LRO state
    - net/mlx5e: Fix wrong tc flag used when set hw-tc-offload off
    - net: ipa: don't assume SMEM is page-aligned
    - net: phy: Don't WARN for PHY_READY state in mdio_bus_phy_resume()
    - net: moxa: get rid of asymmetry in DMA mapping/unmapping
    - bonding: 802.3ad: fix no transmission of LACPDUs
    - net: ipvtap - add __init/__exit annotations to module init/exit funcs
    - netfilter: ebtables: reject blobs that don't provide all entry points
    - bnxt_en: fix NQ resource accounting during vf creation on 57500 chips
    - netfilter: nf_tables: disallow updates of implicit chain
    - netfilter: nf_tables: make table handle allocation per-netns friendly
    - netfilter: nft_payload: report ERANGE for too long offset and length
    - netfilter: nft_payload: do not truncate csum_offset and csum_type
    - netfilter: nf_tables: do not leave chain stats enabled on error
    - netfilter: nft_osf: restrict osf to ipv4, ipv6 and inet families
    - netfilter: nft_tunnel: restrict it to netdev family
    - netfilter: nf_tables: consolidate rule verdict trace call
    - netfilter: nft_cmp: optimize comparison for 16-bytes
    - netfilter: bitwise: improve error goto labels
    - netfilter: nf_tables: upfront validation of data via nft_data_init()
    - netfilter: nf_tables: disallow jump to implicit chain from set element
    - netfilter: nf_tables: disallow binding to already bound chain
    - netfilter: flowtable: add function to invoke garbage collection immediately
    - netfilter: flowtable: fix stuck flows on cleanup due to pending work
    - net: Fix data-races around sysctl_[rw]mem_(max|default).
    - net: Fix data-races around weight_p and dev_weight_[rt]x_bias.
    - net: Fix data-races around netdev_max_backlog.
    - net: Fix data-races around netdev_tstamp_prequeue.
    - ratelimit: Fix data-races in ___ratelimit().
    - net: Fix data-races around sysctl_optmem_max.
    - net: Fix a data-race around sysctl_tstamp_allow_data.
    - net: Fix a data-race around sysctl_net_busy_poll.
    - net: Fix a data-race around sysctl_net_busy_read.
    - net: Fix a data-race around netdev_budget.
    - tcp: expose the tcp_mark_push() and tcp_skb_entail() helpers
    - mptcp: stop relying on tcp_tx_skb_cache
    - net: Fix data-races around sysctl_max_skb_frags.
    - net: Fix a data-race around netdev_budget_usecs.
    - net: Fix data-races around sysctl_fb_tunnels_only_for_init_net.
    - net: Fix data-races around sysctl_devconf_inherit_init_net.
    - net: Fix a data-race around sysctl_somaxconn.
    - ixgbe: stop resetting SYSTIME in ixgbe_ptp_start_cyclecounter
    - i40e: Fix incorrect address type for IPv6 flow rules
    - rxrpc: Fix locking in rxrpc's sendmsg
    - ionic: widen queue_lock use around lif init and deinit
    - ionic: clear broken state on generation change
    - ionic: fix up issues with handling EAGAIN on FW cmds
    - ionic: VF initial random MAC address if no assigned mac
    - net: stmmac: work around sporadic tx issue on link-up
    - btrfs: fix silent failure when deleting root reference
    - btrfs: replace: drop assert for suspended replace
    - btrfs: add info when mount fails due to stale replace target
    - btrfs: check if root is readonly while setting security xattr
    - btrfs: fix possible memory leak in btrfs_get_dev_args_from_path()
    - perf/x86/lbr: Enable the branch type for the Arch LBR by default
    - x86/unwind/orc: Unwind ftrace trampolines with correct ORC entry
    - x86/bugs: Add "unknown" reporting for MMIO Stale Data
    - x86/nospec: Unwreck the RSB stuffing
    - loop: Check for overflow while configuring loop
    - writeback: avoid use-after-free after removing device
    - asm-generic: sections: refactor memory_intersects
    - mm/damon/dbgfs: avoid duplicate context directory creation
    - s390/mm: do not trigger write fault when vma does not allow VM_WRITE
    - bootmem: remove the vmemmap pages from kmemleak in put_page_bootmem
    - s390: fix double free of GS and RI CBs on fork() failure
    - fbdev: fbcon: Properly revert changes when vc_resize() failed
    - Revert "memcg: cleanup racy sum avoidance code"
    - ACPI: processor: Remove freq Qos request for all CPUs
    - nouveau: explicitly wait on the fence in nouveau_bo_move_m2mf
    - smb3: missing inode locks in punch hole
    - xen/privcmd: fix error exit of privcmd_ioctl_dm_op()
    - riscv: traps: add missing prototype
    - io_uring: fix issue with io_write() not always undoing sb_start_write()
    - mm/hugetlb: fix hugetlb not supporting softdirty tracking
    - md: call __md_stop_writes in md_stop
    - mptcp: Fix crash due to tcp_tsorted_anchor was initialized before release
      skb
    - arm64: Fix match_list for erratum 1286807 on Arm Cortex-A76
    - binder_alloc: add missing mmap_lock calls when using the VMA
    - x86/nospec: Fix i386 RSB stuffing
    - Documentation/ABI: Mention retbleed vulnerability info file for sysfs
    - blk-mq: fix io hung due to missing commit_rqs
    - perf python: Fix build when PYTHON_CONFIG is user supplied
    - perf/x86/intel/uncore: Fix broken read_counter() for SNB IMC PMU
    - perf/x86/intel/ds: Fix precise store latency handling
    - perf stat: Clear evsel->reset_group for each stat run
    - scsi: ufs: core: Enable link lost interrupt
    - scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq
    - bpf: Don't use tnum_range on array range checking for poke descriptors
    - Linux 5.15.64

* Jammy update: v5.15.63 upstream stable release (LP: #1990564)
    - ALSA: info: Fix llseek return value when using callback
    - ALSA: hda/realtek: Add quirk for Clevo NS50PU, NS70PU
    - KVM: Unconditionally get a ref to /dev/kvm module when creating a VM
    - x86/mm: Use proper mask when setting PUD mapping
    - rds: add missing barrier to release_refill
    - locking/atomic: Make test_and_*_bit() ordered on failure
    - drm/nouveau: recognise GA103
    - drm/ttm: Fix dummy res NULL ptr deref bug
    - drm/amd/display: Check correct bounds for stream encoder instances for
      DCN303
    - ata: libata-eh: Add missing command name
    - mmc: pxamci: Fix another error handling path in pxamci_probe()
    - mmc: pxamci: Fix an error handling path in pxamci_probe()
    - mmc: meson-gx: Fix an error handling path in meson_mmc_probe()
    - btrfs: unset reloc control if transaction commit fails in
      prepare_to_relocate()
    - btrfs: reset RO counter on block group if we fail to relocate
    - btrfs: fix lost error handling when looking up extended ref on log replay
    - cifs: Fix memory leak on the deferred close
    - x86/kprobes: Fix JNG/JNLE emulation
    - tracing/eprobes: Do not allow eprobes to use $stack, or % for regs
    - tracing/eprobes: Do not hardcode $comm as a string
    - tracing/eprobes: Have event probes be consistent with kprobes and uprobes
    - tracing/probes: Have kprobes and uprobes use $COMM too
    - tracing: Have filter accept "common_cpu" to be consistent
    - ALSA: usb-audio: More comprehensive mixer map for ASUS ROG Zenith II
    - dt-bindings: usb: mtk-xhci: Allow wakeup interrupt-names to be optional
    - can: ems_usb: fix clang's -Wunaligned-access warning
    - apparmor: fix quiet_denied for file rules
    - Revert "UBUNTU: SAUCE: apparmor: drop prefixing abs root labels with '='"
    - apparmor: fix absroot causing audited secids to begin with =
    - apparmor: Fix failed mount permission check error message
    - apparmor: fix aa_label_asxprint return check
    - apparmor: fix setting unconfined mode on a loaded profile
    - apparmor: fix overlapping attachment computation
    - apparmor: fix reference count leak in aa_pivotroot()
    - apparmor: Fix memleak in aa_simple_write_to_buffer()
    - Documentation: ACPI: EINJ: Fix obsolete example
    - NFSv4.1: Don't decrease the value of seq_nr_highest_sent
    - NFSv4.1: Handle NFS4ERR_DELAY replies to OP_SEQUENCE correctly
    - NFSv4: Fix races in the legacy idmapper upcall
    - NFSv4.1: RECLAIM_COMPLETE must handle EACCES
    - NFSv4/pnfs: Fix a use-after-free bug in open
    - BPF: Fix potential bad pointer dereference in bpf_sys_bpf()
    - bpf: Don't reinit map value in prealloc_lru_pop
    - bpf: Acquire map uref in .init_seq_private for array map iterator
    - bpf: Acquire map uref in .init_seq_private for hash map iterator
    - bpf: Acquire map uref in .init_seq_private for sock local storage map
      iterator
    - bpf: Acquire map uref in .init_seq_private for sock{map,hash} iterator
    - bpf: Check the validity of max_rdwr_access for sock local storage map
      iterator
    - can: mcp251x: Fix race condition on receive interrupt
    - can: j1939: j1939_session_destroy(): fix memory leak of skbs
    - net: atlantic: fix aq_vec index out of range error
    - m68k: coldfire/device.c: protect FLEXCAN blocks
    - sunrpc: fix expiry of auth creds
    - SUNRPC: Fix xdr_encode_bool()
    - SUNRPC: Reinitialise the backchannel request buffers before reuse
    - virtio_net: fix memory leak inside XPD_TX with mergeable
    - devlink: Fix use-after-free after a failed reload
    - net: phy: Warn about incorrect mdio_bus_phy_resume() state
    - net: bcmgenet: Indicate MAC is in charge of PHY PM
    - net: bgmac: Fix a BUG triggered by wrong bytes_compl
    - selftests: forwarding: Fix failing tests with old libnet
    - dt-bindings: arm: qcom: fix Alcatel OneTouch Idol 3 compatibles
    - pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map
    - pinctrl: qcom: msm8916: Allow CAMSS GP clocks to be muxed
    - pinctrl: amd: Don't save/restore interrupt status and wake status bits
    - pinctrl: sunxi: Add I/O bias setting for H6 R-PIO
    - pinctrl: qcom: sm8250: Fix PDC map
    - Input: exc3000 - fix return value check of wait_for_completion_timeout
    - octeontx2-pf: Fix NIX_AF_TL3_TL2X_LINKX_CFG register configuration
    - octeontx2-af: Apply tx nibble fixup always
    - octeontx2-af: suppress external profile loading warning
    - octeontx2-af: Fix mcam entry resource leak
    - octeontx2-af: Fix key checking for source mac
    - ACPI: property: Return type of acpi_add_nondev_subnodes() should be bool
    - geneve: do not use RT_TOS for IPv6 flowlabel
    - mlx5: do not use RT_TOS for IPv6 flowlabel
    - ipv6: do not use RT_TOS for IPv6 flowlabel
    - plip: avoid rcu debug splat
    - vsock: Fix memory leak in vsock_connect()
    - vsock: Set socket state back to SS_UNCONNECTED in vsock_connect_timeout()
    - dt-bindings: gpio: zynq: Add missing compatible strings
    - dt-bindings: arm: qcom: fix Longcheer L8150 compatibles
    - dt-bindings: arm: qcom: fix MSM8916 MTP compatibles
    - dt-bindings: arm: qcom: fix MSM8994 boards compatibles
    - dt-bindings: clock: qcom,gcc-msm8996: add more GCC clock sources
    - spi: dt-bindings: cadence: add missing 'required'
    - spi: dt-bindings: zynqmp-qspi: add missing 'required'
    - ceph: use correct index when encoding client supported features
    - tools/vm/slabinfo: use alphabetic order when two values are equal
    - ceph: don't leak snap_rwsem in handle_cap_grant
    - kbuild: dummy-tools: avoid tmpdir leak in dummy gcc
    - tools build: Switch to new openssl API for test-libcrypto
    - NTB: ntb_tool: uninitialized heap data in tool_fn_write()
    - nfp: ethtool: fix the display error of `ethtool -m DEVNAME`
    - xen/xenbus: fix return type in xenbus_file_read()
    - atm: idt77252: fix use-after-free bugs caused by tst_timer
    - geneve: fix TOS inheriting for ipv4
    - perf probe: Fix an error handling path in 'parse_perf_probe_command()'
    - perf parse-events: Fix segfault when event parser gets an error
    - perf tests: Fix Track with sched_switch test for hybrid case
    - dpaa2-eth: trace the allocated address instead of page struct
    - fs/ntfs3: Fix using uninitialized value n when calling indx_read
    - fs/ntfs3: Fix NULL deref in ntfs_update_mftmirr
    - fs/ntfs3: Don't clear upper bits accidentally in log_replay()
    - fs/ntfs3: Fix double free on remount
    - fs/ntfs3: Do not change mode if ntfs_set_ea failed
    - fs/ntfs3: Fix missing i_op in ntfs_read_mft
    - nios2: page fault et.al. are *not* restartable syscalls...
    - nios2: don't leave NULLs in sys_call_table[]
    - nios2: traced syscall does need to check the syscall number
    - nios2: fix syscall restart checks
    - nios2: restarts apply only to the first sigframe we build...
    - nios2: add force_successful_syscall_return()
    - iavf: Fix adminq error handling
    - iavf: Fix reset error handling
    - ASoC: SOF: debug: Fix potential buffer overflow by snprintf()
    - ASoC: tas2770: Set correct FSYNC polarity
    - ASoC: tas2770: Allow mono streams
    - ASoC: tas2770: Drop conflicting set_bias_level power setting
    - ASoC: tas2770: Fix handling of mute/unmute
    - ASoC: codec: tlv320aic32x4: fix mono playback via I2S
    - netfilter: nf_tables: use READ_ONCE and WRITE_ONCE for shared generation id
      access
    - fs/ntfs3: uninitialized variable in ntfs_set_acl_ex()
    - netfilter: nf_tables: disallow NFTA_SET_ELEM_KEY_END with
      NFT_SET_ELEM_INTERVAL_END flag
    - netfilter: nf_tables: possible module reference underflow in error path
    - netfilter: nf_tables: really skip inactive sets when allocating name
    - netfilter: nf_tables: validate NFTA_SET_ELEM_OBJREF based on NFT_SET_OBJECT
      flag
    - netfilter: nf_tables: NFTA_SET_ELEM_KEY_END requires concat and interval
      flags
    - netfilter: nf_tables: disallow NFT_SET_ELEM_CATCHALL and
      NFT_SET_ELEM_INTERVAL_END
    - netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specified
    - powerpc/pci: Fix get_phb_number() locking
    - spi: meson-spicc: add local pow2 clock ops to preserve rate between messages
    - net/sunrpc: fix potential memory leaks in rpc_sysfs_xprt_state_change()
    - net: dsa: mv88e6060: prevent crash on an unused port
    - mlxsw: spectrum: Clear PTP configuration after unregistering the netdevice
    - net: moxa: pass pdev instead of ndev to DMA functions
    - net: fix potential refcount leak in ndisc_router_discovery()
    - net: dsa: microchip: ksz9477: fix fdb_dump last invalid entry
    - net: dsa: felix: fix ethtool 256-511 and 512-1023 TX packet counters
    - net: genl: fix error path memory leak in policy dumping
    - net: dsa: don't warn in dsa_port_set_state_now() when driver doesn't support
      it
    - net: dsa: sja1105: fix buffer overflow in sja1105_setup_devlink_regions()
    - ice: Ignore EEXIST when setting promisc mode
    - i2c: imx: Make sure to unregister adapter on remove()
    - regulator: pca9450: Remove restrictions for regulator-name
    - i40e: Fix to stop tx_timeout recovery if GLOBR fails
    - fec: Fix timer capture timing in `fec_ptp_enable_pps()`
    - stmmac: intel: Add a missing clk_disable_unprepare() call in
      intel_eth_pci_remove()
    - igb: Add lock to avoid data race
    - kbuild: fix the modules order between drivers and libs
    - gcc-plugins: Undefine LATENT_ENTROPY_PLUGIN when plugin disabled for a file
    - tracing/eprobes: Fix reading of string fields
    - drm/imx/dcss: get rid of HPD warning message
    - ASoC: SOF: Intel: hda: Define rom_status_reg in sof_intel_dsp_desc
    - ASoC: SOF: Intel: hda: Fix potential buffer overflow by snprintf()
    - drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors()
    - drm/sun4i: dsi: Prevent underflow when computing packet sizes
    - net: qrtr: start MHI channel after endpoit creation
    - KVM: arm64: Treat PMCR_EL1.LC as RES1 on asymmetric systems
    - KVM: arm64: Reject 32bit user PSTATE on asymmetric systems
    - HID: multitouch: new device class fix Lenovo X12 trackpad sticky
    - PCI: Add ACS quirk for Broadcom BCM5750x NICs
    - platform/chrome: cros_ec_proto: don't show MKBP version if unsupported
    - usb: cdns3 fix use-after-free at workaround 2
    - usb: cdns3: fix random warning message when driver load
    - usb: gadget: uvc: calculate the number of request depending on framesize
    - usb: gadget: uvc: call uvc uvcg_warn on completed status instead of
      uvcg_info
    - PCI: aardvark: Fix reporting Slot capabilities on emulated bridge
    - irqchip/tegra: Fix overflow implicit truncation warnings
    - drm/meson: Fix overflow implicit truncation warnings
    - clk: ti: Stop using legacy clkctrl names for omap4 and 5
    - scsi: ufs: ufs-mediatek: Fix the timing of configuring device regulators
    - usb: host: ohci-ppc-of: Fix refcount leak bug
    - usb: renesas: Fix refcount leak bug
    - usb: dwc2: gadget: remove D+ pull-up while no vbus with usb-role-switch
    - vboxguest: Do not use devm for irq
    - clk: qcom: ipq8074: dont disable gcc_sleep_clk_src
    - uacce: Handle parent device removal or parent driver module rmmod
    - zram: do not lookup algorithm in backends table
    - clk: qcom: clk-alpha-pll: fix clk_trion_pll_configure description
    - scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user
      input
    - scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE
    - gadgetfs: ep_io - wait until IRQ finishes
    - coresight: etm4x: avoid build failure with unrolled loops
    - habanalabs/gaudi: fix shift out of bounds
    - habanalabs/gaudi: mask constant value before cast
    - mmc: tmio: avoid glitches when resetting
    - pinctrl: intel: Check against matching data instead of ACPI companion
    - cxl: Fix a memory leak in an error handling path
    - PCI/ACPI: Guard ARM64-specific mcfg_quirks
    - um: add "noreboot" command line option for PANIC_TIMEOUT=-1 setups
    - dmaengine: dw-axi-dmac: do not print NULL LLI during error
    - dmaengine: dw-axi-dmac: ignore interrupt if no descriptor
    - RDMA/rxe: Limit the number of calls to each tasklet
    - csky/kprobe: reclaim insn_slot on kprobe unregistration
    - selftests/kprobe: Do not test for GRP/ without event failures
    - dmaengine: sprd: Cleanup in .remove() after pm_runtime_get_sync() failed
    - openrisc: io: Define iounmap argument as volatile
    - phy: samsung: phy-exynos-pcie: sanitize init/power_on callbacks
    - md: Notify sysfs sync_completed in md_reap_sync_thread()
    - nvmet-tcp: fix lockdep complaint on nvmet_tcp_wq flush during queue teardown
    - drivers:md:fix a potential use-after-free bug
    - ext4: avoid remove directory when directory is corrupted
    - ext4: avoid resizing to a partial cluster size
    - lib/list_debug.c: Detect uninitialized lists
    - tty: serial: Fix refcount leak bug in ucc_uart.c
    - KVM: PPC: Book3S HV: Fix "rm_exit" entry in debugfs timings
    - vfio: Clear the caps->buf to NULL after free
    - mips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start
    - iommu/io-pgtable-arm-v7s: Add a quirk to allow pgtable PA up to 35bit
    - modules: Ensure natural alignment for .altinstructions and __bug_table
      sections
    - ASoC: rsnd: care default case on rsnd_ssiu_busif_err_irq_ctrl()
    - riscv: dts: sifive: Add fu740 topology information
    - riscv: dts: canaan: Add k210 topology information
    - riscv: mmap with PROT_WRITE but no PROT_READ is invalid
    - RISC-V: Add fast call path of crash_kexec()
    - watchdog: export lockup_detector_reconfigure
    - powerpc/32: Set an IBAT covering up to _einittext during init
    - powerpc/32: Don't always pass -mcpu=powerpc to the compiler
    - ovl: warn if trusted xattr creation fails
    - powerpc/ioda/iommu/debugfs: Generate unique debugfs entries
    - ALSA: core: Add async signal helpers
    - ALSA: timer: Use deferred fasync helper
    - ALSA: control: Use deferred fasync helper
    - f2fs: fix to avoid use f2fs_bug_on() in f2fs_new_node_page()
    - f2fs: fix to do sanity check on segment type in build_sit_entries()
    - smb3: check xattr value length earlier
    - powerpc/64: Init jump labels before parse_early_param()
    - venus: pm_helpers: Fix warning in OPP during probe
    - video: fbdev: i740fb: Check the argument of i740_calc_vclk()
    - MIPS: tlbex: Explicitly compare _PAGE_NO_EXEC against 0
    - can: j1939: j1939_sk_queue_activate_next_locked(): replace WARN_ON_ONCE with
      netdev_warn_once()
    - scsi: ufs: ufs-mediatek: Fix build error and type mismatch
    - xfs: flush inodegc workqueue tasks before cancel
    - xfs: reserve quota for dir expansion when linking/unlinking files
    - xfs: reserve quota for target dir expansion when renaming files
    - xfs: remove infinite loop when reserving free block pool
    - xfs: always succeed at setting the reserve pool size
    - xfs: fix overfilling of reserve pool
    - xfs: fix soft lockup via spinning in filestream ag selection loop
    - xfs: revert "xfs: actually bump warning counts when we send warnings"
    - xfs: reject crazy array sizes being fed to XFS_IOC_GETBMAP*
    - Linux 5.15.63

* Jammy update: v5.15.62 upstream stable release (LP: #1990554)
    - io_uring: use original request task for inflight tracking
    - tee: add overflow check in register_shm_helper()
    - net_sched: cls_route: disallow handle of 0
    - ksmbd: prevent out of bound read for SMB2_WRITE
    - ksmbd: fix heap-based overflow in set_ntacl_dacl()
    - btrfs: only write the sectors in the vertical stripe which has data stripes
    - btrfs: raid56: don't trust any cached sector in __raid56_parity_recover()
    - Linux 5.15.62

* Jammy update: v5.15.61 upstream stable release (LP: #1990162)
    - Makefile: link with -z noexecstack --no-warn-rwx-segments
    - x86: link vdso and boot with -z noexecstack --no-warn-rwx-segments
    - Revert "pNFS: nfs3_set_ds_client should set NFS_CS_NOPING"
    - scsi: Revert "scsi: qla2xxx: Fix disk failure to rediscover"
    - pNFS/flexfiles: Report RDMA connection errors to the server
    - NFSD: Clean up the show_nf_flags() macro
    - nfsd: eliminate the NFSD_FILE_BREAK_* flags
    - ALSA: usb-audio: Add quirk for Behringer UMC202HD
    - ALSA: bcd2000: Fix a UAF bug on the error path of probing
    - ALSA: hda/realtek: Add quirk for Clevo NV45PZ
    - ALSA: hda/realtek: Add quirk for HP Spectre x360 15-eb0xxx
    - wifi: mac80211_hwsim: fix race condition in pending packet
    - wifi: mac80211_hwsim: add back erroneously removed cast
    - wifi: mac80211_hwsim: use 32-bit skb cookie
    - add barriers to buffer_uptodate and set_buffer_uptodate
    - lockd: detect and reject lock arguments that overflow
    - HID: hid-input: add Surface Go battery quirk
    - HID: wacom: Only report rotation for art pen
    - HID: wacom: Don't register pad_input for touch switch
    - KVM: nVMX: Snapshot pre-VM-Enter BNDCFGS for !nested_run_pending case
    - KVM: nVMX: Snapshot pre-VM-Enter DEBUGCTL for !nested_run_pending case
    - KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0
    - KVM: s390: pv: don't present the ecall interrupt twice
    - KVM: x86: Split kvm_is_valid_cr4() and export only the non-vendor bits
    - KVM: nVMX: Let userspace set nVMX MSR to any _host_ supported value
    - KVM: nVMX: Account for KVM reserved CR4 bits in consistency checks
    - KVM: nVMX: Inject #UD if VMXON is attempted with incompatible CR0/CR4
    - KVM: x86: Mark TSS busy during LTR emulation _after_ all fault checks
    - KVM: x86: Set error code to segment selector on LLDT/LTR non-canonical #GP
    - KVM: nVMX: Always enable TSC scaling for L2 when it was enabled for L1
    - KVM: x86: Tag kvm_mmu_x86_module_init() with __init
    - KVM: x86: do not report preemption if the steal time cache is stale
    - KVM: x86: revalidate steal time cache if MSR value changes
    - riscv: set default pm_power_off to NULL
    - ALSA: hda/conexant: Add quirk for LENOVO 20149 Notebook model
    - ALSA: hda/cirrus - support for iMac 12,1 model
    - ALSA: hda/realtek: Add quirk for another Asus K42JZ model
    - ALSA: hda/realtek: Add a quirk for HP OMEN 15 (8786) mute LED
    - tty: vt: initialize unicode screen buffer
    - vfs: Check the truncate maximum size in inode_newsize_ok()
    - fs: Add missing umask strip in vfs_tmpfile
    - thermal: sysfs: Fix cooling_device_stats_setup() error code path
    - fbcon: Fix boundary checks for fbcon=vc:n1-n2 parameters
    - fbcon: Fix accelerated fbdev scrolling while logo is still shown
    - usbnet: Fix linkwatch use-after-free on disconnect
    - fix short copy handling in copy_mc_pipe_to_iter()
    - crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory
      leak
    - ovl: drop WARN_ON() dentry is NULL in ovl_encode_fh()
    - parisc: Fix device names in /proc/iomem
    - parisc: Drop pa_swapper_pg_lock spinlock
    - parisc: Check the return value of ioremap() in lba_driver_probe()
    - parisc: io_pgetevents_time64() needs compat syscall in 32-bit compat mode
    - riscv:uprobe fix SR_SPIE set/clear handling
    - dt-bindings: riscv: fix SiFive l2-cache's cache-sets
    - RISC-V: kexec: Fixup use of smp_processor_id() in preemptible context
    - RISC-V: Fixup get incorrect user mode PC for kernel mode regs
    - RISC-V: Fixup schedule out issue in machine_crash_shutdown()
    - RISC-V: Add modules to virtual kernel memory layout dump
    - rtc: rx8025: fix 12/24 hour mode detection on RX-8035
    - drm/gem: Properly annotate WW context on drm_gem_lock_reservations() error
    - drm/shmem-helper: Add missing vunmap on error
    - drm/vc4: hdmi: Disable audio if dmas property is present but empty
    - drm/hyperv-drm: Include framebuffer and EDID headers
    - drm/nouveau: fix another off-by-one in nvbios_addr
    - drm/nouveau: Don't pm_runtime_put_sync(), only pm_runtime_put_autosuspend()
    - drm/nouveau/acpi: Don't print error when we get -EINPROGRESS from pm_runtime
    - drm/nouveau/kms: Fix failure path for creating DP connectors
    - drm/amdgpu: Check BO's requested pinning domains against its
      preferred_domains
    - bpf: Fix KASAN use-after-free Read in compute_effective_progs
    - btrfs: reject log replay if there is unsupported RO compat flag
    - mtd: rawnand: arasan: Fix clock rate in NV-DDR
    - mtd: rawnand: arasan: Update NAND bus clock instead of system clock
    - um: Remove straying parenthesis
    - um: seed rng using host OS rng
    - iio: fix iio_format_avail_range() printing for none IIO_VAL_INT
    - iio: light: isl29028: Fix the warning in isl29028_remove()
    - scsi: sg: Allow waiting for commands to complete on removed device
    - scsi: qla2xxx: Fix incorrect display of max frame size
    - scsi: qla2xxx: Zero undefined mailbox IN registers
    - soundwire: qcom: Check device status before reading devid
    - ksmbd: fix memory leak in smb2_handle_negotiate
    - ksmbd: prevent out of bound read for SMB2_TREE_CONNNECT
    - ksmbd: fix use-after-free bug in smb2_tree_disconect
    - fuse: limit nsec
    - fuse: ioctl: translate ENOSYS
    - serial: mvebu-uart: uart2 error bits clearing
    - md-raid10: fix KASAN warning
    - mbcache: don't reclaim used entries
    - mbcache: add functions to delete entry if unused
    - media: [PATCH] pci: atomisp_cmd: fix three missing checks on list iterator
    - ia64, processor: fix -Wincompatible-pointer-types in ia64_get_irr()
    - PCI: Add defines for normal and subtractive PCI bridges
    - powerpc/fsl-pci: Fix Class Code of PCIe Root Port
    - powerpc/ptdump: Fix display of RW pages on FSL_BOOK3E
    - powerpc/powernv: Avoid crashing if rng is NULL
    - MIPS: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK
    - coresight: Clear the connection field properly
    - usb: typec: ucsi: Acknowledge the GET_ERROR_STATUS command completion
    - USB: HCD: Fix URB giveback issue in tasklet function
    - ARM: dts: uniphier: Fix USB interrupts for PXs2 SoC
    - arm64: dts: uniphier: Fix USB interrupts for PXs3 SoC
    - usb: dwc3: gadget: refactor dwc3_repare_one_trb
    - usb: dwc3: gadget: fix high speed multiplier setting
    - netfilter: nf_tables: fix null deref due to zeroed list head
    - epoll: autoremove wakers even more aggressively
    - x86: Handle idle=nomwait cmdline properly for x86_idle
    - arch: make TRACE_IRQFLAGS_NMI_SUPPORT generic
    - arm64: Do not forget syscall when starting a new thread.
    - arm64: fix oops in concurrently setting insn_emulation sysctls
    - ext2: Add more validity checks for inode counts
    - sched/fair: Introduce SIS_UTIL to search idle CPU based on sum of util_avg
    - genirq: Don't return error on missing optional irq_request_resources()
    - irqchip/mips-gic: Only register IPI domain when SMP is enabled
    - genirq: GENERIC_IRQ_IPI depends on SMP
    - sched/core: Always flush pending blk_plug
    - irqchip/mips-gic: Check the return value of ioremap() in gic_of_init()
    - wait: Fix __wait_event_hrtimeout for RT/DL tasks
    - ARM: dts: imx6ul: add missing properties for sram
    - ARM: dts: imx6ul: change operating-points to uint32-matrix
    - ARM: dts: imx6ul: fix keypad compatible
    - ARM: dts: imx6ul: fix csi node compatible
    - ARM: dts: imx6ul: fix lcdif node compatible
    - ARM: dts: imx6ul: fix qspi node compatible
    - ARM: dts: BCM5301X: Add DT for Meraki MR26
    - ARM: dts: ux500: Fix Codina accelerometer mounting matrix
    - ARM: dts: ux500: Fix Gavini accelerometer mounting matrix
    - spi: synquacer: Add missing clk_disable_unprepare()
    - ARM: OMAP2+: display: Fix refcount leak bug
    - ARM: OMAP2+: pdata-quirks: Fix refcount leak bug
    - ACPI: EC: Remove duplicate ThinkPad X1 Carbon 6th entry from DMI quirks
    - ACPI: EC: Drop the EC_FLAGS_IGNORE_DSDT_GPE quirk
    - ACPI: PM: save NVS memory for Lenovo G40-45
    - ACPI: LPSS: Fix missing check in register_device_clock()
    - ARM: dts: qcom: sdx55: Fix the IRQ trigger type for UART
    - arm64: dts: qcom: ipq8074: fix NAND node name
    - arm64: dts: allwinner: a64: orangepi-win: Fix LED node name
    - ARM: shmobile: rcar-gen2: Increase refcount for new reference
    - firmware: tegra: Fix error check return value of debugfs_create_file()
    - hwmon: (dell-smm) Add Dell XPS 13 7390 to fan control whitelist
    - hwmon: (sht15) Fix wrong assumptions in device remove callback
    - PM: hibernate: defer device probing when resuming from hibernation
    - selinux: fix memleak in security_read_state_kernel()
    - selinux: Add boundary check in put_entry()
    - kasan: test: Silence GCC 12 warnings
    - drm/amdgpu: Remove one duplicated ef removal
    - powerpc/64s: Disable stack variable initialisation for prom_init
    - spi: spi-rspi: Fix PIO fallback on RZ platforms
    - ARM: findbit: fix overflowing offset
    - meson-mx-socinfo: Fix refcount leak in meson_mx_socinfo_init
    - arm64: dts: renesas: beacon: Fix regulator node names
    - spi: spi-altera-dfl: Fix an error handling path
    - ARM: bcm: Fix refcount leak in bcm_kona_smc_init
    - ACPI: processor/idle: Annotate more functions to live in cpuidle section
    - ARM: dts: imx7d-colibri-emmc: add cpu1 supply
    - soc: renesas: r8a779a0-sysc: Fix A2DP1 and A2CV[2357] PDR values
    - scsi: hisi_sas: Use managed PCI functions
    - dt-bindings: iio: accel: Add DT binding doc for ADXL355
    - soc: amlogic: Fix refcount leak in meson-secure-pwrc.c
    - arm64: dts: renesas: Fix thermal-sensors on single-zone sensors
    - x86/pmem: Fix platform-device leak in error path
    - ARM: dts: ast2500-evb: fix board compatible
    - ARM: dts: ast2600-evb: fix board compatible
    - ARM: dts: ast2600-evb-a1: fix board compatible
    - arm64: dts: mt8192: Fix idle-states nodes naming scheme
    - arm64: dts: mt8192: Fix idle-states entry-method
    - arm64: select TRACE_IRQFLAGS_NMI_SUPPORT
    - arm64: cpufeature: Allow different PMU versions in ID_DFR0_EL1
    - locking/lockdep: Fix lockdep_init_map_*() confusion
    - arm64: dts: qcom: sc7180: Remove ipa_fw_mem node on trogdor
    - soc: fsl: guts: machine variable might be unset
    - block: fix infinite loop for invalid zone append
    - ARM: dts: qcom: mdm9615: add missing PMIC GPIO reg
    - ARM: OMAP2+: Fix refcount leak in omapdss_init_of
    - ARM: OMAP2+: Fix refcount leak in omap3xxx_prm_late_init
    - arm64: dts: qcom: sdm630: disable GPU by default
    - arm64: dts: qcom: sdm630: fix the qusb2phy ref clock
    - arm64: dts: qcom: sdm630: fix gpu's interconnect path
    - arm64: dts: qcom: sdm636-sony-xperia-ganges-mermaid: correct sdc2 pinconf
    - cpufreq: zynq: Fix refcount leak in zynq_get_revision
    - regulator: qcom_smd: Fix pm8916_pldo range
    - ACPI: APEI: Fix _EINJ vs EFI_MEMORY_SP
    - ARM: dts: qcom-msm8974: fix irq type on blsp2_uart1
    - soc: qcom: ocmem: Fix refcount leak in of_get_ocmem
    - soc: qcom: aoss: Fix refcount leak in qmp_cooling_devices_register
    - ARM: dts: qcom: pm8841: add required thermal-sensor-cells
    - bus: hisi_lpc: fix missing platform_device_put() in hisi_lpc_acpi_probe()
    - stack: Declare {randomize_,}kstack_offset to fix Sparse warnings
    - arm64: dts: qcom: msm8916: Fix typo in pronto remoteproc node
    - ACPI: APEI: explicit init of HEST and GHES in apci_init()
    - drivers/iio: Remove all strcpy() uses
    - ACPI: VIOT: Fix ACS setup
    - arm64: dts: qcom: sm6125: Move sdc2 pinctrl from seine-pdx201 to sm6125
    - arm64: dts: qcom: sm6125: Append -state suffix to pinctrl nodes
    - arm64: dts: qcom: sm8250: add missing PCIe PHY clock-cells
    - arm64: dts: mt7622: fix BPI-R64 WPS button
    - arm64: tegra: Fixup SYSRAM references
    - arm64: tegra: Update Tegra234 BPMP channel addresses
    - arm64: tegra: Mark BPMP channels as no-memory-wc
    - arm64: tegra: Fix SDMMC1 CD on P2888
    - erofs: avoid consecutive detection for Highmem memory
    - blk-mq: don't create hctx debugfs dir until q->debugfs_dir is created
    - spi: Fix simplification of devm_spi_register_controller
    - spi: tegra20-slink: fix UAF in tegra_slink_remove()
    - hwmon: (drivetemp) Add module alias
    - blktrace: Trace remapped requests correctly
    - PM: domains: Ensure genpd_debugfs_dir exists before remove
    - dm writecache: return void from functions
    - dm writecache: count number of blocks read, not number of read bios
    - dm writecache: count number of blocks written, not number of write bios
    - dm writecache: count number of blocks discarded, not number of discard bios
    - regulator: of: Fix refcount leak bug in of_get_regulation_constraints()
    - soc: qcom: Make QCOM_RPMPD depend on PM
    - arm64: dts: qcom: qcs404: Fix incorrect USB2 PHYs assignment
    - irqdomain: Report irq number for NOMAP domains
    - drivers/perf: arm_spe: Fix consistency of SYS_PMSCR_EL1.CX
    - nohz/full, sched/rt: Fix missed tick-reenabling bug in dequeue_task_rt()
    - x86/extable: Fix ex_handler_msr() print condition
    - selftests/seccomp: Fix compile warning when CC=clang
    - thermal/tools/tmon: Include pthread and time headers in tmon.h
    - dm: return early from dm_pr_call() if DM device is suspended
    - pwm: sifive: Simplify offset calculation for PWMCMP registers
    - pwm: sifive: Ensure the clk is enabled exactly once per running PWM
    - pwm: sifive: Shut down hardware only after pwmchip_remove() completed
    - pwm: lpc18xx-sct: Reduce number of devm memory allocations
    - pwm: lpc18xx-sct: Simplify driver by not using pwm_[gs]et_chip_data()
    - pwm: lpc18xx: Fix period handling
    - drm/dp: Export symbol / kerneldoc fixes for DP AUX bus
    - drm/bridge: tc358767: Move (e)DP bridge endpoint parsing into dedicated
      function
    - ath10k: do not enforce interrupt trigger type
    - drm/st7735r: Fix module autoloading for Okaya RH128128T
    - drm/panel: Fix build error when CONFIG_DRM_PANEL_SAMSUNG_ATNA33XC20=y &&
      CONFIG_DRM_DISPLAY_HELPER=m
    - wifi: rtlwifi: fix error codes in rtl_debugfs_set_write_h2c()
    - ath11k: fix netdev open race
    - drm/mipi-dbi: align max_chunk to 2 in spi_transfer
    - ath11k: Fix incorrect debug_mask mappings
    - drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers()
    - drm/mediatek: Modify dsi funcs to atomic operations
    - drm/mediatek: Separate poweron/poweroff from enable/disable and define new
      funcs
    - drm/mediatek: Add pull-down MIPI operation in mtk_dsi_poweroff function
    - drm/meson: encoder_hdmi: switch to bridge DRM_BRIDGE_ATTACH_NO_CONNECTOR
    - drm/meson: encoder_hdmi: Fix refcount leak in meson_encoder_hdmi_init
    - drm/bridge: lt9611uxc: Cancel only driver's work
    - i2c: npcm: Remove own slave addresses 2:10
    - i2c: npcm: Correct slave role behavior
    - i2c: mxs: Silence a clang warning
    - virtio-gpu: fix a missing check to avoid NULL dereference
    - drm/shmem-helper: Unexport drm_gem_shmem_create_with_handle()
    - drm/shmem-helper: Export dedicated wrappers for GEM object functions
    - drm/shmem-helper: Pass GEM shmem object in public interfaces
    - drm/virtio: Fix NULL vs IS_ERR checking in virtio_gpu_object_shmem_init
    - drm: adv7511: override i2c address of cec before accessing it
    - crypto: sun8i-ss - do not allocate memory when handling hash requests
    - crypto: sun8i-ss - fix error codes in allocate_flows()
    - net: fix sk_wmem_schedule() and sk_rmem_schedule() errors
    - can: netlink: allow configuring of fixed bit rates without need for
      do_set_bittiming callback
    - can: netlink: allow configuring of fixed data bit rates without need for
      do_set_data_bittiming callback
    - i2c: Fix a potential use after free
    - crypto: sun8i-ss - fix infinite loop in sun8i_ss_setup_ivs()
    - media: atmel: atmel-sama7g5-isc: fix warning in configs without OF
    - media: tw686x: Register the irq at the end of probe
    - media: imx-jpeg: Correct some definition according specification
    - media: imx-jpeg: Leave a blank space before the configuration data
    - media: imx-jpeg: Add pm-runtime support for imx-jpeg
    - media: imx-jpeg: use NV12M to represent non contiguous NV12
    - media: imx-jpeg: Set V4L2_BUF_FLAG_LAST at eos
    - media: imx-jpeg: Refactor function mxc_jpeg_parse
    - media: imx-jpeg: Identify and handle precision correctly
    - media: imx-jpeg: Handle source change in a function
    - media: imx-jpeg: Support dynamic resolution change
    - media: imx-jpeg: Align upwards buffer size
    - media: imx-jpeg: Implement drain using v4l2-mem2mem helpers
    - wifi: iwlegacy: 4965: fix potential off-by-one overflow in
      il4965_rs_fill_link_cmd()
    - drm/radeon: fix incorrrect SPDX-License-Identifiers
    - rcutorture: Warn on individual rcu_torture_init() error conditions
    - rcutorture: Don't cpuhp_remove_state() if cpuhp_setup_state() failed
    - rcutorture: Fix ksoftirqd boosting timing and iteration
    - test_bpf: fix incorrect netdev features
    - crypto: ccp - During shutdown, check SEV data pointer before using
    - drm: bridge: adv7511: Add check for mipi_dsi_driver_register
    - media: imx-jpeg: Disable slot interrupt when frame done
    - drm/mcde: Fix refcount leak in mcde_dsi_bind
    - media: hdpvr: fix error value returns in hdpvr_read
    - media: v4l2-mem2mem: prevent pollerr when last_buffer_dequeued is set
    - media: driver/nxp/imx-jpeg: fix a unexpected return value problem
    - media: tw686x: Fix memory leak in tw686x_video_init
    - drm/vc4: plane: Remove subpixel positioning check
    - drm/vc4: plane: Fix margin calculations for the right/bottom edges
    - drm/bridge: Add a function to abstract away panels
    - drm/vc4: dsi: Switch to devm_drm_of_get_bridge
    - drm/vc4: Use of_device_get_match_data()
    - drm/vc4: dsi: Release workaround buffer and DMA
    - drm/vc4: dsi: Correct DSI divider calculations
    - drm/vc4: dsi: Correct pixel order for DSI0
    - drm/vc4: dsi: Register dsi0 as the correct vc4 encoder type
    - drm/vc4: dsi: Fix dsi0 interrupt support
    - drm/vc4: dsi: Add correct stop condition to vc4_dsi_encoder_disable
      iteration
    - drm/vc4: hdmi: Fix HPD GPIO detection
    - drm/vc4: hdmi: Avoid full hdmi audio fifo writes
    - drm/vc4: hdmi: Reset HDMI MISC_CONTROL register
    - drm/vc4: hdmi: Fix timings for interlaced modes
    - drm/vc4: hdmi: Correct HDMI timing registers for interlaced modes
    - crypto: arm64/gcm - Select AEAD for GHASH_ARM64_CE
    - selftests/xsk: Destroy BPF resources only when ctx refcount drops to 0
    - drm/rockchip: vop: Don't crash for invalid duplicate_state()
    - drm/rockchip: Fix an error handling path rockchip_dp_probe()
    - drm/mediatek: dpi: Remove output format of YUV
    - drm/mediatek: dpi: Only enable dpi after the bridge is enabled
    - drm: bridge: sii8620: fix possible off-by-one
    - hinic: Use the bitmap API when applicable
    - net: hinic: fix bug that ethtool get wrong stats
    - net: hinic: avoid kernel hung in hinic_get_stats64()
    - drm/msm/mdp5: Fix global state lock backoff
    - crypto: hisilicon/sec - don't sleep when in softirq
    - crypto: hisilicon - Kunpeng916 crypto driver don't sleep when in softirq
    - media: platform: mtk-mdp: Fix mdp_ipi_comm structure alignment
    - drm/msm: Avoid dirtyfb stalls on video mode displays (v2)
    - drm/msm/dpu: Fix for non-visible planes
    - mt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg
    - mt76: mt7615: do not update pm stats in case of error
    - ieee80211: add EHT 1K aggregation definitions
    - mt76: mt7921: fix aggregation subframes setting to HE max
    - mt76: mt7921: enlarge maximum VHT MPDU length to 11454
    - mediatek: mt76: mac80211: Fix missing of_node_put() in mt76_led_init()
    - mediatek: mt76: eeprom: fix missing of_node_put() in
      mt76_find_power_limits_node()
    - skmsg: Fix invalid last sg check in sk_msg_recvmsg()
    - drm/exynos/exynos7_drm_decon: free resources when clk_set_parent() failed.
    - tcp: make retransmitted SKB fit into the send window
    - libbpf: Fix the name of a reused map
    - selftests: timers: valid-adjtimex: build fix for newer toolchains
    - selftests: timers: clocksource-switch: fix passing errors from child
    - bpf: Fix subprog names in stack traces.
    - fs: check FMODE_LSEEK to control internal pipe splicing
    - media: cedrus: h265: Fix flag name
    - media: hantro: postproc: Fix motion vector space size
    - media: hantro: Simplify postprocessor
    - media: hevc: Embedded indexes in RPS
    - media: staging: media: hantro: Fix typos
    - wifi: wil6210: debugfs: fix info leak in wil_write_file_wmi()
    - wifi: p54: Fix an error handling path in p54spi_probe()
    - wifi: p54: add missing parentheses in p54_flush()
    - selftests/bpf: fix a test for snprintf() overflow
    - libbpf: fix an snprintf() overflow check
    - can: pch_can: do not report txerr and rxerr during bus-off
    - can: rcar_can: do not report txerr and rxerr during bus-off
    - can: sja1000: do not report txerr and rxerr during bus-off
    - can: hi311x: do not report txerr and rxerr during bus-off
    - can: sun4i_can: do not report txerr and rxerr during bus-off
    - can: kvaser_usb_hydra: do not report txerr and rxerr during bus-off
    - can: kvaser_usb_leaf: do not report txerr and rxerr during bus-off
    - can: usb_8dev: do not report txerr and rxerr during bus-off
    - can: error: specify the values of data[5..7] of CAN error frames
    - can: pch_can: pch_can_error(): initialize errc before using it
    - Bluetooth: hci_intel: Add check for platform_driver_register
    - i2c: cadence: Support PEC for SMBus block read
    - i2c: mux-gpmux: Add of_node_put() when breaking out of loop
    - wifi: wil6210: debugfs: fix uninitialized variable use in
      `wil_write_file_wmi()`
    - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue
    - wifi: libertas: Fix possible refcount leak in if_usb_probe()
    - media: cedrus: hevc: Add check for invalid timestamp
    - net/mlx5e: Remove WARN_ON when trying to offload an unsupported TLS
      cipher/version
    - net/mlx5e: Fix the value of MLX5E_MAX_RQ_NUM_MTTS
    - net/mlx5: Adjust log_max_qp to be 18 at most
    - crypto: hisilicon/hpre - don't use GFP_KERNEL to alloc mem during softirq
    - crypto: inside-secure - Add missing MODULE_DEVICE_TABLE for of
    - crypto: hisilicon/sec - fix auth key size error
    - inet: add READ_ONCE(sk->sk_bound_dev_if) in INET_MATCH()
    - ipv6: add READ_ONCE(sk->sk_bound_dev_if) in INET6_MATCH()
    - net: allow unbound socket for packets in VRF when tcp_l3mdev_accept set
    - netdevsim: fib: Fix reference count leak on route deletion failure
    - wifi: rtw88: check the return value of alloc_workqueue()
    - iavf: Fix max_rate limiting
    - iavf: Fix 'tc qdisc show' listing too many queues
    - netdevsim: Avoid allocation warnings triggered from user space
    - net: rose: fix netdev reference changes
    - net: ionic: fix error check for vlan flags in ionic_set_nic_features()
    - dccp: put dccp_qpolicy_full() and dccp_qpolicy_push() in the same lock
    - net: usb: make USB_RTL8153_ECM non user configurable
    - wireguard: ratelimiter: use hrtimer in selftest
    - wireguard: allowedips: don't corrupt stack when detecting overflow
    - HID: amd_sfh: Don't show client init failed as error when discovery fails
    - clk: renesas: r9a06g032: Fix UART clkgrp bitsel
    - mtd: maps: Fix refcount leak in of_flash_probe_versatile
    - mtd: maps: Fix refcount leak in ap_flash_init
    - mtd: rawnand: meson: Fix a potential double free issue
    - of: check previous kernel's ima-kexec-buffer against memory bounds
    - scsi: qla2xxx: edif: Reduce Initiator-Initiator thrashing
    - scsi: qla2xxx: edif: Fix potential stuck session in sa update
    - scsi: qla2xxx: edif: Reduce connection thrash
    - scsi: qla2xxx: edif: Fix inconsistent check of db_flags
    - scsi: qla2xxx: edif: Synchronize NPIV deletion with authentication
      application
    - scsi: qla2xxx: edif: Add retry for ELS passthrough
    - scsi: qla2xxx: edif: Fix n2n discovery issue with secure target
    - scsi: qla2xxx: edif: Fix n2n login retry for secure device
    - KVM: SVM: Unwind "speculative" RIP advancement if INTn injection "fails"
    - KVM: SVM: Stuff next_rip on emulated INT3 injection if NRIPS is supported
    - phy: samsung: exynosautov9-ufs: correct TSRV register configurations
    - PCI: microchip: Fix refcount leak in mc_pcie_init_irq_domains()
    - PCI: tegra194: Fix PM error handling in tegra_pcie_config_ep()
    - HID: cp2112: prevent a buffer overflow in cp2112_xfer()
    - mtd: sm_ftl: Fix deadlock caused by cancel_work_sync in sm_release
    - mtd: partitions: Fix refcount leak in parse_redboot_of
    - mtd: parsers: ofpart: Fix refcount leak in bcm4908_partitions_fw_offset
    - mtd: st_spi_fsm: Add a clk_disable_unprepare() in .probe()'s error path
    - PCI: mediatek-gen3: Fix refcount leak in mtk_pcie_init_irq_domains()
    - fpga: altera-pr-ip: fix unsigned comparison with less than zero
    - usb: host: Fix refcount leak in ehci_hcd_ppc_of_probe
    - usb: ohci-nxp: Fix refcount leak in ohci_hcd_nxp_probe
    - usb: gadget: tegra-xudc: Fix error check in tegra_xudc_powerdomain_init()
    - usb: xhci: tegra: Fix error check
    - netfilter: xtables: Bring SPDX identifier back
    - scsi: qla2xxx: edif: Send LOGO for unexpected IKE message
    - scsi: qla2xxx: edif: Reduce disruption due to multiple app start
    - scsi: qla2xxx: edif: Fix no login after app start
    - scsi: qla2xxx: edif: Tear down session if keys have been removed
    - scsi: qla2xxx: edif: Fix session thrash
    - scsi: qla2xxx: edif: Fix no logout on delete for N2N
    - iio: accel: bma400: Fix the scale min and max macro values
    - platform/chrome: cros_ec: Always expose last resume result
    - iio: accel: bma400: Reordering of header files
    - clk: mediatek: reset: Fix written reset bit offset
    - lib/test_hmm: avoid accessing uninitialized pages
    - memremap: remove support for external pgmap refcounts
    - mm/memremap: fix memunmap_pages() race with get_dev_pagemap()
    - KVM: Don't set Accessed/Dirty bits for ZERO_PAGE
    - mwifiex: Ignore BTCOEX events from the 88W8897 firmware
    - mwifiex: fix sleep in atomic context bugs caused by dev_coredumpv
    - scsi: iscsi: Allow iscsi_if_stop_conn() to be called from kernel
    - scsi: iscsi: Add helper to remove a session from the kernel
    - scsi: iscsi: Fix session removal on shutdown
    - dmaengine: dw-edma: Fix eDMA Rd/Wr-channels and DMA-direction semantics
    - mtd: dataflash: Add SPI ID table
    - clk: qcom: camcc-sm8250: Fix halt on boot by reducing driver's init level
    - misc: rtsx: Fix an error handling path in rtsx_pci_probe()
    - driver core: fix potential deadlock in __driver_attach
    - clk: qcom: clk-krait: unlock spin after mux completion
    - clk: qcom: gcc-msm8939: Add missing SYSTEM_MM_NOC_BFDCD_CLK_SRC
    - clk: qcom: gcc-msm8939: Fix bimc_ddr_clk_src rcgr base address
    - clk: qcom: gcc-msm8939: Add missing system_mm_noc_bfdcd_clk_src
    - clk: qcom: gcc-msm8939: Point MM peripherals to system_mm_noc clock
    - usb: host: xhci: use snprintf() in xhci_decode_trb()
    - RDMA/rxe: Fix deadlock in rxe_do_local_ops()
    - clk: qcom: ipq8074: fix NSS core PLL-s
    - clk: qcom: ipq8074: SW workaround for UBI32 PLL lock
    - clk: qcom: ipq8074: fix NSS port frequency tables
    - clk: qcom: ipq8074: set BRANCH_HALT_DELAY flag for UBI clocks
    - clk: qcom: camcc-sdm845: Fix topology around titan_top power domain
    - clk: qcom: camcc-sm8250: Fix topology around titan_top power domain
    - clk: qcom: clk-rcg2: Fail Duty-Cycle configuration if MND divider is not
      enabled.
    - clk: qcom: clk-rcg2: Make sure to not write d=0 to the NMD register
    - mm/mempolicy: fix get_nodes out of bound access
    - PCI: dwc: Stop link on host_init errors and de-initialization
    - PCI: dwc: Add unroll iATU space support to dw_pcie_disable_atu()
    - PCI: dwc: Disable outbound windows only for controllers using iATU
    - PCI: dwc: Set INCREASE_REGION_SIZE flag based on limit address
    - PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init() errors
    - PCI: dwc: Always enable CDM check if "snps,enable-cdm-check" exists
    - soundwire: bus_type: fix remove and shutdown support
    - soundwire: revisit driver bind/unbind and callbacks
    - KVM: arm64: Don't return from void function
    - dmaengine: sf-pdma: Add multithread support for a DMA channel
    - PCI: endpoint: Don't stop controller when unbinding endpoint function
    - scsi: qla2xxx: Check correct variable in qla24xx_async_gffid()
    - intel_th: Fix a resource leak in an error handling path
    - intel_th: msu-sink: Potential dereference of null pointer
    - intel_th: msu: Fix vmalloced buffers
    - binder: fix redefinition of seq_file attributes
    - staging: rtl8192u: Fix sleep in atomic context bug in
      dm_fsync_timer_callback
    - mmc: sdhci-of-esdhc: Fix refcount leak in esdhc_signal_voltage_switch
    - mmc: mxcmmc: Silence a clang warning
    - mmc: renesas_sdhi: Get the reset handle early in the probe
    - memstick/ms_block: Fix some incorrect memory allocation
    - memstick/ms_block: Fix a memory leak
    - mmc: sdhci-of-at91: fix set_uhs_signaling rewriting of MC1R
    - of: device: Fix missing of_node_put() in of_dma_set_restricted_buffer
    - mmc: block: Add single read for 4k sector cards
    - KVM: s390: pv: leak the topmost page table when destroy fails
    - PCI: qcom: Set up rev 2.1.0 PARF_PHY before enabling clocks
    - scsi: smartpqi: Fix DMA direction for RAID requests
    - xtensa: iss/network: provide release() callback
    - xtensa: iss: fix handling error cases in iss_net_configure()
    - usb: gadget: udc: amd5536 depends on HAS_DMA
    - usb: aspeed-vhub: Fix refcount leak bug in ast_vhub_init_desc()
    - usb: dwc3: core: Deprecate GCTL.CORESOFTRESET
    - usb: dwc3: core: Do not perform GCTL_CORE_SOFTRESET during bootup
    - usb: dwc3: qcom: fix missing optional irq warnings
    - eeprom: idt_89hpesx: uninitialized data in idt_dbgfs_csr_write()
    - phy: stm32: fix error return in stm32_usbphyc_phy_init
    - interconnect: imx: fix max_node_id
    - um: random: Don't initialise hwrng struct with zero
    - RDMA/irdma: Fix a window for use-after-free
    - RDMA/irdma: Fix VLAN connection with wildcard address
    - RDMA/irdma: Fix setting of QP context err_rq_idx_valid field
    - RDMA/rtrs-srv: Fix modinfo output for stringify
    - RDMA/rtrs: Fix warning when use poll mode on client side.
    - RDMA/rtrs: Replace duplicate check with is_pollqueue helper
    - RDMA/rtrs: Introduce destroy_cq helper
    - RDMA/rtrs: Do not allow sessname to contain special symbols / and .
    - RDMA/rtrs: Rename rtrs_sess to rtrs_path
    - RDMA/rtrs-srv: Rename rtrs_srv_sess to rtrs_srv_path
    - RDMA/rtrs-clt: Rename rtrs_clt_sess to rtrs_clt_path
    - RDMA/rtrs-clt: Replace list_next_or_null_rr_rcu with an inline function
    - RDMA/qedr: Fix potential memory leak in __qedr_alloc_mr()
    - RDMA/hns: Fix incorrect clearing of interrupt status register
    - RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event
    - iio: cros: Register FIFO callback after sensor is registered
    - clk: qcom: gcc-msm8939: Fix weird field spacing in ftbl_gcc_camss_cci_clk
    - RDMA/hfi1: fix potential memory leak in setup_base_ctxt()
    - gpio: gpiolib-of: Fix refcount bugs in of_mm_gpiochip_add_data()
    - HID: mcp2221: prevent a buffer overflow in mcp_smbus_write()
    - HID: amd_sfh: Add NULL check for hid device
    - dmaengine: imx-dma: Cast of_device_get_match_data() with (uintptr_t)
    - scripts/gdb: lx-dmesg: read records individually
    - scripts/gdb: fix 'lx-dmesg' on 32 bits arch
    - RDMA/rxe: Fix mw bind to allow any consumer key portion
    - mmc: cavium-octeon: Add of_node_put() when breaking out of loop
    - mmc: cavium-thunderx: Add of_node_put() when breaking out of loop
    - HID: alps: Declare U1_UNICORN_LEGACY support
    - RDMA/rxe: For invalidate compare according to set keys in mr
    - PCI: tegra194: Fix Root Port interrupt handling
    - PCI: tegra194: Fix link up retry sequence
    - HID: amd_sfh: Handle condition of "no sensors"
    - USB: serial: fix tty-port initialized comments
    - usb: cdns3: change place of 'priv_ep' assignment in
      cdns3_gadget_ep_dequeue(), cdns3_gadget_ep_enable()
    - mtd: spi-nor: fix spi_nor_spimem_setup_op() call in
      spi_nor_erase_{sector,chip}()
    - KVM: nVMX: Set UMIP bit CR4_FIXED1 MSR when emulating UMIP
    - platform/olpc: Fix uninitialized data in debugfs write
    - RDMA/srpt: Duplicate port name members
    - RDMA/srpt: Introduce a reference count in struct srpt_device
    - RDMA/srpt: Fix a use-after-free
    - android: binder: stop saving a pointer to the VMA
    - mm/mmap.c: fix missing call to vm_unacct_memory in mmap_region
    - selftests: kvm: set rax before vmcall
    - of/fdt: declared return type does not match actual return type
    - RDMA/mlx5: Add missing check for return value in get namespace flow
    - RDMA/rxe: Add memory barriers to kernel queues
    - RDMA/rxe: Remove the is_user members of struct rxe_sq/rxe_rq/rxe_srq
    - RDMA/rxe: Fix error unwind in rxe_create_qp()
    - block/rnbd-srv: Set keep_id to true after mutex_trylock
    - null_blk: fix ida error handling in null_add_dev()
    - nvme: use command_id instead of req->tag in trace_nvme_complete_rq()
    - nvme: define compat_ioctl again to unbreak 32-bit userspace.
    - nvme: disable namespace access for unsupported metadata
    - nvme: don't return an error from nvme_configure_metadata
    - nvme: catch -ENODEV from nvme_revalidate_zones again
    - block/bio: remove duplicate append pages code
    - block: ensure iov_iter advances for added pages
    - jbd2: fix outstanding credits assert in jbd2_journal_commit_transaction()
    - ext4: recover csum seed of tmp_inode after migrating to extents
    - jbd2: fix assertion 'jh->b_frozen_data == NULL' failure when journal aborted
    - usb: cdns3: Don't use priv_dev uninitialized in cdns3_gadget_ep_enable()
    - opp: Fix error check in dev_pm_opp_attach_genpd()
    - ASoC: cros_ec_codec: Fix refcount leak in cros_ec_codec_platform_probe
    - ASoC: samsung: Fix error handling in aries_audio_probe
    - ASoC: imx-audmux: Silence a clang warning
    - ASoC: mediatek: mt8173: Fix refcount leak in mt8173_rt5650_rt5676_dev_probe
    - ASoC: mt6797-mt6351: Fix refcount leak in mt6797_mt6351_dev_probe
    - ASoC: codecs: da7210: add check for i2c_add_driver
    - ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe
    - serial: 8250: Export ICR access helpers for internal use
    - serial: 8250: dma: Allow driver operations before starting DMA transfers
    - serial: 8250_dw: Store LSR into lsr_saved_flags in dw8250_tx_wait_empty()
    - ASoC: codecs: msm8916-wcd-digital: move gains from SX_TLV to S8_TLV
    - ASoC: codecs: wcd9335: move gains from SX_TLV to S8_TLV
    - rpmsg: char: Add mutex protection for rpmsg_eptdev_open()
    - rpmsg: mtk_rpmsg: Fix circular locking dependency
    - remoteproc: k3-r5: Fix refcount leak in k3_r5_cluster_of_init
    - selftests/livepatch: better synchronize test_klp_callbacks_busy
    - profiling: fix shift too large makes kernel panic
    - remoteproc: imx_rproc: Fix refcount leak in imx_rproc_addr_init
    - ASoC: samsung: h1940_uda1380: include proepr GPIO consumer header
    - powerpc/perf: Optimize clearing the pending PMI and remove WARN_ON for PMI
      check in power_pmu_disable
    - ASoC: samsung: change gpiod_speaker_power and rx1950_audio from global to
      static variables
    - tty: n_gsm: Delete gsmtty open SABM frame when config requester
    - tty: n_gsm: fix user open not possible at responder until initiator open
    - tty: n_gsm: fix tty registration before control channel open
    - tty: n_gsm: fix wrong queuing behavior in gsm_dlci_data_output()
    - tty: n_gsm: fix missing timer to handle stalled links
    - tty: n_gsm: fix non flow control frames during mux flow off
    - tty: n_gsm: fix packet re-transmission without open control channel
    - tty: n_gsm: fix race condition in gsmld_write()
    - tty: n_gsm: fix resource allocation order in gsm_activate_mux()
    - ASoC: qcom: Fix missing of_node_put() in
      asoc_qcom_lpass_cpu_platform_probe()
    - ASoC: imx-card: Fix DSD/PDM mclk frequency
    - remoteproc: qcom: wcnss: Fix handling of IRQs
    - vfio/ccw: Do not change FSM state in subchannel event
    - serial: 8250_fsl: Don't report FE, PE and OE twice
    - tty: n_gsm: fix wrong T1 retry count handling
    - tty: n_gsm: fix DM command
    - tty: n_gsm: fix missing corner cases in gsmld_poll()
    - MIPS: vdso: Utilize __pa() for gic_pfn
    - swiotlb: fail map correctly with failed io_tlb_default_mem
    - ASoC: mt6359: Fix refcount leak bug
    - serial: 8250_bcm7271: Save/restore RTS in suspend/resume
    - iommu/exynos: Handle failed IOMMU device registration properly
    - 9p: fix a bunch of checkpatch warnings
    - 9p: Drop kref usage
    - 9p: Add client parameter to p9_req_put()
    - net: 9p: fix refcount leak in p9_read_work() error handling
    - MIPS: Fixed __debug_virt_addr_valid()
    - rpmsg: qcom_smd: Fix refcount leak in qcom_smd_parse_edge
    - kfifo: fix kfifo_to_user() return type
    - lib/smp_processor_id: fix imbalanced instrumentation_end() call
    - proc: fix a dentry lock race between release_task and lookup
    - remoteproc: qcom: pas: Check if coredump is enabled
    - remoteproc: sysmon: Wait for SSCTL service to come up
    - mfd: t7l66xb: Drop platform disable callback
    - mfd: max77620: Fix refcount leak in max77620_initialise_fps
    - iommu/arm-smmu: qcom_iommu: Add of_node_put() when breaking out of loop
    - perf tools: Fix dso_id inode generation comparison
    - s390/dump: fix old lowcore virtual vs physical address confusion
    - s390/maccess: fix semantics of memcpy_real() and its callers
    - s390/crash: fix incorrect number of bytes to copy to user space
    - s390/zcore: fix race when reading from hardware system area
    - ASoC: fsl_asrc: force cast the asrc_format type
    - ASoC: fsl-asoc-card: force cast the asrc_format type
    - ASoC: fsl_easrc: use snd_pcm_format_t type for sample_format
    - ASoC: imx-card: use snd_pcm_format_t type for asrc_format
    - ASoC: qcom: q6dsp: Fix an off-by-one in q6adm_alloc_copp()
    - fuse: Remove the control interface for virtio-fs
    - ASoC: audio-graph-card: Add of_node_put() in fail path
    - watchdog: sp5100_tco: Fix a memory leak of EFCH MMIO resource
    - watchdog: armada_37xx_wdt: check the return value of devm_ioremap() in
      armada_37xx_wdt_probe()
    - video: fbdev: amba-clcd: Fix refcount leak bugs
    - video: fbdev: sis: fix typos in SiS_GetModeID()
    - ASoC: mchp-spdifrx: disable end of block interrupt on failures
    - powerpc/32: Call mmu_mark_initmem_nx() regardless of data block mapping.
    - powerpc/32: Do not allow selection of e5500 or e6500 CPUs on PPC32
    - powerpc/iommu: Fix iommu_table_in_use for a small default DMA window case
    - powerpc/pci: Prefer PCI domain assignment via DT 'linux,pci-domain' and
      alias
    - tty: serial: fsl_lpuart: correct the count of break characters
    - s390/dump: fix os_info virtual vs physical address confusion
    - s390/smp: cleanup target CPU callback starting
    - s390/smp: cleanup control register update routines
    - s390/maccess: rework absolute lowcore accessors
    - s390/smp: enforce lowcore protection on CPU restart
    - f2fs: fix to remove F2FS_COMPR_FL and tag F2FS_NOCOMP_FL at the same time
    - powerpc/spufs: Fix refcount leak in spufs_init_isolated_loader
    - powerpc/xive: Fix refcount leak in xive_get_max_prio
    - powerpc/cell/axon_msi: Fix refcount leak in setup_msi_msg_address
    - perf symbol: Fail to read phdr workaround
    - kprobes: Forbid probing on trampoline and BPF code areas
    - x86/bus_lock: Don't assume the init value of DEBUGCTLMSR.BUS_LOCK_DETECT to
      be zero
    - powerpc/pci: Fix PHB numbering when using opal-phbid
    - genelf: Use HAVE_LIBCRYPTO_SUPPORT, not the never defined HAVE_LIBCRYPTO
    - scripts/faddr2line: Fix vmlinux detection on arm64
    - sched/deadline: Merge dl_task_can_attach() and dl_cpu_busy()
    - sched, cpuset: Fix dl_cpu_busy() panic due to empty cs->cpus_allowed
    - x86/numa: Use cpumask_available instead of hardcoded NULL check
    - video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock()
    - tools/thermal: Fix possible path truncations
    - sched: Fix the check of nr_running at queue wakelist
    - sched: Remove the limitation of WF_ON_CPU on wakelist if wakee cpu is idle
    - sched/core: Do not requeue task on CPU excluded from cpus_mask
    - f2fs: allow compression for mmap files in compress_mode=user
    - f2fs: do not allow to decompress files have FI_COMPRESS_RELEASED
    - video: fbdev: vt8623fb: Check the size of screen before memset_io()
    - video: fbdev: arkfb: Check the size of screen before memset_io()
    - video: fbdev: s3fb: Check the size of screen before memset_io()
    - scsi: ufs: core: Correct ufshcd_shutdown() flow
    - scsi: zfcp: Fix missing auto port scan and thus missing target ports
    - scsi: qla2xxx: Fix imbalance vha->vref_count
    - scsi: qla2xxx: Fix discovery issues in FC-AL topology
    - scsi: qla2xxx: Turn off multi-queue for 8G adapters
    - scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts
    - scsi: qla2xxx: Fix excessive I/O error messages by default
    - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection
    - scsi: qla2xxx: Wind down adapter after PCIe error
    - scsi: qla2xxx: Fix losing FCP-2 targets on long port disable with I/Os
    - scsi: qla2xxx: Fix losing target when it reappears during delete
    - scsi: qla2xxx: Fix losing FCP-2 targets during port perturbation tests
    - x86/bugs: Enable STIBP for IBPB mitigated RETBleed
    - ftrace/x86: Add back ftrace_expected assignment
    - x86/kprobes: Update kcb status flag after singlestepping
    - x86/olpc: fix 'logical not is only applied to the left hand side'
    - SMB3: fix lease break timeout when multiple deferred close handles for the
      same file.
    - Input: gscps2 - check return value of ioremap() in gscps2_probe()
    - __follow_mount_rcu(): verify that mount_lock remains unchanged
    - spmi: trace: fix stack-out-of-bound access in SPMI tracing functions
    - drm/mediatek: Allow commands to be sent during video mode
    - drm/mediatek: Keep dsi as LP00 before dcs cmds transfer
    - crypto: blake2s - remove shash module
    - [Config] updateconfigs for CRYPTO_LIB_BLAKE2S
    - drm/vc4: drv: Adopt the dma configuration from the HVS or V3D component
    - usbnet: smsc95xx: Don't clear read-only PHY interrupt
    - usbnet: smsc95xx: Avoid link settings race on interrupt reception
    - firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails
    - scsi: lpfc: SLI path split: Refactor lpfc_iocbq
    - scsi: lpfc: SLI path split: Refactor fast and slow paths to native SLI4
    - scsi: lpfc: SLI path split: Refactor SCSI paths
    - scsi: lpfc: Remove extra atomic_inc on cmd_pending in queuecommand after
      VMID
    - intel_th: pci: Add Meteor Lake-P support
    - intel_th: pci: Add Raptor Lake-S PCH support
    - intel_th: pci: Add Raptor Lake-S CPU support
    - KVM: set_msr_mce: Permit guests to ignore single-bit ECC errors
    - KVM: x86: Signal #GP, not -EPERM, on bad WRMSR(MCi_CTL/STATUS)
    - iommu/vt-d: avoid invalid memory access via node_online(NUMA_NO_NODE)
    - PCI/AER: Iterate over error counters instead of error strings
    - PCI: qcom: Power on PHY before IPQ8074 DBI register accesses
    - serial: 8250_pci: Refactor the loop in pci_ite887x_init()
    - serial: 8250_pci: Replace dev_*() by pci_*() macros
    - serial: 8250: Fold EndRun device support into OxSemi Tornado code
    - serial: 8250: Add proper clock handling for OxSemi PCIe devices
    - tty: 8250: Add support for Brainboxes PX cards.
    - dm writecache: set a default MAX_WRITEBACK_JOBS
    - kexec, KEYS, s390: Make use of built-in and secondary keyring for signature
      verification
    - dm thin: fix use-after-free crash in dm_sm_register_threshold_callback
    - net/9p: Initialize the iounit field during fid creation
    - ARM: remove some dead code
    - timekeeping: contribute wall clock to rng on time change
    - locking/csd_lock: Change csdlock_debug from early_param to __setup
    - block: remove the struct blk_queue_ctx forward declaration
    - block: don't allow the same type rq_qos add more than once
    - btrfs: ensure pages are unlocked on cow_file_range() failure
    - btrfs: reset block group chunk force if we have to wait
    - btrfs: properly flag filesystem with BTRFS_FEATURE_INCOMPAT_BIG_METADATA
    - ACPI: CPPC: Do not prevent CPPC from working in the future
    - powerpc/powernv/kvm: Use darn for H_RANDOM on Power9
    - KVM: x86/pmu: Introduce the ctrl_mask value for fixed counter
    - KVM: VMX: Mark all PERF_GLOBAL_(OVF)_CTRL bits reserved if there's no vPMU
    - KVM: x86/pmu: Ignore pmu->global_ctrl check if vPMU doesn't support
      global_ctrl
    - KVM: VMX: Add helper to check if the guest PMU has PERF_GLOBAL_CTRL
    - KVM: nVMX: Attempt to load PERF_GLOBAL_CTRL on nVMX xfer iff it exists
    - dm raid: fix address sanitizer warning in raid_status
    - dm raid: fix address sanitizer warning in raid_resume
    - tracing: Add '__rel_loc' using trace event macros
    - tracing: Avoid -Warray-bounds warning for __rel_loc macro
    - ext4: update s_overhead_clusters in the superblock during an on-line resize
    - ext4: fix extent status tree race in writeback error recovery path
    - ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h
    - ext4: fix use-after-free in ext4_xattr_set_entry
    - ext4: correct max_inline_xattr_value_size computing
    - ext4: correct the misjudgment in ext4_iget_extra_inode
    - ext4: fix warning in ext4_iomap_begin as race between bmap and write
    - ext4: check if directory block is within i_size
    - ext4: make sure ext4_append() always allocates new block
    - ext4: remove EA inode entry from mbcache on inode eviction
    - ext4: use kmemdup() to replace kmalloc + memcpy
    - ext4: unindent codeblock in ext4_xattr_block_set()
    - ext4: fix race when reusing xattr blocks
    - KEYS: asymmetric: enforce SM2 signature use pkey algo
    - tpm: eventlog: Fix section mismatch for DEBUG_SECTION_MISMATCH
    - xen-blkback: fix persistent grants negotiation
    - xen-blkback: Apply 'feature_persistent' parameter when connect
    - xen-blkfront: Apply 'feature_persistent' parameter when connect
    - powerpc: Fix eh field when calling lwarx on PPC32
    - tracing: Use a struct alignof to determine trace event field alignment
    - mac80211: fix a memory leak where sta_info is not freed
    - tcp: fix over estimation in sk_forced_mem_schedule()
    - crypto: lib/blake2s - reduce stack frame usage in self test
    - Revert "mwifiex: fix sleep in atomic context bugs caused by dev_coredumpv"
    - Revert "s390/smp: enforce lowcore protection on CPU restart"
    - drm/bridge: tc358767: Fix (e)DP bridge endpoint parsing in dedicated
      function
    - net: phy: smsc: Disable Energy Detect Power-Down in interrupt mode
    - drm/vc4: change vc4_dma_range_matches from a global to static
    - tracing/perf: Avoid -Warray-bounds warning for __rel_loc macro
    - drm/msm: Fix dirtyfb refcounting
    - drm/meson: Fix refcount leak in meson_encoder_hdmi_init
    - io_uring: mem-account pbuf buckets
    - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression
    - drm/bridge: Move devm_drm_of_get_bridge to bridge/panel.c
    - scsi: lpfc: Fix locking for lpfc_sli_iocbq_lookup()
    - scsi: lpfc: Fix element offset in __lpfc_sli_release_iocbq_s4()
    - scsi: lpfc: Resolve some cleanup issues following SLI path refactoring
    - Linux 5.15.61

* CVE-2022-3028
    - af_key: Do not call xfrm_probe_algs in parallel

* CVE-2022-2978
    - fs: fix UAF/GPF bug in nilfs_mdt_destroy

* CVE-2022-40768
    - scsi: stex: Properly zero out the passthrough command structure

-- Stefan Bader <stefan.bader@canonical.com>  Mon, 17 Oct 2022 20:36:48 +0200

Changed in linux (Ubuntu Jammy):
status:	Fix Committed → Fix Released

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2022-12-07:

#20

This bug is awaiting verification that the linux/5.19.0-27.28 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-kinetic' to 'verification-done-kinetic'. If the problem still exists, change the tag 'verification-needed-kinetic' to 'verification-failed-kinetic'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-kinetic-linux verification-needed-kinetic

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2022-12-07:

#21

This bug is awaiting verification that the linux-bluefield/5.15.0-1010.12 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy' to 'verification-done-jammy'. If the problem still exists, change the tag 'verification-needed-jammy' to 'verification-failed-jammy'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-bluefield verification-needed-jammy
removed: verification-done-jammy

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2022-12-12:

#22

This bug is awaiting verification that the linux-nvidia/5.15.0-1011.11 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy' to 'verification-done-jammy'. If the problem still exists, change the tag 'verification-needed-jammy' to 'verification-failed-jammy'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-nvidia

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2022-12-14:

#23

This bug is awaiting verification that the linux-azure/5.4.0-1100.106 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-focal' to 'verification-done-focal'. If the problem still exists, change the tag 'verification-needed-focal' to 'verification-failed-focal'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-focal-linux-azure verification-needed-focal
removed: verification-done-focal

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2022-12-15:

#24

This bug is awaiting verification that the linux-xilinx-zynqmp/5.4.0-1020.24 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-focal' to 'verification-done-focal'. If the problem still exists, change the tag 'verification-needed-focal' to 'verification-failed-focal'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-focal-linux-xilinx-zynqmp

Revision history for this message

Launchpad Janitor (janitor) wrote on 2023-01-06:

#25

Download full text (100.4 KiB)

This bug was fixed in the package linux - 5.19.0-28.29

---------------
linux (5.19.0-28.29) kinetic; urgency=medium

* kinetic/linux: 5.19.0-28.29 -proposed tracker (LP: #1999746)

  * mm:vma05 in ubuntu_ltp fails with '[vdso] bug not patched' on kinetic/linux
    5.19.0-27.28 (LP: #1999094)
    - fix coredump breakage

linux (5.19.0-27.28) kinetic; urgency=medium

* kinetic/linux: 5.19.0-27.28 -proposed tracker (LP: #1997794)

* Packaging resync (LP: #1786013)
- debian/dkms-versions -- update from kernel-versions (main/2022.11.14)

* selftests/.../nat6to4 breaks the selftests build (LP: #1996536)
- [Config] Disable selftests/net/bpf/nat6to4

* Expose built-in trusted and revoked certificates (LP: #1996892)
- [Packaging] Expose built-in trusted and revoked certificates

* support for same series backports versioning numbers (LP: #1993563)
- [Packaging] sameport -- add support for sameport versioning

  * Add cs35l41 firmware loading support (LP: #1995957)
    - ASoC: cs35l41: Move cs35l41 exit hibernate function into shared code
    - ASoC: cs35l41: Add common cs35l41 enter hibernate function
    - ASoC: cs35l41: Do not print error when waking from hibernation
    - ALSA: hda: cs35l41: Don't dereference fwnode handle
    - ALSA: hda: cs35l41: Allow compilation test on non-ACPI configurations
    - ALSA: hda: cs35l41: Drop wrong use of ACPI_PTR()
    - ALSA: hda: cs35l41: Consolidate selections under SND_HDA_SCODEC_CS35L41
    - ALSA: hda: hda_cs_dsp_ctl: Add Library to support CS_DSP ALSA controls
    - ALSA: hda: hda_cs_dsp_ctl: Add apis to write the controls directly
    - ALSA: hda: cs35l41: Save codec object inside component struct
    - ALSA: hda: cs35l41: Add initial DSP support and firmware loading
    - ALSA: hda: cs35l41: Save Subsystem ID inside CS35L41 Driver
    - ALSA: hda: cs35l41: Support reading subsystem id from ACPI
    - ALSA: hda: cs35l41: Support multiple load paths for firmware
    - ALSA: hda: cs35l41: Support Speaker ID for laptops
    - ALSA: hda: cs35l41: Support Hibernation during Suspend
    - ALSA: hda: cs35l41: Read Speaker Calibration data from UEFI variables
    - ALSA: hda: hda_cs_dsp_ctl: Add fw id strings
    - ALSA: hda: cs35l41: Add defaulted values into dsp bypass config sequence
    - ALSA: hda: cs35l41: Support Firmware switching and reloading
    - ALSA: hda: cs35l41: Add module parameter to control firmware load
    - Revert "ALSA: hda: cs35l41: Allow compilation test on non-ACPI
      configurations"
    - ALSA: hda/realtek: More robust component matching for CS35L41
    - [Config] updateconfigs for SND_HDA_CS_DSP_CONTROLS

* Fibocom WWAN FM350-GL suspend error (notebook not suspend) (LP: #1990700)
- net: wwan: t7xx: Add AP CLDMA

  * Screen cannot turn on after screen off with Matrox G200eW3 [102b:0536]
    (LP: #1995573)
    - drm/mgag200: Optimize damage clips
    - drm/mgag200: Add FB_DAMAGE_CLIPS support
    - drm/mgag200: Enable atomic gamma lut update

* TEE Support for CCP driver (LP: #1991608)
- crypto: ccp: Add support for TEE for PCI ID 0x14CA

* AMD Cezanne takes 5 minutes to wake up from suspend (LP: #1993715)
- platform/x86/amd: pmc: Read...

This bug was fixed in the package linux - 5.19.0-28.29

---------------
linux (5.19.0-28.29) kinetic; urgency=medium

* kinetic/linux: 5.19.0-28.29 -proposed tracker (LP: #1999746)

* mm:vma05 in ubuntu_ltp fails with '[vdso] bug not patched' on kinetic/linux
    5.19.0-27.28 (LP: #1999094)
    - fix coredump breakage

linux (5.19.0-27.28) kinetic; urgency=medium

* kinetic/linux: 5.19.0-27.28 -proposed tracker (LP: #1997794)

* Packaging resync (LP: #1786013)
    - debian/dkms-versions -- update from kernel-versions (main/2022.11.14)

* selftests/.../nat6to4  breaks the selftests build (LP: #1996536)
    - [Config] Disable selftests/net/bpf/nat6to4

* Expose built-in trusted and revoked certificates (LP: #1996892)
    - [Packaging] Expose built-in trusted and revoked certificates

* support for same series backports versioning numbers (LP: #1993563)
    - [Packaging] sameport -- add support for sameport versioning

* Add cs35l41 firmware loading support (LP: #1995957)
    - ASoC: cs35l41: Move cs35l41 exit hibernate function into shared code
    - ASoC: cs35l41: Add common cs35l41 enter hibernate function
    - ASoC: cs35l41: Do not print error when waking from hibernation
    - ALSA: hda: cs35l41: Don't dereference fwnode handle
    - ALSA: hda: cs35l41: Allow compilation test on non-ACPI configurations
    - ALSA: hda: cs35l41: Drop wrong use of ACPI_PTR()
    - ALSA: hda: cs35l41: Consolidate selections under SND_HDA_SCODEC_CS35L41
    - ALSA: hda: hda_cs_dsp_ctl: Add Library to support CS_DSP ALSA controls
    - ALSA: hda: hda_cs_dsp_ctl: Add apis to write the controls directly
    - ALSA: hda: cs35l41: Save codec object inside component struct
    - ALSA: hda: cs35l41: Add initial DSP support and firmware loading
    - ALSA: hda: cs35l41: Save Subsystem ID inside CS35L41 Driver
    - ALSA: hda: cs35l41: Support reading subsystem id from ACPI
    - ALSA: hda: cs35l41: Support multiple load paths for firmware
    - ALSA: hda: cs35l41: Support Speaker ID for laptops
    - ALSA: hda: cs35l41: Support Hibernation during Suspend
    - ALSA: hda: cs35l41: Read Speaker Calibration data from UEFI variables
    - ALSA: hda: hda_cs_dsp_ctl: Add fw id strings
    - ALSA: hda: cs35l41: Add defaulted values into dsp bypass config sequence
    - ALSA: hda: cs35l41: Support Firmware switching and reloading
    - ALSA: hda: cs35l41: Add module parameter to control firmware load
    - Revert "ALSA: hda: cs35l41: Allow compilation test on non-ACPI
      configurations"
    - ALSA: hda/realtek: More robust component matching for CS35L41
    - [Config] updateconfigs for SND_HDA_CS_DSP_CONTROLS

*  Fibocom WWAN FM350-GL suspend error (notebook not suspend) (LP: #1990700)
    - net: wwan: t7xx: Add AP CLDMA

* Screen cannot turn on after screen off with Matrox G200eW3 [102b:0536]
    (LP: #1995573)
    - drm/mgag200: Optimize damage clips
    - drm/mgag200: Add FB_DAMAGE_CLIPS support
    - drm/mgag200: Enable atomic gamma lut update

* TEE Support for CCP driver (LP: #1991608)
    - crypto: ccp: Add support for TEE for PCI ID 0x14CA

* AMD Cezanne takes 5 minutes to wake up from suspend (LP: #1993715)
    - platform/x86/amd: pmc: Read SMU version during suspend on Cezanne systems

* Fix ath11k deadlock on WCN6855 (LP: #1995041)
    - wifi: ath11k: avoid deadlock during regulatory update in
      ath11k_regd_update()

* intel_pmc_core not load on Raptor Lake (LP: #1988461)
    - x86/cpu: Add new Raptor Lake CPU model number
    - platform/x86/intel: pmc/core: Add Raptor Lake support to pmc core driver

* [UBUNTU 20.04] boot: Add s390x secure boot trailer (LP: #1996071)
    - s390/boot: add secure boot trailer

* Fix rfkill causing soft blocked wifi (LP: #1996198)
    - platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi

* Support Icicle Kit reference design v2022.10 (LP: #1993148)
    - riscv: dts: microchip: icicle: re-jig fabric peripheral addresses
    - riscv: dts: microchip: reduce the fic3 clock rate
    - riscv: dts: microchip: update memory configuration for v2022.10
    - riscv: dts: microchip: fix fabric i2c reg size
    - SAUCE: riscv: dts: microchip: Disable PCIe on the Icicle Kit

* Fix Turbostat is not working for fam: 6 model: 191: stepping: 2 CPU
    (LP: #1991365)
    - tools/power turbostat: Add support for RPL-S

* armhf kernel compiled with gcc-12 fails to boot on pi 3/2 (LP: #1993120)
    - [Packaging] Support arch-specific compilers in updateconfigs

* Kinetic update: v5.19.17 upstream stable release (LP: #1994179)
    - Revert "fs: check FMODE_LSEEK to control internal pipe splicing"
    - ALSA: oss: Fix potential deadlock at unregistration
    - ALSA: rawmidi: Drop register_mutex in snd_rawmidi_free()
    - ALSA: usb-audio: Fix potential memory leaks
    - ALSA: usb-audio: Fix NULL dererence at error path
    - ALSA: hda/realtek: remove ALC289_FIXUP_DUAL_SPK for Dell 5530
    - ALSA: hda/realtek: Correct pin configs for ASUS G533Z
    - ALSA: hda/realtek: Add quirk for ASUS GV601R laptop
    - ALSA: hda/realtek: Add Intel Reference SSID to support headset keys
    - mtd: rawnand: atmel: Unmap streaming DMA mappings
    - io_uring/rw: fix unexpected link breakage
    - io_uring/net: fix fast_iov assignment in io_setup_async_msg()
    - io_uring/net: don't update msg_name if not provided
    - io_uring: correct pinned_vm accounting
    - hv_netvsc: Fix race between VF offering and VF association message from host
    - cifs: destage dirty pages before re-reading them for cache=none
    - cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message
    - iio: dac: ad5593r: Fix i2c read protocol requirements
    - iio: ltc2497: Fix reading conversion results
    - iio: adc: ad7923: fix channel readings for some variants
    - iio: pressure: dps310: Refactor startup procedure
    - iio: pressure: dps310: Reset chip after timeout
    - xhci: dbc: Fix memory leak in xhci_alloc_dbc()
    - usb: gadget: uvc: Fix argument to sizeof() in uvc_register_video()
    - usb: add quirks for Lenovo OneLink+ Dock
    - mmc: core: Add SD card quirk for broken discard
    - can: kvaser_usb: Fix use of uninitialized completion
    - can: kvaser_usb_leaf: Fix overread with an invalid command
    - can: kvaser_usb_leaf: Fix TX queue out of sync after restart
    - can: kvaser_usb_leaf: Fix CAN state after restart
    - mmc: renesas_sdhi: Fix rounding errors
    - mmc: sdhci-tegra: Use actual clock rate for SW tuning correction
    - mmc: sdhci-sprd: Fix minimum clock limit
    - i2c: designware: Fix handling of real but unexpected device interrupts
    - fs: dlm: fix race between test_bit() and queue_work()
    - fs: dlm: handle -EBUSY first in lock arg validation
    - fs: dlm: fix invalid derefence of sb_lvbptr
    - btf: Export bpf_dynptr definition
    - HID: multitouch: Add memory barriers
    - quota: Check next/prev free block number after reading from quota file
    - platform/chrome: cros_ec_proto: Update version on GET_NEXT_EVENT failure
    - arm64: dts: qcom: sdm845-mtp: correct ADC settle time
    - ASoC: wcd9335: fix order of Slimbus unprepare/disable
    - ASoC: wcd934x: fix order of Slimbus unprepare/disable
    - hwmon: (gsc-hwmon) Call of_node_get() before of_find_xxx API
    - net: thunderbolt: Enable DMA paths only after rings are enabled
    - regulator: qcom_rpm: Fix circular deferral regression
    - arm64: topology: move store_cpu_topology() to shared code
    - riscv: topology: fix default topology reporting
    - RISC-V: Re-enable counter access from userspace
    - RISC-V: Make port I/O string accessors actually work
    - parisc: fbdev/stifb: Align graphics memory size to 4MB
    - parisc: Fix userspace graphics card breakage due to pgtable special bit
    - riscv: vdso: fix NULL deference in vdso_join_timens() when vfork
    - riscv: Make VM_WRITE imply VM_READ
    - riscv: always honor the CONFIG_CMDLINE_FORCE when parsing dtb
    - riscv: Pass -mno-relax only on lld < 15.0.0
    - UM: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK
    - nvmem: core: Fix memleak in nvmem_register()
    - nvme-multipath: fix possible hang in live ns resize with ANA access
    - dmaengine: mxs: use platform_driver_register
    - dmaengine: qcom-adm: fix wrong sizeof config in slave_config
    - dmaengine: qcom-adm: fix wrong calling convention for prep_slave_sg
    - drm/virtio: Check whether transferred 2D BO is shmem
    - drm/virtio: Unlock reservations on virtio_gpu_object_shmem_init() error
    - drm/virtio: Unlock reservations on dma_resv_reserve_fences() error
    - drm/virtio: Use appropriate atomic state in virtio_gpu_plane_cleanup_fb()
    - drm/udl: Restore display mode on resume
    - arm64: mte: move register initialization to C
    - [Config] updateconfigs for ARM64_ERRATUM_2441007
    - arm64: errata: Add Cortex-A55 to the repeat tlbi list
    - clocksource/drivers/arm_arch_timer: Fix CNTPCT_LO and CNTVCT_LO value
    - mm/hugetlb: fix races when looking up a CONT-PTE/PMD size hugetlb page
    - mm/damon: validate if the pmd entry is present before accessing
    - mm/uffd: fix warning without PTE_MARKER_UFFD_WP compiled in
    - mm/mmap: undo ->mmap() when arch_validate_flags() fails
    - xen/gntdev: Prevent leaking grants
    - xen/gntdev: Accommodate VMA splitting
    - PCI: Sanitise firmware BAR assignments behind a PCI-PCI bridge
    - serial: cpm_uart: Don't request IRQ too early for console port
    - serial: stm32: Deassert Transmit Enable on ->rs485_config()
    - serial: 8250: Let drivers request full 16550A feature probing
    - serial: 8250: Request full 16550A feature probing for OxSemi PCIe devices
    - cpufreq: qcom-cpufreq-hw: Fix uninitialized throttled_freq warning
    - powercap: intel_rapl: Use standard Energy Unit for SPR Dram RAPL domain
    - powerpc/Kconfig: Fix non existing CONFIG_PPC_FSL_BOOKE
    - powerpc/boot: Explicitly disable usage of SPE instructions
    - slimbus: qcom-ngd: use correct error in message of pdr_add_lookup() failure
    - slimbus: qcom-ngd: cleanup in probe error path
    - scsi: lpfc: Rework MIB Rx Monitor debug info logic
    - scsi: qedf: Populate sysfs attributes for vport
    - gpio: rockchip: request GPIO mux to pinctrl when setting direction
    - pinctrl: rockchip: add pinmux_ops.gpio_set_direction callback
    - fbdev: smscufx: Fix use-after-free in ufx_ops_open()
    - hwrng: core - let sleep be interrupted when unregistering hwrng
    - smb3: do not log confusing message when server returns no network interfaces
    - ksmbd: fix incorrect handling of iterate_dir
    - ksmbd: fix endless loop when encryption for response fails
    - ksmbd: Fix wrong return value and message length check in smb2_ioctl()
    - ksmbd: Fix user namespace mapping
    - fs: record I_DIRTY_TIME even if inode already has I_DIRTY_INODE
    - btrfs: fix alignment of VMA for memory mapped files on THP
    - btrfs: enhance unsupported compat RO flags handling
    - btrfs: fix race between quota enable and quota rescan ioctl
    - btrfs: fix missed extent on fsync after dropping extent maps
    - btrfs: set generation before calling btrfs_clean_tree_block in
      btrfs_init_new_buffer
    - f2fs: fix wrong continue condition in GC
    - f2fs: complete checkpoints during remount
    - f2fs: flush pending checkpoints when freezing super
    - f2fs: increase the limit for reserve_root
    - f2fs: fix to do sanity check on destination blkaddr during recovery
    - f2fs: fix to do sanity check on summary info
    - jbd2: wake up journal waiters in FIFO order, not LIFO
    - jbd2: fix potential buffer head reference count leak
    - jbd2: fix potential use-after-free in jbd2_fc_wait_bufs
    - jbd2: add miss release buffer head in fc_do_one_pass()
    - ext2: Add sanity checks for group and filesystem size
    - ext4: avoid crash when inline data creation follows DIO write
    - ext4: fix null-ptr-deref in ext4_write_info
    - ext4: make ext4_lazyinit_thread freezable
    - ext4: fix check for block being out of directory size
    - ext4: don't increase iversion counter for ea_inodes
    - ext4: unconditionally enable the i_version counter
    - ext4: ext4_read_bh_lock() should submit IO if the buffer isn't uptodate
    - ext4: place buffer head allocation before handle start
    - ext4: fix i_version handling in ext4
    - ext4: fix dir corruption when ext4_dx_add_entry() fails
    - ext4: fix miss release buffer head in ext4_fc_write_inode
    - ext4: fix potential memory leak in ext4_fc_record_modified_inode()
    - ext4: fix potential memory leak in ext4_fc_record_regions()
    - ext4: update 'state->fc_regions_size' after successful memory allocation
    - livepatch: fix race between fork and KLP transition
    - ftrace: Properly unset FTRACE_HASH_FL_MOD
    - ftrace: Still disable enabled records marked as disabled
    - ring-buffer: Allow splice to read previous partially read pages
    - ring-buffer: Have the shortest_full queue be the shortest not longest
    - ring-buffer: Check pending waiters when doing wake ups as well
    - ring-buffer: Add ring_buffer_wake_waiters()
    - ring-buffer: Fix race between reset page and reading page
    - tracing: Disable interrupt or preemption before acquiring arch_spinlock_t
    - tracing: Wake up ring buffer waiters on closing of the file
    - tracing: Wake up waiters when tracing is disabled
    - tracing: Add ioctl() to force ring buffer waiters to wake up
    - tracing: Do not free snapshot if tracer is on cmdline
    - tracing: Move duplicate code of trace_kprobe/eprobe.c into header
    - tracing: Add "(fault)" name injection to kernel probes
    - tracing: Fix reading strings from synthetic events
    - rpmsg: char: Avoid double destroy of default endpoint
    - thunderbolt: Explicitly enable lane adapter hotplug events at startup
    - efi: libstub: drop pointless get_memory_map() call
    - media: cedrus: Set the platform driver data earlier
    - media: cedrus: Fix endless loop in cedrus_h265_skip_bits()
    - blk-throttle: fix that io throttle can only work for single bio
    - blk-wbt: call rq_qos_add() after wb_normal is initialized
    - KVM: x86/emulator: Fix handing of POP SS to correctly set interruptibility
    - KVM: nVMX: Unconditionally purge queued/injected events on nested "exit"
    - KVM: nVMX: Don't propagate vmcs12's PERF_GLOBAL_CTRL settings to vmcs02
    - KVM: VMX: Drop bits 31:16 when shoving exception error code into VMCS
    - staging: greybus: audio_helper: remove unused and wrong debugfs usage
    - drm/nouveau/kms/nv140-: Disable interlacing
    - drm/nouveau: fix a use-after-free in nouveau_gem_prime_import_sg_table()
    - drm/i915/gt: Use i915_vm_put on ppgtt_create error paths
    - drm/i915: Fix watermark calculations for gen12+ RC CCS modifier
    - drm/i915: Fix watermark calculations for gen12+ MC CCS modifier
    - drm/i915: Fix watermark calculations for gen12+ CCS+CC modifier
    - drm/i915: Fix watermark calculations for DG2 CCS modifiers
    - drm/i915: Fix watermark calculations for DG2 CCS+CC modifier
    - drm/amd/display: Fix vblank refcount in vrr transition
    - drm/amd/display: explicitly disable psr_feature_enable appropriately
    - smb3: must initialize two ACL struct fields to zero
    - selinux: use "grep -E" instead of "egrep"
    - ima: fix blocking of security.ima xattrs of unsupported algorithms
    - userfaultfd: open userfaultfds with O_RDONLY
    - ntfs3: rework xattr handlers and switch to POSIX ACL VFS helpers
    - thermal: cpufreq_cooling: Check the policy first in
      cpufreq_cooling_register()
    - cpufreq: amd-pstate: Fix initial highest_perf value
    - sh: machvec: Use char[] for section boundaries
    - MIPS: SGI-IP30: Fix platform-device leak in bridge_platform_create()
    - MIPS: SGI-IP27: Fix platform-device leak in bridge_platform_create()
    - erofs: fix order >= MAX_ORDER warning due to crafted negative i_size
    - erofs: use kill_anon_super() to kill super in fscache mode
    - ARM: 9243/1: riscpc: Unbreak the build
    - ARM: 9244/1: dump: Fix wrong pg_level in walk_pmd()
    - ARM: 9247/1: mm: set readonly for MT_MEMORY_RO with ARM_LPAE
    - ACPI: PCC: Release resources on address space setup failure path
    - ACPI: PCC: replace wait_for_completion()
    - ACPI: PCC: Fix Tx acknowledge in the PCC address space handler
    - objtool: Preserve special st_shndx indexes in elf_update_symbol
    - nfsd: Fix a memory leak in an error handling path
    - NFSD: Fix handling of oversized NFSv4 COMPOUND requests
    - x86/paravirt: add extra clobbers with ZERO_CALL_USED_REGS enabled
    - wifi: rtlwifi: 8192de: correct checking of IQK reload
    - wifi: ath10k: add peer map clean up for peer delete in ath10k_sta_state()
    - bpf: Fix non-static bpf_func_proto struct definitions
    - bpf: convert cgroup_bpf.progs to hlist
    - bpf: Cleanup check_refcount_ok
    - leds: lm3601x: Don't use mutex after it was destroyed
    - tsnep: Fix TSNEP_INFO_TX_TIME register define
    - bpf: Fix reference state management for synchronous callbacks
    - wifi: cfg80211: get correct AP link chandef
    - wifi: mac80211: allow bw change during channel switch in mesh
    - bpftool: Fix a wrong type cast in btf_dumper_int
    - audit: explicitly check audit_context->context enum value
    - audit: free audit_proctitle only on task exit
    - esp: choose the correct inner protocol for GSO on inter address family
      tunnels
    - spi: mt7621: Fix an error message in mt7621_spi_probe()
    - x86/resctrl: Fix to restore to original value when re-enabling hardware
      prefetch register
    - xsk: Fix backpressure mechanism on Tx
    - selftests/xsk: Add missing close() on netns fd
    - bpf: Disable preemption when increasing per-cpu map_locked
    - bpf: Propagate error from htab_lock_bucket() to userspace
    - wifi: ath11k: Fix incorrect QMI message ID mappings
    - bpf: Use this_cpu_{inc|dec|inc_return} for bpf_task_storage_busy
    - bpf: Use this_cpu_{inc_return|dec} for prog->active
    - Bluetooth: btusb: mediatek: fix WMT failure during runtime suspend
    - wifi: rtw89: pci: fix interrupt stuck after leaving low power mode
    - wifi: rtw89: pci: correct TX resource checking in low power mode
    - wifi: rtl8xxxu: tighten bounds checking in rtl8xxxu_read_efuse()
    - wifi: wfx: prevent underflow in wfx_send_pds()
    - wifi: rtw88: add missing destroy_workqueue() on error path in
      rtw_core_init()
    - selftests/xsk: Avoid use-after-free on ctx
    - spi: qup: add missing clk_disable_unprepare on error in spi_qup_resume()
    - spi: qup: add missing clk_disable_unprepare on error in
      spi_qup_pm_resume_runtime()
    - wifi: rtl8xxxu: Fix skb misuse in TX queue selection
    - spi: meson-spicc: do not rely on busy flag in pow2 clk ops
    - bpf: btf: fix truncated last_member_type_id in btf_struct_resolve
    - wifi: rtl8xxxu: gen2: Fix mistake in path B IQ calibration
    - wifi: rtl8xxxu: Remove copy-paste leftover in gen2_update_rate_mask
    - wifi: mt76: mt7921e: fix race issue between reset and suspend/resume
    - wifi: mt76: mt7921s: fix race issue between reset and suspend/resume
    - wifi: mt76: mt7921u: fix race issue between reset and suspend/resume
    - wifi: mt76: sdio: fix the deadlock caused by sdio->stat_work
    - wifi: mt76: sdio: poll sta stat when device transmits data
    - wifi: mt76: sdio: fix transmitting packet hangs
    - wifi: mt76: mt7615: add mt7615_mutex_acquire/release in
      mt7615_sta_set_decap_offload
    - wifi: mt76: mt7915: fix possible unaligned access in
      mt7915_mac_add_twt_setup
    - wifi: mt76: connac: fix possible unaligned access in
      mt76_connac_mcu_add_nested_tlv
    - wifi: mt76: mt7921: add mt7921_mutex_acquire at mt7921_[start, stop]_ap
    - wifi: mt76: mt7921: add mt7921_mutex_acquire at mt7921_sta_set_decap_offload
    - wifi: mt76: mt7915: fix mcs value in ht mode
    - wifi: mt76: mt7915: do not check state before configuring implicit beamform
    - wifi: mt76: mt7921e: fix rmmod crash in driver reload test
    - Bluetooth: RFCOMM: Fix possible deadlock on socket shutdown/release
    - net: fs_enet: Fix wrong check in do_pd_setup
    - bpf: Ensure correct locking around vulnerable function find_vpid()
    - wifi: ath11k: Include STA_KEEPALIVE_ARP_RESPONSE TLV header by default
    - Bluetooth: hci_{ldisc,serdev}: check percpu_init_rwsem() failure
    - netfilter: conntrack: fix the gc rescheduling delay
    - netfilter: conntrack: revisit the gc initial rescheduling bias
    - flow_dissector: Do not count vlan tags inside tunnel payload
    - wifi: ath11k: fix failed to find the peer with peer_id 0 when disconnected
    - wifi: ath11k: fix number of VHT beamformee spatial streams
    - mips: dts: ralink: mt7621: fix external phy on GB-PC2
    - x86/microcode/AMD: Track patch allocation size explicitly
    - wifi: ath11k: fix peer addition/deletion error on sta band migration
    - x86/cpu: Include the header of init_ia32_feat_ctl()'s prototype
    - spi: cadence-quadspi: Fix PM disable depth imbalance in cqspi_probe
    - spi: dw: Fix PM disable depth imbalance in dw_spi_bt1_probe
    - spi/omap100k:Fix PM disable depth imbalance in omap1_spi100k_probe
    - skmsg: Schedule psock work if the cached skb exists on the psock
    - cw1200: fix incorrect check to determine if no element is found in list
    - i2c: mlxbf: support lock mechanism
    - Bluetooth: hci_core: Fix not handling link timeouts propertly
    - xfrm: Reinject transport-mode packets through workqueue
    - netfilter: nft_fib: Fix for rpath check with VRF devices
    - spi: s3c64xx: Fix large transfers with DMA
    - wifi: rtl8xxxu: gen2: Enable 40 MHz channel width
    - wifi: rtl8xxxu: Fix AIFS written to REG_EDCA_*_PARAM
    - vhost/vsock: Use kvmalloc/kvfree for larger packets.
    - eth: alx: take rtnl_lock on resume
    - sctp: handle the error returned from sctp_auth_asoc_init_active_key
    - tcp: fix tcp_cwnd_validate() to not forget is_cwnd_limited
    - spi: Ensure that sg_table won't be used after being freed
    - Bluetooth: hci_sync: Fix not indicating power state
    - hwmon: (pmbus/mp2888) Fix sensors readouts for MPS Multi-phase mp2888
      controller
    - net: rds: don't hold sock lock when cancelling work from
      rds_tcp_reset_callbacks()
    - af_unix: Fix memory leaks of the whole sk due to OOB skb.
    - net: prestera: acl: Add check for kmemdup
    - eth: lan743x: reject extts for non-pci11x1x devices
    - bnx2x: fix potential memory leak in bnx2x_tpa_stop()
    - eth: sp7021: fix use after free bug in spl2sw_nvmem_get_mac_address
    - net: wwan: iosm: Call mutex_init before locking it
    - net/ieee802154: reject zero-sized raw_sendmsg()
    - once: add DO_ONCE_SLOW() for sleepable contexts
    - net: mvpp2: fix mvpp2 debugfs leak
    - drm: bridge: adv7511: fix CEC power down control register offset
    - drm: bridge: adv7511: unregister cec i2c device after cec adapter
    - drm/bridge: Avoid uninitialized variable warning
    - drm/mipi-dsi: Detach devices when removing the host
    - drm/bridge: it6505: Power on downstream device in .atomic_enable
    - drm/virtio: Correct drm_gem_shmem_get_sg_table() error handling
    - drm/bridge: tc358767: Add of_node_put() when breaking out of loop
    - drm/bridge: parade-ps8640: Fix regulator supply order
    - drm/dp_mst: fix drm_dp_dpcd_read return value checks
    - drm:pl111: Add of_node_put() when breaking out of
      for_each_available_child_of_node()
    - ASoC: mt6359: fix tests for platform_get_irq() failure
    - drm/msm: Make .remove and .shutdown HW shutdown consistent
    - platform/chrome: fix double-free in chromeos_laptop_prepare()
    - platform/chrome: fix memory corruption in ioctl
    - drm/virtio: Fix same-context optimization
    - ASoC: soc-pcm.c: call __soc_pcm_close() in soc_pcm_close()
    - ASoC: tas2764: Allow mono streams
    - ASoC: tas2764: Drop conflicting set_bias_level power setting
    - ASoC: tas2764: Fix mute/unmute
    - platform/x86: msi-laptop: Fix old-ec check for backlight registering
    - platform/x86: msi-laptop: Fix resource cleanup
    - platform/chrome: cros_ec_typec: Correct alt mode index
    - drm/amdgpu: add missing pci_disable_device() in
      amdgpu_pmops_runtime_resume()
    - drm/bridge: megachips: Fix a null pointer dereference bug
    - drm/bridge: it6505: Fix the order of DP_SET_POWER commands
    - ASoC: rsnd: Add check for rsnd_mod_power_on
    - ASoC: wm_adsp: Handle optional legacy support
    - ALSA: hda: beep: Simplify keep-power-at-enable behavior
    - drm/virtio: set fb_modifiers_not_supported
    - drm/bochs: fix blanking
    - ASoC: SOF: mediatek: mt8195: Import namespace SND_SOC_SOF_MTK_COMMON
    - drm/omap: dss: Fix refcount leak bugs
    - drm/amdgpu: Fix memory leak in hpd_rx_irq_create_workqueue()
    - mmc: au1xmmc: Fix an error handling path in au1xmmc_probe()
    - ASoC: eureka-tlv320: Hold reference returned from of_find_xxx API
    - drm/msm: lookup the ICC paths in both mdp5/dpu and mdss devices
    - drm/msm/dpu: index dpu_kms->hw_vbif using vbif_idx
    - drm/msm/dp: correct 1.62G link rate at dp_catalog_ctrl_config_msa()
    - ALSA: usb-audio: Properly refcounting clock rate
    - drm/vmwgfx: Fix memory leak in vmw_mksstat_add_ioctl()
    - virtio-gpu: fix shift wrapping bug in virtio_gpu_fence_event_create()
    - ASoC: codecs: tx-macro: fix kcontrol put
    - ASoC: da7219: Fix an error handling path in da7219_register_dai_clks()
    - ALSA: dmaengine: increment buffer pointer atomically
    - mmc: wmt-sdmmc: Fix an error handling path in wmt_mci_probe()
    - ASoC: stm32: dfsdm: Fix PM disable depth imbalance in stm32_adfsdm_probe
    - ASoC: stm32: spdifrx: Fix PM disable depth imbalance in stm32_spdifrx_probe
    - ASoC: stm: Fix PM disable depth imbalance in stm32_i2s_probe
    - ASoC: wm8997: Fix PM disable depth imbalance in wm8997_probe
    - ASoC: wm5110: Fix PM disable depth imbalance in wm5110_probe
    - ASoC: wm5102: Fix PM disable depth imbalance in wm5102_probe
    - ASoC: mt6660: Fix PM disable depth imbalance in mt6660_i2c_probe
    - ALSA: hda/hdmi: Don't skip notification handling during PM operation
    - memory: pl353-smc: Fix refcount leak bug in pl353_smc_probe()
    - memory: of: Fix refcount leak bug in of_get_ddr_timings()
    - memory: of: Fix refcount leak bug in of_lpddr3_get_ddr_timings()
    - locks: fix TOCTOU race when granting write lease
    - soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe()
    - soc: qcom: smem_state: Add refcounting for the 'state->of_node'
    - ARM: dts: imx6qdl-kontron-samx6i: hook up DDC i2c bus
    - arm64: dts: renesas: r9a07g044: Fix SCI{Rx,Tx} interrupt types
    - arm64: dts: renesas: r9a07g054: Fix SCI{Rx,Tx} interrupt types
    - arm64: dts: renesas: r9a07g043: Fix SCI{Rx,Tx} interrupt types
    - dt-bindings: clock: exynosautov9: correct clock numbering of peric0/c1
    - ARM: dts: turris-omnia: Fix mpp26 pin name and comment
    - ARM: dts: kirkwood: lsxl: fix serial line
    - ARM: dts: kirkwood: lsxl: remove first ethernet port
    - ia64: export memory_add_physaddr_to_nid to fix cxl build error
    - soc/tegra: fuse: Drop Kconfig dependency on TEGRA20_APB_DMA
    - arm64: dts: ti: k3-j7200: fix main pinmux range
    - ARM: dts: exynos: correct s5k6a3 reset polarity on Midas family
    - ARM: Drop CMDLINE_* dependency on ATAGS
    - ext4: don't run ext4lazyinit for read-only filesystems
    - arm64: ftrace: fix module PLTs with mcount
    - ARM: dts: exynos: fix polarity of VBUS GPIO of Origen
    - iomap: iomap: fix memory corruption when recording errors during writeback
    - iio: adc: at91-sama5d2_adc: fix AT91_SAMA5D2_MR_TRACKTIM_MAX
    - iio: adc: at91-sama5d2_adc: check return status for pressure and touch
    - iio: adc: at91-sama5d2_adc: lock around oversampling and sample freq
    - iio: adc: at91-sama5d2_adc: disable/prepare buffer on suspend/resume
    - iio: inkern: only release the device node when done with it
    - iio: inkern: fix return value in devm_of_iio_channel_get_by_name()
    - iio: ABI: Fix wrong format of differential capacitance channel ABI.
    - iio: magnetometer: yas530: Change data type of hard_offsets to signed
    - RDMA/mlx5: Don't compare mkey tags in DEVX indirect mkey
    - usb: common: debug: Check non-standard control requests
    - clk: meson: Hold reference returned by of_get_parent()
    - clk: st: Hold reference returned by of_get_parent()
    - clk: oxnas: Hold reference returned by of_get_parent()
    - clk: qoriq: Hold reference returned by of_get_parent()
    - clk: berlin: Add of_node_put() for of_get_parent()
    - clk: sprd: Hold reference returned by of_get_parent()
    - clk: tegra: Fix refcount leak in tegra210_clock_init
    - clk: tegra: Fix refcount leak in tegra114_clock_init
    - clk: tegra20: Fix refcount leak in tegra20_clock_init
    - clk: samsung: exynosautov9: correct register offsets of peric0/c1
    - HSI: omap_ssi: Fix refcount leak in ssi_probe
    - HSI: omap_ssi_port: Fix dma_map_sg error check
    - clk: qcom: gcc-sdm660: Use floor ops for SDCC1 clock
    - media: exynos4-is: fimc-is: Add of_node_put() when breaking out of loop
    - tty: xilinx_uartps: Fix the ignore_status
    - media: amphion: insert picture startcode after seek for vc1g format
    - media: amphion: adjust the encoder's value range of gop size
    - media: amphion: don't change the colorspace reported by decoder.
    - media: amphion: fix a bug that vpu core may not resume after suspend
    - media: meson: vdec: add missing clk_disable_unprepare on error in
      vdec_hevc_start()
    - media: uvcvideo: Fix memory leak in uvc_gpio_parse
    - media: uvcvideo: Use entity get_cur in uvc_ctrl_set
    - media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init
    - RDMA/rxe: Fix "kernel NULL pointer dereference" error
    - RDMA/rxe: Fix the error caused by qp->sk
    - clk: mediatek: clk-mt8195-vdo0: Set rate on vdo0_dp_intf0_dp_intf's parent
    - clk: mediatek: clk-mt8195-vdo1: Reparent and set rate on vdo1_dpintf's
      parent
    - clk: mediatek: mt8195-infra_ao: Set pwrmcu clocks as critical
    - misc: ocxl: fix possible refcount leak in afu_ioctl()
    - fpga: prevent integer overflow in dfl_feature_ioctl_set_irq()
    - phy: rockchip-inno-usb2: Return zero after otg sync
    - dmaengine: idxd: avoid deadlock in process_misc_interrupts()
    - dmaengine: hisilicon: Disable channels when unregister hisi_dma
    - dmaengine: hisilicon: Fix CQ head update
    - dmaengine: hisilicon: Add multi-thread support for a DMA channel
    - usb: gadget: f_fs: stricter integer overflow checks
    - dyndbg: fix static_branch manipulation
    - dyndbg: fix module.dyndbg handling
    - dyndbg: let query-modname override actual module name
    - dyndbg: drop EXPORTed dynamic_debug_exec_queries
    - clk: qcom: sm6115: Select QCOM_GDSC
    - mtd: devices: docg3: check the return value of devm_ioremap() in the probe
    - remoteproc: Harden rproc_handle_vdev() against integer overflow
    - phy: amlogic: phy-meson-axg-mipi-pcie-analog: Hold reference returned by
      of_get_parent()
    - phy: phy-mtk-tphy: fix the phy type setting issue
    - mtd: rawnand: intel: Read the chip-select line from the correct OF node
    - mtd: rawnand: intel: Remove undocumented compatible string
    - mtd: rawnand: fsl_elbc: Fix none ECC mode
    - RDMA/irdma: Align AE id codes to correct flush code and event
    - RDMA/irdma: Validate udata inlen and outlen
    - RDMA/srp: Fix srp_abort()
    - RDMA/siw: Always consume all skbuf data in sk_data_ready() upcall.
    - RDMA/siw: Fix QP destroy to wait for all references dropped.
    - ata: fix ata_id_sense_reporting_enabled() and ata_id_has_sense_reporting()
    - ata: fix ata_id_has_devslp()
    - ata: fix ata_id_has_ncq_autosense()
    - ata: fix ata_id_has_dipm()
    - mtd: rawnand: meson: fix bit map use in meson_nfc_ecc_correct()
    - md/raid5: Ensure stripe_fill happens on non-read IO with journal
    - md/raid5: Remove unnecessary bio_put() in raid5_read_one_chunk()
    - RDMA/cm: Use SLID in the work completion as the DLID in responder side
    - IB: Set IOVA/LENGTH on IB_MR in core/uverbs layers
    - xhci: Don't show warning for reinit on known broken suspend
    - usb: gadget: function: fix dangling pnp_string in f_printer.c
    - usb: dwc3: core: fix some leaks in probe
    - drivers: serial: jsm: fix some leaks in probe
    - serial: 8250: Toggle IER bits on only after irq has been set up
    - tty: serial: fsl_lpuart: disable dma rx/tx use flags in lpuart_dma_shutdown
    - phy: qualcomm: call clk_disable_unprepare in the error handling
    - staging: vt6655: fix some erroneous memory clean-up loops
    - slimbus: qcom-ngd-ctrl: allow compile testing without QCOM_RPROC_COMMON
    - slimbus: qcom-ngd: Add error handling in of_qcom_slim_ngd_register
    - firmware: google: Test spinlock on panic path to avoid lockups
    - serial: 8250: Fix restoring termios speed after suspend
    - scsi: libsas: Fix use-after-free bug in smp_execute_task_sg()
    - scsi: pm8001: Fix running_req for internal abort commands
    - scsi: iscsi: Rename iscsi_conn_queue_work()
    - scsi: iscsi: Add recv workqueue helpers
    - scsi: iscsi: Run recv path from workqueue
    - scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername()
    - clk: qcom: apss-ipq6018: mark apcs_alias0_core_clk as critical
    - clk: qcom: gcc-sm6115: Override default Alpha PLL regs
    - RDMA/rxe: Fix resize_finish() in rxe_queue.c
    - fsi: core: Check error number after calling ida_simple_get
    - mfd: intel_soc_pmic: Fix an error handling path in
      intel_soc_pmic_i2c_probe()
    - mfd: fsl-imx25: Fix an error handling path in mx25_tsadc_setup_irq()
    - mfd: lp8788: Fix an error handling path in lp8788_probe()
    - mfd: lp8788: Fix an error handling path in lp8788_irq_init() and
      lp8788_irq_init()
    - mfd: fsl-imx25: Fix check for platform_get_irq() errors
    - mfd: sm501: Add check for platform_driver_register()
    - mfd: da9061: Fix Failed to set Two-Wire Bus Mode.
    - clk: mediatek: mt8183: mfgcfg: Propagate rate changes to parent
    - clk: mediatek: clk-mt8195-mfg: Reparent mfg_bg3d and propagate rate changes
    - clk: mediatek: fix unregister function in mtk_clk_register_dividers cleanup
    - clk: mediatek: Migrate remaining clk_unregister_*() to clk_hw_unregister_*()
    - dmaengine: ioat: stop mod_timer from resurrecting deleted timer in
      __cleanup()
    - usb: mtu3: fix failed runtime suspend in host only mode
    - spmi: pmic-arb: correct duplicate APID to PPID mapping logic
    - clk: vc5: Fix 5P49V6901 outputs disabling when enabling FOD
    - clk: baikal-t1: Fix invalid xGMAC PTP clock divider
    - clk: baikal-t1: Add shared xGMAC ref/ptp clocks internal parent
    - clk: baikal-t1: Add SATA internal ref clock buffer
    - clk: bcm2835: fix bcm2835_clock_rate_from_divisor declaration
    - clk: imx: scu: fix memleak on platform_device_add() fails
    - clk: ti: Balance of_node_get() calls for of_find_node_by_name()
    - clk: ti: dra7-atl: Fix reference leak in of_dra7_atl_clk_probe
    - clk: ast2600: BCLK comes from EPLL
    - mailbox: mpfs: fix handling of the reg property
    - mailbox: mpfs: account for mbox offsets while sending
    - mailbox: bcm-ferxrm-mailbox: Fix error check for dma_map_sg
    - ipc: mqueue: fix possible memory leak in init_mqueue_fs()
    - powerpc/configs: Properly enable PAPR_SCM in pseries_defconfig
    - powerpc/math_emu/efp: Include module.h
    - powerpc/sysdev/fsl_msi: Add missing of_node_put()
    - powerpc/pci_dn: Add missing of_node_put()
    - powerpc/powernv: add missing of_node_put() in opal_export_attrs()
    - cpuidle: riscv-sbi: Fix CPU_PM_CPU_IDLE_ENTER_xyz() macro usage
    - powerpc: Fix fallocate and fadvise64_64 compat parameter combination
    - x86/hyperv: Fix 'struct hv_enlightened_vmcs' definition
    - powerpc/64s: Fix GENERIC_CPU build flags for PPC970 / G5
    - powerpc/64: mark irqs hard disabled in boot paca
    - powerpc/64/interrupt: Fix return to masked context after hard-mask irq
      becomes pending
    - powerpc: Fix SPE Power ISA properties for e500v1 platforms
    - powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe()
    - powerpc/pseries/vas: Pass hw_cpu_id to node associativity HCALL
    - crypto: sahara - don't sleep when in softirq
    - crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr
    - hwrng: arm-smccc-trng - fix NO_ENTROPY handling
    - crypto: ccp - Fail the PSP initialization when writing psp data file failed
    - cgroup: Honor caller's cgroup NS when resolving path
    - hwrng: imx-rngc - Moving IRQ handler registering after
      imx_rngc_irq_mask_clear()
    - crypto: qat - fix default value of WDT timer
    - crypto: hisilicon/qm - fix missing put dfx access
    - cgroup/cpuset: Enable update_tasks_cpumask() on top_cpuset
    - iommu/omap: Fix buffer overflow in debugfs
    - crypto: akcipher - default implementation for setting a private key
    - crypto: ccp - Release dma channels before dmaengine unrgister
    - crypto: inside-secure - Change swab to swab32
    - crypto: qat - fix DMA transfer direction
    - clocksource/drivers/arm_arch_timer: Fix handling of ARM erratum 858921
    - clocksource/drivers/timer-gxp: Add missing error handling in gxp_timer_probe
    - cifs: return correct error in ->calc_signature()
    - iommu/iova: Fix module config properly
    - tracing: kprobe: Fix kprobe event gen test module on exit
    - tracing: kprobe: Make gen test module work in arm and riscv
    - tracing/osnoise: Fix possible recursive locking in stop_per_cpu_kthreads
    - kbuild: remove the target in signal traps when interrupted
    - linux/export: use inline assembler to populate symbol CRCs
    - kbuild: rpm-pkg: fix breakage when V=1 is used
    - crypto: marvell/octeontx - prevent integer overflows
    - crypto: cavium - prevent integer overflow loading firmware
    - random: schedule jitter credit for next jiffy, not in two jiffies
    - thermal/drivers/qcom/tsens-v0_1: Fix MSM8939 fourth sensor hw_id
    - ACPI: APEI: do not add task_work to kernel thread to avoid memory leak
    - f2fs: fix race condition on setting FI_NO_EXTENT flag
    - f2fs: fix to account FS_CP_DATA_IO correctly
    - selftest: tpm2: Add Client.__del__() to close /dev/tpm* handle
    - module: tracking: Keep a record of tainted unloaded modules only
    - fs: dlm: fix race in lowcomms
    - rcu: Avoid triggering strict-GP irq-work when RCU is idle
    - rcu: Back off upon fill_page_cache_func() allocation failure
    - cpufreq: amd_pstate: fix wrong lowest perf fetch
    - ACPI: video: Add Toshiba Satellite/Portege Z830 quirk
    - fortify: Fix __compiletime_strlen() under UBSAN_BOUNDS_LOCAL
    - ACPI: tables: FPDT: Don't call acpi_os_map_memory() on invalid phys address
    - cpufreq: intel_pstate: Add Tigerlake support in no-HWP mode
    - MIPS: BCM47XX: Cast memcmp() of function to (void *)
    - powercap: intel_rapl: fix UBSAN shift-out-of-bounds issue
    - thermal: intel_powerclamp: Use get_cpu() instead of smp_processor_id() to
      avoid crash
    - ARM: decompressor: Include .data.rel.ro.local
    - ACPI: x86: Add a quirk for Dell Inspiron 14 2-in-1 for StorageD3Enable
    - x86/entry: Work around Clang __bdos() bug
    - NFSD: Return nfserr_serverfault if splice_ok but buf->pages have data
    - NFSD: fix use-after-free on source server when doing inter-server copy
    - wifi: ath10k: Set tx credit to one for WCN3990 snoc based devices
    - wifi: brcmfmac: fix invalid address access when enabling SCAN log level
    - bpftool: Clear errno after libcap's checks
    - ice: set tx_tstamps when creating new Tx rings via ethtool
    - net: ethernet: ti: davinci_mdio: Add workaround for errata i2329
    - openvswitch: Fix double reporting of drops in dropwatch
    - openvswitch: Fix overreporting of drops in dropwatch
    - tcp: annotate data-race around tcp_md5sig_pool_populated
    - x86/mce: Retrieve poison range from hardware
    - wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg()
    - thunderbolt: Add back Intel Falcon Ridge end-to-end flow control workaround
    - x86/apic: Don't disable x2APIC if locked
    - net: axienet: Switch to 64-bit RX/TX statistics
    - net-next: Fix IP_UNICAST_IF option behavior for connected sockets
    - xfrm: Update ipcomp_scratches with NULL when freed
    - wifi: ath11k: Register shutdown handler for WCN6750
    - rtw89: ser: leave lps with mutex
    - iavf: Fix race between iavf_close and iavf_reset_task
    - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit()
    - Bluetooth: btintel: Mark Intel controller to support LE_STATES quirk
    - regulator: core: Prevent integer underflow
    - wifi: ath11k: mhi: fix potential memory leak in ath11k_mhi_register()
    - wifi: mt76: mt7921: reset msta->airtime_ac while clearing up hw value
    - wifi: rtw89: free unused skb to prevent memory leak
    - wifi: rtw89: fix rx filter after scan
    - Bluetooth: L2CAP: initialize delayed works at l2cap_chan_create()
    - Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times
    - bnxt_en: replace reset with config timestamps
    - selftests/bpf: Free the allocated resources after test case succeeds
    - can: bcm: check the result of can_send() in bcm_can_tx()
    - wifi: rt2x00: don't run Rt5592 IQ calibration on MT7620
    - wifi: rt2x00: set correct TX_SW_CFG1 MAC register for MT7620
    - wifi: rt2x00: set VGC gain for both chains of MT7620
    - wifi: rt2x00: set SoC wmac clock register
    - wifi: rt2x00: correctly set BBP register 86 for MT7620
    - hwmon: (sht4x) do not overflow clamping operation on 32-bit platforms
    - net: If sock is dead don't access sock's sk_wq in sk_stream_wait_memory
    - bpf: Adjust kprobe_multi entry_ip for CONFIG_X86_KERNEL_IBT
    - bpf: use bpf_prog_pack for bpf_dispatcher
    - Bluetooth: L2CAP: Fix user-after-free
    - i2c: designware-pci: Group AMD NAVI quirk parts together
    - drm/nouveau/nouveau_bo: fix potential memory leak in nouveau_bo_alloc()
    - drm: Use size_t type for len variable in drm_copy_field()
    - drm: Prevent drm_copy_field() to attempt copying a NULL pointer
    - drm/komeda: Fix handling of atomic commits in the atomic_commit_tail hook
    - gpu: lontium-lt9611: Fix NULL pointer dereference in lt9611_connector_init()
    - drm/amd/display: fix overflow on MIN_I64 definition
    - udmabuf: Set ubuf->sg = NULL if the creation of sg table fails
    - platform/x86: pmc_atom: Improve quirk message to be less cryptic
    - drm: bridge: dw_hdmi: only trigger hotplug event on link change
    - drm/amdgpu: Skip the program of MMMC_VM_AGP_* in SRIOV on MMHUB v3_0_0
    - drm/admgpu: Skip CG/PG on SOC21 under SRIOV VF
    - ALSA: usb-audio: Register card at the last interface
    - drm/vc4: vec: Fix timings for VEC modes
    - drm: panel-orientation-quirks: Add quirk for Anbernic Win600
    - drm: panel-orientation-quirks: Add quirk for Aya Neo Air
    - platform/chrome: cros_ec: Notify the PM of wake events during resume
    - platform/x86: hp-wmi: Setting thermal profile fails with 0x06
    - platform/x86: msi-laptop: Change DMI match / alias strings to fix module
      autoloading
    - ALSA: intel-dspconfig: add ES8336 support for AlderLake-PS
    - ASoC: SOF: pci: Change DMI match info to support all Chrome platforms
    - ASoC: SOF: add quirk to override topology mclk_id
    - drm/amdgpu: SDMA update use unlocked iterator
    - drm/amd/display: correct hostvm flag
    - drm/amdgpu: fix initial connector audio value
    - drm/meson: reorder driver deinit sequence to fix use-after-free bug
    - drm/meson: explicitly remove aggregate driver at module unload time
    - drm/meson: remove drm bridges at aggregate driver unbind time
    - drm/dp: Don't rewrite link config when setting phy test pattern
    - drm/amd/display: Remove interface for periodic interrupt 1
    - drm/amd/display: polling vid stream status in hpo dp blank
    - drm/amdkfd: Fix UBSAN shift-out-of-bounds warning
    - ARM: dts: imx6: delete interrupts property if interrupts-extended is set
    - ARM: dts: imx7d-sdb: config the max pressure for tsc2046
    - ARM: dts: imx6q: add missing properties for sram
    - ARM: dts: imx6dl: add missing properties for sram
    - ARM: dts: imx6qp: add missing properties for sram
    - ARM: dts: imx6sl: add missing properties for sram
    - ARM: dts: imx6sll: add missing properties for sram
    - ARM: dts: imx6sx: add missing properties for sram
    - ARM: dts: imx6sl: use tabs for code indent
    - ARM: dts: imx6sx-udoo-neo: don't use multiple blank lines
    - kselftest/arm64: Fix validatation termination record after EXTRA_CONTEXT
    - arm64: dts: imx8mm-kontron: Use the VSELECT signal to switch SD card IO
      voltage
    - arm64: dts: imx8mq-librem5: Add bq25895 as max17055's power supply
    - btrfs: dump extra info if one free space cache has more bitmaps than it
      should
    - btrfs: scrub: properly report super block errors in system log
    - btrfs: scrub: try to fix super block errors
    - btrfs: don't print information about space cache or tree every remount
    - btrfs: call __btrfs_remove_free_space_cache_locked on cache load failure
    - ARM: 9233/1: stacktrace: Skip frame pointer boundary check for
      call_with_stack()
    - ARM: 9234/1: stacktrace: Avoid duplicate saving of exception PC value
    - ARM: 9242/1: kasan: Only map modules if CONFIG_KASAN_VMALLOC=n
    - clk: zynqmp: Fix stack-out-of-bounds in strncpy`
    - media: cx88: Fix a null-ptr-deref bug in buffer_prepare()
    - media: platform: fix some double free in meson-ge2d and mtk-jpeg and s5p-mfc
    - clk: zynqmp: pll: rectify rate rounding in zynqmp_pll_round_rate
    - RDMA/rxe: Delete error messages triggered by incoming Read requests
    - usb: host: xhci-plat: suspend and resume clocks
    - usb: host: xhci-plat: suspend/resume clks for brcm
    - scsi: lpfc: Fix null ndlp ptr dereference in abnormal exit path for GFT_ID
    - dmaengine: ti: k3-udma: Reset UDMA_CHAN_RT byte counters to prevent overflow
    - scsi: 3w-9xxx: Avoid disabling device if failing to enable it
    - nbd: Fix hung when signal interrupts nbd_start_device_ioctl()
    - iommu/arm-smmu-v3: Make default domain type of HiSilicon PTT device to
      identity
    - usb: gadget: uvc: increase worker prio to WQ_HIGHPRI
    - power: supply: adp5061: fix out-of-bounds read in adp5061_get_chg_type()
    - staging: vt6655: fix potential memory leak
    - blk-throttle: prevent overflow while calculating wait time
    - ata: libahci_platform: Sanity check the DT child nodes number
    - bcache: fix set_at_max_writeback_rate() for multiple attached devices
    - soundwire: cadence: Don't overwrite msg->buf during write commands
    - soundwire: intel: fix error handling on dai registration issues
    - HID: roccat: Fix use-after-free in roccat_read()
    - HSI: ssi_protocol: fix potential resource leak in ssip_pn_open()
    - HID: nintendo: check analog user calibration for plausibility
    - eventfd: guard wake_up in eventfd fs calls as well
    - md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d
    - usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info()
    - usb: musb: Fix musb_gadget.c rxstate overflow bug
    - usb: dwc3: core: add gfladj_refclk_lpm_sel quirk
    - arm64: dts: imx8mp: Add snps,gfladj-refclk-lpm-sel quirk to USB nodes
    - usb: dwc3: core: Enable GUCTL1 bit 10 for fixing termination error after
      resume bug
    - Revert "usb: storage: Add quirk for Samsung Fit flash"
    - staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw()
    - staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv()
    - scsi: tracing: Fix compile error in trace_array calls when TRACING is
      disabled
    - ext2: Use kvmalloc() for group descriptor array
    - nvme: handle effects after freeing the request
    - nvme: copy firmware_rev on each init
    - nvmet-tcp: add bounds check on Transfer Tag
    - usb: idmouse: fix an uninit-value in idmouse_open
    - blk-mq: use quiesced elevator switch when reinitializing queues
    - hwmon (occ): Retry for checksum failure
    - fsi: occ: Prevent use after free
    - usb: typec: ucsi: Don't warn on probe deferral
    - clk: bcm2835: Make peripheral PLLC critical
    - clk: bcm2835: Round UART input clock up
    - perf: Skip and warn on unknown format 'configN' attrs
    - perf intel-pt: Fix segfault in intel_pt_print_info() with uClibc
    - perf intel-pt: Fix system_wide dummy event for hybrid
    - mm: hugetlb: fix UAF in hugetlb_handle_userfault
    - net: ieee802154: return -EINVAL for unknown addr type
    - ALSA: usb-audio: Fix last interface check for registration
    - blk-wbt: fix that 'rwb->wc' is always set to 1 in wbt_init()
    - [Config] updateconfigs for MDIO_BITBANG
    - net: ethernet: ti: davinci_mdio: fix build for mdio bitbang uses
    - Revert "drm/amd/display: correct hostvm flag"
    - Revert "net/ieee802154: reject zero-sized raw_sendmsg()"
    - net/ieee802154: don't warn zero-sized raw_sendmsg()
    - powerpc/64s/interrupt: Fix lost interrupts when returning to soft-masked
      context
    - drm/amd/display: Fix build breakage with CONFIG_DEBUG_FS=n
    - kbuild: Add skip_encoding_btf_enum64 option to pahole
    - Kconfig.debug: simplify the dependency of DEBUG_INFO_DWARF4/5
    - Kconfig.debug: add toolchain checks for DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT
    - [Config] updateconfigs for AS_HAS_NON_CONST_LEB128
    - lib/Kconfig.debug: Add check for non-constant .{s,u}leb128 support to DWARF5
    - HID: uclogic: Add missing suffix for digitalizers
    - ext4: continue to expand file system when the target size doesn't reach
    - drm/i915: Rename block_size()/block_offset()
    - drm/i915/bios: Validate fp_timing terminator presence
    - drm/i915/bios: Use hardcoded fp_timing size for generating LFP data pointers
    - Linux 5.19.17

* Kinetic update: v5.19.16 upstream stable release (LP: #1994164)
    - nilfs2: fix use-after-free bug of struct nilfs_root
    - nilfs2: fix leak of nilfs_root in case of writer thread creation failure
    - nilfs2: replace WARN_ONs by nilfs_error for checkpoint acquisition failure
    - ceph: don't truncate file in atomic_open
    - nvme-pci: set min_align_mask before calculating max_hw_sectors
    - random: restore O_NONBLOCK support
    - random: clamp credited irq bits to maximum mixed
    - ALSA: hda: Fix position reporting on Poulsbo
    - ALSA: hda/realtek: Add quirk for HP Zbook Firefly 14 G9 model
    - efi: Correct Macmini DMI match in uefi cert quirk
    - USB: serial: qcserial: add new usb-id for Dell branded EM7455
    - Revert "USB: fixup for merge issue with "usb: dwc3: Don't switch OTG ->
      peripheral if extcon is present""
    - Revert "usb: dwc3: Don't switch OTG -> peripheral if extcon is present"
    - Revert "powerpc/rtas: Implement reentrant rtas call"
    - Revert "crypto: qat - reduce size of mapped region"
    - random: avoid reading two cache lines on irq randomness
    - random: use expired timer rather than wq for mixing fast pool
    - mctp: prevent double key removal and unref
    - Input: xpad - add supported devices as contributed on github
    - Input: xpad - fix wireless 360 controller breaking after suspend
    - misc: pci_endpoint_test: Aggregate params checking for xfer
    - misc: pci_endpoint_test: Fix pci_endpoint_test_{copy,write,read}() panic
    - Linux 5.19.16

* Kinetic update: v5.19.15 upstream stable release (LP: #1994078)
    - sparc: Unbreak the build
    - Makefile.extrawarn: Move -Wcast-function-type-strict to W=1
    - [Config] updateconfigs for CC_HAS_AUTO_VAR_INIT_ZERO_ENABLER
    - hardening: Remove Clang's enable flag for -ftrivial-auto-var-init=zero
    - docs: update mediator information in CoC docs
    - xsk: Inherit need_wakeup flag for shared sockets
    - firmware: arm_scmi: Improve checks in the info_get operations
    - firmware: arm_scmi: Harden accesses to the sensor domains
    - firmware: arm_scmi: Add SCMI PM driver remove routine
    - arm64: dts: rockchip: fix upper usb port on BPI-R2-Pro
    - dmaengine: xilinx_dma: Fix devm_platform_ioremap_resource error handling
    - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property
    - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API
      failure
    - wifi: iwlwifi: don't spam logs with NSS>2 messages
    - ARM: dts: fix Moxa SDIO 'compatible', remove 'sdhci' misnomer
    - drm/amdgpu/mes: zero the sdma_hqd_mask of 2nd SDMA engine for SDMA 6.0.1
    - scsi: qedf: Fix a UAF bug in __qedf_probe()
    - net/ieee802154: fix uninit value bug in dgram_sendmsg
    - net: marvell: prestera: add support for for Aldrin2
    - ALSA: hda/hdmi: Fix the converter reuse for the silent stream
    - um: Cleanup syscall_handler_t cast in syscalls_32.h
    - um: Cleanup compiler warning in arch/x86/um/tls_32.c
    - gpio: ftgpio010: Make irqchip immutable
    - arch: um: Mark the stack non-executable to fix a binutils warning
    - net: atlantic: fix potential memory leak in aq_ndev_close()
    - KVM: s390: Pass initialized arg even if unused
    - drm/amd/display: Fix double cursor on non-video RGB MPO
    - drm/amd/display: Assume an LTTPR is always present on fixed_vs links
    - drm/amd/display: update gamut remap if plane has changed
    - drm/amd/display: skip audio setup when audio stream is enabled
    - drm/amd/display: Fix DP MST timeslot issue when fallback happened
    - drm/amd/display: increase dcn315 pstate change latency
    - perf/x86/intel: Fix unchecked MSR access error for Alder Lake N
    - don't use __kernel_write() on kmap_local_page()
    - i2c: davinci: fix PM disable depth imbalance in davinci_i2c_probe
    - usb: mon: make mmapped memory read only
    - USB: serial: ftdi_sio: fix 300 bps rate for SIO
    - gpiolib: acpi: Add support to ignore programming an interrupt
    - gpiolib: acpi: Add a quirk for Asus UM325UAZ
    - mmc: core: Replace with already defined values for readability
    - mmc: core: Terminate infinite loop in SD-UHS voltage switch
    - rpmsg: qcom: glink: replace strncpy() with strscpy_pad()
    - bpf: Gate dynptr API behind CAP_BPF
    - net: ethernet: mtk_eth_soc: fix state in __mtk_foe_entry_clear
    - bpf: Fix resetting logic for unreferenced kptrs
    - Bluetooth: use hdev->workqueue when queuing hdev->{cmd,ncmd}_timer works
    - Revert "clk: ti: Stop using legacy clkctrl names for omap4 and 5"
    - Linux 5.19.15

* Kinetic update: v5.19.14 upstream stable release (LP: #1994076)
    - riscv: make t-head erratas depend on MMU
    - tools/perf: Fix out of bound access to cpu mask array
    - perf record: Fix cpu mask bit setting for mixed mmaps
    - counter: 104-quad-8: Utilize iomap interface
    - counter: 104-quad-8: Implement and utilize register structures
    - counter: 104-quad-8: Fix skipped IRQ lines during events configuration
    - uas: add no-uas quirk for Hiksemi usb_disk
    - usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS
    - uas: ignore UAS for Thinkplus chips
    - usb: typec: ucsi: Remove incorrect warning
    - thunderbolt: Explicitly reset plug events delay back to USB4 spec value
    - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455
    - Input: snvs_pwrkey - fix SNVS_HPVIDR1 register address
    - can: c_can: don't cache TX messages for C_CAN cores
    - clk: ingenic-tcu: Properly enable registers before accessing timers
    - wifi: mac80211: ensure vif queues are operational after start
    - x86/sgx: Do not fail on incomplete sanitization on premature stop of ksgxd
    - frontswap: don't call ->init if no ops are registered
    - ARM: dts: integrator: Tag PCI host with device_type
    - ntfs: fix BUG_ON in ntfs_lookup_inode_by_name()
    - x86/uaccess: avoid check_object_size() in copy_from_user_nmi()
    - mm/damon/dbgfs: fix memory leak when using debugfs_lookup()
    - net: mt7531: only do PLL once after the reset
    - Revert "firmware: arm_scmi: Add clock management to the SCMI power domain"
    - powerpc/64s/radix: don't need to broadcast IPI for radix pmd collapse flush
    - drm/i915/gt: Restrict forced preemption to the active context
    - drm/amdgpu: Add amdgpu suspend-resume code path under SRIOV
    - vduse: prevent uninitialized memory accesses
    - libata: add ATA_HORKAGE_NOLPM for Pioneer BDR-207M and BDR-205
    - mm: fix BUG splat with kvmalloc + GFP_ATOMIC
    - mptcp: factor out __mptcp_close() without socket lock
    - mptcp: fix unreleased socket in accept queue
    - mmc: moxart: fix 4-bit bus width and remove 8-bit bus width
    - mmc: hsq: Fix data stomping during mmc recovery
    - mm: gup: fix the fast GUP race against THP collapse
    - mm/page_alloc: fix race condition between build_all_zonelists and page
      allocation
    - mm: prevent page_frag_alloc() from corrupting the memory
    - mm/page_isolation: fix isolate_single_pageblock() isolation behavior
    - mm: fix dereferencing possible ERR_PTR
    - mm/migrate_device.c: flush TLB while holding PTL
    - mm/migrate_device.c: add missing flush_cache_page()
    - mm/migrate_device.c: copy pte dirty bit to page
    - mm: fix madivse_pageout mishandling on non-LRU page
    - mm: bring back update_mmu_cache() to finish_fault()
    - mm/hugetlb: correct demote page offset logic
    - mm,hwpoison: check mm when killing accessing process
    - media: dvb_vb2: fix possible out of bound access
    - media: rkvdec: Disable H.264 error detection
    - media: mediatek: vcodec: Drop platform_get_resource(IORESOURCE_IRQ)
    - media: v4l2-compat-ioctl32.c: zero buffer passed to
      v4l2_compat_get_array_args()
    - ARM: dts: am33xx: Fix MMCHS0 dma properties
    - reset: imx7: Fix the iMX8MP PCIe PHY PERST support
    - ARM: dts: am5748: keep usb4_tm disabled
    - soc: sunxi: sram: Actually claim SRAM regions
    - soc: sunxi: sram: Prevent the driver from being unbound
    - soc: sunxi: sram: Fix probe function ordering issues
    - soc: sunxi: sram: Fix debugfs info for A64 SRAM C
    - ASoC: imx-card: Fix refcount issue with of_node_put
    - clk: microchip: mpfs: fix clk_cfg array bounds violation
    - clk: microchip: mpfs: make the rtc's ahb clock critical
    - arm64: dts: qcom: sm8350: fix UFS PHY serdes size
    - ASoC: tas2770: Reinit regcache on reset
    - drm/bridge: lt8912b: add vsync hsync
    - drm/bridge: lt8912b: set hdmi or dvi mode
    - drm/bridge: lt8912b: fix corrupted image output
    - net: macb: Fix ZynqMP SGMII non-wakeup source resume failure
    - Revert "drm: bridge: analogix/dp: add panel prepare/unprepare in
      suspend/resume time"
    - Input: melfas_mip4 - fix return value check in mip4_probe()
    - gpio: mvebu: Fix check for pwm support on non-A8K platforms
    - perf parse-events: Break out tracepoint and printing
    - perf print-events: Fix "perf list" can not display the PMU prefix for some
      hybrid cache events
    - perf parse-events: Remove "not supported" hybrid cache events
    - usbnet: Fix memory leak in usbnet_disconnect()
    - net: sched: act_ct: fix possible refcount leak in tcf_ct_init()
    - cxgb4: fix missing unlock on ETHOFLD desc collect fail path
    - net/mlxbf_gige: Fix an IS_ERR() vs NULL bug in mlxbf_gige_mdio_probe
    - nvme: Fix IOC_PR_CLEAR and IOC_PR_RELEASE ioctls for nvme devices
    - wifi: cfg80211: fix MCS divisor value
    - wifi: mac80211: fix regression with non-QoS drivers
    - wifi: mac80211: fix memory corruption in minstrel_ht_update_rates()
    - net: stmmac: power up/down serdes in stmmac_open/release
    - net: phy: Don't WARN for PHY_UP state in mdio_bus_phy_resume()
    - selftests: Fix the if conditions of in test_extra_filter()
    - ice: xsk: change batched Tx descriptor cleaning
    - ice: xsk: drop power of 2 ring size restriction for AF_XDP
    - vdpa/ifcvf: fix the calculation of queuepair
    - virtio-blk: Fix WARN_ON_ONCE in virtio_queue_rq()
    - vdpa/mlx5: Fix MQ to support non power of two num queues
    - clk: imx: imx6sx: remove the SET_RATE_PARENT flag for QSPI clocks
    - drm/i915/gt: Perf_limit_reasons are only available for Gen11+
    - clk: iproc: Do not rely on node name for correct PLL setup
    - clk: imx93: drop of_match_ptr
    - net: mscc: ocelot: fix tagged VLAN refusal while under a VLAN-unaware bridge
    - net: ethernet: mtk_eth_soc: fix mask of RX_DMA_GET_SPORT{,_V2}
    - perf test: Fix test case 87 ("perf record tests") for hybrid systems
    - perf tests record: Fail the test if the 'errs' counter is not zero
    - KVM: x86: Hide IA32_PLATFORM_DCA_CAP[31:0] from the guest
    - x86/cacheinfo: Add a cpu_llc_shared_mask() UP variant
    - x86/alternative: Fix race in try_get_desc()
    - damon/sysfs: fix possible memleak on damon_sysfs_add_target
    - Linux 5.19.14

* Kinetic update: v5.19.13 upstream stable release (LP: #1994075)
    - Linux 5.19.13

* Kinetic update: v5.19.12 upstream stable release (LP: #1994074)
    - smb3: Move the flush out of smb2_copychunk_range() into its callers
    - smb3: fix temporary data corruption in collapse range
    - smb3: fix temporary data corruption in insert range
    - usb: add quirks for Lenovo OneLink+ Dock
    - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio
    - smb3: use filemap_write_and_wait_range instead of filemap_write_and_wait
    - Revert "usb: add quirks for Lenovo OneLink+ Dock"
    - Revert "usb: gadget: udc-xilinx: replace memcpy with memcpy_toio"
    - xfrm: fix XFRMA_LASTUSED comment
    - block: remove QUEUE_FLAG_DEAD
    - block: stop setting the nomerges flags in blk_cleanup_queue
    - block: simplify disk shutdown
    - scsi: core: Fix a use-after-free
    - drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES
    - USB: core: Fix RST error in hub.c
    - USB: serial: option: add Quectel BG95 0x0203 composition
    - USB: serial: option: add Quectel RM520N
    - ALSA: core: Fix double-free at snd_card_new()
    - ALSA: hda/tegra: set depop delay for tegra
    - ALSA: hda: Fix hang at HD-audio codec unbinding due to refcount saturation
    - ALSA: hda: Fix Nvidia dp infoframe
    - ALSA: hda: add Intel 5 Series / 3400 PCI DID
    - ALSA: hda/realtek: Add quirk for Huawei WRT-WX9
    - ALSA: hda/realtek: Enable 4-speaker output Dell Precision 5570 laptop
    - ALSA: hda/realtek: Re-arrange quirk table entries
    - ALSA: hda/realtek: Add pincfg for ASUS G513 HP jack
    - ALSA: hda/realtek: Add pincfg for ASUS G533Z HP jack
    - ALSA: hda/realtek: Add quirk for ASUS GA503R laptop
    - ALSA: hda/realtek: Enable 4-speaker output Dell Precision 5530 laptop
    - ALSA: hda/realtek: Add a quirk for HP OMEN 16 (8902) mute LED
    - iommu/vt-d: Check correct capability for sagaw determination
    - exfat: fix overflow for large capacity partition
    - btrfs: fix hang during unmount when stopping block group reclaim worker
    - btrfs: fix hang during unmount when stopping a space reclaim worker
    - btrfs: zoned: wait for extent buffer IOs before finishing a zone
    - libperf evlist: Fix polling of system-wide events
    - media: flexcop-usb: fix endpoint type check
    - usb: dwc3: core: leave default DMA if the controller does not support 64-bit
      DMA
    - thunderbolt: Add support for Intel Maple Ridge single port controller
    - efi: x86: Wipe setup_data on pure EFI boot
    - efi: libstub: check Shim mode using MokSBStateRT
    - wifi: mt76: fix reading current per-tid starting sequence number for
      aggregation
    - gpio: mockup: fix NULL pointer dereference when removing debugfs
    - gpio: mockup: Fix potential resource leakage when register a chip
    - gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully
    - riscv: fix a nasty sigreturn bug...
    - riscv: fix RISCV_ISA_SVPBMT kconfig dependency warning
    - drm/i915/gem: Flush contexts on driver release
    - drm/i915/gem: Really move i915_gem_context.link under ref protection
    - xen/xenbus: fix xenbus_setup_ring()
    - kasan: call kasan_malloc() from __kmalloc_*track_caller()
    - can: flexcan: flexcan_mailbox_read() fix return value for drop = true
    - net: mana: Add rmb after checking owner bits
    - mm/slub: fix to return errno if kmalloc() fails
    - mm: slub: fix flush_cpu_slab()/__free_slab() invocations in task context.
    - KVM: x86: Reinstate kvm_vcpu_arch.guest_supported_xcr0
    - KVM: x86: Always enable legacy FP/SSE in allowed user XFEATURES
    - KVM: x86: Inject #UD on emulated XSETBV if XSAVES isn't enabled
    - perf/arm-cmn: Add more bits to child node address offset field
    - arm64: topology: fix possible overflow in amu_fie_setup()
    - vmlinux.lds.h: CFI: Reduce alignment of jump-table to function alignment
    - batman-adv: Fix hang up with small MTU hard-interface
    - firmware: arm_scmi: Harden accesses to the reset domains
    - firmware: arm_scmi: Fix the asynchronous reset requests
    - arm64: dts: rockchip: Lower sd speed on quartz64-b
    - arm64: dts: rockchip: Pull up wlan wake# on Gru-Bob
    - arm64: dts: rockchip: Fix typo in lisense text for PX30.Core
    - drm/mediatek: dsi: Add atomic {destroy,duplicate}_state, reset callbacks
    - arm64: dts: imx8mm: Reverse CPLD_Dn GPIO label mapping on MX8Menlo
    - arm64: dts: rockchip: Set RK3399-Gru PCLK_EDP to 24 MHz
    - arm64: dts: imx8mn: remove GPU power domain reset
    - arm64: dts: imx8ulp: add #reset-cells for pcc
    - dmaengine: ti: k3-udma-private: Fix refcount leak bug in of_xudma_dev_get()
    - arm64: dts: rockchip: fix property for usb2 phy supply on rock-3a
    - arm64: dts: rockchip: fix property for usb2 phy supply on rk3568-evb1-v10
    - arm64: dts: rockchip: Remove 'enable-active-low' from rk3399-puma
    - arm64: dts: rockchip: Remove 'enable-active-low' from rk3566-quartz64-a
    - arm64: dts: imx8mm-verdin: extend pmic voltages
    - netfilter: nf_conntrack_sip: fix ct_sip_walk_headers
    - netfilter: nf_conntrack_irc: Tighten matching on DCC message
    - netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()
    - ice: Don't double unplug aux on peer initiated reset
    - ice: Fix crash by keep old cfg when update TCs more than queues
    - iavf: Fix cached head and tail value for iavf_get_tx_pending
    - ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header
    - net: core: fix flow symmetric hash
    - wifi: iwlwifi: Mark IWLMEI as broken
    - [Config] updateconfigs for IWLMEI
    - arm64: dts: tqma8mqml: Include phy-imx8-pcie.h header
    - drm/mediatek: Fix wrong dither settings
    - arm64: dts: imx8mp-venice-gw74xx: fix CAN STBY polarity
    - arm64: dts: imx8mp-venice-gw74xx: fix ksz9477 cpu port
    - ARM: dts: lan966x: Fix the interrupt number for internal PHYs
    - net: phy: aquantia: wait for the suspend/resume operations to finish
    - arm64: dts: imx8mp-venice-gw74xx: fix port/phy validation
    - scsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts()
    - scsi: mpt3sas: Fix return value check of dma_get_required_mask()
    - net: bonding: Share lacpdu_mcast_addr definition
    - net: bonding: Unsync device addresses on ndo_stop
    - net: team: Unsync device addresses on ndo_stop
    - drm/panel: simple: Fix innolux_g121i1_l01 bus_format
    - mm/slab_common: fix possible double free of kmem_cache
    - MIPS: lantiq: export clk_get_io() for lantiq_wdt.ko
    - MIPS: Loongson32: Fix PHY-mode being left unspecified
    - um: fix default console kernel parameter
    - iavf: Fix bad page state
    - mlxbf_gige: clear MDIO gateway lock after read
    - i40e: Fix set max_tx_rate when it is lower than 1 Mbps
    - netdevsim: Fix hwstats debugfs file permissions
    - sfc: fix TX channel offset when using legacy interrupts
    - sfc: fix null pointer dereference in efx_hard_start_xmit
    - bnxt_en: fix flags to check for supported fw version
    - gve: Fix GFP flags when allocing pages
    - drm/hisilicon: Add depends on MMU
    - of: mdio: Add of_node_put() when breaking out of for_each_xx
    - net: ipa: properly limit modem routing table use
    - sfc/siena: fix TX channel offset when using legacy interrupts
    - sfc/siena: fix null pointer dereference in efx_hard_start_xmit
    - wireguard: ratelimiter: disable timings test by default
    - wireguard: netlink: avoid variable-sized memcpy on sockaddr
    - net: enetc: move enetc_set_psfp() out of the common enetc_set_features()
    - net: enetc: deny offload of tc-based TSN features on VF interfaces
    - ipv6: Fix crash when IPv6 is administratively disabled
    - net/sched: taprio: avoid disabling offload when it was never enabled
    - net/sched: taprio: make qdisc_leaf() see the per-netdev-queue pfifo child
      qdiscs
    - ice: config netdev tc before setting queues number
    - ice: Fix interface being down after reset with link-down-on-close flag on
    - netfilter: nf_tables: fix nft_counters_enabled underflow at
      nf_tables_addchain()
    - netfilter: nf_tables: fix percpu memory leak at nf_tables_addchain()
    - netfilter: ebtables: fix memory leak when blob is malformed
    - netfilter: nf_ct_ftp: fix deadlock when nat rewrite is needed
    - net: ravb: Fix PHY state warning splat during system resume
    - net: sh_eth: Fix PHY state warning splat during system resume
    - gpio: tqmx86: fix uninitialized variable girq
    - can: gs_usb: gs_can_open(): fix race dev->can.state condition
    - perf stat: Fix BPF program section name
    - perf stat: Fix cpu map index in bperf cgroup code
    - perf jit: Include program header in ELF files
    - perf kcore_copy: Do not check /proc/modules is unchanged
    - perf tools: Honor namespace when synthesizing build-ids
    - drm/mediatek: dsi: Move mtk_dsi_stop() call back to mtk_dsi_poweroff()
    - ice: Fix ice_xdp_xmit() when XDP TX queue number is not sufficient
    - net/smc: Stop the CLC flow if no link to map buffers on
    - net: phy: micrel: fix shared interrupt on LAN8814
    - bonding: fix NULL deref in bond_rr_gen_slave_id
    - net: sunhme: Fix packet reception for len < RX_COPY_THRESHOLD
    - net: sched: fix possible refcount leak in tc_new_tfilter()
    - bnxt: prevent skb UAF after handing over to PTP worker
    - selftests: forwarding: add shebang for sch_red.sh
    - io_uring: ensure that cached task references are always put on exit
    - serial: fsl_lpuart: Reset prior to registration
    - serial: Create uart_xmit_advance()
    - serial: tegra: Use uart_xmit_advance(), fixes icount.tx accounting
    - serial: tegra-tcu: Use uart_xmit_advance(), fixes icount.tx accounting
    - cgroup: cgroup_get_from_id() must check the looked-up kn is a directory
    - phy: marvell: phy-mvebu-a3700-comphy: Remove broken reset support
    - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup
    - blk-mq: fix error handling in __blk_mq_alloc_disk
    - block: call blk_mq_exit_queue from disk_release for never added disks
    - block: Do not call blk_put_queue() if gendisk allocation fails
    - Drivers: hv: Never allocate anything besides framebuffer from framebuffer
      memory region
    - drm/gma500: Fix BUG: sleeping function called from invalid context errors
    - drm/gma500: Fix WARN_ON(lock->magic != lock) error
    - drm/gma500: Fix (vblank) IRQs not working after suspend/resume
    - gpio: ixp4xx: Make irqchip immutable
    - drm/amd/pm: disable BACO entry/exit completely on several sienna cichlid
      cards
    - drm/amdgpu: change the alignment size of TMR BO to 1M
    - drm/amdgpu: add HDP remap functionality to nbio 7.7
    - drm/amdgpu: Skip reset error status for psp v13_0_0
    - drm/amd/display: Limit user regamma to a valid value
    - drm/amd/display: Reduce number of arguments of dml31's
      CalculateWatermarksAndDRAMSpeedChangeSupport()
    - drm/amd/display: Reduce number of arguments of dml31's
      CalculateFlipSchedule()
    - drm/amd/display: Mark dml30's UseMinimumDCFCLK() as noinline for stack usage
    - drm/rockchip: Fix return type of cdn_dp_connector_mode_valid
    - gpio: mt7621: Make the irqchip immutable
    - pmem: fix a name collision
    - fsdax: Fix infinite loop in dax_iomap_rw()
    - workqueue: don't skip lockdep work dependency in cancel_work_sync()
    - i2c: imx: If pm_runtime_get_sync() returned 1 device access is possible
    - i2c: mlxbf: incorrect base address passed during io write
    - i2c: mlxbf: prevent stack overflow in mlxbf_i2c_smbus_start_transaction()
    - i2c: mlxbf: Fix frequency calculation
    - i2c: mux: harden i2c_mux_alloc() against integer overflows
    - drm/amdgpu: don't register a dirty callback for non-atomic
    - certs: make system keyring depend on built-in x509 parser
    - Makefile.debug: set -g unconditional on CONFIG_DEBUG_INFO_SPLIT
    - Makefile.debug: re-enable debug info for .S files
    - devdax: Fix soft-reservation memory description
    - ext4: fix bug in extents parsing when eh_entries == 0 and eh_depth > 0
    - ext4: limit the number of retries after discarding preallocations blocks
    - ext4: make mballoc try target group first even with mb_optimize_scan
    - ext4: avoid unnecessary spreading of allocations among groups
    - ext4: use locality group preallocation for small closed files
    - ext4: use buckets for cr 1 block scan instead of rbtree
    - Revert "block: freeze the queue earlier in del_gendisk"
    - ext4: fixup possible uninitialized variable access in
      ext4_mb_choose_next_group_cr1()
    - ext4: make directory inode spreading reflect flexbg size
    - Linux 5.19.12

* Kinetic update: v5.19.11 upstream stable release (LP: #1994070)
    - of: fdt: fix off-by-one error in unflatten_dt_nodes()
    - pinctrl: qcom: sc8180x: Fix gpio_wakeirq_map
    - pinctrl: qcom: sc8180x: Fix wrong pin numbers
    - pinctrl: rockchip: Enhance support for IRQ_TYPE_EDGE_BOTH
    - pinctrl: sunxi: Fix name for A100 R_PIO
    - SUNRPC: Fix call completion races with call_decode()
    - NFSv4: Turn off open-by-filehandle and NFS re-export for NFSv4.0
    - gpio: mpc8xxx: Fix support for IRQ_TYPE_LEVEL_LOW flow_type in mpc85xx
    - NFSv4.2: Update mode bits after ALLOCATE and DEALLOCATE
    - Revert "SUNRPC: Remove unreachable error condition"
    - drm/panel-edp: Fix delays for Innolux N116BCA-EA1
    - drm/meson: Correct OSD1 global alpha value
    - drm/meson: Fix OSD1 RGB to YCbCr coefficient
    - drm/rockchip: vop2: Fix eDP/HDMI sync polarities
    - drm/i915/vdsc: Set VDSC PIC_HEIGHT before using for DP DSC
    - drm/i915/guc: Don't update engine busyness stats too frequently
    - drm/i915/guc: Cancel GuC engine busyness worker synchronously
    - block: blk_queue_enter() / __bio_queue_enter() must return -EAGAIN for
      nowait
    - parisc: ccio-dma: Add missing iounmap in error path in ccio_probe()
    - of/device: Fix up of_dma_configure_id() stub
    - io_uring/msg_ring: check file type before putting
    - cifs: revalidate mapping when doing direct writes
    - cifs: don't send down the destination address to sendmsg for a SOCK_STREAM
    - cifs: always initialize struct msghdr smb_msg completely
    - blk-lib: fix blkdev_issue_secure_erase
    - parisc: Allow CONFIG_64BIT with ARCH=parisc
    - tools/include/uapi: Fix <asm/errno.h> for parisc and xtensa
    - drm/i915/gt: Fix perf limit reasons bit positions
    - drm/i915: Set correct domains values at _i915_vma_move_to_active
    - drm/amdgpu: make sure to init common IP before gmc
    - drm/amdgpu: Don't enable LTR if not supported
    - drm/amdgpu: move nbio ih_doorbell_range() into ih code for vega
    - drm/amdgpu: move nbio sdma_doorbell_range() into sdma code for vega
    - net: Find dst with sk's xfrm policy not ctl_sk
    - dt-bindings: apple,aic: Fix required item "apple,fiq-index" in affinity
      description
    - cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all()
    - ALSA: hda/sigmatel: Keep power up while beep is enabled
    - ALSA: hda/sigmatel: Fix unused variable warning for beep power change
    - Linux 5.19.11

* Kinetic update: v5.19.10 upstream stable release (LP: #1994069)
    - iommu/vt-d: Fix kdump kernels boot failure with scalable mode
    - net/mlx5: Introduce ifc bits for using software vhca id
    - net/mlx5: Use software VHCA id when it's supported
    - RDMA/mlx5: Rely on RoCE fw cap instead of devlink when setting profile
    - RDMA/mlx5: Add a umr recovery flow
    - RDMA/mlx5: Fix UMR cleanup on error flow of driver init
    - ACPI: resource: skip IRQ override on AMD Zen platforms
    - Input: goodix - add support for GT1158
    - platform/surface: aggregator_registry: Add support for Surface Laptop Go 2
    - drm/msm/rd: Fix FIFO-full deadlock
    - peci: cpu: Fix use-after-free in adev_release()
    - kvm: x86: mmu: Always flush TLBs when enabling dirty logging
    - dt-bindings: iio: gyroscope: bosch,bmg160: correct number of pins
    - HID: ishtp-hid-clientHID: ishtp-hid-client: Fix comment typo
    - hid: intel-ish-hid: ishtp: Fix ishtp client sending disordered message
    - Bluetooth: MGMT: Fix Get Device Flags
    - tg3: Disable tg3 device on system reboot to avoid triggering AER
    - r8152: add PID for the Lenovo OneLink+ Dock
    - gpio: mockup: remove gpio debugfs when remove device
    - ieee802154: cc2520: add rc code in cc2520_tx()
    - Input: iforce - add support for Boeder Force Feedback Wheel
    - drm/amdgpu: disable FRU access on special SIENNA CICHLID card
    - drm/amd/pm: use vbios carried pptable for all SMU13.0.7 SKUs
    - nvme-pci: add NVME_QUIRK_BOGUS_NID for Lexar NM610
    - nvmet-tcp: fix unhandled tcp states in nvmet_tcp_state_change()
    - drm/amd/amdgpu: skip ucode loading if ucode_size == 0
    - net: dsa: hellcreek: Print warning only once
    - perf/arm_pmu_platform: fix tests for platform_get_irq() failure
    - platform/x86: acer-wmi: Acer Aspire One AOD270/Packard Bell Dot keymap fixes
    - usb: storage: Add ASUS <0x0b05:0x1932> to IGNORE_UAS
    - platform/x86: asus-wmi: Increase FAN_CURVE_BUF_LEN to 32
    - LoongArch: Fix section mismatch due to acpi_os_ioremap()
    - LoongArch: Fix arch_remove_memory() undefined build error
    - gpio: 104-dio-48e: Make irq_chip immutable
    - gpio: 104-idio-16: Make irq_chip immutable
    - RDMA/irdma: Use s/g array in post send only when its valid
    - Input: goodix - add compatible string for GT1158
    - Linux 5.19.10

* Kinetic update: v5.19.9 upstream stable release (LP: #1994068)
    - efi: libstub: Disable struct randomization
    - efi: capsule-loader: Fix use-after-free in efi_capsule_write
    - wifi: mt76: mt7921e: fix crash in chip reset fail
    - wifi: iwlegacy: 4965: corrected fix for potential off-by-one overflow in
      il4965_rs_fill_link_cmd()
    - fs: only do a memory barrier for the first set_buffer_uptodate()
    - soc: fsl: select FSL_GUTS driver for DPIO
    - Revert "mm: kmemleak: take a full lowmem check in kmemleak_*_phys()"
    - scsi: qla2xxx: Disable ATIO interrupt coalesce for quad port ISP27XX
    - scsi: core: Allow the ALUA transitioning state enough time
    - scsi: megaraid_sas: Fix double kfree()
    - drm/gem: Fix GEM handle release errors
    - drm/amdgpu: Move psp_xgmi_terminate call from amdgpu_xgmi_remove_device to
      psp_hw_fini
    - drm/amdgpu: fix hive reference leak when adding xgmi device
    - drm/amdgpu: Check num_gfx_rings for gfx v9_0 rb setup.
    - drm/amdgpu: Remove the additional kfd pre reset call for sriov
    - drm/radeon: add a force flush to delay work when radeon
    - scsi: ufs: core: Reduce the power mode change timeout
    - Revert "parisc: Show error if wrong 32/64-bit compiler is being used"
    - parisc: ccio-dma: Handle kmalloc failure in ccio_init_resources()
    - parisc: Add runtime check to prevent PA2.0 kernels on PA1.x machines
    - [Config] updateconfigs for ARM64_ERRATUM_2457168
    - arm64: errata: add detection for AMEVCNTR01 incrementing incorrectly
    - netfilter: conntrack: work around exceeded receive window
    - thermal/int340x_thermal: handle data_vault when the value is ZERO_SIZE_PTR
    - cpufreq: check only freq_table in __resolve_freq()
    - net/core/skbuff: Check the return value of skb_copy_bits()
    - md: Flush workqueue md_rdev_misc_wq in md_alloc()
    - fbdev: omapfb: Fix tests for platform_get_irq() failure
    - fbdev: fbcon: Destroy mutex on freeing struct fb_info
    - fbdev: chipsfb: Add missing pci_disable_device() in chipsfb_pci_init()
    - x86/sev: Mark snp_abort() noreturn
    - drm/amdgpu: add sdma instance check for gfx11 CGCG
    - drm/amdgpu: mmVM_L2_CNTL3 register not initialized correctly
    - ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC
    - ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc()
    - ALSA: hda: Once again fix regression of page allocations with IOMMU
    - ALSA: aloop: Fix random zeros in capture data when using jiffies timer
    - ALSA: usb-audio: Clear fixed clock rate at closing EP
    - ALSA: usb-audio: Fix an out-of-bounds bug in
      __snd_usb_parse_audio_interface()
    - tracefs: Only clobber mode/uid/gid on remount if asked
    - tracing: hold caller_addr to hardirq_{enable,disable}_ip
    - tracing: Fix to check event_mutex is held while accessing trigger list
    - btrfs: zoned: set pseudo max append zone limit in zone emulation mode
    - btrfs: zoned: fix API misuse of zone finish waiting
    - vfio/type1: Unpin zero pages
    - kprobes: Prohibit probes in gate area
    - perf: RISC-V: fix access beyond allocated array
    - debugfs: add debugfs_lookup_and_remove()
    - sched/debug: fix dentry leak in update_sched_domain_debugfs
    - drm/amd/display: fix memory leak when using debugfs_lookup()
    - driver core: fix driver_set_override() issue with empty strings
    - nvmet: fix a use-after-free
    - drm/i915/bios: Copy the whole MIPI sequence block
    - drm/i915/slpc: Let's fix the PCODE min freq table setup for SLPC
    - scsi: mpt3sas: Fix use-after-free warning
    - scsi: lpfc: Add missing destroy_workqueue() in error path
    - cgroup: Elide write-locking threadgroup_rwsem when updating csses on an
      empty subtree
    - cgroup: Fix threadgroup_rwsem <-> cpus_read_lock() deadlock
    - cifs: remove useless parameter 'is_fsctl' from SMB2_ioctl()
    - smb3: missing inode locks in zero range
    - spi: bitbang: Fix lsb-first Rx
    - ASoC: cs42l42: Only report button state if there was a button interrupt
    - Revert "soc: imx: imx8m-blk-ctrl: set power device name"
    - arm64: dts: imx8mm-verdin: update CAN clock to 40MHz
    - arm64: dts: imx8mm-verdin: use level interrupt for mcp251xfd
    - ASoC: qcom: sm8250: add missing module owner
    - regmap: spi: Reserve space for register address/padding
    - arm64: dts: imx8mp-venice-gw74xx: fix sai2 pin settings
    - arm64: dts: imx8mq-tqma8mq: Remove superfluous interrupt-names
    - RDMA/rtrs-clt: Use the right sg_cnt after ib_dma_map_sg
    - RDMA/rtrs-srv: Pass the correct number of entries for dma mapped SGL
    - ARM: dts: imx6qdl-vicut1.dtsi: Fix node name backlight_led
    - ARM: dts: imx6qdl-kontron-samx6i: remove duplicated node
    - ARM: dts: imx6qdl-kontron-samx6i: fix spi-flash compatible
    - arm64: dts: ls1028a-qds-65bb: don't use in-band autoneg for 2500base-x
    - soc: imx: gpcv2: Assert reset before ungating clock
    - arm64: dts: verdin-imx8mm: add otg2 pd to usbphy
    - arm64: dts: imx8mm-venice-gw7901: fix port/phy validation
    - arm64: dts: freescale: verdin-imx8mm: fix atmel_mxt_ts reset polarity
    - arm64: dts: freescale: verdin-imx8mp: fix atmel_mxt_ts reset polarity
    - regulator: core: Clean up on enable failure
    - ASoC: SOF: Kconfig: Make IPC_FLOOD_TEST depend on SND_SOC_SOF
    - ASoC: SOF: Kconfig: Make IPC_MESSAGE_INJECTOR depend on SND_SOC_SOF
    - tee: fix compiler warning in tee_shm_register()
    - RDMA/irdma: Fix drain SQ hang with no completion
    - arm64: dts: renesas: r8a779g0: Fix HSCIF0 interrupt number
    - RDMA/cma: Fix arguments order in net device validation
    - soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs
    - RDMA/hns: Fix supported page size
    - RDMA/hns: Fix wrong fixed value of qp->rq.wqe_shift
    - RDMA/hns: Remove the num_qpc_timer variable
    - wifi: wilc1000: fix DMA on stack objects
    - ARM: at91: pm: fix self-refresh for sama7g5
    - ARM: at91: pm: fix DDR recalibration when resuming from backup and self-
      refresh
    - ARM: dts: at91: sama5d27_wlsom1: specify proper regulator output ranges
    - ARM: dts: at91: sama5d2_icp: specify proper regulator output ranges
    - ARM: dts: at91: sama7g5ek: specify proper regulator output ranges
    - ARM: dts: at91: sama5d27_wlsom1: don't keep ldo2 enabled all the time
    - ARM: dts: at91: sama5d2_icp: don't keep vdd_other enabled all the time
    - netfilter: br_netfilter: Drop dst references before setting.
    - netfilter: nf_tables: clean up hook list when offload flags check fails
    - riscv: dts: microchip: use an mpfs specific l2 compatible
    - netfilter: nf_conntrack_irc: Fix forged IP logic
    - RDMA/srp: Set scmnd->result only when scmnd is not NULL
    - ALSA: usb-audio: Inform the delayed registration more properly
    - ALSA: usb-audio: Register card again for iface over delayed_register option
    - rxrpc: Fix ICMP/ICMP6 error handling
    - rxrpc: Fix an insufficiently large sglist in rxkad_verify_packet_2()
    - afs: Use the operation issue time instead of the reply time for callbacks
    - kunit: fix assert_type for comparison macros
    - Revert "net: phy: meson-gxl: improve link-up behavior"
    - sch_sfb: Don't assume the skb is still around after enqueueing to child
    - tipc: fix shift wrapping bug in map_get()
    - net: introduce __skb_fill_page_desc_noacc
    - tcp: TX zerocopy should not sense pfmemalloc status
    - ice: Fix DMA mappings leak
    - ice: use bitmap_free instead of devm_kfree
    - i40e: Fix kernel crash during module removal
    - iavf: Detach device during reset task
    - xen-netback: only remove 'hotplug-status' when the vif is actually destroyed
    - block: don't add partitions if GD_SUPPRESS_PART_SCAN is set
    - RDMA/siw: Pass a pointer to virt_to_page()
    - bonding: use unspecified address if no available link local address
    - bonding: add all node mcast address when slave up
    - ipv6: sr: fix out-of-bounds read when setting HMAC data.
    - IB/core: Fix a nested dead lock as part of ODP flow
    - RDMA/mlx5: Set local port to one when accessing counters
    - btrfs: zoned: fix mounting with conventional zones
    - erofs: fix error return code in erofs_fscache_{meta_,}read_folio
    - erofs: fix pcluster use-after-free on UP platforms
    - nvme-tcp: fix UAF when detecting digest errors
    - nvme-tcp: fix regression that causes sporadic requests to time out
    - tcp: fix early ETIMEDOUT after spurious non-SACK RTO
    - btrfs: fix the max chunk size and stripe length calculation
    - nvmet: fix mar and mor off-by-one errors
    - RDMA/irdma: Report the correct max cqes from query device
    - RDMA/irdma: Return error on MR deregister CQP failure
    - RDMA/irdma: Return correct WC error for bind operation failure
    - RDMA/irdma: Report RNR NAK generation in device caps
    - net: dsa: felix: disable cut-through forwarding for frames oversized for tc-
      taprio
    - net: dsa: felix: access QSYS_TAG_CONFIG under tas_lock in
      vsc9959_sched_speed_set
    - net: ethernet: mtk_eth_soc: fix typo in __mtk_foe_entry_clear
    - net: ethernet: mtk_eth_soc: check max allowed hash in mtk_ppe_check_skb
    - net/smc: Fix possible access to freed memory in link clear
    - io_uring: recycle kbuf recycle on tw requeue
    - net: phy: lan87xx: change interrupt src of link_up to comm_ready
    - sch_sfb: Also store skb len before calling child enqueue
    - libperf evlist: Fix per-thread mmaps for multi-threaded targets
    - perf dlfilter dlfilter-show-cycles: Fix types for print format
    - perf script: Fix Cannot print 'iregs' field for hybrid systems
    - perf record: Fix synthesis failure warnings
    - hwmon: (tps23861) fix byte order in resistance register
    - ASoC: mchp-spdiftx: remove references to mchp_i2s_caps
    - ASoC: mchp-spdiftx: Fix clang -Wbitfield-constant-conversion
    - MIPS: loongson32: ls1c: Fix hang during startup
    - kbuild: disable header exports for UML in a straightforward way
    - i40e: Refactor tc mqprio checks
    - i40e: Fix ADQ rate limiting for PF
    - net: bonding: replace dev_trans_start() with the jiffies of the last ARP/NS
    - bonding: accept unsolicited NA message
    - swiotlb: avoid potential left shift overflow
    - iommu/amd: use full 64-bit value in build_completion_wait()
    - s390/boot: fix absolute zero lowcore corruption on boot
    - time64.h: consolidate uses of PSEC_PER_NSEC
    - net: dsa: felix: tc-taprio intervals smaller than MTU should send at least
      one packet
    - hwmon: (mr75203) fix VM sensor allocation when "intel,vm-map" not defined
    - hwmon: (mr75203) update pvt->v_num and vm_num to the actual number of used
      sensors
    - hwmon: (mr75203) fix voltage equation for negative source input
    - hwmon: (mr75203) fix multi-channel voltage reading
    - hwmon: (mr75203) enable polling for all VM channels
    - perf evlist: Always use arch_evlist__add_default_attrs()
    - perf stat: Fix L2 Topdown metrics disappear for raw events
    - Revert "arm64: kasan: Revert "arm64: mte: reset the page tag in
      page->flags""
    - hwmon: (asus-ec-sensors) add support for Strix Z690-a D4
    - hwmon: (asus-ec-sensors) add support for Maximus XI Hero
    - hwmon: (asus-ec-sensors) add missing sensors for X570-I GAMING
    - hwmon: (asus-ec-sensors) add definitions for ROG ZENITH II EXTREME
    - hwmon: (asus-ec-sensors) autoload module via DMI data
    - arm64/bti: Disable in kernel BTI when cross section thunks are broken
    - [Config] updateconfigs for ARM64_BTI_KERNEL
    - iommu/vt-d: Correctly calculate sagaw value of IOMMU
    - iommu/virtio: Fix interaction with VFIO
    - iommu: Fix false ownership failure on AMD systems with PASID activated
    - drm/amd/display: Add SMU logging code
    - drm/amd/display: Removing assert statements for Linux
    - Linux 5.19.9

* Kinetic update: v5.19.8 upstream stable release (LP: #1994061)
    - drm/msm/dp: make eDP panel as the first connected connector
    - drm/msm/dsi: fix the inconsistent indenting
    - drm/msm/dpu: populate wb or intf before reset_intf_cfg
    - drm/msm/dp: delete DP_RECOVERED_CLOCK_OUT_EN to fix tps4
    - drm/msm/dsi: Fix number of regulators for msm8996_dsi_cfg
    - drm/msm/dsi: Fix number of regulators for SDM660
    - platform/x86: pmc_atom: Fix SLP_TYPx bitfield mask
    - platform/x86: x86-android-tablets: Fix broken touchscreen on Chuwi Hi8 with
      Windows BIOS
    - xsk: Fix corrupted packets for XDP_SHARED_UMEM
    - drm/msm/gpu: Drop qos request if devm_devfreq_add_device() fails
    - peci: aspeed: fix error check return value of platform_get_irq()
    - iio: adc: mcp3911: make use of the sign bit
    - skmsg: Fix wrong last sg check in sk_msg_recvmsg()
    - bpf: Restrict bpf_sys_bpf to CAP_PERFMON
    - ip_tunnel: Respect tunnel key's "flow_flags" in IP tunnels
    - bpf, cgroup: Fix kernel BUG in purge_effective_progs
    - drm/i915/gvt: Fix Comet Lake
    - ieee802154/adf7242: defer destroy_workqueue call
    - bpf: Fix a data-race around bpf_jit_limit.
    - drm/i915/ttm: fix CCS handling
    - drm/i915/display: avoid warnings when registering dual panel backlight
    - ALSA: hda: intel-nhlt: Correct the handling of fmt_config flexible array
    - wifi: cfg80211: debugfs: fix return type in ht40allow_map_read()
    - xhci: Fix null pointer dereference in remove if xHC has only one roothub
    - Revert "xhci: turn off port power in shutdown"
    - bpf: Allow helpers to accept pointers with a fixed size
    - bpf: Tidy up verifier check_func_arg()
    - bpf: Do mark_chain_precision for ARG_CONST_ALLOC_SIZE_OR_ZERO
    - Bluetooth: hci_event: Fix vendor (unknown) opcode status handling
    - Bluetooth: hci_sync: Fix suspend performance regression
    - Bluetooth: hci_event: Fix checking conn for le_conn_complete_evt
    - Bluetooth: hci_sync: hold hdev->lock when cleanup hci_conn
    - net: sparx5: fix handling uneven length packets in manual extraction
    - net: smsc911x: Stop and start PHY during suspend and resume
    - openvswitch: fix memory leak at failed datapath creation
    - nfp: flower: fix ingress police using matchall filter
    - net: dsa: xrs700x: Use irqsave variant for u64 stats update
    - net: sched: tbf: don't call qdisc_put() while holding tree lock
    - net/sched: fix netdevice reference leaks in attach_default_qdiscs()
    - net: phy: micrel: Make the GPIO to be non-exclusive
    - net: lan966x: improve error handle in lan966x_fdma_rx_get_frame()
    - ethernet: rocker: fix sleep in atomic context bug in neigh_timer_handler
    - cachefiles: fix error return code in cachefiles_ondemand_copen()
    - cachefiles: make on-demand request distribution fairer
    - mlxbf_gige: compute MDIO period based on i1clk
    - kcm: fix strp_init() order and cleanup
    - sch_cake: Return __NET_XMIT_STOLEN when consuming enqueued skb
    - tcp: annotate data-race around challenge_timestamp
    - Revert "sch_cake: Return __NET_XMIT_STOLEN when consuming enqueued skb"
    - net/smc: Remove redundant refcount increase
    - soundwire: qcom: fix device status array range
    - mm/slab_common: Deleting kobject in kmem_cache_destroy() without holding
      slab_mutex/cpu_hotplug_lock
    - platform/mellanox: mlxreg-lc: Fix coverity warning
    - platform/mellanox: mlxreg-lc: Fix locking issue
    - serial: fsl_lpuart: RS485 RTS polariy is inverse
    - tty: serial: atmel: Preserve previous USART mode if RS485 disabled
    - staging: rtl8712: fix use after free bugs
    - staging: r8188eu: Add Rosewill USB-N150 Nano to device tables
    - staging: r8188eu: add firmware dependency
    - Revert "powerpc: Remove unused FW_FEATURE_NATIVE references"
    - powerpc: align syscall table for ppc32
    - powerpc/rtas: Fix RTAS MSR[HV] handling for Cell
    - vt: Clear selection before changing the font
    - musb: fix USB_MUSB_TUSB6010 dependency
    - tty: serial: lpuart: disable flow control while waiting for the transmit
      engine to complete
    - Input: iforce - wake up after clearing IFORCE_XMIT_RUNNING flag
    - iio: light: cm3605: Fix an error handling path in cm3605_probe()
    - iio: ad7292: Prevent regulator double disable
    - iio: adc: mcp3911: correct "microchip,device-addr" property
    - iio: adc: mcp3911: use correct formula for AD conversion
    - misc: fastrpc: fix memory corruption on probe
    - misc: fastrpc: fix memory corruption on open
    - firmware_loader: Fix use-after-free during unregister
    - firmware_loader: Fix memory leak in firmware upload
    - USB: serial: ftdi_sio: add Omron CS1W-CIF31 device id
    - landlock: Fix file reparenting without explicit LANDLOCK_ACCESS_FS_REFER
    - mmc: core: Fix UHS-I SD 1.8V workaround branch
    - mmc: core: Fix inconsistent sd3_bus_mode at UHS-I SD voltage switch failure
    - binder: fix UAF of ref->proc caused by race condition
    - binder: fix alloc->vma_vm_mm null-ptr dereference
    - cifs: fix small mempool leak in SMB2_negotiate()
    - KVM: VMX: Heed the 'msr' argument in msr_write_intercepted()
    - riscv: kvm: move extern sbi_ext declarations to a header
    - clk: ti: Fix missing of_node_get() ti_find_clock_provider()
    - drm/i915/reg: Fix spelling mistake "Unsupport" -> "Unsupported"
    - clk: core: Honor CLK_OPS_PARENT_ENABLE for clk gate ops
    - Revert "clk: core: Honor CLK_OPS_PARENT_ENABLE for clk gate ops"
    - clk: core: Fix runtime PM sequence in clk_core_unprepare()
    - Input: rk805-pwrkey - fix module autoloading
    - powerpc/papr_scm: Fix nvdimm event mappings
    - clk: bcm: rpi: Fix error handling of raspberrypi_fw_get_rate
    - clk: bcm: rpi: Prevent out-of-bounds access
    - clk: bcm: rpi: Add missing newline
    - hwmon: (gpio-fan) Fix array out of bounds access
    - gpio: pca953x: Add mutex_lock for regcache sync in PM
    - gpio: realtek-otto: switch to 32-bit I/O
    - KVM: x86: Mask off unsupported and unknown bits of IA32_ARCH_CAPABILITIES
    - powerpc/papr_scm: Ensure rc is always initialized in papr_scm_pmu_register()
    - xen/grants: prevent integer overflow in gnttab_dma_alloc_pages()
    - mm: pagewalk: Fix race between unmap and page walker
    - xen-blkback: Advertise feature-persistent as user requested
    - xen-blkfront: Advertise feature-persistent as user requested
    - xen-blkfront: Cache feature_persistent value before advertisement
    - thunderbolt: Use the actual buffer in tb_async_error()
    - thunderbolt: Check router generation before connecting xHCI
    - usb: dwc3: pci: Add support for Intel Raptor Lake
    - media: mceusb: Use new usb_control_msg_*() routines
    - xhci: Add grace period after xHC start to prevent premature runtime suspend.
    - usb: dwc3: disable USB core PHY management
    - usb: dwc3: gadget: Avoid duplicate requests to enable Run/Stop
    - usb: dwc3: fix PHY disable sequence
    - USB: serial: ch341: fix lost character on LCR updates
    - USB: serial: ch341: fix disabled rx timer on older devices
    - USB: serial: cp210x: add Decagon UCA device id
    - USB: serial: option: add support for OPPO R11 diag port
    - USB: serial: option: add Quectel EM060K modem
    - USB: serial: option: add support for Cinterion MV32-WA/WB RmNet mode
    - Revert "usb: typec: ucsi: add a common function
      ucsi_unregister_connectors()"
    - usb: typec: altmodes/displayport: correct pin assignment for UFP receptacles
    - usb: typec: intel_pmc_mux: Add new ACPI ID for Meteor Lake IOM device
    - usb: typec: tcpm: Return ENOTSUPP for power supply prop writes
    - usb: dwc2: fix wrong order of phy_power_on and phy_init
    - usb: cdns3: fix issue with rearming ISO OUT endpoint
    - usb: cdns3: fix incorrect handling TRB_SMM flag for ISOC transfer
    - USB: cdc-acm: Add Icom PMR F3400 support (0c26:0020)
    - usb-storage: Add ignore-residue quirk for NXP PN7462AU
    - s390/hugetlb: fix prepare_hugepage_range() check for 2 GB hugepages
    - s390: fix nospec table alignments
    - USB: core: Prevent nested device-reset calls
    - usb: xhci-mtk: relax TT periodic bandwidth allocation
    - usb: xhci-mtk: fix bandwidth release issue
    - usb: gadget: f_uac2: fix superspeed transfer
    - usb: gadget: mass_storage: Fix cdrom data transfers on MAC-OS
    - USB: gadget: Fix obscure lockdep violation for udc_mutex
    - dma-buf/dma-resv: check if the new fence is really later
    - arm64/kexec: Fix missing extra range for crashkres_low.
    - driver core: Don't probe devices after bus_type.match() probe deferral
    - wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected
    - wifi: mac80211: Fix UAF in ieee80211_scan_rx()
    - ip: fix triggering of 'icmp redirect'
    - net: Use u64_stats_fetch_begin_irq() for stats fetch.
    - net: mac802154: Fix a condition in the receive path
    - ALSA: memalloc: Revive x86-specific WC page allocations again
    - ALSA: hda/realtek: Add speaker AMP init for Samsung laptops with ALC298
    - ALSA: seq: oss: Fix data-race for max_midi_devs access
    - ALSA: seq: Fix data-race at module auto-loading
    - drm/i915/backlight: Disable pps power hook for aux based backlight
    - drm/i915/guc: clear stalled request after a reset
    - drm/i915/glk: ECS Liva Q2 needs GLK HDMI port timing quirk
    - drm/i915: Skip wm/ddb readout for disabled pipes
    - tty: n_gsm: add sanity check for gsm->receive in gsm_receive_buf()
    - tty: n_gsm: initialize more members at gsm_alloc_mux()
    - tty: n_gsm: replace kicktimer with delayed_work
    - tty: n_gsm: avoid call of sleeping functions from atomic context
    - Linux 5.19.8

* md: Replace snprintf with scnprintf (LP: #1993315)
    - md: Replace snprintf with scnprintf

* ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
    systems (LP: #1990985)
    - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
      systems

* iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500
    (LP: #1983656)
    - iavf: Fix set max MTU size with port VLAN and jumbo frames
    - i40e: Fix VF set max MTU size

* Fix resume on AMD platforms when TBT monitor is plugged (LP: #1990920)
    - drm/amd/display: Detect dpcd_rev when hotplug mst monitor
    - drm/amd/display: Release remote dc_sink under mst scenario

* [SRU][J/OEM-5.17][PATCH 0/1] Fix oled brightness set above frame-average
    luminance (LP: #1978986)
    - drm: New function to get luminance range based on static hdr metadata
    - drm/amdgpu_dm: Rely on split out luminance calculation function
    - drm/i915: Use luminance range calculated during edid parsing

* Update Broadcom Emulex FC HBA lpfc driver to 14.2.0.5 for Ubuntu 22.04
    (LP: #1988711)
    - scsi: lpfc: Fix uninitialized cqe field in lpfc_nvme_cancel_iocb()
    - scsi: lpfc: Set PU field when providing D_ID in XMIT_ELS_RSP64_CX iocb
    - scsi: lpfc: Fix lost NVMe paths during LIF bounce stress test
    - scsi: lpfc: Refactor lpfc_nvmet_prep_abort_wqe() into
      lpfc_sli_prep_abort_xri()
    - scsi: lpfc: Update lpfc version to 14.2.0.5
    - scsi: lpfc: Copyright updates for 14.2.0.5 patches

* input/keyboard: the keyboard on some Asus laptops can't work (LP: #1992266)
    - ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA
    - ACPI: resource: Add ASUS model S5402ZA to quirks

* pcieport 0000:00:1b.0: PCIe Bus Error: severity=Uncorrected (Non-Fatal),
    type=Transaction Layer, (Requester ID) (LP: #1988797)
    - PCI/PTM: Cache PTM Capability offset
    - PCI/PTM: Add pci_upstream_ptm() helper
    - PCI/PTM: Separate configuration and enable
    - PCI/PTM: Add pci_suspend_ptm() and pci_resume_ptm()
    - PCI/PTM: Move pci_ptm_info() body into its only caller
    - PCI/PTM: Preserve RsvdP bits in PTM Control register
    - PCI/PTM: Reorder functions in logical order
    - PCI/PTM: Consolidate PTM interface declarations
    - PCI/PM: Always disable PTM for all devices during suspend
    - PCI/PM: Simplify pci_pm_suspend_noirq()

-- Stefan Bader <stefan.bader@canonical.com>  Thu, 15 Dec 2022 10:11:16 +0100

Changed in linux (Ubuntu Kinetic):
status:	Fix Committed → Fix Released

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2023-01-09:

#26

This bug is awaiting verification that the linux-ibm/5.19.0-1015.16 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-kinetic' to 'verification-done-kinetic'. If the problem still exists, change the tag 'verification-needed-kinetic' to 'verification-failed-kinetic'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-kinetic-linux-ibm

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2023-01-12:

#27

This bug is awaiting verification that the linux-aws/5.19.0-1018.19 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-kinetic' to 'verification-done-kinetic'. If the problem still exists, change the tag 'verification-needed-kinetic' to 'verification-failed-kinetic'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-kinetic-linux-aws

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2023-01-17:

#28

This bug is awaiting verification that the linux-azure/5.19.0-1017.18 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-kinetic' to 'verification-done-kinetic'. If the problem still exists, change the tag 'verification-needed-kinetic' to 'verification-failed-kinetic'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-kinetic-linux-azure

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2023-01-31:

#29

This bug is awaiting verification that the linux-aws-5.19/5.19.0-1019.20~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy' to 'verification-done-jammy'. If the problem still exists, change the tag 'verification-needed-jammy' to 'verification-failed-jammy'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-aws-5.19

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2023-01-31:

#30

This bug is awaiting verification that the linux-lowlatency-hwe-5.19/5.19.0-1017.18~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy' to 'verification-done-jammy'. If the problem still exists, change the tag 'verification-needed-jammy' to 'verification-failed-jammy'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-lowlatency-hwe-5.19

Ubuntu
linux package

iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500

Bug Description

CVE References

Other bug subscribers

Remote bug watches

	Status	Importance	Assigned to
linux (Ubuntu)	Fix Committed	High	Trent Lloyd
Focal	Fix Released	High	Matthew Ruffell
Jammy	Fix Released	High	Matthew Ruffell
Kinetic	Fix Released	High	Trent Lloyd

Ubuntulinux package

iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntu
linux package