Ubuntu
linux-azure package

Jammy/linux-azure: CONFIG_BLK_DEV_FD=n

Bug #1972017 reported by Tim Gardner on 2022-05-06

This bug affects 1 person

	Status	Importance	Assigned to
linux-azure (Ubuntu)	Fix Released	Medium	Tim Gardner
Jammy	Fix Released	Medium	Tim Gardner
Kinetic	Fix Released	Medium	Tim Gardner

Bug Description

SRU Justification

[Impact]

CONFIG_BLK_DEV_FD should be disabled, consistent with Focal and Impish kernel configurations. this config is also considered a security risk on cloud platforms.

[Test Case]

Look for floppy.ko in either of the modules packages.

[Where things could go wrong]

There should be no regression due to the removal of this module.

[Other Info]

SF: #00336330

Tags:

CVE References

Tim Gardner (timg-tpi) on 2022-05-06

affects:	linux (Ubuntu) → linux-azure (Ubuntu)
Changed in linux-azure (Ubuntu):
assignee:	nobody → Tim Gardner (timg-tpi)
importance:	Undecided → Medium
status:	New → In Progress

Tim Gardner (timg-tpi) on 2022-05-06

Changed in linux-azure (Ubuntu Jammy):
assignee:	nobody → Tim Gardner (timg-tpi)
importance:	Undecided → Medium
status:	New → In Progress
Changed in linux-azure (Ubuntu):
status:	In Progress → Invalid
assignee:	Tim Gardner (timg-tpi) → nobody
importance:	Medium → Undecided

Tim Gardner (timg-tpi) on 2022-05-11

Changed in linux-azure (Ubuntu Jammy):
status:	In Progress → Fix Committed

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2022-05-13:

This bug is awaiting verification that the linux-azure/5.15.0-1006.7 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy' to 'verification-done-jammy'. If the problem still exists, change the tag 'verification-needed-jammy' to 'verification-failed-jammy'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: verification-needed-jammy

Revision history for this message

Tim Gardner (timg-tpi) wrote on 2022-05-30:

git grep CONFIG_BLK_DEV_FD debian.azure/
debian.azure/changelog: * Jammy/linux-azure: CONFIG_BLK_DEV_FD=n (LP: #1972017)
debian.azure/changelog: - [Config] azure: CONFIG_BLK_DEV_FD=n
debian.azure/config/annotations:CONFIG_BLK_DEV_FD policy<{'amd64': 'n'}>
debian.azure/config/annotations:CONFIG_BLK_DEV_FD mark<ENFORCED> note<LP: #1972017>
debian.azure/config/config.common.ubuntu:# CONFIG_BLK_DEV_FD is not set

tags:

added: verification-done-jammy
removed: verification-needed-jammy

Revision history for this message

Launchpad Janitor (janitor) wrote on 2022-06-03:

Download full text (105.5 KiB)

This bug was fixed in the package linux-azure - 5.15.0-1008.9

---------------
linux-azure (5.15.0-1008.9) jammy; urgency=medium

* jammy/linux-azure: 5.15.0-1008.9 -proposed tracker (LP: #1974294)

* Packaging resync (LP: #1786013)
- debian/dkms-versions -- update from kernel-versions (main/2022.04.18)

  * [Azure] WARNING: CPU: 0 PID: 499 at include/linux/dma-mapping.h:555
    netvsc_probe+0x3c9/0x3e0 (LP: #1975717)
    - Drivers: hv: vmbus: Rework use of DMA_BIT_MASK(64)
    - Drivers: hv: vmbus: Fix initialization of device object in
      vmbus_device_register()

* config CONFIG_HISI_PMU for kunpeng920 (LP: #1956086)
- [Config] azure: CONFIG_HISI_PMU=m

* linux: CONFIG_SERIAL_8250_MID=y (LP: #1967338)
- [Config] azure: CONFIG_SERIAL_8250_MID=y

  * Support AMD P-State cpufreq control mechanism (LP: #1956509) // Enable
    speakup kernel modules to allow the speakup screen reader to function
    (LP: #1967702)
    - [Config] azure: Update configs after rebase

  * Azure: swiotlb patch needed for CVM (LP: #1971701) // [Azure][CVM] Fix
    swiotlb_max_mapping_size() for potential bounce buffer allocation failure in
    storvsc (LP: #1973169)
    - SAUCE: swiotlb: Max mapping size takes min align mask into account

  * Azure: swiotlb patch needed for CVM (LP: #1971701)
    - SAUCE: treewide: Replace the use of mem_encrypt_active() with
      cc_platform_has()
    - SAUCE: swiotlb: use bitmap to track free slots
    - SAUCE: swiotlb: allocate memory in a cache-friendly way
    - SAUCE: swiotlb: Split up single swiotlb lock

  * jammy/linux-azure: Update cifs to 5.15 backport (LP: #1970977)
    - improve error message when mount options conflict with posix
    - cifs: call cifs_reconnect when a connection is marked
    - cifs: call helper functions for marking channels for reconnect
    - cifs: mark sessions for reconnection in helper function
    - treewide: Replace zero-length arrays with flexible-array members
    - smb3: fix incorrect session setup check for multiuser mounts
    - cifs: truncate the inode and mapping when we simulate fcollapse
    - cifs: use a different reconnect helper for non-cifsd threads
    - cifs: do not skip link targets when an I/O fails
    - cifs: convert the path to utf16 in smb2_query_info_compound
    - cifs: change smb2_query_info_compound to use a cached fid, if available
    - cifs: fix bad fids sent over wire
    - cifs: fix incorrect use of list iterator after the loop
    - move more common protocol header definitions to smbfs_common
    - smb3: move defines for ioctl protocol header and SMB2 sizes to smbfs_common
    - smb3: move defines for query info and query fsinfo to smbfs_common
    - smb3: cleanup and clarify status of tree connections
    - smb3: fix ksmbd bigendian bug in oplock break, and move its struct to
      smbfs_common
    - fs: Remove ->readpages address space operation
    - cifs: fix potential race with cifsd thread
    - cifs: remove check of list iterator against head past the loop body
    - cifs: force new session setup and tcon for dfs
    - cifs: update internal module number
    - cifs: Check the IOCB_DIRECT flag, not O_DIRECT
    - cifs: Split the smb3_a...

This bug was fixed in the package linux-azure - 5.15.0-1008.9

---------------
linux-azure (5.15.0-1008.9) jammy; urgency=medium

* jammy/linux-azure: 5.15.0-1008.9 -proposed tracker (LP: #1974294)

* Packaging resync (LP: #1786013)
    - debian/dkms-versions -- update from kernel-versions (main/2022.04.18)

* config CONFIG_HISI_PMU for  kunpeng920 (LP: #1956086)
    - [Config] azure: CONFIG_HISI_PMU=m

* linux: CONFIG_SERIAL_8250_MID=y (LP: #1967338)
    - [Config] azure: CONFIG_SERIAL_8250_MID=y

* [Azure] PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time
    (LP: #1972662)
    - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time

* Jammy/linux-azure: CONFIG_BLK_DEV_FD=n (LP: #1972017)
    - [Config] azure: CONFIG_BLK_DEV_FD=n

* [Azure] hv_netvsc: Add support for XDP_REDIRECT (LP: #1972832)
    - hv_netvsc: Add comment of netvsc_xdp_xmit()
    - hv_netvsc: Add support for XDP_REDIRECT

* linux-azure: Patch Set for ARM64 Images 20.04 and 18.04 (LP: #1970468)
    - Drivers: hv: balloon: Support status report for larger page sizes

[ Ubuntu: 5.15.0-35.36 ]

* CVE-2022-21499
    - SAUCE: debug: Lock down kgdb

[ Ubuntu: 5.15.0-34.35 ]

* jammy/linux: 5.15.0-34.35 -proposed tracker (LP: #1974322)
  * AMD APU s2idle is broken after the ASIC reset fix (LP: #1972134)
    - drm/amdgpu: unify BO evicting method in amdgpu_ttm
    - drm/amdgpu: explicitly check for s0ix when evicting resources
  * amd_gpio AMDI0030:00: Failed to translate GPIO pin 0x0000 to IRQ, err -517
    (LP: #1971597)
    - gpio: Request interrupts after IRQ is initialized
  * config CONFIG_HISI_PMU for  kunpeng920 (LP: #1956086)
    - [Config] CONFIG_HISI_PMU=m
  * Mute/mic LEDs no function on EliteBook G9 platfroms (LP: #1970552)
    - ALSA: hda/realtek: Enable mute/micmute LEDs support for HP Laptops
  * network-manager/1.36.4-2ubuntu1 ADT test failure with linux/5.15.0-28.29
    (LP: #1971418)
    - Revert "rfkill: make new event layout opt-in"
  * PCIE LnkCtl ASPM not enabled under VMD mode for Alder Lake platforms
    (LP: #1942160)
    - SAUCE: vmd: fixup bridge ASPM by driver name instead
  * Mute/mic LEDs no function on HP EliteBook 845/865 G9 (LP: #1970178)
    - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on EliteBook
      845/865 G9
  * Enable headset mic on Lenovo P360 (LP: #1967069)
    - ALSA: hda/realtek: Enable headset mic on Lenovo P360
  * WCN6856 BT keep in OFF state after coldboot system (LP: #1967067)
    - Bluetooth: btusb: Improve stability for QCA devices
  * Screen sometimes can't update [Failed to post KMS update: CRTC property
    (GAMMA_LUT) not found] (LP: #1967274)
    - drm/i915/xelpd: Enable Pipe color support for D13 platform
    - drm/i915: Use unlocked register accesses for LUT loads
    - drm/i915/xelpd: Enable Pipe Degamma
    - drm/i915/xelpd: Add Pipe Color Lut caps to platform config
  * Jammy update: v5.15.35 upstream stable release (LP: #1969857)
    - drm/amd/display: Add pstate verification and recovery for DCN31
    - drm/amd/display: Fix p-state allow debug index on dcn31
    - hamradio: defer 6pack kfree after unregister_netdev
    - hamradio: remove needs_free_netdev to avoid UAF
    - cpuidle: PSCI: Move the `has_lpi` check to the beginning of the function
    - ACPI: processor idle: Check for architectural support for LPI
    - ACPI: processor: idle: fix lockup regression on 32-bit ThinkPad T40
    - btrfs: remove unused parameter nr_pages in add_ra_bio_pages()
    - btrfs: remove no longer used counter when reading data page
    - btrfs: remove unused variable in btrfs_{start,write}_dirty_block_groups()
    - soc: qcom: aoss: Expose send for generic usecase
    - dt-bindings: net: qcom,ipa: add optional qcom,qmp property
    - net: ipa: request IPA register values be retained
    - btrfs: release correct delalloc amount in direct IO write path
    - ALSA: core: Add snd_card_free_on_error() helper
    - ALSA: sis7019: Fix the missing error handling
    - ALSA: ali5451: Fix the missing snd_card_free() call at probe error
    - ALSA: als300: Fix the missing snd_card_free() call at probe error
    - ALSA: als4000: Fix the missing snd_card_free() call at probe error
    - ALSA: atiixp: Fix the missing snd_card_free() call at probe error
    - ALSA: au88x0: Fix the missing snd_card_free() call at probe error
    - ALSA: aw2: Fix the missing snd_card_free() call at probe error
    - ALSA: azt3328: Fix the missing snd_card_free() call at probe error
    - ALSA: bt87x: Fix the missing snd_card_free() call at probe error
    - ALSA: ca0106: Fix the missing snd_card_free() call at probe error
    - ALSA: cmipci: Fix the missing snd_card_free() call at probe error
    - ALSA: cs4281: Fix the missing snd_card_free() call at probe error
    - ALSA: cs5535audio: Fix the missing snd_card_free() call at probe error
    - ALSA: echoaudio: Fix the missing snd_card_free() call at probe error
    - ALSA: emu10k1x: Fix the missing snd_card_free() call at probe error
    - ALSA: ens137x: Fix the missing snd_card_free() call at probe error
    - ALSA: es1938: Fix the missing snd_card_free() call at probe error
    - ALSA: es1968: Fix the missing snd_card_free() call at probe error
    - ALSA: fm801: Fix the missing snd_card_free() call at probe error
    - ALSA: galaxy: Fix the missing snd_card_free() call at probe error
    - ALSA: hdsp: Fix the missing snd_card_free() call at probe error
    - ALSA: hdspm: Fix the missing snd_card_free() call at probe error
    - ALSA: ice1724: Fix the missing snd_card_free() call at probe error
    - ALSA: intel8x0: Fix the missing snd_card_free() call at probe error
    - ALSA: intel_hdmi: Fix the missing snd_card_free() call at probe error
    - ALSA: korg1212: Fix the missing snd_card_free() call at probe error
    - ALSA: lola: Fix the missing snd_card_free() call at probe error
    - ALSA: lx6464es: Fix the missing snd_card_free() call at probe error
    - ALSA: maestro3: Fix the missing snd_card_free() call at probe error
    - ALSA: oxygen: Fix the missing snd_card_free() call at probe error
    - ALSA: riptide: Fix the missing snd_card_free() call at probe error
    - ALSA: rme32: Fix the missing snd_card_free() call at probe error
    - ALSA: rme9652: Fix the missing snd_card_free() call at probe error
    - ALSA: rme96: Fix the missing snd_card_free() call at probe error
    - ALSA: sc6000: Fix the missing snd_card_free() call at probe error
    - ALSA: sonicvibes: Fix the missing snd_card_free() call at probe error
    - ALSA: via82xx: Fix the missing snd_card_free() call at probe error
    - ALSA: usb-audio: Cap upper limits of buffer/period bytes for implicit fb
    - ALSA: nm256: Don't call card private_free at probe error path
    - drm/msm: Add missing put_task_struct() in debugfs path
    - firmware: arm_scmi: Remove clear channel call on the TX channel
    - memory: atmel-ebi: Fix missing of_node_put in atmel_ebi_probe
    - Revert "ath11k: mesh: add support for 256 bitmap in blockack frames in 11ax"
    - firmware: arm_scmi: Fix sorting of retrieved clock rates
    - media: rockchip/rga: do proper error checking in probe
    - SUNRPC: Fix the svc_deferred_event trace class
    - net/sched: flower: fix parsing of ethertype following VLAN header
    - veth: Ensure eth header is in skb's linear part
    - gpiolib: acpi: use correct format characters
    - cifs: release cached dentries only if mount is complete
    - net: mdio: don't defer probe forever if PHY IRQ provider is missing
    - mlxsw: i2c: Fix initialization error flow
    - net/sched: fix initialization order when updating chain 0 head
    - net: dsa: felix: suppress -EPROBE_DEFER errors
    - net: ethernet: stmmac: fix altr_tse_pcs function when using a fixed-link
    - net/sched: taprio: Check if socket flags are valid
    - cfg80211: hold bss_lock while updating nontrans_list
    - netfilter: nft_socket: make cgroup match work in input too
    - drm/msm: Fix range size vs end confusion
    - drm/msm/dsi: Use connector directly in msm_dsi_manager_connector_init()
    - drm/msm/dp: add fail safe mode outside of event_mutex context
    - net/smc: Fix NULL pointer dereference in smc_pnet_find_ib()
    - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63
    - scsi: pm80xx: Enable upper inbound, outbound queues
    - scsi: iscsi: Move iscsi_ep_disconnect()
    - scsi: iscsi: Fix offload conn cleanup when iscsid restarts
    - scsi: iscsi: Fix endpoint reuse regression
    - scsi: iscsi: Fix conn cleanup and stop race during iscsid restart
    - scsi: iscsi: Fix unbound endpoint error handling
    - sctp: Initialize daddr on peeled off socket
    - netfilter: nf_tables: nft_parse_register can return a negative value
    - ALSA: ad1889: Fix the missing snd_card_free() call at probe error
    - ALSA: mtpav: Don't call card private_free at probe error path
    - io_uring: move io_uring_rsrc_update2 validation
    - io_uring: verify that resv2 is 0 in io_uring_rsrc_update2
    - io_uring: verify pad field is 0 in io_get_ext_arg
    - testing/selftests/mqueue: Fix mq_perf_tests to free the allocated cpu set
    - ALSA: usb-audio: Increase max buffer size
    - ALSA: usb-audio: Limit max buffer and period sizes per time
    - perf tools: Fix misleading add event PMU debug message
    - macvlan: Fix leaking skb in source mode with nodst option
    - net: ftgmac100: access hardware register after clock ready
    - nfc: nci: add flush_workqueue to prevent uaf
    - cifs: potential buffer overflow in handling symlinks
    - dm mpath: only use ktime_get_ns() in historical selector
    - vfio/pci: Fix vf_token mechanism when device-specific VF drivers are used
    - net: bcmgenet: Revert "Use stronger register read/writes to assure ordering"
    - block: fix offset/size check in bio_trim()
    - drm/amd: Add USBC connector ID
    - btrfs: fix fallocate to use file_modified to update permissions consistently
    - btrfs: do not warn for free space inode in cow_file_range
    - drm/amdgpu: conduct a proper cleanup of PDB bo
    - drm/amdgpu/gmc: use PCI BARs for APUs in passthrough
    - drm/amd/display: fix audio format not updated after edid updated
    - drm/amd/display: FEC check in timing validation
    - drm/amd/display: Update VTEM Infopacket definition
    - drm/amdkfd: Fix Incorrect VMIDs passed to HWS
    - drm/amdgpu/vcn: improve vcn dpg stop procedure
    - drm/amdkfd: Check for potential null return of kmalloc_array()
    - Drivers: hv: vmbus: Deactivate sysctl_record_panic_msg by default in
      isolated guests
    - PCI: hv: Propagate coherence from VMbus device to PCI device
    - Drivers: hv: vmbus: Prevent load re-ordering when reading ring buffer
    - scsi: target: tcmu: Fix possible page UAF
    - scsi: lpfc: Fix queue failures when recovering from PCI parity error
    - scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024
    - net: micrel: fix KS8851_MLL Kconfig
    - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs
    - gpu: ipu-v3: Fix dev_dbg frequency output
    - regulator: wm8994: Add an off-on delay for WM8994 variant
    - arm64: alternatives: mark patch_alternative() as `noinstr`
    - tlb: hugetlb: Add more sizes to tlb_remove_huge_tlb_entry
    - net: axienet: setup mdio unconditionally
    - Drivers: hv: balloon: Disable balloon and hot-add accordingly
    - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup
    - myri10ge: fix an incorrect free for skb in myri10ge_sw_tso
    - spi: cadence-quadspi: fix protocol setup for non-1-1-X operations
    - drm/amd/display: Enable power gating before init_pipes
    - drm/amd/display: Revert FEC check in validation
    - drm/amd/display: Fix allocate_mst_payload assert on resume
    - drbd: set QUEUE_FLAG_STABLE_WRITES
    - scsi: mpt3sas: Fail reset operation if config request timed out
    - scsi: mvsas: Add PCI ID of RocketRaid 2640
    - scsi: megaraid_sas: Target with invalid LUN ID is deleted during scan
    - drivers: net: slip: fix NPD bug in sl_tx_timeout()
    - io_uring: zero tag on rsrc removal
    - io_uring: use nospec annotation for more indexes
    - perf/imx_ddr: Fix undefined behavior due to shift overflowing the constant
    - mm/secretmem: fix panic when growing a memfd_secret
    - mm, page_alloc: fix build_zonerefs_node()
    - mm: fix unexpected zeroed page mapping with zram swap
    - mm: kmemleak: take a full lowmem check in kmemleak_*_phys()
    - KVM: x86/mmu: Resolve nx_huge_pages when kvm.ko is loaded
    - SUNRPC: Fix NFSD's request deferral on RDMA transports
    - memory: renesas-rpc-if: fix platform-device leak in error path
    - gcc-plugins: latent_entropy: use /dev/urandom
    - cifs: verify that tcon is valid before dereference in cifs_kill_sb
    - ath9k: Properly clear TX status area before reporting to mac80211
    - ath9k: Fix usage of driver-private space in tx_info
    - btrfs: fix root ref counts in error handling in btrfs_get_root_ref
    - btrfs: mark resumed async balance as writing
    - ALSA: hda/realtek: Add quirk for Clevo PD50PNT
    - ALSA: hda/realtek: add quirk for Lenovo Thinkpad X12 speakers
    - ALSA: pcm: Test for "silence" field in struct "pcm_format_data"
    - nl80211: correctly check NL80211_ATTR_REG_ALPHA2 size
    - ipv6: fix panic when forwarding a pkt with no in6 dev
    - drm/amd/display: don't ignore alpha property on pre-multiplied mode
    - drm/amdgpu: Enable gfxoff quirk on MacBook Pro
    - x86/tsx: Use MSR_TSX_CTRL to clear CPUID bits
    - x86/tsx: Disable TSX development mode at boot
    - genirq/affinity: Consider that CPUs on nodes can be unbalanced
    - tick/nohz: Use WARN_ON_ONCE() to prevent console saturation
    - ARM: davinci: da850-evm: Avoid NULL pointer dereference
    - dm integrity: fix memory corruption when tag_size is less than digest size
    - i2c: dev: check return value when calling dev_set_name()
    - smp: Fix offline cpu check in flush_smp_call_function_queue()
    - i2c: pasemi: Wait for write xfers to finish
    - dt-bindings: net: snps: remove duplicate name
    - timers: Fix warning condition in __run_timers()
    - dma-direct: avoid redundant memory sync for swiotlb
    - drm/i915: Sunset igpu legacy mmap support based on GRAPHICS_VER_FULL
    - cpu/hotplug: Remove the 'cpu' member of cpuhp_cpu_state
    - soc: qcom: aoss: Fix missing put_device call in qmp_get
    - net: ipa: fix a build dependency
    - cpufreq: intel_pstate: ITMT support for overclocked system
    - ax25: add refcount in ax25_dev to avoid UAF bugs
    - ax25: fix reference count leaks of ax25_dev
    - ax25: fix UAF bugs of net_device caused by rebinding operation
    - ax25: Fix refcount leaks caused by ax25_cb_del()
    - ax25: fix UAF bug in ax25_send_control()
    - ax25: fix NPD bug in ax25_disconnect
    - ax25: Fix NULL pointer dereferences in ax25 timers
    - ax25: Fix UAF bugs in ax25 timers
    - Linux 5.15.35
  * CONFIG_SND_COMPRESS_OFFLOAD missing in jammy/ppc64el kernel config
    (LP: #1969807)
    - [Config] updateconfigs for SND_COMPRESS_OFFLOAD (ppc64el)
  * Micmute LED support for Zbook Fury 16 G9 (LP: #1968892)
    - ALSA: hda/realtek: Add mute and micmut LED support for Zbook Fury 17 G9
  * Fix broken HDMI audio on AMD PRO VII after S3 (LP: #1968475)
    - drm/amdgpu: don't set s3 and s0ix at the same time
    - drm/amdgpu: Ensure HDA function is suspended before ASIC reset
  * [Ubuntu 22.04] mpi3mr: Request to include latest bug fixes (LP: #1967116)
    - scsi: mpi3mr: Clean up mpi3mr_print_ioc_info()
    - scsi: mpi3mr: Use scnprintf() instead of snprintf()
    - scsi: mpi3mr: Add debug APIs based on logging_level bits
    - scsi: mpi3mr: Replace spin_lock() with spin_lock_irqsave()
    - scsi: mpi3mr: Don't reset IOC if cmnds flush with reset status
    - scsi: mpi3mr: Update MPI3 headers - part1
    - scsi: mpi3mr: Update MPI3 headers - part2
    - scsi: mpi3mr: Add support for PCIe Managed Switch SES device
    - scsi: mpi3mr: Do access status validation before adding devices
    - scsi: mpi3mr: Increase internal cmnds timeout to 60s
    - scsi: mpi3mr: Handle unaligned PLL in unmap cmnds
    - scsi: mpi3mr: Display IOC firmware package version
    - scsi: mpi3mr: Fault IOC when internal command gets timeout
    - scsi: mpi3mr: Code refactor of IOC init - part1
    - scsi: mpi3mr: Code refactor of IOC init - part2
    - scsi: mpi3mr: Handle offline FW activation in graceful manner
    - scsi: mpi3mr: Add IOC reinit function
    - scsi: mpi3mr: Detect async reset that occurred in firmware
    - scsi: mpi3mr: Gracefully handle online FW update operation
    - scsi: mpi3mr: Add Event acknowledgment logic
    - scsi: mpi3mr: Support Prepare for Reset event
    - scsi: mpi3mr: Print cable mngnt and temp threshold events
    - scsi: mpi3mr: Add io_uring interface support in I/O-polled mode
    - scsi: mpi3mr: Use TM response codes from MPI3 headers
    - scsi: mpi3mr: Enhanced Task Management Support Reply handling
    - scsi: mpi3mr: Bump driver version to 8.0.0.61.0
    - scsi: mpi3mr: Fix some spelling mistakes
    - scsi: mpi3mr: Fix formatting problems in some kernel-doc comments
    - scsi: mpi3mr: Fix deadlock while canceling the fw event
    - scsi: mpi3mr: Fix printing of pending I/O count
    - scsi: mpi3mr: Update MPI3 headers
    - scsi: mpi3mr: Fix hibernation issue
    - scsi: mpi3mr: Fix cmnd getting marked as in use forever
    - scsi: mpi3mr: Update the copyright year
    - scsi: mpi3mr: Bump driver version to 8.0.0.68.0
    - scsi: mpi3mr: Fix flushing !WQ_MEM_RECLAIM events warning
  * Support AMD P-State cpufreq control mechanism (LP: #1956509)
    - x86/cpufeatures: Add AMD Collaborative Processor Performance Control feature
      flag
    - x86/msr: Add AMD CPPC MSR definitions
    - ACPI: CPPC: Implement support for SystemIO registers
    - ACPI: CPPC: Add CPPC enable register function
    - cpufreq: amd-pstate: Introduce a new AMD P-State driver to support future
      processors
    - cpufreq: amd-pstate: Add fast switch function for AMD P-State
    - cpufreq: amd-pstate: Introduce the support for the processors with shared
      memory solution
    - cpufreq: amd-pstate: Add trace for AMD P-State module
    - cpufreq: amd-pstate: Add boost mode support for AMD P-State
    - cpufreq: amd-pstate: Add AMD P-State frequencies attributes
    - cpufreq: amd-pstate: Add AMD P-State performance attributes
    - Documentation: amd-pstate: Add AMD P-State driver introduction
    - MAINTAINERS: Add AMD P-State driver maintainer entry
    - cpufreq: amd-pstate: Fix struct amd_cpudata kernel-doc comment
    - cpufreq: amd-pstate: Fix Kconfig dependencies for AMD P-State
    - [Config] enable X86_AMD_PSTATE as built-in on amd64
  * Bolt doesn't work with native USB4 hosts (LP: #1962349)
    - thunderbolt: Retry DROM reads for more failure scenarios
    - thunderbolt: Do not resume routers if UID is not set
    - thunderbolt: Do not make DROM read success compulsory
    - PCI/ACPI: Allow D3 only if Root Port can signal and wake from D3
  * linux-image-5.0.0-35-generic breaks checkpointing of container
    (LP: #1857257) // re-apply missing overlayfs SAUCE patch (LP: #1967924)
    - SAUCE: overlayfs: fix incorrect mnt_id of files opened from map_files
  * [Jammy, mlx5, ConnectX-7] add CX7 support for software steering
    (LP: #1966194)
    - net/mlx5: DR, Fix vport number data type to u16
    - net/mlx5: DR, Replace local WIRE_PORT macro with the existing
      MLX5_VPORT_UPLINK
    - net/mlx5: DR, Add missing query for vport 0
    - net/mlx5: DR, Align error messages for failure to obtain vport caps
    - net/mlx5: DR, Support csum recalculation flow table on SFs
    - net/mlx5: DR, Add support for SF vports
    - net/mlx5: DR, Increase supported num of actions to 32
    - net/mlx5: DR, Fix typo 'offeset' to 'offset'
    - net/mlx5: DR, init_next_match only if needed
    - net/mlx5: DR, Add missing string for action type SAMPLER
    - net/mlx5: DR, Add check for unsupported fields in match param
    - net/mlx5: Introduce new uplink destination type
    - net/mlx5: DR, Handle eswitch manager and uplink vports separately
    - net/mlx5: DR, Fix querying eswitch manager vport for ECPF
    - net/mlx5: DR, Fix check for unsupported fields in match param
    - net/mlx5: DR, Fix error flow in creating matcher
    - net/mlx5: DR, Fix lower case macro prefix "mlx5_" to "MLX5_"
    - net/mlx5: DR, Remove unused struct member in matcher
    - net/mlx5: DR, Rename list field in matcher struct to list_node
    - net/mlx5: DR, Add check for flex parser ID value
    - net/mlx5: DR, Add missing reserved fields to dr_match_param
    - net/mlx5: DR, Add support for dumping steering info
    - net/mlx5: DR, Add support for UPLINK destination type
    - net/mlx5: DR, Warn on failure to destroy objects due to refcount
    - net/mlx5: Add misc5 flow table match parameters
    - net/mlx5: DR, Add misc5 to match_param structs
    - net/mlx5: DR, Support matching on tunnel headers 0 and 1
    - net/mlx5: DR, Add support for matching on geneve_tlv_option_0_exist field
    - net/mlx5: DR, Improve steering for empty or RX/TX-only matchers
    - net/mlx5: DR, Ignore modify TTL if device doesn't support it
    - net/mlx5: Set SMFS as a default steering mode if device supports it
    - net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte
    - net/mlx5: DR, Add support for matching on Internet Header Length (IHL)
    - net/mlx5: DR, Remove unneeded comments
    - net/mlx5: DR, Fix handling of different actions on the same STE in STEv1
    - net/mlx5: DR, Rename action modify fields to reflect naming in HW spec
    - net/mlx5: DR, Refactor ste_ctx handling for STE v0/1
    - net/mlx5: Introduce software defined steering capabilities
    - net/mlx5: DR, Add support for ConnectX-7 steering
  * alsa: enable the cirrus-logic side-codec to make the speaker output sound
    (LP: #1965496)
    - ASoC: cs35l41: CS35L41 Boosted Smart Amplifier
    - ASoC: cs35l41: Fix use of an uninitialised variable
    - ASoC: cs35l41: Use regmap_read_poll_timeout to wait for OTP boot
    - ASoC: cs35l41: Combine adjacent register writes
    - ASoC: cs35l41: Don't overwrite returned error code
    - ASoC: cs35l41: Fixup the error messages
    - ASoC: cs35l41: Fix a bunch of trivial code formating/style issues
    - misc: cs35l41: Remove unused pdn variable
    - ASoC: cs35l41: Make cs35l41_remove() return void
    - ASoC: cs35l41: Change monitor widgets to siggens
    - ASoC: cs35l41: DSP Support
    - ASoC: cs35l41: Set the max SPI speed for the whole device
    - ASoC: cs35l41: Fix link problem
    - ASoC: cs35l41: Fix undefined reference to core functions
    - ASoC: cs35l41: Convert tables to shared source code
    - ASoC: cs35l41: Move cs35l41_otp_unpack to shared code
    - ASoC: cs35l41: Move power initializations to reg_sequence
    - ASoC: cs35l41: Create shared function for errata patches
    - ASoC: cs35l41: Create shared function for setting channels
    - ASoC: cs35l41: Create shared function for boost configuration
    - ASoC: cs35l41: Add cs35l51/53 IDs
    - ASoC: cs35l41: Remove incorrect comment
    - ASoC: cs35l41: Correct DSP power down
    - ASoC: cs35l41: Correct handling of some registers in the cache
    - ALSA: hda: cs35l41: Add support for CS35L41 in HDA systems
    - ASoC: cs35l41: Update handling of test key registers
    - ASoC: cs35l41: Add support for hibernate memory retention mode
    - ALSA: hda: cs35l41: fix double free on error in probe()
    - ALSA: hda: cs35l41: Avoid overwriting register patch
    - ALSA: hda: cs35l41: Add calls to newly added test key function
    - ALSA: hda: cs35l41: Move cs35l41* calls to its own symbol namespace
    - ALSA: hda: cs35l41: Add missing default cases
    - ALSA: hda: cs35l41: Make use of the helper function dev_err_probe()
    - ALSA: hda: cs35l41: Tidyup code
    - ALSA: hda: cs35l41: Make cs35l41_hda_remove() return void
    - ALSA: hda/realtek: Add support for Legion 7 16ACHg6 laptop
    - ALSA: hda/realtek: Add CS35L41 support for Thinkpad laptops
    - ALSA: hda/realtek: fix speakers and micmute on HP 855 G8
    - Revert "platform/x86: i2c-multi-instantiate: Don't create platform device
      for INT3515 ACPI nodes"
    - spi: Create helper API to lookup ACPI info for spi device
    - spi: Support selection of the index of the ACPI Spi Resource before alloc
    - spi: Add API to count spi acpi resources
    - platform/x86: i2c-multi-instantiate: Rename it for a generic serial driver
      name
    - platform/x86: serial-multi-instantiate: Reorganize I2C functions
    - platform/x86: serial-multi-instantiate: Add SPI support
    - ALSA: hda/realtek: Add support for HP Laptops
    - ACPI / scan: Create platform device for CS35L41
    - [Config] Add cirruslogic side codec support
  * Use kernel-testing repo from launchpad for ADT tests (LP: #1968016)
    - [Debian] Use kernel-testing repo from launchpad
  * Fix ADL, WD22TB4,Dual monitors display resolution can't reach 4K 60hz
    (LP: #1967986)
    - drm/i915/display: Remove check for low voltage sku for max dp source rate
    - drm/i915/intel_combo_phy: Print I/O voltage info
  * Support different Cirrus audio codec configurations on Dell laptops
    (LP: #1967988)
    - ALSA: hda/cs8409: Fix Warlock to use mono mic configuration
    - ALSA: hda/cs8409: Re-order quirk table into ascending order
    - ALSA: hda/cs8409: Fix Full Scale Volume setting for all variants
    - ALSA: hda/cs8409: Support new Warlock MLK Variants
    - ALSA: hda/cs8409: Disable HSBIAS_SENSE_EN for Cyborg
    - ALSA: hda/cs8409: Add new Dolphin HW variants
  * Enable speakup kernel modules to allow the speakup screen reader to function
    (LP: #1967702)
    - [Config] CONFIG_SPEAKUP=m
  * linux: CONFIG_SERIAL_8250_MID=y (LP: #1967338)
    - [Config] amd64 CONFIG_SERIAL_8250_MID=y
  * alsa/sdw: Fix the audio issue on a Dell machine without internal mic
    (LP: #1966841)
    - ASoC: Intel: soc-acpi: add entries in ADL match table
  * Jammy update: v5.15.34 upstream stable release (LP: #1969107)
    - Revert "UBUNTU: SAUCE: Revert "scsi: core: Reallocate device's budget map on
      queue depth change""
    - lib/logic_iomem: correct fallback config references
    - um: fix and optimize xor select template for CONFIG64 and timetravel mode
    - rtc: wm8350: Handle error for wm8350_register_irq
    - nbd: add error handling support for add_disk()
    - nbd: Fix incorrect error handle when first_minor is illegal in nbd_dev_add
    - nbd: Fix hungtask when nbd_config_put
    - nbd: fix possible overflow on 'first_minor' in nbd_dev_add()
    - kfence: count unexpectedly skipped allocations
    - kfence: move saving stack trace of allocations into __kfence_alloc()
    - kfence: limit currently covered allocations when pool nearly full
    - KVM: x86/pmu: Use different raw event masks for AMD and Intel
    - KVM: SVM: Fix kvm_cache_regs.h inclusions for is_guest_mode()
    - KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs
    - KVM: x86/pmu: Fix and isolate TSX-specific performance event logic
    - KVM: x86/emulator: Emulate RDPID only if it is enabled in guest
    - drm: Add orientation quirk for GPD Win Max
    - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111
    - drm/amd/display: Add signal type check when verify stream backends same
    - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj
    - drm/amd/display: Fix memory leak
    - drm/amd/display: Use PSR version selected during set_psr_caps
    - usb: gadget: tegra-xudc: Do not program SPARAM
    - usb: gadget: tegra-xudc: Fix control endpoint's definitions
    - usb: cdnsp: fix cdnsp_decode_trb function to properly handle ret value
    - ptp: replace snprintf with sysfs_emit
    - drm/amdkfd: Don't take process mutex for svm ioctls
    - powerpc: dts: t104xrdb: fix phy type for FMAN 4/5
    - ath11k: fix kernel panic during unload/load ath11k modules
    - ath11k: pci: fix crash on suspend if board file is not found
    - ath11k: mhi: use mhi_sync_power_up()
    - net/smc: Send directly when TCP_CORK is cleared
    - drm/bridge: Add missing pm_runtime_put_sync
    - bpf: Make dst_port field in struct bpf_sock 16-bit wide
    - scsi: mvsas: Replace snprintf() with sysfs_emit()
    - scsi: bfa: Replace snprintf() with sysfs_emit()
    - drm/v3d: fix missing unlock
    - power: supply: axp20x_battery: properly report current when discharging
    - mt76: mt7921: fix crash when startup fails.
    - mt76: dma: initialize skip_unmap in mt76_dma_rx_fill
    - cfg80211: don't add non transmitted BSS to 6GHz scanned channels
    - libbpf: Fix build issue with llvm-readelf
    - ipv6: make mc_forwarding atomic
    - net: initialize init_net earlier
    - powerpc: Set crashkernel offset to mid of RMA region
    - drm/amdgpu: Fix recursive locking warning
    - scsi: smartpqi: Fix kdump issue when controller is locked up
    - PCI: aardvark: Fix support for MSI interrupts
    - iommu/arm-smmu-v3: fix event handling soft lockup
    - usb: ehci: add pci device support for Aspeed platforms
    - PCI: endpoint: Fix alignment fault error in copy tests
    - tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.
    - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum
    - scsi: mpi3mr: Fix reporting of actual data transfer size
    - scsi: mpi3mr: Fix memory leaks
    - powerpc/set_memory: Avoid spinlock recursion in change_page_attr()
    - power: supply: axp288-charger: Set Vhold to 4.4V
    - net/mlx5e: Disable TX queues before registering the netdev
    - usb: dwc3: pci: Set the swnode from inside dwc3_pci_quirks()
    - iwlwifi: mvm: Correctly set fragmented EBS
    - iwlwifi: mvm: move only to an enabled channel
    - drm/msm/dsi: Remove spurious IRQF_ONESHOT flag
    - ipv4: Invalidate neighbour for broadcast address upon address addition
    - dm ioctl: prevent potential spectre v1 gadget
    - dm: requeue IO if mapping table not yet available
    - drm/amdkfd: make CRAT table missing message informational only
    - vfio/pci: Stub vfio_pci_vga_rw when !CONFIG_VFIO_PCI_VGA
    - scsi: pm8001: Fix pm80xx_pci_mem_copy() interface
    - scsi: pm8001: Fix pm8001_mpi_task_abort_resp()
    - scsi: pm8001: Fix task leak in pm8001_send_abort_all()
    - scsi: pm8001: Fix tag leaks on error
    - scsi: pm8001: Fix memory leak in pm8001_chip_fw_flash_update_req()
    - mt76: mt7915: fix injected MPDU transmission to not use HW A-MSDU
    - powerpc/64s/hash: Make hash faults work in NMI context
    - mt76: mt7615: Fix assigning negative values to unsigned variable
    - scsi: aha152x: Fix aha152x_setup() __setup handler return value
    - scsi: hisi_sas: Free irq vectors in order for v3 HW
    - scsi: hisi_sas: Limit users changing debugfs BIST count value
    - net/smc: correct settings of RMB window update limit
    - mips: ralink: fix a refcount leak in ill_acc_of_setup()
    - macvtap: advertise link netns via netlink
    - tuntap: add sanity checks about msg_controllen in sendmsg
    - Bluetooth: Fix not checking for valid hdev on bt_dev_{info,warn,err,dbg}
    - Bluetooth: use memset avoid memory leaks
    - bnxt_en: Eliminate unintended link toggle during FW reset
    - PCI: endpoint: Fix misused goto label
    - MIPS: fix fortify panic when copying asm exception handlers
    - powerpc/64e: Tie PPC_BOOK3E_64 to PPC_FSL_BOOK3E
    - powerpc/secvar: fix refcount leak in format_show()
    - scsi: libfc: Fix use after free in fc_exch_abts_resp()
    - can: isotp: set default value for N_As to 50 micro seconds
    - can: etas_es58x: es58x_fd_rx_event_msg(): initialize rx_event_msg before
      calling es58x_check_msg_len()
    - riscv: Fixed misaligned memory access. Fixed pointer comparison.
    - net: account alternate interface name memory
    - net: limit altnames to 64k total
    - net/mlx5e: Remove overzealous validations in netlink EEPROM query
    - net: sfp: add 2500base-X quirk for Lantech SFP module
    - usb: dwc3: omap: fix "unbalanced disables for smps10_out1" on omap5evm
    - mt76: fix monitor mode crash with sdio driver
    - xtensa: fix DTC warning unit_address_format
    - MIPS: ingenic: correct unit node address
    - Bluetooth: Fix use after free in hci_send_acl
    - netfilter: conntrack: revisit gc autotuning
    - netlabel: fix out-of-bounds memory accesses
    - ceph: fix inode reference leakage in ceph_get_snapdir()
    - ceph: fix memory leak in ceph_readdir when note_last_dentry returns error
    - lib/Kconfig.debug: add ARCH dependency for FUNCTION_ALIGN option
    - init/main.c: return 1 from handled __setup() functions
    - minix: fix bug when opening a file with O_DIRECT
    - clk: si5341: fix reported clk_rate when output divider is 2
    - staging: vchiq_arm: Avoid NULL ptr deref in vchiq_dump_platform_instances
    - staging: vchiq_core: handle NULL result of find_service_by_handle
    - phy: amlogic: phy-meson-gxl-usb2: fix shared reset controller use
    - phy: amlogic: meson8b-usb2: Use dev_err_probe()
    - phy: amlogic: meson8b-usb2: fix shared reset control use
    - clk: rockchip: drop CLK_SET_RATE_PARENT from dclk_vop* on rk3568
    - cpufreq: CPPC: Fix performance/frequency conversion
    - opp: Expose of-node's name in debugfs
    - staging: wfx: fix an error handling in wfx_init_common()
    - w1: w1_therm: fixes w1_seq for ds28ea00 sensors
    - NFSv4.2: fix reference count leaks in _nfs42_proc_copy_notify()
    - NFSv4: Protect the state recovery thread against direct reclaim
    - habanalabs: fix possible memory leak in MMU DR fini
    - xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32
    - clk: ti: Preserve node in ti_dt_clocks_register()
    - clk: Enforce that disjoints limits are invalid
    - SUNRPC/call_alloc: async tasks mustn't block waiting for memory
    - SUNRPC/xprt: async tasks mustn't block waiting for memory
    - SUNRPC: remove scheduling boost for "SWAPPER" tasks.
    - NFS: swap IO handling is slightly different for O_DIRECT IO
    - NFS: swap-out must always use STABLE writes.
    - x86: Annotate call_on_stack()
    - x86/Kconfig: Do not allow CONFIG_X86_X32_ABI=y with llvm-objcopy
    - serial: samsung_tty: do not unlock port->lock for uart_write_wakeup()
    - virtio_console: eliminate anonymous module_init & module_exit
    - jfs: prevent NULL deref in diFree
    - SUNRPC: Fix socket waits for write buffer space
    - NFS: nfsiod should not block forever in mempool_alloc()
    - NFS: Avoid writeback threads getting stuck in mempool_alloc()
    - selftests: net: Add tls config dependency for tls selftests
    - parisc: Fix CPU affinity for Lasi, WAX and Dino chips
    - parisc: Fix patch code locking and flushing
    - mm: fix race between MADV_FREE reclaim and blkdev direct IO read
    - rtc: mc146818-lib: change return values of mc146818_get_time()
    - rtc: Check return value from mc146818_get_time()
    - rtc: mc146818-lib: fix RTC presence check
    - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire()
    - Drivers: hv: vmbus: Fix potential crash on module unload
    - Revert "NFSv4: Handle the special Linux file open access mode"
    - NFSv4: fix open failure with O_ACCMODE flag
    - scsi: sr: Fix typo in CDROM(CLOSETRAY|EJECT) handling
    - scsi: core: Fix sbitmap depth in scsi_realloc_sdev_budget_map()
    - scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one()
    - vdpa/mlx5: Rename control VQ workqueue to vdpa wq
    - vdpa/mlx5: Propagate link status from device to vdpa driver
    - vdpa: mlx5: prevent cvq work from hogging CPU
    - net: sfc: add missing xdp queue reinitialization
    - net/tls: fix slab-out-of-bounds bug in decrypt_internal
    - vrf: fix packet sniffing for traffic originating from ip tunnels
    - skbuff: fix coalescing for page_pool fragment recycling
    - ice: Clear default forwarding VSI during VSI release
    - mctp: Fix check for dev_hard_header() result
    - net: ipv4: fix route with nexthop object delete warning
    - net: stmmac: Fix unset max_speed difference between DT and non-DT platforms
    - drm/imx: imx-ldb: Check for null pointer after calling kmemdup
    - drm/imx: Fix memory leak in imx_pd_connector_get_modes
    - drm/imx: dw_hdmi-imx: Fix bailout in error cases of probe
    - regulator: rtq2134: Fix missing active_discharge_on setting
    - regulator: atc260x: Fix missing active_discharge_on setting
    - arch/arm64: Fix topology initialization for core scheduling
    - bnxt_en: Synchronize tx when xdp redirects happen on same ring
    - bnxt_en: reserve space inside receive page for skb_shared_info
    - bnxt_en: Prevent XDP redirect from running when stopping TX queue
    - sfc: Do not free an empty page_ring
    - RDMA/mlx5: Don't remove cache MRs when a delay is needed
    - RDMA/mlx5: Add a missing update of cache->last_add
    - IB/cm: Cancel mad on the DREQ event when the state is MRA_REP_RCVD
    - IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition
    - sctp: count singleton chunks in assoc user stats
    - dpaa2-ptp: Fix refcount leak in dpaa2_ptp_probe
    - ice: Set txq_teid to ICE_INVAL_TEID on ring creation
    - ice: Do not skip not enabled queues in ice_vc_dis_qs_msg
    - ipv6: Fix stats accounting in ip6_pkt_drop
    - ice: synchronize_rcu() when terminating rings
    - ice: xsk: fix VSI state check in ice_xsk_wakeup()
    - net: openvswitch: don't send internal clone attribute to the userspace.
    - net: ethernet: mv643xx: Fix over zealous checking of_get_mac_address()
    - net: openvswitch: fix leak of nested actions
    - rxrpc: fix a race in rxrpc_exit_net()
    - net: sfc: fix using uninitialized xdp tx_queue
    - net: phy: mscc-miim: reject clause 45 register accesses
    - qede: confirm skb is allocated before using
    - spi: bcm-qspi: fix MSPI only access with bcm_qspi_exec_mem_op()
    - bpf: Support dual-stack sockets in bpf_tcp_check_syncookie
    - drbd: Fix five use after free bugs in get_initial_state
    - scsi: ufs: ufshpb: Fix a NULL check on list iterator
    - io_uring: nospec index for tags on files update
    - io_uring: don't touch scm_fp_list after queueing skb
    - SUNRPC: Handle ENOMEM in call_transmit_status()
    - SUNRPC: Handle low memory situations in call_status()
    - SUNRPC: svc_tcp_sendmsg() should handle errors from xdr_alloc_bvec()
    - iommu/omap: Fix regression in probe for NULL pointer dereference
    - perf: arm-spe: Fix perf report --mem-mode
    - perf tools: Fix perf's libperf_print callback
    - perf session: Remap buf if there is no space for event
    - arm64: Add part number for Arm Cortex-A78AE
    - scsi: mpt3sas: Fix use after free in _scsih_expander_node_remove()
    - scsi: ufs: ufs-pci: Add support for Intel MTL
    - Revert "mmc: sdhci-xenon: fix annoying 1.8V regulator warning"
    - mmc: block: Check for errors after write on SPI
    - mmc: mmci: stm32: correctly check all elements of sg list
    - mmc: renesas_sdhi: don't overwrite TAP settings when HS400 tuning is
      complete
    - mmc: core: Fixup support for writeback-cache for eMMC and SD
    - lz4: fix LZ4_decompress_safe_partial read out of bound
    - highmem: fix checks in __kmap_local_sched_{in,out}
    - mmmremap.c: avoid pointless invalidate_range_start/end on mremap(old_size=0)
    - mm/mempolicy: fix mpol_new leak in shared_policy_replace
    - io_uring: don't check req->file in io_fsync_prep()
    - io_uring: defer splice/tee file validity check until command issue
    - io_uring: implement compat handling for IORING_REGISTER_IOWQ_AFF
    - io_uring: fix race between timeout flush and removal
    - x86/pm: Save the MSR validity status at context setup
    - x86/speculation: Restore speculation related MSRs during S3 resume
    - perf/x86/intel: Update the FRONTEND MSR mask on Sapphire Rapids
    - btrfs: fix qgroup reserve overflow the qgroup limit
    - btrfs: prevent subvol with swapfile from being deleted
    - spi: core: add dma_map_dev for __spi_unmap_msg()
    - arm64: patch_text: Fixup last cpu should be master
    - RDMA/hfi1: Fix use-after-free bug for mm struct
    - gpio: Restrict usage of GPIO chip irq members before initialization
    - x86/msi: Fix msi message data shadow struct
    - x86/mm/tlb: Revert retpoline avoidance approach
    - perf/x86/intel: Don't extend the pseudo-encoding to GP counters
    - ata: sata_dwc_460ex: Fix crash due to OOB write
    - perf: qcom_l2_pmu: fix an incorrect NULL check on list iterator
    - perf/core: Inherit event_caps
    - irqchip/gic-v3: Fix GICR_CTLR.RWP polling
    - fbdev: Fix unregistering of framebuffers without device
    - amd/display: set backlight only if required
    - SUNRPC: Prevent immediate close+reconnect
    - drm/panel: ili9341: fix optional regulator handling
    - drm/amdgpu/display: change pipe policy for DCN 2.1
    - drm/amdgpu/smu10: fix SoC/fclk units in auto mode
    - drm/amdgpu/vcn: Fix the register setting for vcn1
    - drm/nouveau/pmu: Add missing callbacks for Tegra devices
    - drm/amdkfd: Create file descriptor after client is added to smi_clients list
    - drm/amdgpu: don't use BACO for reset in S3
    - KVM: SVM: Allow AVIC support on system w/ physical APIC ID > 255
    - net/smc: send directly on setting TCP_NODELAY
    - Revert "selftests: net: Add tls config dependency for tls selftests"
    - bpf: Make remote_port field in struct bpf_sk_lookup 16-bit wide
    - selftests/bpf: Fix u8 narrow load checks for bpf_sk_lookup remote_port
    - rtc: mc146818-lib: fix signedness bug in mc146818_get_time()
    - SUNRPC: Don't call connect() more than once on a TCP socket
    - Revert "nbd: fix possible overflow on 'first_minor' in nbd_dev_add()"
    - perf build: Don't use -ffat-lto-objects in the python feature test when
      building with clang-13
    - perf python: Fix probing for some clang command line options
    - tools build: Filter out options and warnings not supported by clang
    - tools build: Use $(shell ) instead of `` to get embedded libperl's ccopts
    - dmaengine: Revert "dmaengine: shdma: Fix runtime PM imbalance on error"
    - KVM: avoid NULL pointer dereference in kvm_dirty_ring_push
    - Revert "net/mlx5: Accept devlink user input after driver initialization
      complete"
    - ubsan: remove CONFIG_UBSAN_OBJECT_SIZE
    - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644
    - selftests: cgroup: Test open-time credential usage for migration checks
    - selftests: cgroup: Test open-time cgroup namespace usage for migration
      checks
    - mm: don't skip swap entry even if zap_details specified
    - Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb()
    - x86/bug: Prevent shadowing in __WARN_FLAGS
    - sched: Teach the forced-newidle balancer about CPU affinity limitation.
    - x86,static_call: Fix __static_call_return0 for i386
    - irqchip/gic-v4: Wait for GICR_VPENDBASER.Dirty to clear before descheduling
    - powerpc/64: Fix build failure with allyesconfig in book3s_64_entry.S
    - irqchip/gic, gic-v3: Prevent GSI to SGI translations
    - mm/sparsemem: fix 'mem_section' will never be NULL gcc 12 warning
    - static_call: Don't make __static_call_return0 static
    - powerpc: Fix virt_addr_valid() for 64-bit Book3E & 32-bit
    - stacktrace: move filter_irq_stacks() to kernel/stacktrace.c
    - Linux 5.15.34
    - [Config] armhf, s390x: update annotations following
      DEBUG_FORCE_FUNCTION_ALIGN_64B support removal in v5.15.34
  * Jammy update: v5.15.33 upstream stable release (LP: #1969110)
    - Revert "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""
    - USB: serial: pl2303: add IBM device IDs
    - dt-bindings: usb: hcd: correct usb-device path
    - USB: serial: pl2303: fix GS type detection
    - USB: serial: simple: add Nokia phone driver
    - mm: kfence: fix missing objcg housekeeping for SLAB
    - hv: utils: add PTP_1588_CLOCK to Kconfig to fix build
    - HID: logitech-dj: add new lightspeed receiver id
    - HID: Add support for open wheel and no attachment to T300
    - xfrm: fix tunnel model fragmentation behavior
    - ARM: mstar: Select HAVE_ARM_ARCH_TIMER
    - virtio_console: break out of buf poll on remove
    - vdpa/mlx5: should verify CTRL_VQ feature exists for MQ
    - tools/virtio: fix virtio_test execution
    - ethernet: sun: Free the coherent when failing in probing
    - gpio: Revert regression in sysfs-gpio (gpiolib.c)
    - spi: Fix invalid sgs value
    - net:mcf8390: Use platform_get_irq() to get the interrupt
    - Revert "gpio: Revert regression in sysfs-gpio (gpiolib.c)"
    - spi: Fix erroneous sgs value with min_t()
    - Input: zinitix - do not report shadow fingers
    - af_key: add __GFP_ZERO flag for compose_sadb_supported in function
      pfkey_register
    - net: dsa: microchip: add spi_device_id tables
    - selftests: vm: fix clang build error multiple output files
    - locking/lockdep: Avoid potential access of invalid memory in lock_class
    - drm/amdgpu: move PX checking into amdgpu_device_ip_early_init
    - drm/amdgpu: only check for _PR3 on dGPUs
    - iommu/iova: Improve 32-bit free space estimate
    - virtio-blk: Use blk_validate_block_size() to validate block size
    - tpm: fix reference counting for struct tpm_chip
    - usb: typec: tipd: Forward plug orientation to typec subsystem
    - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c
    - xhci: fix garbage USBSTS being logged in some cases
    - xhci: fix runtime PM imbalance in USB2 resume
    - xhci: make xhci_handshake timeout for xhci_reset() adjustable
    - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx()
    - mei: me: disable driver on the ign firmware
    - mei: me: add Alder Lake N device id.
    - mei: avoid iterator usage outside of list_for_each_entry
    - bus: mhi: pci_generic: Add mru_default for Quectel EM1xx series
    - bus: mhi: Fix MHI DMA structure endianness
    - docs: sphinx/requirements: Limit jinja2<3.1
    - coresight: Fix TRCCONFIGR.QE sysfs interface
    - coresight: syscfg: Fix memleak on registration failure in
      cscfg_create_device
    - iio: afe: rescale: use s64 for temporary scale calculations
    - iio: inkern: apply consumer scale on IIO_VAL_INT cases
    - iio: inkern: apply consumer scale when no channel scale is available
    - iio: inkern: make a best effort on offset calculation
    - greybus: svc: fix an error handling bug in gb_svc_hello()
    - clk: rockchip: re-add rational best approximation algorithm to the
      fractional divider
    - clk: uniphier: Fix fixed-rate initialization
    - cifs: fix handlecache and multiuser
    - cifs: we do not need a spinlock around the tree access during umount
    - KEYS: fix length validation in keyctl_pkey_params_get_2()
    - KEYS: asymmetric: enforce that sig algo matches key algo
    - KEYS: asymmetric: properly validate hash_algo and encoding
    - Documentation: add link to stable release candidate tree
    - Documentation: update stable tree link
    - firmware: stratix10-svc: add missing callback parameter on RSU
    - firmware: sysfb: fix platform-device leak in error path
    - HID: intel-ish-hid: Use dma_alloc_coherent for firmware update
    - SUNRPC: avoid race between mod_timer() and del_timer_sync()
    - NFS: NFSv2/v3 clients should never be setting NFS_CAP_XATTR
    - NFSD: prevent underflow in nfssvc_decode_writeargs()
    - NFSD: prevent integer overflow on 32 bit systems
    - f2fs: fix to unlock page correctly in error path of is_alive()
    - f2fs: quota: fix loop condition at f2fs_quota_sync()
    - f2fs: fix to do sanity check on .cp_pack_total_block_count
    - remoteproc: Fix count check in rproc_coredump_write()
    - mm/mlock: fix two bugs in user_shm_lock()
    - pinctrl: ingenic: Fix regmap on X series SoCs
    - pinctrl: samsung: drop pin banks references on error paths
    - net: bnxt_ptp: fix compilation error
    - spi: mxic: Fix the transmit path
    - mtd: rawnand: protect access to rawnand devices while in suspend
    - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path
    - can: m_can: m_can_tx_handler(): fix use after free of skb
    - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error
      path
    - jffs2: fix use-after-free in jffs2_clear_xattr_subsystem
    - jffs2: fix memory leak in jffs2_do_mount_fs
    - jffs2: fix memory leak in jffs2_scan_medium
    - mm: fs: fix lru_cache_disabled race in bh_lru
    - mm/pages_alloc.c: don't create ZONE_MOVABLE beyond the end of a node
    - mm: invalidate hwpoison page cache page in fault path
    - mempolicy: mbind_range() set_policy() after vma_merge()
    - scsi: core: sd: Add silence_suspend flag to suppress some PM messages
    - scsi: ufs: Fix runtime PM messages never-ending cycle
    - scsi: scsi_transport_fc: Fix FPIN Link Integrity statistics counters
    - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands
    - qed: display VF trust config
    - qed: validate and restrict untrusted VFs vlan promisc mode
    - riscv: dts: canaan: Fix SPI3 bus width
    - riscv: Fix fill_callchain return value
    - riscv: Increase stack size under KASAN
    - Revert "Input: clear BTN_RIGHT/MIDDLE on buttonpads"
    - cifs: prevent bad output lengths in smb2_ioctl_query_info()
    - cifs: fix NULL ptr dereference in smb2_ioctl_query_info()
    - ALSA: cs4236: fix an incorrect NULL check on list iterator
    - ALSA: hda: Avoid unsol event during RPM suspending
    - ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock
    - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020
    - rtc: mc146818-lib: fix locking in mc146818_set_time
    - rtc: pl031: fix rtc features null pointer dereference
    - ocfs2: fix crash when mount with quota enabled
    - drm/simpledrm: Add "panel orientation" property on non-upright mounted LCD
      panels
    - mm: madvise: skip unmapped vma holes passed to process_madvise
    - mm: madvise: return correct bytes advised with process_madvise
    - Revert "mm: madvise: skip unmapped vma holes passed to process_madvise"
    - mm,hwpoison: unmap poisoned page before invalidation
    - mm/kmemleak: reset tag when compare object pointer
    - dm stats: fix too short end duration_ns when using precise_timestamps
    - dm: fix use-after-free in dm_cleanup_zoned_dev()
    - dm: interlock pending dm_io and dm_wait_for_bios_completion
    - dm: fix double accounting of flush with data
    - dm integrity: set journal entry unused when shrinking device
    - tracing: Have trace event string test handle zero length strings
    - drbd: fix potential silent data corruption
    - powerpc/kvm: Fix kvm_use_magic_page
    - PCI: fu740: Force 2.5GT/s for initial device probe
    - arm64: signal: nofpsimd: Do not allocate fp/simd context when not available
    - arm64: Do not defer reserve_crashkernel() for platforms with no DMA memory
      zones
    - arm64: dts: qcom: sm8250: Fix MSI IRQ for PCIe1 and PCIe2
    - arm64: dts: ti: k3-am65: Fix gic-v3 compatible regs
    - arm64: dts: ti: k3-j721e: Fix gic-v3 compatible regs
    - arm64: dts: ti: k3-j7200: Fix gic-v3 compatible regs
    - arm64: dts: ti: k3-am64: Fix gic-v3 compatible regs
    - ASoC: SOF: Intel: Fix NULL ptr dereference when ENOMEM
    - Revert "ACPI: Pass the same capabilities to the _OSC regardless of the query
      flag"
    - ACPI: properties: Consistently return -ENOENT if there are no more
      references
    - coredump: Also dump first pages of non-executable ELF libraries
    - ext4: fix ext4_fc_stats trace point
    - ext4: fix fs corruption when tring to remove a non-empty directory with IO
      error
    - ext4: make mb_optimize_scan performance mount option work with extents
    - drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()
    - samples/landlock: Fix path_list memory leak
    - landlock: Use square brackets around "landlock-ruleset"
    - mailbox: tegra-hsp: Flush whole channel
    - block: limit request dispatch loop duration
    - block: don't merge across cgroup boundaries if blkcg is enabled
    - drm/edid: check basic audio support on CEA extension block
    - fbdev: Hot-unplug firmware fb devices on forced removal
    - video: fbdev: sm712fb: Fix crash in smtcfb_read()
    - video: fbdev: atari: Atari 2 bpp (STe) palette bugfix
    - rfkill: make new event layout opt-in
    - ARM: dts: at91: sama7g5: Remove unused properties in i2c nodes
    - ARM: dts: at91: sama5d2: Fix PMERRLOC resource size
    - ARM: dts: exynos: fix UART3 pins configuration in Exynos5250
    - ARM: dts: exynos: add missing HDMI supplies on SMDK5250
    - ARM: dts: exynos: add missing HDMI supplies on SMDK5420
    - mgag200 fix memmapsl configuration in GCTL6 register
    - carl9170: fix missing bit-wise or operator for tx_params
    - pstore: Don't use semaphores in always-atomic-context code
    - thermal: int340x: Increase bitmap size
    - lib/raid6/test: fix multiple definition linking error
    - exec: Force single empty string when argv is empty
    - crypto: rsa-pkcs1pad - only allow with rsa
    - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist
    - crypto: rsa-pkcs1pad - restore signature length check
    - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete()
    - bcache: fixup multiple threads crash
    - PM: domains: Fix sleep-in-atomic bug caused by genpd_debug_remove()
    - DEC: Limit PMAX memory probing to R3k systems
    - media: gpio-ir-tx: fix transmit with long spaces on Orange Pi PC
    - media: venus: hfi_cmds: List HDR10 property as unsupported for v1 and v3
    - media: venus: venc: Fix h264 8x8 transform control
    - media: davinci: vpif: fix unbalanced runtime PM get
    - media: davinci: vpif: fix unbalanced runtime PM enable
    - btrfs: zoned: mark relocation as writing
    - btrfs: extend locking to all space_info members accesses
    - btrfs: verify the tranisd of the to-be-written dirty extent buffer
    - xtensa: define update_mmu_tlb function
    - xtensa: fix stop_machine_cpuslocked call in patch_text
    - xtensa: fix xtensa_wsr always writing 0
    - drm/syncobj: flatten dma_fence_chains on transfer
    - drm/nouveau/backlight: Fix LVDS backlight detection on some laptops
    - drm/nouveau/backlight: Just set all backlight types as RAW
    - drm/fb-helper: Mark screen buffers in system memory with FBINFO_VIRTFB
    - brcmfmac: firmware: Allocate space for default boardrev in nvram
    - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path
    - brcmfmac: pcie: Declare missing firmware files in pcie.c
    - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio
    - brcmfmac: pcie: Fix crashes due to early IRQs
    - drm/i915/opregion: check port number bounds for SWSCI display power state
    - drm/i915/gem: add missing boundary check in vm_access
    - PCI: imx6: Allow to probe when dw_pcie_wait_for_link() fails
    - PCI: pciehp: Clear cmd_busy bit in polling mode
    - PCI: xgene: Revert "PCI: xgene: Fix IB window setup"
    - regulator: qcom_smd: fix for_each_child.cocci warnings
    - selinux: access superblock_security_struct in LSM blob way
    - selinux: check return value of sel_make_avc_files
    - crypto: ccp - Ensure psp_ret is always init'd in
      __sev_platform_init_locked()
    - hwrng: cavium - Check health status while reading random data
    - hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER
    - crypto: sun8i-ss - really disable hash on A80
    - crypto: authenc - Fix sleep in atomic context in decrypt_tail
    - crypto: mxs-dcp - Fix scatterlist processing
    - selinux: Fix selinux_sb_mnt_opts_compat()
    - thermal: int340x: Check for NULL after calling kmemdup()
    - crypto: octeontx2 - remove CONFIG_DM_CRYPT check
    - spi: tegra114: Add missing IRQ check in tegra_spi_probe
    - spi: tegra210-quad: Fix missin IRQ check in tegra_qspi_probe
    - stack: Constrain and fix stack offset randomization with Clang builds
    - arm64/mm: avoid fixmap race condition when create pud mapping
    - blk-cgroup: set blkg iostat after percpu stat aggregation
    - selftests/x86: Add validity check and allow field splitting
    - selftests/sgx: Treat CC as one argument
    - crypto: rockchip - ECB does not need IV
    - audit: log AUDIT_TIME_* records only from rules
    - EVM: fix the evm= __setup handler return value
    - crypto: ccree - don't attempt 0 len DMA mappings
    - crypto: hisilicon/sec - fix the aead software fallback for engine
    - spi: pxa2xx-pci: Balance reference count for PCI DMA device
    - hwmon: (pmbus) Add mutex to regulator ops
    - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING
    - nvme: cleanup __nvme_check_ids
    - nvme: fix the check for duplicate unique identifiers
    - block: don't delete queue kobject before its children
    - PM: hibernate: fix __setup handler error handling
    - PM: suspend: fix return value of __setup handler
    - spi: spi-zynqmp-gqspi: Handle error for dma_set_mask
    - hwrng: atmel - disable trng on failure path
    - crypto: sun8i-ss - call finalize with bh disabled
    - crypto: sun8i-ce - call finalize with bh disabled
    - crypto: amlogic - call finalize with bh disabled
    - crypto: gemini - call finalize with bh disabled
    - crypto: vmx - add missing dependencies
    - clocksource/drivers/timer-ti-dm: Fix regression from errata i940 fix
    - clocksource/drivers/exynos_mct: Refactor resources allocation
    - clocksource/drivers/exynos_mct: Handle DTS with higher number of interrupts
    - clocksource/drivers/timer-microchip-pit64b: Use notrace
    - clocksource/drivers/timer-of: Check return value of of_iomap in
      timer_of_base_init()
    - arm64: prevent instrumentation of bp hardening callbacks
    - KEYS: trusted: Fix trusted key backends when building as module
    - KEYS: trusted: Avoid calling null function trusted_key_exit
    - ACPI: APEI: fix return value of __setup handlers
    - crypto: ccp - ccp_dmaengine_unregister release dma channels
    - crypto: ccree - Fix use after free in cc_cipher_exit()
    - hwrng: nomadik - Change clk_disable to clk_disable_unprepare
    - hwmon: (pmbus) Add Vin unit off handling
    - clocksource: acpi_pm: fix return value of __setup handler
    - io_uring: don't check unrelated req->open.how in accept request
    - io_uring: terminate manual loop iterator loop correctly for non-vecs
    - watch_queue: Fix NULL dereference in error cleanup
    - watch_queue: Actually free the watch
    - f2fs: fix to enable ATGC correctly via gc_idle sysfs interface
    - sched/debug: Remove mpol_get/put and task_lock/unlock from sched_show_numa
    - sched/core: Export pelt_thermal_tp
    - sched/uclamp: Fix iowait boost escaping uclamp restriction
    - rseq: Remove broken uapi field layout on 32-bit little endian
    - perf/core: Fix address filter parser for multiple filters
    - perf/x86/intel/pt: Fix address filter config for 32-bit kernel
    - sched/fair: Improve consistency of allowed NUMA balance calculations
    - f2fs: fix missing free nid in f2fs_handle_failed_inode
    - nfsd: more robust allocation failure handling in nfsd_file_cache_init
    - sched/cpuacct: Fix charge percpu cpuusage
    - sched/rt: Plug rt_mutex_setprio() vs push_rt_task() race
    - f2fs: fix to avoid potential deadlock
    - btrfs: fix unexpected error path when reflinking an inline extent
    - f2fs: fix compressed file start atomic write may cause data corruption
    - selftests, x86: fix how check_cc.sh is being invoked
    - drivers/base/memory: add memory block to memory group after registration
      succeeded
    - kunit: make kunit_test_timeout compatible with comment
    - pinctrl: samsung: Remove EINT handler for Exynos850 ALIVE and CMGP gpios
    - media: staging: media: zoran: fix usage of vb2_dma_contig_set_max_seg_size
    - media: camss: csid-170: fix non-10bit formats
    - media: camss: csid-170: don't enable unused irqs
    - media: camss: csid-170: set the right HALT_CMD when disabled
    - media: camss: vfe-170: fix "VFE halt timeout" error
    - media: staging: media: imx: imx7-mipi-csis: Make subdev name unique
    - media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP buffers across ioctls
    - media: mtk-vcodec: potential dereference of null pointer
    - media: imx: imx8mq-mipi-csi2: remove wrong irq config write operation
    - media: imx: imx8mq-mipi_csi2: fix system resume
    - media: bttv: fix WARNING regression on tunerless devices
    - media: atmel: atmel-sama7g5-isc: fix ispck leftover
    - ASoC: sh: rz-ssi: Drop calling rz_ssi_pio_recv() recursively
    - ASoC: codecs: Check for error pointer after calling devm_regmap_init_mmio
    - ASoC: xilinx: xlnx_formatter_pcm: Handle sysclk setting
    - ASoC: simple-card-utils: Set sysclk on all components
    - media: coda: Fix missing put_device() call in coda_get_vdoa_data
    - media: meson: vdec: potential dereference of null pointer
    - media: hantro: Fix overfill bottom register field name
    - media: ov6650: Fix set format try processing path
    - media: v4l: Avoid unaligned access warnings when printing 4cc modifiers
    - media: ov5648: Don't pack controls struct
    - media: aspeed: Correct value for h-total-pixels
    - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to
      avoid black screen
    - video: fbdev: controlfb: Fix COMPILE_TEST build
    - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe()
    - video: fbdev: atmel_lcdfb: fix an error code in atmel_lcdfb_probe()
    - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name()
    - ARM: dts: Fix OpenBMC flash layout label addresses
    - firmware: qcom: scm: Remove reassignment to desc following initializer
    - ARM: dts: qcom: ipq4019: fix sleep clock
    - soc: qcom: rpmpd: Check for null return of devm_kcalloc
    - soc: qcom: ocmem: Fix missing put_device() call in of_get_ocmem
    - soc: qcom: aoss: remove spurious IRQF_ONESHOT flags
    - arm64: dts: qcom: sdm845: fix microphone bias properties and values
    - arm64: dts: qcom: sm8250: fix PCIe bindings to follow schema
    - arm64: dts: broadcom: bcm4908: use proper TWD binding
    - arm64: dts: qcom: sm8150: Correct TCS configuration for apps rsc
    - arm64: dts: qcom: sm8350: Correct TCS configuration for apps rsc
    - firmware: ti_sci: Fix compilation failure when CONFIG_TI_SCI_PROTOCOL is not
      defined
    - soc: ti: wkup_m3_ipc: Fix IRQ check in wkup_m3_ipc_probe
    - ARM: dts: sun8i: v3s: Move the csi1 block to follow address order
    - vsprintf: Fix potential unaligned access
    - ARM: dts: imx: Add missing LVDS decoder on M53Menlo
    - media: mexon-ge2d: fixup frames size in registers
    - media: video/hdmi: handle short reads of hdmi info frame.
    - media: ti-vpe: cal: Fix a NULL pointer dereference in
      cal_ctx_v4l2_init_formats()
    - media: em28xx: initialize refcount before kref_get
    - media: usb: go7007: s2250-board: fix leak in probe()
    - media: cedrus: H265: Fix neighbour info buffer size
    - media: cedrus: h264: Fix neighbour info buffer size
    - ASoC: codecs: rx-macro: fix accessing compander for aux
    - ASoC: codecs: rx-macro: fix accessing array out of bounds for enum type
    - ASoC: codecs: va-macro: fix accessing array out of bounds for enum type
    - ASoC: codecs: wc938x: fix accessing array out of bounds for enum type
    - ASoC: codecs: wcd938x: fix kcontrol max values
    - ASoC: codecs: wcd934x: fix kcontrol max values
    - ASoC: codecs: wcd934x: fix return value of wcd934x_rx_hph_mode_put
    - media: v4l2-core: Initialize h264 scaling matrix
    - media: ov5640: Fix set format, v4l2_mbus_pixelcode not updated
    - selftests/lkdtm: Add UBSAN config
    - lib: uninline simple_strntoull() as well
    - vsprintf: Fix %pK with kptr_restrict == 0
    - uaccess: fix nios2 and microblaze get_user_8()
    - ASoC: rt5663: check the return value of devm_kzalloc() in rt5663_parse_dp()
    - soc: mediatek: pm-domains: Add wakeup capacity support in power domain
    - mmc: sdhci_am654: Fix the driver data of AM64 SoC
    - ASoC: ti: davinci-i2s: Add check for clk_enable()
    - ALSA: spi: Add check for clk_enable()
    - arm64: dts: ns2: Fix spi-cpol and spi-cpha property
    - arm64: dts: broadcom: Fix sata nodename
    - printk: fix return value of printk.devkmsg __setup handler
    - ASoC: mxs-saif: Handle errors for clk_enable
    - ASoC: atmel_ssc_dai: Handle errors for clk_enable
    - ASoC: dwc-i2s: Handle errors for clk_enable
    - ASoC: soc-compress: prevent the potentially use of null pointer
    - memory: emif: Add check for setup_interrupts
    - memory: emif: check the pointer temp in get_device_details()
    - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction
    - arm64: dts: rockchip: Fix SDIO regulator supply properties on rk3399-firefly
    - m68k: coldfire/device.c: only build for MCF_EDMA when h/w macros are defined
    - media: stk1160: If start stream fails, return buffers with
      VB2_BUF_STATE_QUEUED
    - media: vidtv: Check for null return of vzalloc
    - ASoC: atmel: Add missing of_node_put() in at91sam9g20ek_audio_probe
    - ASoC: wm8350: Handle error for wm8350_register_irq
    - ASoC: fsi: Add check for clk_enable
    - video: fbdev: omapfb: Add missing of_node_put() in dvic_probe_of
    - media: saa7134: fix incorrect use to determine if list is empty
    - ivtv: fix incorrect device_caps for ivtvfb
    - ASoC: atmel: Fix error handling in snd_proto_probe
    - ASoC: rockchip: i2s: Fix missing clk_disable_unprepare() in
      rockchip_i2s_probe
    - ASoC: SOF: Add missing of_node_put() in imx8m_probe
    - ASoC: mediatek: use of_device_get_match_data()
    - ASoC: mediatek: mt8192-mt6359: Fix error handling in mt8192_mt6359_dev_probe
    - ASoC: rk817: Fix missing clk_disable_unprepare() in rk817_platform_probe
    - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback
    - ASoC: mxs: Fix error handling in mxs_sgtl5000_probe
    - ASoC: fsl_spdif: Disable TX clock when stop
    - ASoC: imx-es8328: Fix error return code in imx_es8328_probe()
    - ASoC: SOF: Intel: enable DMI L1 for playback streams
    - ASoC: msm8916-wcd-digital: Fix missing clk_disable_unprepare() in
      msm8916_wcd_digital_probe
    - mmc: davinci_mmc: Handle error for clk_enable
    - ASoC: atmel: Fix error handling in sam9x5_wm8731_driver_probe
    - ASoC: msm8916-wcd-analog: Fix error handling in pm8916_wcd_analog_spmi_probe
    - ASoC: codecs: wcd934x: Add missing of_node_put() in wcd934x_codec_parse_data
    - ASoC: amd: Fix reference to PCM buffer address
    - ARM: configs: multi_v5_defconfig: re-enable CONFIG_V4L_PLATFORM_DRIVERS
    - ARM: configs: multi_v5_defconfig: re-enable DRM_PANEL and FB_xxx
    - drm/meson: osd_afbcd: Add an exit callback to struct meson_afbcd_ops
    - drm/meson: Make use of the helper function
      devm_platform_ioremap_resourcexxx()
    - drm/meson: split out encoder from meson_dw_hdmi
    - drm/meson: Fix error handling when afbcd.ops->init fails
    - drm/bridge: Fix free wrong object in sii8620_init_rcp_input_dev
    - drm/bridge: Add missing pm_runtime_disable() in __dw_mipi_dsi_probe
    - drm/bridge: nwl-dsi: Fix PM disable depth imbalance in nwl_dsi_probe
    - drm: bridge: adv7511: Fix ADV7535 HPD enablement
    - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern
    - drm/v3d/v3d_drv: Check for error num after setting mask
    - drm/panfrost: Check for error num after setting mask
    - libbpf: Fix possible NULL pointer dereference when destroying skeleton
    - bpftool: Only set obj->skeleton on complete success
    - udmabuf: validate ubuf->pagecount
    - bpf: Fix UAF due to race between btf_try_get_module and load_module
    - drm/selftests/test-drm_dp_mst_helper: Fix memory leak in
      sideband_msg_req_encode_decode
    - selftests: bpf: Fix bind on used port
    - Bluetooth: btintel: Fix WBS setting for Intel legacy ROM products
    - Bluetooth: hci_serdev: call init_rwsem() before p->open()
    - mtd: onenand: Check for error irq
    - mtd: rawnand: gpmi: fix controller timings setting
    - drm/edid: Don't clear formats if using deep color
    - drm/edid: Split deep color modes between RGB and YUV444
    - ionic: fix type complaint in ionic_dev_cmd_clean()
    - ionic: start watchdog after all is setup
    - ionic: Don't send reset commands if FW isn't running
    - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl()
    - drm/amd/display: Fix a NULL pointer dereference in
      amdgpu_dm_connector_add_common_modes()
    - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function
    - net: phy: at803x: move page selection fix to config_init
    - selftests/bpf: Normalize XDP section names in selftests
    - selftests/bpf/test_xdp_redirect_multi: use temp netns for testing
    - ath9k_htc: fix uninit value bugs
    - RDMA/core: Set MR type in ib_reg_user_mr
    - KVM: PPC: Fix vmx/vsx mixup in mmio emulation
    - selftests/net: timestamping: Fix bind_phc check
    - i40e: don't reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb
    - i40e: respect metadata on XSK Rx to skb
    - igc: don't reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb
    - ixgbe: pass bi->xdp to ixgbe_construct_skb_zc() directly
    - ixgbe: don't reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb
    - ixgbe: respect metadata on XSK Rx to skb
    - power: reset: gemini-poweroff: Fix IRQ check in gemini_poweroff_probe
    - ray_cs: Check ioremap return value
    - powerpc: dts: t1040rdb: fix ports names for Seville Ethernet switch
    - KVM: PPC: Book3S HV: Check return value of kvmppc_radix_init
    - powerpc/perf: Don't use perf_hw_context for trace IMC PMU
    - mt76: connac: fix sta_rec_wtbl tag len
    - mt76: mt7915: use proper aid value in mt7915_mcu_wtbl_generic_tlv in sta
      mode
    - mt76: mt7915: use proper aid value in mt7915_mcu_sta_basic_tlv
    - mt76: mt7921: fix a leftover race in runtime-pm
    - mt76: mt7615: fix a leftover race in runtime-pm
    - mt76: mt7603: check sta_rates pointer in mt7603_sta_rate_tbl_update
    - mt76: mt7615: check sta_rates pointer in mt7615_sta_rate_tbl_update
    - ptp: unregister virtual clocks when unregistering physical clock.
    - net: dsa: mv88e6xxx: Enable port policy support on 6097
    - mac80211: Remove a couple of obsolete TODO
    - mac80211: limit bandwidth in HE capabilities
    - scripts/dtc: Call pkg-config POSIXly correct
    - livepatch: Fix build failure on 32 bits processors
    - net: asix: add proper error handling of usb read errors
    - i2c: bcm2835: Use platform_get_irq() to get the interrupt
    - i2c: bcm2835: Fix the error handling in 'bcm2835_i2c_probe()'
    - mtd: mchp23k256: Add SPI ID table
    - mtd: mchp48l640: Add SPI ID table
    - igc: avoid kernel warning when changing RX ring parameters
    - igb: refactor XDP registration
    - PCI: aardvark: Fix reading MSI interrupt number
    - PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated bridge
    - RDMA/rxe: Check the last packet by RXE_END_MASK
    - libbpf: Fix signedness bug in btf_dump_array_data()
    - cxl/core: Fix cxl_probe_component_regs() error message
    - cxl/regs: Fix size of CXL Capability Header Register
    - net:enetc: allocate CBD ring data memory using DMA coherent methods
    - libbpf: Fix compilation warning due to mismatched printf format
    - drm/bridge: dw-hdmi: use safe format when first in bridge chain
    - libbpf: Use dynamically allocated buffer when receiving netlink messages
    - power: supply: ab8500: Fix memory leak in ab8500_fg_sysfs_init
    - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports
    - iommu/ipmmu-vmsa: Check for error num after setting mask
    - drm/bridge: anx7625: Fix overflow issue on reading EDID
    - bpftool: Fix the error when lookup in no-btf maps
    - drm/amd/pm: enable pm sysfs write for one VF mode
    - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug
    - libbpf: Fix memleak in libbpf_netlink_recv()
    - IB/cma: Allow XRC INI QPs to set their local ACK timeout
    - dax: make sure inodes are flushed before destroy cache
    - selftests: mptcp: add csum mib check for mptcp_connect
    - iwlwifi: mvm: Don't call iwl_mvm_sta_from_mac80211() with NULL sta
    - iwlwifi: mvm: don't iterate unadded vifs when handling FW SMPS req
    - iwlwifi: mvm: align locking in D3 test debugfs
    - iwlwifi: yoyo: remove DBGI_SRAM address reset writing
    - iwlwifi: Fix -EIO error code that is never returned
    - iwlwifi: mvm: Fix an error code in iwl_mvm_up()
    - mtd: rawnand: pl353: Set the nand chip node as the flash node
    - drm/msm/dp: populate connector of struct dp_panel
    - drm/msm/dp: stop link training after link training 2 failed
    - drm/msm/dp: always add fail-safe mode into connector mode list
    - drm/msm/dsi: Use "ref" fw clock instead of global name for VCO parent
    - drm/msm/dsi/phy: fix 7nm v4.0 settings for C-PHY mode
    - drm/msm/dpu: add DSPP blocks teardown
    - drm/msm/dpu: fix dp audio condition
    - dm crypt: fix get_key_size compiler warning if !CONFIG_KEYS
    - vfio/pci: fix memory leak during D3hot to D0 transition
    - vfio/pci: wake-up devices around reset functions
    - scsi: fnic: Fix a tracing statement
    - scsi: pm8001: Fix command initialization in pm80XX_send_read_log()
    - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req()
    - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config()
    - scsi: pm8001: Fix le32 values handling in
      pm80xx_set_sas_protocol_timer_config()
    - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update()
    - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req()
    - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req()
    - scsi: pm8001: Fix NCQ NON DATA command task initialization
    - scsi: pm8001: Fix NCQ NON DATA command completion handling
    - scsi: pm8001: Fix abort all task initialization
    - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR
    - drm/amd/display: Remove vupdate_int_entry definition
    - TOMOYO: fix __setup handlers return values
    - power: supply: sbs-charger: Don't cancel work that is not initialized
    - ext2: correct max file size computing
    - drm/tegra: Fix reference leak in tegra_dsi_ganged_probe
    - power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong false
      return
    - scsi: hisi_sas: Change permission of parameter prot_mask
    - drm/bridge: cdns-dsi: Make sure to to create proper aliases for dt
    - bpf, arm64: Call build_prologue() first in first JIT pass
    - bpf, arm64: Feed byte-offset into bpf line info
    - xsk: Fix race at socket teardown
    - RDMA/irdma: Fix netdev notifications for vlan's
    - RDMA/irdma: Fix Passthrough mode in VM
    - RDMA/irdma: Remove incorrect masking of PD
    - gpu: host1x: Fix a memory leak in 'host1x_remove()'
    - libbpf: Skip forward declaration when counting duplicated type names
    - powerpc/mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties()
    - powerpc/Makefile: Don't pass -mcpu=powerpc64 when building 32-bit
    - KVM: x86: Fix emulation in writing cr8
    - KVM: x86/emulator: Defer not-present segment check in
      __load_segment_descriptor()
    - hv_balloon: rate-limit "Unhandled message" warning
    - i2c: xiic: Make bus names unique
    - power: supply: wm8350-power: Handle error for wm8350_register_irq
    - power: supply: wm8350-power: Add missing free in free_charger_irq
    - IB/hfi1: Allow larger MTU without AIP
    - RDMA/core: Fix ib_qp_usecnt_dec() called when error
    - PCI: Reduce warnings on possible RW1C corruption
    - net: axienet: fix RX ring refill allocation failure handling
    - drm/msm/a6xx: Fix missing ARRAY_SIZE() check
    - mips: DEC: honor CONFIG_MIPS_FP_SUPPORT=n
    - MIPS: Sanitise Cavium switch cases in TLB handler synthesizers
    - powerpc/sysdev: fix incorrect use to determine if list is empty
    - powerpc/64s: Don't use DSISR for SLB faults
    - mfd: mc13xxx: Add check for mc13xxx_irq_request
    - libbpf: Unmap rings when umem deleted
    - selftests/bpf: Make test_lwt_ip_encap more stable and faster
    - platform/x86: huawei-wmi: check the return value of device_create_file()
    - scsi: mpt3sas: Fix incorrect 4GB boundary check
    - powerpc: 8xx: fix a return value error in mpc8xx_pic_init
    - vxcan: enable local echo for sent CAN frames
    - ath10k: Fix error handling in ath10k_setup_msa_resources
    - mips: cdmm: Fix refcount leak in mips_cdmm_phys_base
    - MIPS: RB532: fix return value of __setup handler
    - MIPS: pgalloc: fix memory leak caused by pgd_free()
    - mtd: rawnand: atmel: fix refcount issue in atmel_nand_controller_init
    - power: ab8500_chargalg: Use CLOCK_MONOTONIC
    - RDMA/irdma: Prevent some integer underflows
    - Revert "RDMA/core: Fix ib_qp_usecnt_dec() called when error"
    - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine
    - bpf, sockmap: Fix memleak in sk_psock_queue_msg
    - bpf, sockmap: Fix memleak in tcp_bpf_sendmsg while sk msg is full
    - bpf, sockmap: Fix more uncharged while msg has more_data
    - bpf, sockmap: Fix double uncharge the mem of sk_msg
    - samples/bpf, xdpsock: Fix race when running for fix duration of time
    - USB: storage: ums-realtek: fix error code in rts51x_read_mem()
    - drm/i915/display: Fix HPD short pulse handling for eDP
    - netfilter: flowtable: Fix QinQ and pppoe support for inet table
    - mt76: mt7921: fix mt7921_queues_acq implementation
    - can: isotp: sanitize CAN ID checks in isotp_bind()
    - can: isotp: return -EADDRNOTAVAIL when reading from unbound socket
    - can: isotp: support MSG_TRUNC flag when reading from socket
    - bareudp: use ipv6_mod_enabled to check if IPv6 enabled
    - ibmvnic: fix race between xmit and reset
    - af_unix: Fix some data-races around unix_sk(sk)->oob_skb.
    - selftests/bpf: Fix error reporting from sock_fields programs
    - Bluetooth: hci_uart: add missing NULL check in h5_enqueue
    - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed
    - Bluetooth: btmtksdio: Fix kernel oops in btmtksdio_interrupt
    - ipv4: Fix route lookups when handling ICMP redirects and PMTU updates
    - af_netlink: Fix shift out of bounds in group mask calculation
    - i2c: meson: Fix wrong speed use from probe
    - netfilter: conntrack: Add and use nf_ct_set_auto_assign_helper_warned()
    - i2c: mux: demux-pinctrl: do not deactivate a master that is not active
    - powerpc/pseries: Fix use after free in remove_phb_dynamic()
    - selftests/bpf/test_lirc_mode2.sh: Exit with proper code
    - PCI: Avoid broken MSI on SB600 USB devices
    - net: bcmgenet: Use stronger register read/writes to assure ordering
    - tcp: ensure PMTU updates are processed during fastopen
    - openvswitch: always update flow key after nat
    - net: dsa: fix panic on shutdown if multi-chip tree failed to probe
    - tipc: fix the timer expires after interval 100ms
    - mfd: asic3: Add missing iounmap() on error asic3_mfd_probe
    - ice: fix 'scheduling while atomic' on aux critical err interrupt
    - ice: don't allow to run ice_send_event_to_aux() in atomic ctx
    - drivers: ethernet: cpsw: fix panic when interrupt coaleceing is set via
      ethtool
    - kernel/resource: fix kfree() of bootmem memory again
    - staging: r8188eu: convert DBG_88E_LEVEL call in hal/rtl8188e_hal_init.c
    - staging: r8188eu: release_firmware is not called if allocation fails
    - mxser: fix xmit_buf leak in activate when LSR == 0xff
    - fsi: scom: Fix error handling
    - fsi: scom: Remove retries in indirect scoms
    - pwm: lpc18xx-sct: Initialize driver data and hardware before pwmchip_add()
    - pps: clients: gpio: Propagate return value from pps_gpio_probe
    - fsi: Aspeed: Fix a potential double free
    - misc: alcor_pci: Fix an error handling path
    - cpufreq: qcom-cpufreq-nvmem: fix reading of PVS Valid fuse
    - soundwire: intel: fix wrong register name in intel_shim_wake
    - clk: qcom: ipq8074: fix PCI-E clock oops
    - dmaengine: idxd: check GENCAP config support for gencfg register
    - dmaengine: idxd: change bandwidth token to read buffers
    - dmaengine: idxd: restore traffic class defaults after wq reset
    - iio: mma8452: Fix probe failing when an i2c_device_id is used
    - serial: 8250_aspeed_vuart: add PORT_ASPEED_VUART port type
    - staging:iio:adc:ad7280a: Fix handing of device address bit reversing.
    - pinctrl: renesas: r8a77470: Reduce size for narrow VIN1 channel
    - pinctrl: renesas: checker: Fix miscalculation of number of states
    - clk: qcom: ipq8074: Use floor ops for SDCC1 clock
    - phy: dphy: Correct lpx parameter and its derivatives(ta_{get,go,sure})
    - phy: phy-brcm-usb: fixup BCM4908 support
    - serial: 8250_mid: Balance reference count for PCI DMA device
    - serial: 8250_lpss: Balance reference count for PCI DMA device
    - NFS: Use of mapping_set_error() results in spurious errors
    - serial: 8250: Fix race condition in RTS-after-send handling
    - iio: adc: Add check for devm_request_threaded_irq
    - habanalabs: Add check for pci_enable_device
    - NFS: Return valid errors from nfs2/3_decode_dirent()
    - staging: r8188eu: fix endless loop in recv_func
    - dma-debug: fix return value of __setup handlers
    - clk: imx7d: Remove audio_mclk_root_clk
    - clk: imx: off by one in imx_lpcg_parse_clks_from_dt()
    - clk: at91: sama7g5: fix parents of PDMCs' GCLK
    - clk: qcom: clk-rcg2: Update logic to calculate D value for RCG
    - clk: qcom: clk-rcg2: Update the frac table for pixel clock
    - dmaengine: hisi_dma: fix MSI allocate fail when reload hisi_dma
    - remoteproc: qcom: Fix missing of_node_put in adsp_alloc_memory_region
    - remoteproc: qcom_wcnss: Add missing of_node_put() in
      wcnss_alloc_memory_region
    - remoteproc: qcom_q6v5_mss: Fix some leaks in q6v5_alloc_memory_region
    - nvdimm/region: Fix default alignment for small regions
    - clk: actions: Terminate clk_div_table with sentinel element
    - clk: loongson1: Terminate clk_div_table with sentinel element
    - clk: hisilicon: Terminate clk_div_table with sentinel element
    - clk: clps711x: Terminate clk_div_table with sentinel element
    - clk: Fix clk_hw_get_clk() when dev is NULL
    - clk: tegra: tegra124-emc: Fix missing put_device() call in
      emc_ensure_emc_driver
    - mailbox: imx: fix crash in resume on i.mx8ulp
    - NFS: remove unneeded check in decode_devicenotify_args()
    - staging: mt7621-dts: fix LEDs and pinctrl on GB-PC1 devicetree
    - staging: mt7621-dts: fix formatting
    - staging: mt7621-dts: fix pinctrl properties for ethernet
    - staging: mt7621-dts: fix GB-PC2 devicetree
    - pinctrl: mediatek: Fix missing of_node_put() in mtk_pctrl_init
    - pinctrl: mediatek: paris: Fix PIN_CONFIG_BIAS_* readback
    - pinctrl: mediatek: paris: Fix "argument" argument type for mtk_pinconf_get()
    - pinctrl: mediatek: paris: Fix pingroup pin config state readback
    - pinctrl: mediatek: paris: Skip custom extra pin config dump for virtual
      GPIOs
    - pinctrl: microchip sgpio: use reset driver
    - pinctrl: microchip-sgpio: lock RMW access
    - pinctrl: nomadik: Add missing of_node_put() in nmk_pinctrl_probe
    - pinctrl/rockchip: Add missing of_node_put() in rockchip_pinctrl_probe
    - tty: hvc: fix return value of __setup handler
    - kgdboc: fix return value of __setup handler
    - serial: 8250: fix XOFF/XON sending when DMA is used
    - virt: acrn: obtain pa from VMA with PFNMAP flag
    - virt: acrn: fix a memory leak in acrn_dev_ioctl()
    - kgdbts: fix return value of __setup handler
    - firmware: google: Properly state IOMEM dependency
    - driver core: dd: fix return value of __setup handler
    - jfs: fix divide error in dbNextAG
    - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options
    - SUNRPC don't resend a task on an offlined transport
    - NFSv4.1: don't retry BIND_CONN_TO_SESSION on session error
    - kdb: Fix the putarea helper function
    - perf stat: Fix forked applications enablement of counters
    - clk: qcom: gcc-msm8994: Fix gpll4 width
    - vsock/virtio: initialize vdev->priv before using VQs
    - vsock/virtio: read the negotiated features before using VQs
    - vsock/virtio: enable VQs early on probe
    - clk: Initialize orphan req_rate
    - xen: fix is_xen_pmu()
    - net: enetc: report software timestamping via SO_TIMESTAMPING
    - net: hns3: fix bug when PF set the duplicate MAC address for VFs
    - net: hns3: fix port base vlan add fail when concurrent with reset
    - net: hns3: add vlan list lock to protect vlan list
    - net: hns3: format the output of the MAC address
    - net: hns3: refine the process when PF set VF VLAN
    - net: phy: broadcom: Fix brcm_fet_config_init()
    - selftests: test_vxlan_under_vrf: Fix broken test case
    - NFS: Don't loop forever in nfs_do_recoalesce()
    - net: hns3: clean residual vf config after disable sriov
    - net: sparx5: depends on PTP_1588_CLOCK_OPTIONAL
    - qlcnic: dcb: default to returning -EOPNOTSUPP
    - net/x25: Fix null-ptr-deref caused by x25_disconnect
    - net: sparx5: switchdev: fix possible NULL pointer dereference
    - octeontx2-af: initialize action variable
    - net: prefer nf_ct_put instead of nf_conntrack_put
    - net/sched: act_ct: fix ref leak when switching zones
    - NFSv4/pNFS: Fix another issue with a list iterator pointing to the head
    - net: dsa: bcm_sf2_cfp: fix an incorrect NULL check on list iterator
    - fs: fd tables have to be multiples of BITS_PER_LONG
    - lib/test: use after free in register_test_dev_kmod()
    - fs: fix fd table size alignment properly
    - LSM: general protection fault in legacy_parse_param
    - regulator: rpi-panel: Handle I2C errors/timing to the Atmel
    - crypto: hisilicon/qm - cleanup warning in qm_vf_read_qos
    - gcc-plugins/stackleak: Exactly match strings instead of prefixes
    - pinctrl: npcm: Fix broken references to chip->parent_device
    - rcu: Mark writes to the rcu_segcblist structure's ->flags field
    - block/bfq_wf2q: correct weight to ioprio
    - crypto: xts - Add softdep on ecb
    - crypto: hisilicon/sec - not need to enable sm4 extra mode at HW V3
    - block, bfq: don't move oom_bfqq
    - selinux: use correct type for context length
    - arm64: module: remove (NOLOAD) from linker script
    - selinux: allow FIOCLEX and FIONCLEX with policy capability
    - loop: use sysfs_emit() in the sysfs xxx show()
    - Fix incorrect type in assignment of ipv6 port for audit
    - irqchip/qcom-pdc: Fix broken locking
    - irqchip/nvic: Release nvic_base upon failure
    - fs/binfmt_elf: Fix AT_PHDR for unusual ELF files
    - bfq: fix use-after-free in bfq_dispatch_request
    - ACPICA: Avoid walking the ACPI Namespace if it is not there
    - lib/raid6/test/Makefile: Use $(pound) instead of \# for Make 4.3
    - Revert "Revert "block, bfq: honor already-setup queue merges""
    - ACPI/APEI: Limit printable size of BERT table data
    - PM: core: keep irq flags in device_pm_check_callbacks()
    - parisc: Fix handling off probe non-access faults
    - nvme-tcp: lockdep: annotate in-kernel sockets
    - spi: tegra20: Use of_device_get_match_data()
    - atomics: Fix atomic64_{read_acquire,set_release} fallbacks
    - locking/lockdep: Iterate lock_classes directly when reading lockdep files
    - ext4: correct cluster len and clusters changed accounting in ext4_mb_mark_bb
    - ext4: fix ext4_mb_mark_bb() with flex_bg with fast_commit
    - sched/tracing: Report TASK_RTLOCK_WAIT tasks as TASK_UNINTERRUPTIBLE
    - ext4: don't BUG if someone dirty pages without asking ext4 first
    - f2fs: fix to do sanity check on curseg->alloc_type
    - NFSD: Fix nfsd_breaker_owns_lease() return values
    - f2fs: don't get FREEZE lock in f2fs_evict_inode in frozen fs
    - btrfs: harden identification of a stale device
    - btrfs: make search_csum_tree return 0 if we get -EFBIG
    - f2fs: use spin_lock to avoid hang
    - f2fs: compress: fix to print raw data size in error path of lz4
      decompression
    - Adjust cifssb maximum read size
    - ntfs: add sanity check on allocation size
    - media: staging: media: zoran: move videodev alloc
    - media: staging: media: zoran: calculate the right buffer number for
      zoran_reap_stat_com
    - media: staging: media: zoran: fix various V4L2 compliance errors
    - media: atmel: atmel-isc-base: report frame sizes as full supported range
    - media: ir_toy: free before error exiting
    - ASoC: sh: rz-ssi: Make the data structures available before registering the
      handlers
    - ASoC: SOF: Intel: match sdw version on link_slaves_found
    - media: imx-jpeg: Prevent decoding NV12M jpegs into single-planar buffers
    - media: iommu/mediatek-v1: Free the existed fwspec if the master dev already
      has
    - media: iommu/mediatek: Return ENODEV if the device is NULL
    - media: iommu/mediatek: Add device_link between the consumer and the larb
      devices
    - video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow
    - video: fbdev: w100fb: Reset global state
    - video: fbdev: cirrusfb: check pixclock to avoid divide by zero
    - video: fbdev: omapfb: acx565akm: replace snprintf with sysfs_emit
    - ARM: dts: qcom: fix gic_irq_domain_translate warnings for msm8960
    - ARM: dts: bcm2837: Add the missing L1/L2 cache information
    - ASoC: madera: Add dependencies on MFD
    - media: atomisp_gmin_platform: Add DMI quirk to not turn AXP ELDO2 regulator
      off on some boards
    - media: atomisp: fix dummy_ptr check to avoid duplicate active_bo
    - ARM: ftrace: avoid redundant loads or clobbering IP
    - ARM: dts: imx7: Use audio_mclk_post_div instead audio_mclk_root_clk
    - arm64: defconfig: build imx-sdma as a module
    - video: fbdev: omapfb: panel-dsi-cm: Use sysfs_emit() instead of snprintf()
    - video: fbdev: omapfb: panel-tpo-td043mtea1: Use sysfs_emit() instead of
      snprintf()
    - video: fbdev: udlfb: replace snprintf in show functions with sysfs_emit
    - ARM: dts: bcm2711: Add the missing L1/L2 cache information
    - ASoC: soc-core: skip zero num_dai component in searching dai name
    - media: imx-jpeg: fix a bug of accessing array out of bounds
    - media: cx88-mpeg: clear interrupt status register before streaming video
    - uaccess: fix type mismatch warnings from access_ok()
    - lib/test_lockup: fix kernel pointer check for separate address spaces
    - ARM: tegra: tamonten: Fix I2C3 pad setting
    - ARM: mmp: Fix failure to remove sram device
    - ASoC: amd: vg: fix for pm resume callback sequence
    - video: fbdev: sm712fb: Fix crash in smtcfb_write()
    - media: i2c: ov5648: Fix lockdep error
    - media: Revert "media: em28xx: add missing em28xx_close_extension"
    - media: hdpvr: initialize dev->worker at hdpvr_register_videodev
    - ASoC: Intel: sof_sdw: fix quirks for 2022 HP Spectre x360 13"
    - tracing: Have TRACE_DEFINE_ENUM affect trace event types as well
    - mmc: host: Return an error when ->enable_sdio_irq() ops is missing
    - media: atomisp: fix bad usage at error handling logic
    - ALSA: hda/realtek: Add alc256-samsung-headphone fixup
    - KVM: x86: Reinitialize context if host userspace toggles EFER.LME
    - KVM: x86/mmu: Move "invalid" check out of kvm_tdp_mmu_get_root()
    - KVM: x86/mmu: Zap _all_ roots when unmapping gfn range in TDP MMU
    - KVM: x86/mmu: Check for present SPTE when clearing dirty bit in TDP MMU
    - KVM: x86: hyper-v: Drop redundant 'ex' parameter from kvm_hv_send_ipi()
    - KVM: x86: hyper-v: Drop redundant 'ex' parameter from kvm_hv_flush_tlb()
    - KVM: x86: hyper-v: Fix the maximum number of sparse banks for XMM fast TLB
      flush hypercalls
    - KVM: x86: hyper-v: HVCALL_SEND_IPI_EX is an XMM fast hypercall
    - powerpc/kasan: Fix early region not updated correctly
    - powerpc/lib/sstep: Fix 'sthcx' instruction
    - powerpc/lib/sstep: Fix build errors with newer binutils
    - powerpc: Add set_memory_{p/np}() and remove set_memory_attr()
    - powerpc: Fix build errors with newer binutils
    - drm/dp: Fix off-by-one in register cache size
    - drm/i915: Treat SAGV block time 0 as SAGV disabled
    - drm/i915: Fix PSF GV point mask when SAGV is not possible
    - drm/i915: Reject unsupported TMDS rates on ICL+
    - scsi: qla2xxx: Refactor asynchronous command initialization
    - scsi: qla2xxx: Implement ref count for SRB
    - scsi: qla2xxx: Fix stuck session in gpdb
    - scsi: qla2xxx: Fix warning message due to adisc being flushed
    - scsi: qla2xxx: Fix scheduling while atomic
    - scsi: qla2xxx: Fix premature hw access after PCI error
    - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter
    - scsi: qla2xxx: Fix warning for missing error code
    - scsi: qla2xxx: Fix device reconnect in loop topology
    - scsi: qla2xxx: edif: Fix clang warning
    - scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters
    - scsi: qla2xxx: Add devids and conditionals for 28xx
    - scsi: qla2xxx: Check for firmware dump already collected
    - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair()
    - scsi: qla2xxx: Fix disk failure to rediscover
    - scsi: qla2xxx: Fix incorrect reporting of task management failure
    - scsi: qla2xxx: Fix hang due to session stuck
    - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests
    - scsi: qla2xxx: Fix N2N inconsistent PLOGI
    - scsi: qla2xxx: Fix stuck session of PRLI reject
    - scsi: qla2xxx: Reduce false trigger to login
    - scsi: qla2xxx: Use correct feature type field during RFF_ID processing
    - platform: chrome: Split trace include file
    - KVM: x86: Check lapic_in_kernel() before attempting to set a SynIC irq
    - KVM: x86: Avoid theoretical NULL pointer dereference in
      kvm_irq_delivery_to_apic_fast()
    - KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasn't activated
    - KVM: Prevent module exit until all VMs are freed
    - KVM: x86: fix sending PV IPI
    - KVM: SVM: fix panic on out-of-bounds guest IRQ
    - ubifs: rename_whiteout: Fix double free for whiteout_ui->data
    - ubifs: Fix deadlock in concurrent rename whiteout and inode writeback
    - ubifs: Add missing iput if do_tmpfile() failed in rename whiteout
    - ubifs: Rename whiteout atomically
    - ubifs: Fix 'ui->dirty' race between do_tmpfile() and writeback work
    - ubifs: Rectify space amount budget for mkdir/tmpfile operations
    - ubifs: setflags: Make dirtied_ino_d 8 bytes aligned
    - ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
    - ubifs: Fix to add refcount once page is set private
    - ubifs: rename_whiteout: correct old_dir size computing
    - nvme: allow duplicate NSIDs for private namespaces
    - nvme: fix the read-only state for zoned namespaces with unsupposed features
    - wireguard: queueing: use CFI-safe ptr_ring cleanup function
    - wireguard: socket: free skb in send6 when ipv6 is disabled
    - wireguard: socket: ignore v6 endpoints when ipv6 is disabled
    - XArray: Fix xas_create_range() when multi-order entry present
    - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error path
    - can: mcba_usb: properly check endpoint type
    - can: mcp251xfd: mcp251xfd_register_get_dev_id(): fix return of error value
    - XArray: Update the LRU list in xas_split()
    - modpost: restore the warning message for missing symbol versions
    - rtc: check if __rtc_read_time was successful
    - gfs2: gfs2_setattr_size error path fix
    - gfs2: Make sure FITRIM minlen is rounded up to fs block size
    - net: hns3: fix the concurrency between functions reading debugfs
    - net: hns3: fix software vlan talbe of vlan 0 inconsistent with hardware
    - rxrpc: fix some null-ptr-deref bugs in server_key.c
    - rxrpc: Fix call timer start racing with call destruction
    - mailbox: imx: fix wakeup failure from freeze mode
    - crypto: arm/aes-neonbs-cbc - Select generic cbc and aes
    - watch_queue: Free the page array when watch_queue is dismantled
    - pinctrl: pinconf-generic: Print arguments for bias-pull-*
    - watchdog: rti-wdt: Add missing pm_runtime_disable() in probe function
    - net: sparx5: uses, depends on BRIDGE or !BRIDGE
    - pinctrl: nuvoton: npcm7xx: Rename DS() macro to DSTR()
    - pinctrl: nuvoton: npcm7xx: Use %zu printk format for ARRAY_SIZE()
    - ASoC: mediatek: mt6358: add missing EXPORT_SYMBOLs
    - ubi: Fix race condition between ctrl_cdev_ioctl and ubi_cdev_ioctl
    - ARM: iop32x: offset IRQ numbers by 1
    - block: Fix the maximum minor value is blk_alloc_ext_minor()
    - io_uring: fix memory leak of uid in files registration
    - riscv module: remove (NOLOAD)
    - ACPI: CPPC: Avoid out of bounds access when parsing _CPC data
    - vhost: handle error while adding split ranges to iotlb
    - spi: Fix Tegra QSPI example
    - platform/chrome: cros_ec_typec: Check for EC device
    - can: isotp: restore accidentally removed MSG_PEEK feature
    - proc: bootconfig: Add null pointer check
    - drm/connector: Fix typo in documentation
    - scsi: qla2xxx: Add qla2x00_async_done() for async routines
    - staging: mt7621-dts: fix pinctrl-0 items to be size-1 items on ethernet
    - arm64: mm: Drop 'const' from conditional arm64_dma_phys_limit definition
    - ASoC: soc-compress: Change the check for codec_dai
    - Reinstate some of "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""
    - tracing: Have type enum modifications copy the strings
    - net: add skb_set_end_offset() helper
    - net: preserve skb_end_offset() in skb_unclone_keeptruesize()
    - mm/mmap: return 1 from stack_guard_gap __setup() handler
    - ARM: 9187/1: JIVE: fix return value of __setup handler
    - mm/memcontrol: return 1 from cgroup.memory __setup() handler
    - mm/usercopy: return 1 from hardened_usercopy __setup() handler
    - af_unix: Support POLLPRI for OOB.
    - bpf: Adjust BPF stack helper functions to accommodate skip > 0
    - bpf: Fix comment for helper bpf_current_task_under_cgroup()
    - mmc: rtsx: Use pm_runtime_{get,put}() to handle runtime PM
    - dt-bindings: mtd: nand-controller: Fix the reg property description
    - dt-bindings: mtd: nand-controller: Fix a comment in the examples
    - dt-bindings: spi: mxic: The interrupt property is not mandatory
    - dt-bindings: memory: mtk-smi: No need mediatek,larb-id for mt8167
    - dt-bindings: pinctrl: pinctrl-microchip-sgpio: Fix example
    - ubi: fastmap: Return error code if memory allocation fails in add_aeb()
    - ASoC: SOF: Intel: Fix build error without SND_SOC_SOF_PCI_DEV
    - ASoC: topology: Allow TLV control to be either read or write
    - perf vendor events: Update metrics for SkyLake Server
    - media: ov6650: Add try support to selection API operations
    - media: ov6650: Fix crop rectangle affected by set format
    - spi: mediatek: support tick_delay without enhance_timing
    - ARM: dts: spear1340: Update serial node properties
    - ARM: dts: spear13xx: Update SPI dma properties
    - arm64: dts: ls1043a: Update i2c dma properties
    - arm64: dts: ls1046a: Update i2c node dma properties
    - um: Fix uml_mconsole stop/go
    - docs: sysctl/kernel: add missing bit to panic_print
    - openvswitch: Fixed nd target mask field in the flow dump.
    - torture: Make torture.sh help message match reality
    - n64cart: convert bi_disk to bi_bdev->bd_disk fix build
    - mmc: rtsx: Let MMC core handle runtime PM
    - mmc: rtsx: Fix build errors/warnings for unused variable
    - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address
    - iommu/dma: Skip extra sync during unmap w/swiotlb
    - iommu/dma: Fold _swiotlb helpers into callers
    - iommu/dma: Check CONFIG_SWIOTLB more broadly
    - swiotlb: Support aligned swiotlb buffers
    - iommu/dma: Account for min_align_mask w/swiotlb
    - coredump: Snapshot the vmas in do_coredump
    - coredump: Remove the WARN_ON in dump_vma_snapshot
    - coredump/elf: Pass coredump_params into fill_note_info
    - coredump: Use the vma snapshot in fill_files_note
    - PCI: xgene: Revert "PCI: xgene: Use inbound resources for setup"
    - Linux 5.15.33
  * Jammy update: v5.15.32 upstream stable release (LP: #1969106)
    - net: ipv6: fix skb_over_panic in __ip6_append_data
    - tpm: Fix error handling in async work
    - Bluetooth: btusb: Add another Realtek 8761BU
    - llc: fix netdevice reference leaks in llc_ui_bind()
    - ASoC: sti: Fix deadlock via snd_pcm_stop_xrun() call
    - ALSA: oss: Fix PCM OSS buffer allocation overflow
    - ALSA: usb-audio: add mapping for new Corsair Virtuoso SE
    - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ
    - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ
    - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671
    - ALSA: hda/realtek: Add quirk for ASUS GA402
    - ALSA: pcm: Fix races among concurrent hw_params and hw_free calls
    - ALSA: pcm: Fix races among concurrent read/write and buffer changes
    - ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls
    - ALSA: pcm: Fix races among concurrent prealloc proc writes
    - ALSA: pcm: Add stream lock during PCM reset ioctl operations
    - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB
    - ALSA: cmipci: Restore aux vol on suspend/resume
    - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec
    - drivers: net: xgene: Fix regression in CRC stripping
    - ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board
    - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3
    - ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU
    - crypto: qat - disable registration of algorithms
    - Bluetooth: btusb: Add one more Bluetooth part for the Realtek RTL8852AE
    - Revert "ath: add support for special 0x0 regulatory domain"
    - drm/virtio: Ensure that objs is not NULL in virtio_gpu_array_put_free()
    - rcu: Don't deboost before reporting expedited quiescent state
    - uaccess: fix integer overflow on access_ok()
    - mac80211: fix potential double free on mesh join
    - tpm: use try_get_ops() in tpm-space.c
    - wcn36xx: Differentiate wcn3660 from wcn3620
    - m68k: fix access_ok for coldfire
    - nds32: fix access_ok() checks in get/put_user
    - llc: only change llc->dev when bind() succeeds
    - Linux 5.15.32
  * Jammy update: v5.15.31 upstream stable release (LP: #1969105)
    - crypto: qcom-rng - ensure buffer for generate is completely filled
    - ocfs2: fix crash when initialize filecheck kobj fails
    - mm: swap: get rid of livelock in swapin readahead
    - block: release rq qos structures for queue without disk
    - drm/mgag200: Fix PLL setup for g200wb and g200ew
    - efi: fix return value of __setup handlers
    - alx: acquire mutex for alx_reinit in alx_change_mtu
    - vsock: each transport cycles only on its own sockets
    - esp6: fix check on ipv6_skip_exthdr's return value
    - net: phy: marvell: Fix invalid comparison in the resume and suspend
      functions
    - net/packet: fix slab-out-of-bounds access in packet_recvmsg()
    - atm: eni: Add check for dma_map_single
    - iavf: Fix double free in iavf_reset_task
    - hv_netvsc: Add check for kvmalloc_array
    - drm/imx: parallel-display: Remove bus flags check in
      imx_pd_bridge_atomic_check()
    - drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings
    - net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
    - drm: Don't make DRM_PANEL_BRIDGE dependent on DRM_KMS_HELPERS
    - net: dsa: Add missing of_node_put() in dsa_port_parse_of
    - net: phy: mscc: Add MODULE_FIRMWARE macros
    - bnx2x: fix built-in kernel driver load failure
    - net: bcmgenet: skip invalid partial checksums
    - net: mscc: ocelot: fix backwards compatibility with single-chain tc-flower
      offload
    - iavf: Fix hang during reboot/shutdown
    - arm64: fix clang warning about TRAMP_VALIAS
    - usb: gadget: rndis: prevent integer overflow in rndis_set_response()
    - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
    - usb: usbtmc: Fix bug in pipe direction for control transfers
    - scsi: mpt3sas: Page fault in reply q processing
    - Input: aiptek - properly check endpoint type
    - perf symbols: Fix symbol size calculation condition
    - btrfs: skip reserved bytes warning on unmount after log cleanup failure
    - Linux 5.15.31

-- Tim Gardner <tim.gardner@canonical.com>  Thu, 26 May 2022 09:13:53 -0600

Changed in linux-azure (Ubuntu Jammy):
status:	Fix Committed → Fix Released

Tim Gardner (timg-tpi) on 2022-10-17

Changed in linux-azure (Ubuntu Kinetic):
assignee:	nobody → Tim Gardner (timg-tpi)
importance:	Undecided → Medium
status:	Invalid → In Progress
status:	In Progress → Fix Committed

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2022-12-07:

This bug is awaiting verification that the linux-azure/5.19.0-1014.15 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-kinetic' to 'verification-done-kinetic'. If the problem still exists, change the tag 'verification-needed-kinetic' to 'verification-failed-kinetic'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-kinetic-linux-azure verification-needed-kinetic

Tim Gardner (timg-tpi) on 2022-12-16

tags:

added: verification-done-kinetic
removed: verification-needed-kinetic

Revision history for this message

Launchpad Janitor (janitor) wrote on 2023-01-09:

Download full text (103.1 KiB)

This bug was fixed in the package linux-azure - 5.19.0-1016.17

---------------
linux-azure (5.19.0-1016.17) kinetic; urgency=medium

* kinetic/linux-azure: 5.19.0-1016.17 -proposed tracker (LP: #1999735)

* Packaging resync (LP: #1786013)
- [Packaging] update helper scripts

[ Ubuntu: 5.19.0-28.29 ]

  * kinetic/linux: 5.19.0-28.29 -proposed tracker (LP: #1999746)
  * mm:vma05 in ubuntu_ltp fails with '[vdso] bug not patched' on kinetic/linux
    5.19.0-27.28 (LP: #1999094)
    - fix coredump breakage

linux-azure (5.19.0-1015.16) kinetic; urgency=medium

* kinetic/linux-azure: 5.19.0-1015.16 -proposed tracker (LP: #1999417)

* Azure: Jammy fio test hangs, swiotlb buffers exhausted (LP: #1998838)
- SAUCE: scsi: storvsc: Fix swiotlb bounce buffer leak in confidential VM

* Azure: MANA New Feature MANA XDP_Redirect Action (LP: #1998351)
- net: mana: Add support of XDP_REDIRECT action

linux-azure (5.19.0-1014.15) kinetic; urgency=medium

* kinetic/linux-azure: 5.19.0-1014.15 -proposed tracker (LP: #1997782)

* Jammy/linux-azure: CONFIG_BLK_DEV_FD=n (LP: #1972017)
- [Config] azure: CONFIG_BLK_DEV_FD=n

* remove circular dep between linux-image and modules (LP: #1989334)
- [Packaging] remove circular dep between modules and image

  * [Azure] [NVMe] cpu soft lockup issue when run fio against nvme disks
    (LP: #1995408)
    - PCI: hv: Only reuse existing IRTE allocation for Multi-MSI

  * [Azure][Arm64] Unable to detect all VF nics / Failing provisioning
    (LP: #1996117)
    - PCI: hv: Fix the definition of vector in hv_compose_msi_msg()

  * Kinetic update: v5.19.9 upstream stable release (LP: #1994068) // Kinetic
    update: v5.19.15 upstream stable release (LP: #1994078) // Kinetic update:
    v5.19.17 upstream stable release (LP: #1994179)
    - [Configs] azure: Updates after rebase

* Packaging resync (LP: #1786013)
- debian/dkms-versions -- update from kernel-versions (main/master)

[ Ubuntu: 5.19.0-27.28 ]

This bug was fixed in the package linux-azure - 5.19.0-1016.17

---------------
linux-azure (5.19.0-1016.17) kinetic; urgency=medium

* kinetic/linux-azure: 5.19.0-1016.17 -proposed tracker (LP: #1999735)

* Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts

[ Ubuntu: 5.19.0-28.29 ]

linux-azure (5.19.0-1015.16) kinetic; urgency=medium

* kinetic/linux-azure: 5.19.0-1015.16 -proposed tracker (LP: #1999417)

* Azure: Jammy fio test hangs, swiotlb buffers exhausted (LP: #1998838)
    - SAUCE: scsi: storvsc: Fix swiotlb bounce buffer leak in confidential VM

* Azure: MANA New Feature MANA XDP_Redirect Action (LP: #1998351)
    - net: mana: Add support of XDP_REDIRECT action

linux-azure (5.19.0-1014.15) kinetic; urgency=medium

* kinetic/linux-azure: 5.19.0-1014.15 -proposed tracker (LP: #1997782)

* Jammy/linux-azure: CONFIG_BLK_DEV_FD=n (LP: #1972017)
    - [Config] azure: CONFIG_BLK_DEV_FD=n

* remove circular dep between linux-image and modules (LP: #1989334)
    - [Packaging] remove circular dep between modules and image

* [Azure] [NVMe] cpu soft lockup issue when run fio against nvme disks
    (LP: #1995408)
    - PCI: hv: Only reuse existing IRTE allocation for Multi-MSI

* [Azure][Arm64] Unable to detect all VF nics / Failing provisioning
    (LP: #1996117)
    - PCI: hv: Fix the definition of vector in hv_compose_msi_msg()

* Packaging resync (LP: #1786013)
    - debian/dkms-versions -- update from kernel-versions (main/master)

[ Ubuntu: 5.19.0-27.28 ]

* kinetic/linux: 5.19.0-27.28 -proposed tracker (LP: #1997794)
  * Packaging resync (LP: #1786013)
    - debian/dkms-versions -- update from kernel-versions (main/2022.11.14)
  * selftests/.../nat6to4  breaks the selftests build (LP: #1996536)
    - [Config] Disable selftests/net/bpf/nat6to4
  * Expose built-in trusted and revoked certificates (LP: #1996892)
    - [Packaging] Expose built-in trusted and revoked certificates
  * support for same series backports versioning numbers (LP: #1993563)
    - [Packaging] sameport -- add support for sameport versioning
  * Add cs35l41 firmware loading support (LP: #1995957)
    - ASoC: cs35l41: Move cs35l41 exit hibernate function into shared code
    - ASoC: cs35l41: Add common cs35l41 enter hibernate function
    - ASoC: cs35l41: Do not print error when waking from hibernation
    - ALSA: hda: cs35l41: Don't dereference fwnode handle
    - ALSA: hda: cs35l41: Allow compilation test on non-ACPI configurations
    - ALSA: hda: cs35l41: Drop wrong use of ACPI_PTR()
    - ALSA: hda: cs35l41: Consolidate selections under SND_HDA_SCODEC_CS35L41
    - ALSA: hda: hda_cs_dsp_ctl: Add Library to support CS_DSP ALSA controls
    - ALSA: hda: hda_cs_dsp_ctl: Add apis to write the controls directly
    - ALSA: hda: cs35l41: Save codec object inside component struct
    - ALSA: hda: cs35l41: Add initial DSP support and firmware loading
    - ALSA: hda: cs35l41: Save Subsystem ID inside CS35L41 Driver
    - ALSA: hda: cs35l41: Support reading subsystem id from ACPI
    - ALSA: hda: cs35l41: Support multiple load paths for firmware
    - ALSA: hda: cs35l41: Support Speaker ID for laptops
    - ALSA: hda: cs35l41: Support Hibernation during Suspend
    - ALSA: hda: cs35l41: Read Speaker Calibration data from UEFI variables
    - ALSA: hda: hda_cs_dsp_ctl: Add fw id strings
    - ALSA: hda: cs35l41: Add defaulted values into dsp bypass config sequence
    - ALSA: hda: cs35l41: Support Firmware switching and reloading
    - ALSA: hda: cs35l41: Add module parameter to control firmware load
    - Revert "ALSA: hda: cs35l41: Allow compilation test on non-ACPI
      configurations"
    - ALSA: hda/realtek: More robust component matching for CS35L41
    - [Config] updateconfigs for SND_HDA_CS_DSP_CONTROLS
  *  Fibocom WWAN FM350-GL suspend error (notebook not suspend) (LP: #1990700)
    - net: wwan: t7xx: Add AP CLDMA
  * Screen cannot turn on after screen off with Matrox G200eW3 [102b:0536]
    (LP: #1995573)
    - drm/mgag200: Optimize damage clips
    - drm/mgag200: Add FB_DAMAGE_CLIPS support
    - drm/mgag200: Enable atomic gamma lut update
  * TEE Support for CCP driver (LP: #1991608)
    - crypto: ccp: Add support for TEE for PCI ID 0x14CA
  * AMD Cezanne takes 5 minutes to wake up from suspend (LP: #1993715)
    - platform/x86/amd: pmc: Read SMU version during suspend on Cezanne systems
  * Fix ath11k deadlock on WCN6855 (LP: #1995041)
    - wifi: ath11k: avoid deadlock during regulatory update in
      ath11k_regd_update()
  * intel_pmc_core not load on Raptor Lake (LP: #1988461)
    - x86/cpu: Add new Raptor Lake CPU model number
    - platform/x86/intel: pmc/core: Add Raptor Lake support to pmc core driver
  * [UBUNTU 20.04] boot: Add s390x secure boot trailer (LP: #1996071)
    - s390/boot: add secure boot trailer
  * Fix rfkill causing soft blocked wifi (LP: #1996198)
    - platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi
  * Support Icicle Kit reference design v2022.10 (LP: #1993148)
    - riscv: dts: microchip: icicle: re-jig fabric peripheral addresses
    - riscv: dts: microchip: reduce the fic3 clock rate
    - riscv: dts: microchip: update memory configuration for v2022.10
    - riscv: dts: microchip: fix fabric i2c reg size
    - SAUCE: riscv: dts: microchip: Disable PCIe on the Icicle Kit
  * Fix Turbostat is not working for fam: 6 model: 191: stepping: 2 CPU
    (LP: #1991365)
    - tools/power turbostat: Add support for RPL-S
  * armhf kernel compiled with gcc-12 fails to boot on pi 3/2 (LP: #1993120)
    - [Packaging] Support arch-specific compilers in updateconfigs
  * Kinetic update: v5.19.17 upstream stable release (LP: #1994179)
    - Revert "fs: check FMODE_LSEEK to control internal pipe splicing"
    - ALSA: oss: Fix potential deadlock at unregistration
    - ALSA: rawmidi: Drop register_mutex in snd_rawmidi_free()
    - ALSA: usb-audio: Fix potential memory leaks
    - ALSA: usb-audio: Fix NULL dererence at error path
    - ALSA: hda/realtek: remove ALC289_FIXUP_DUAL_SPK for Dell 5530
    - ALSA: hda/realtek: Correct pin configs for ASUS G533Z
    - ALSA: hda/realtek: Add quirk for ASUS GV601R laptop
    - ALSA: hda/realtek: Add Intel Reference SSID to support headset keys
    - mtd: rawnand: atmel: Unmap streaming DMA mappings
    - io_uring/rw: fix unexpected link breakage
    - io_uring/net: fix fast_iov assignment in io_setup_async_msg()
    - io_uring/net: don't update msg_name if not provided
    - io_uring: correct pinned_vm accounting
    - hv_netvsc: Fix race between VF offering and VF association message from host
    - cifs: destage dirty pages before re-reading them for cache=none
    - cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message
    - iio: dac: ad5593r: Fix i2c read protocol requirements
    - iio: ltc2497: Fix reading conversion results
    - iio: adc: ad7923: fix channel readings for some variants
    - iio: pressure: dps310: Refactor startup procedure
    - iio: pressure: dps310: Reset chip after timeout
    - xhci: dbc: Fix memory leak in xhci_alloc_dbc()
    - usb: gadget: uvc: Fix argument to sizeof() in uvc_register_video()
    - usb: add quirks for Lenovo OneLink+ Dock
    - mmc: core: Add SD card quirk for broken discard
    - can: kvaser_usb: Fix use of uninitialized completion
    - can: kvaser_usb_leaf: Fix overread with an invalid command
    - can: kvaser_usb_leaf: Fix TX queue out of sync after restart
    - can: kvaser_usb_leaf: Fix CAN state after restart
    - mmc: renesas_sdhi: Fix rounding errors
    - mmc: sdhci-tegra: Use actual clock rate for SW tuning correction
    - mmc: sdhci-sprd: Fix minimum clock limit
    - i2c: designware: Fix handling of real but unexpected device interrupts
    - fs: dlm: fix race between test_bit() and queue_work()
    - fs: dlm: handle -EBUSY first in lock arg validation
    - fs: dlm: fix invalid derefence of sb_lvbptr
    - btf: Export bpf_dynptr definition
    - HID: multitouch: Add memory barriers
    - quota: Check next/prev free block number after reading from quota file
    - platform/chrome: cros_ec_proto: Update version on GET_NEXT_EVENT failure
    - arm64: dts: qcom: sdm845-mtp: correct ADC settle time
    - ASoC: wcd9335: fix order of Slimbus unprepare/disable
    - ASoC: wcd934x: fix order of Slimbus unprepare/disable
    - hwmon: (gsc-hwmon) Call of_node_get() before of_find_xxx API
    - net: thunderbolt: Enable DMA paths only after rings are enabled
    - regulator: qcom_rpm: Fix circular deferral regression
    - arm64: topology: move store_cpu_topology() to shared code
    - riscv: topology: fix default topology reporting
    - RISC-V: Re-enable counter access from userspace
    - RISC-V: Make port I/O string accessors actually work
    - parisc: fbdev/stifb: Align graphics memory size to 4MB
    - parisc: Fix userspace graphics card breakage due to pgtable special bit
    - riscv: vdso: fix NULL deference in vdso_join_timens() when vfork
    - riscv: Make VM_WRITE imply VM_READ
    - riscv: always honor the CONFIG_CMDLINE_FORCE when parsing dtb
    - riscv: Pass -mno-relax only on lld < 15.0.0
    - UM: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK
    - nvmem: core: Fix memleak in nvmem_register()
    - nvme-multipath: fix possible hang in live ns resize with ANA access
    - dmaengine: mxs: use platform_driver_register
    - dmaengine: qcom-adm: fix wrong sizeof config in slave_config
    - dmaengine: qcom-adm: fix wrong calling convention for prep_slave_sg
    - drm/virtio: Check whether transferred 2D BO is shmem
    - drm/virtio: Unlock reservations on virtio_gpu_object_shmem_init() error
    - drm/virtio: Unlock reservations on dma_resv_reserve_fences() error
    - drm/virtio: Use appropriate atomic state in virtio_gpu_plane_cleanup_fb()
    - drm/udl: Restore display mode on resume
    - arm64: mte: move register initialization to C
    - [Config] updateconfigs for ARM64_ERRATUM_2441007
    - arm64: errata: Add Cortex-A55 to the repeat tlbi list
    - clocksource/drivers/arm_arch_timer: Fix CNTPCT_LO and CNTVCT_LO value
    - mm/hugetlb: fix races when looking up a CONT-PTE/PMD size hugetlb page
    - mm/damon: validate if the pmd entry is present before accessing
    - mm/uffd: fix warning without PTE_MARKER_UFFD_WP compiled in
    - mm/mmap: undo ->mmap() when arch_validate_flags() fails
    - xen/gntdev: Prevent leaking grants
    - xen/gntdev: Accommodate VMA splitting
    - PCI: Sanitise firmware BAR assignments behind a PCI-PCI bridge
    - serial: cpm_uart: Don't request IRQ too early for console port
    - serial: stm32: Deassert Transmit Enable on ->rs485_config()
    - serial: 8250: Let drivers request full 16550A feature probing
    - serial: 8250: Request full 16550A feature probing for OxSemi PCIe devices
    - cpufreq: qcom-cpufreq-hw: Fix uninitialized throttled_freq warning
    - powercap: intel_rapl: Use standard Energy Unit for SPR Dram RAPL domain
    - powerpc/Kconfig: Fix non existing CONFIG_PPC_FSL_BOOKE
    - powerpc/boot: Explicitly disable usage of SPE instructions
    - slimbus: qcom-ngd: use correct error in message of pdr_add_lookup() failure
    - slimbus: qcom-ngd: cleanup in probe error path
    - scsi: lpfc: Rework MIB Rx Monitor debug info logic
    - scsi: qedf: Populate sysfs attributes for vport
    - gpio: rockchip: request GPIO mux to pinctrl when setting direction
    - pinctrl: rockchip: add pinmux_ops.gpio_set_direction callback
    - fbdev: smscufx: Fix use-after-free in ufx_ops_open()
    - hwrng: core - let sleep be interrupted when unregistering hwrng
    - smb3: do not log confusing message when server returns no network interfaces
    - ksmbd: fix incorrect handling of iterate_dir
    - ksmbd: fix endless loop when encryption for response fails
    - ksmbd: Fix wrong return value and message length check in smb2_ioctl()
    - ksmbd: Fix user namespace mapping
    - fs: record I_DIRTY_TIME even if inode already has I_DIRTY_INODE
    - btrfs: fix alignment of VMA for memory mapped files on THP
    - btrfs: enhance unsupported compat RO flags handling
    - btrfs: fix race between quota enable and quota rescan ioctl
    - btrfs: fix missed extent on fsync after dropping extent maps
    - btrfs: set generation before calling btrfs_clean_tree_block in
      btrfs_init_new_buffer
    - f2fs: fix wrong continue condition in GC
    - f2fs: complete checkpoints during remount
    - f2fs: flush pending checkpoints when freezing super
    - f2fs: increase the limit for reserve_root
    - f2fs: fix to do sanity check on destination blkaddr during recovery
    - f2fs: fix to do sanity check on summary info
    - jbd2: wake up journal waiters in FIFO order, not LIFO
    - jbd2: fix potential buffer head reference count leak
    - jbd2: fix potential use-after-free in jbd2_fc_wait_bufs
    - jbd2: add miss release buffer head in fc_do_one_pass()
    - ext2: Add sanity checks for group and filesystem size
    - ext4: avoid crash when inline data creation follows DIO write
    - ext4: fix null-ptr-deref in ext4_write_info
    - ext4: make ext4_lazyinit_thread freezable
    - ext4: fix check for block being out of directory size
    - ext4: don't increase iversion counter for ea_inodes
    - ext4: unconditionally enable the i_version counter
    - ext4: ext4_read_bh_lock() should submit IO if the buffer isn't uptodate
    - ext4: place buffer head allocation before handle start
    - ext4: fix i_version handling in ext4
    - ext4: fix dir corruption when ext4_dx_add_entry() fails
    - ext4: fix miss release buffer head in ext4_fc_write_inode
    - ext4: fix potential memory leak in ext4_fc_record_modified_inode()
    - ext4: fix potential memory leak in ext4_fc_record_regions()
    - ext4: update 'state->fc_regions_size' after successful memory allocation
    - livepatch: fix race between fork and KLP transition
    - ftrace: Properly unset FTRACE_HASH_FL_MOD
    - ftrace: Still disable enabled records marked as disabled
    - ring-buffer: Allow splice to read previous partially read pages
    - ring-buffer: Have the shortest_full queue be the shortest not longest
    - ring-buffer: Check pending waiters when doing wake ups as well
    - ring-buffer: Add ring_buffer_wake_waiters()
    - ring-buffer: Fix race between reset page and reading page
    - tracing: Disable interrupt or preemption before acquiring arch_spinlock_t
    - tracing: Wake up ring buffer waiters on closing of the file
    - tracing: Wake up waiters when tracing is disabled
    - tracing: Add ioctl() to force ring buffer waiters to wake up
    - tracing: Do not free snapshot if tracer is on cmdline
    - tracing: Move duplicate code of trace_kprobe/eprobe.c into header
    - tracing: Add "(fault)" name injection to kernel probes
    - tracing: Fix reading strings from synthetic events
    - rpmsg: char: Avoid double destroy of default endpoint
    - thunderbolt: Explicitly enable lane adapter hotplug events at startup
    - efi: libstub: drop pointless get_memory_map() call
    - media: cedrus: Set the platform driver data earlier
    - media: cedrus: Fix endless loop in cedrus_h265_skip_bits()
    - blk-throttle: fix that io throttle can only work for single bio
    - blk-wbt: call rq_qos_add() after wb_normal is initialized
    - KVM: x86/emulator: Fix handing of POP SS to correctly set interruptibility
    - KVM: nVMX: Unconditionally purge queued/injected events on nested "exit"
    - KVM: nVMX: Don't propagate vmcs12's PERF_GLOBAL_CTRL settings to vmcs02
    - KVM: VMX: Drop bits 31:16 when shoving exception error code into VMCS
    - staging: greybus: audio_helper: remove unused and wrong debugfs usage
    - drm/nouveau/kms/nv140-: Disable interlacing
    - drm/nouveau: fix a use-after-free in nouveau_gem_prime_import_sg_table()
    - drm/i915/gt: Use i915_vm_put on ppgtt_create error paths
    - drm/i915: Fix watermark calculations for gen12+ RC CCS modifier
    - drm/i915: Fix watermark calculations for gen12+ MC CCS modifier
    - drm/i915: Fix watermark calculations for gen12+ CCS+CC modifier
    - drm/i915: Fix watermark calculations for DG2 CCS modifiers
    - drm/i915: Fix watermark calculations for DG2 CCS+CC modifier
    - drm/amd/display: Fix vblank refcount in vrr transition
    - drm/amd/display: explicitly disable psr_feature_enable appropriately
    - smb3: must initialize two ACL struct fields to zero
    - selinux: use "grep -E" instead of "egrep"
    - ima: fix blocking of security.ima xattrs of unsupported algorithms
    - userfaultfd: open userfaultfds with O_RDONLY
    - ntfs3: rework xattr handlers and switch to POSIX ACL VFS helpers
    - thermal: cpufreq_cooling: Check the policy first in
      cpufreq_cooling_register()
    - cpufreq: amd-pstate: Fix initial highest_perf value
    - sh: machvec: Use char[] for section boundaries
    - MIPS: SGI-IP30: Fix platform-device leak in bridge_platform_create()
    - MIPS: SGI-IP27: Fix platform-device leak in bridge_platform_create()
    - erofs: fix order >= MAX_ORDER warning due to crafted negative i_size
    - erofs: use kill_anon_super() to kill super in fscache mode
    - ARM: 9243/1: riscpc: Unbreak the build
    - ARM: 9244/1: dump: Fix wrong pg_level in walk_pmd()
    - ARM: 9247/1: mm: set readonly for MT_MEMORY_RO with ARM_LPAE
    - ACPI: PCC: Release resources on address space setup failure path
    - ACPI: PCC: replace wait_for_completion()
    - ACPI: PCC: Fix Tx acknowledge in the PCC address space handler
    - objtool: Preserve special st_shndx indexes in elf_update_symbol
    - nfsd: Fix a memory leak in an error handling path
    - NFSD: Fix handling of oversized NFSv4 COMPOUND requests
    - x86/paravirt: add extra clobbers with ZERO_CALL_USED_REGS enabled
    - wifi: rtlwifi: 8192de: correct checking of IQK reload
    - wifi: ath10k: add peer map clean up for peer delete in ath10k_sta_state()
    - bpf: Fix non-static bpf_func_proto struct definitions
    - bpf: convert cgroup_bpf.progs to hlist
    - bpf: Cleanup check_refcount_ok
    - leds: lm3601x: Don't use mutex after it was destroyed
    - tsnep: Fix TSNEP_INFO_TX_TIME register define
    - bpf: Fix reference state management for synchronous callbacks
    - wifi: cfg80211: get correct AP link chandef
    - wifi: mac80211: allow bw change during channel switch in mesh
    - bpftool: Fix a wrong type cast in btf_dumper_int
    - audit: explicitly check audit_context->context enum value
    - audit: free audit_proctitle only on task exit
    - esp: choose the correct inner protocol for GSO on inter address family
      tunnels
    - spi: mt7621: Fix an error message in mt7621_spi_probe()
    - x86/resctrl: Fix to restore to original value when re-enabling hardware
      prefetch register
    - xsk: Fix backpressure mechanism on Tx
    - selftests/xsk: Add missing close() on netns fd
    - bpf: Disable preemption when increasing per-cpu map_locked
    - bpf: Propagate error from htab_lock_bucket() to userspace
    - wifi: ath11k: Fix incorrect QMI message ID mappings
    - bpf: Use this_cpu_{inc|dec|inc_return} for bpf_task_storage_busy
    - bpf: Use this_cpu_{inc_return|dec} for prog->active
    - Bluetooth: btusb: mediatek: fix WMT failure during runtime suspend
    - wifi: rtw89: pci: fix interrupt stuck after leaving low power mode
    - wifi: rtw89: pci: correct TX resource checking in low power mode
    - wifi: rtl8xxxu: tighten bounds checking in rtl8xxxu_read_efuse()
    - wifi: wfx: prevent underflow in wfx_send_pds()
    - wifi: rtw88: add missing destroy_workqueue() on error path in
      rtw_core_init()
    - selftests/xsk: Avoid use-after-free on ctx
    - spi: qup: add missing clk_disable_unprepare on error in spi_qup_resume()
    - spi: qup: add missing clk_disable_unprepare on error in
      spi_qup_pm_resume_runtime()
    - wifi: rtl8xxxu: Fix skb misuse in TX queue selection
    - spi: meson-spicc: do not rely on busy flag in pow2 clk ops
    - bpf: btf: fix truncated last_member_type_id in btf_struct_resolve
    - wifi: rtl8xxxu: gen2: Fix mistake in path B IQ calibration
    - wifi: rtl8xxxu: Remove copy-paste leftover in gen2_update_rate_mask
    - wifi: mt76: mt7921e: fix race issue between reset and suspend/resume
    - wifi: mt76: mt7921s: fix race issue between reset and suspend/resume
    - wifi: mt76: mt7921u: fix race issue between reset and suspend/resume
    - wifi: mt76: sdio: fix the deadlock caused by sdio->stat_work
    - wifi: mt76: sdio: poll sta stat when device transmits data
    - wifi: mt76: sdio: fix transmitting packet hangs
    - wifi: mt76: mt7615: add mt7615_mutex_acquire/release in
      mt7615_sta_set_decap_offload
    - wifi: mt76: mt7915: fix possible unaligned access in
      mt7915_mac_add_twt_setup
    - wifi: mt76: connac: fix possible unaligned access in
      mt76_connac_mcu_add_nested_tlv
    - wifi: mt76: mt7921: add mt7921_mutex_acquire at mt7921_[start, stop]_ap
    - wifi: mt76: mt7921: add mt7921_mutex_acquire at mt7921_sta_set_decap_offload
    - wifi: mt76: mt7915: fix mcs value in ht mode
    - wifi: mt76: mt7915: do not check state before configuring implicit beamform
    - wifi: mt76: mt7921e: fix rmmod crash in driver reload test
    - Bluetooth: RFCOMM: Fix possible deadlock on socket shutdown/release
    - net: fs_enet: Fix wrong check in do_pd_setup
    - bpf: Ensure correct locking around vulnerable function find_vpid()
    - wifi: ath11k: Include STA_KEEPALIVE_ARP_RESPONSE TLV header by default
    - Bluetooth: hci_{ldisc,serdev}: check percpu_init_rwsem() failure
    - netfilter: conntrack: fix the gc rescheduling delay
    - netfilter: conntrack: revisit the gc initial rescheduling bias
    - flow_dissector: Do not count vlan tags inside tunnel payload
    - wifi: ath11k: fix failed to find the peer with peer_id 0 when disconnected
    - wifi: ath11k: fix number of VHT beamformee spatial streams
    - mips: dts: ralink: mt7621: fix external phy on GB-PC2
    - x86/microcode/AMD: Track patch allocation size explicitly
    - wifi: ath11k: fix peer addition/deletion error on sta band migration
    - x86/cpu: Include the header of init_ia32_feat_ctl()'s prototype
    - spi: cadence-quadspi: Fix PM disable depth imbalance in cqspi_probe
    - spi: dw: Fix PM disable depth imbalance in dw_spi_bt1_probe
    - spi/omap100k:Fix PM disable depth imbalance in omap1_spi100k_probe
    - skmsg: Schedule psock work if the cached skb exists on the psock
    - cw1200: fix incorrect check to determine if no element is found in list
    - i2c: mlxbf: support lock mechanism
    - Bluetooth: hci_core: Fix not handling link timeouts propertly
    - xfrm: Reinject transport-mode packets through workqueue
    - netfilter: nft_fib: Fix for rpath check with VRF devices
    - spi: s3c64xx: Fix large transfers with DMA
    - wifi: rtl8xxxu: gen2: Enable 40 MHz channel width
    - wifi: rtl8xxxu: Fix AIFS written to REG_EDCA_*_PARAM
    - vhost/vsock: Use kvmalloc/kvfree for larger packets.
    - eth: alx: take rtnl_lock on resume
    - sctp: handle the error returned from sctp_auth_asoc_init_active_key
    - tcp: fix tcp_cwnd_validate() to not forget is_cwnd_limited
    - spi: Ensure that sg_table won't be used after being freed
    - Bluetooth: hci_sync: Fix not indicating power state
    - hwmon: (pmbus/mp2888) Fix sensors readouts for MPS Multi-phase mp2888
      controller
    - net: rds: don't hold sock lock when cancelling work from
      rds_tcp_reset_callbacks()
    - af_unix: Fix memory leaks of the whole sk due to OOB skb.
    - net: prestera: acl: Add check for kmemdup
    - eth: lan743x: reject extts for non-pci11x1x devices
    - bnx2x: fix potential memory leak in bnx2x_tpa_stop()
    - eth: sp7021: fix use after free bug in spl2sw_nvmem_get_mac_address
    - net: wwan: iosm: Call mutex_init before locking it
    - net/ieee802154: reject zero-sized raw_sendmsg()
    - once: add DO_ONCE_SLOW() for sleepable contexts
    - net: mvpp2: fix mvpp2 debugfs leak
    - drm: bridge: adv7511: fix CEC power down control register offset
    - drm: bridge: adv7511: unregister cec i2c device after cec adapter
    - drm/bridge: Avoid uninitialized variable warning
    - drm/mipi-dsi: Detach devices when removing the host
    - drm/bridge: it6505: Power on downstream device in .atomic_enable
    - drm/virtio: Correct drm_gem_shmem_get_sg_table() error handling
    - drm/bridge: tc358767: Add of_node_put() when breaking out of loop
    - drm/bridge: parade-ps8640: Fix regulator supply order
    - drm/dp_mst: fix drm_dp_dpcd_read return value checks
    - drm:pl111: Add of_node_put() when breaking out of
      for_each_available_child_of_node()
    - ASoC: mt6359: fix tests for platform_get_irq() failure
    - drm/msm: Make .remove and .shutdown HW shutdown consistent
    - platform/chrome: fix double-free in chromeos_laptop_prepare()
    - platform/chrome: fix memory corruption in ioctl
    - drm/virtio: Fix same-context optimization
    - ASoC: soc-pcm.c: call __soc_pcm_close() in soc_pcm_close()
    - ASoC: tas2764: Allow mono streams
    - ASoC: tas2764: Drop conflicting set_bias_level power setting
    - ASoC: tas2764: Fix mute/unmute
    - platform/x86: msi-laptop: Fix old-ec check for backlight registering
    - platform/x86: msi-laptop: Fix resource cleanup
    - platform/chrome: cros_ec_typec: Correct alt mode index
    - drm/amdgpu: add missing pci_disable_device() in
      amdgpu_pmops_runtime_resume()
    - drm/bridge: megachips: Fix a null pointer dereference bug
    - drm/bridge: it6505: Fix the order of DP_SET_POWER commands
    - ASoC: rsnd: Add check for rsnd_mod_power_on
    - ASoC: wm_adsp: Handle optional legacy support
    - ALSA: hda: beep: Simplify keep-power-at-enable behavior
    - drm/virtio: set fb_modifiers_not_supported
    - drm/bochs: fix blanking
    - ASoC: SOF: mediatek: mt8195: Import namespace SND_SOC_SOF_MTK_COMMON
    - drm/omap: dss: Fix refcount leak bugs
    - drm/amdgpu: Fix memory leak in hpd_rx_irq_create_workqueue()
    - mmc: au1xmmc: Fix an error handling path in au1xmmc_probe()
    - ASoC: eureka-tlv320: Hold reference returned from of_find_xxx API
    - drm/msm: lookup the ICC paths in both mdp5/dpu and mdss devices
    - drm/msm/dpu: index dpu_kms->hw_vbif using vbif_idx
    - drm/msm/dp: correct 1.62G link rate at dp_catalog_ctrl_config_msa()
    - ALSA: usb-audio: Properly refcounting clock rate
    - drm/vmwgfx: Fix memory leak in vmw_mksstat_add_ioctl()
    - virtio-gpu: fix shift wrapping bug in virtio_gpu_fence_event_create()
    - ASoC: codecs: tx-macro: fix kcontrol put
    - ASoC: da7219: Fix an error handling path in da7219_register_dai_clks()
    - ALSA: dmaengine: increment buffer pointer atomically
    - mmc: wmt-sdmmc: Fix an error handling path in wmt_mci_probe()
    - ASoC: stm32: dfsdm: Fix PM disable depth imbalance in stm32_adfsdm_probe
    - ASoC: stm32: spdifrx: Fix PM disable depth imbalance in stm32_spdifrx_probe
    - ASoC: stm: Fix PM disable depth imbalance in stm32_i2s_probe
    - ASoC: wm8997: Fix PM disable depth imbalance in wm8997_probe
    - ASoC: wm5110: Fix PM disable depth imbalance in wm5110_probe
    - ASoC: wm5102: Fix PM disable depth imbalance in wm5102_probe
    - ASoC: mt6660: Fix PM disable depth imbalance in mt6660_i2c_probe
    - ALSA: hda/hdmi: Don't skip notification handling during PM operation
    - memory: pl353-smc: Fix refcount leak bug in pl353_smc_probe()
    - memory: of: Fix refcount leak bug in of_get_ddr_timings()
    - memory: of: Fix refcount leak bug in of_lpddr3_get_ddr_timings()
    - locks: fix TOCTOU race when granting write lease
    - soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe()
    - soc: qcom: smem_state: Add refcounting for the 'state->of_node'
    - ARM: dts: imx6qdl-kontron-samx6i: hook up DDC i2c bus
    - arm64: dts: renesas: r9a07g044: Fix SCI{Rx,Tx} interrupt types
    - arm64: dts: renesas: r9a07g054: Fix SCI{Rx,Tx} interrupt types
    - arm64: dts: renesas: r9a07g043: Fix SCI{Rx,Tx} interrupt types
    - dt-bindings: clock: exynosautov9: correct clock numbering of peric0/c1
    - ARM: dts: turris-omnia: Fix mpp26 pin name and comment
    - ARM: dts: kirkwood: lsxl: fix serial line
    - ARM: dts: kirkwood: lsxl: remove first ethernet port
    - ia64: export memory_add_physaddr_to_nid to fix cxl build error
    - soc/tegra: fuse: Drop Kconfig dependency on TEGRA20_APB_DMA
    - arm64: dts: ti: k3-j7200: fix main pinmux range
    - ARM: dts: exynos: correct s5k6a3 reset polarity on Midas family
    - ARM: Drop CMDLINE_* dependency on ATAGS
    - ext4: don't run ext4lazyinit for read-only filesystems
    - arm64: ftrace: fix module PLTs with mcount
    - ARM: dts: exynos: fix polarity of VBUS GPIO of Origen
    - iomap: iomap: fix memory corruption when recording errors during writeback
    - iio: adc: at91-sama5d2_adc: fix AT91_SAMA5D2_MR_TRACKTIM_MAX
    - iio: adc: at91-sama5d2_adc: check return status for pressure and touch
    - iio: adc: at91-sama5d2_adc: lock around oversampling and sample freq
    - iio: adc: at91-sama5d2_adc: disable/prepare buffer on suspend/resume
    - iio: inkern: only release the device node when done with it
    - iio: inkern: fix return value in devm_of_iio_channel_get_by_name()
    - iio: ABI: Fix wrong format of differential capacitance channel ABI.
    - iio: magnetometer: yas530: Change data type of hard_offsets to signed
    - RDMA/mlx5: Don't compare mkey tags in DEVX indirect mkey
    - usb: common: debug: Check non-standard control requests
    - clk: meson: Hold reference returned by of_get_parent()
    - clk: st: Hold reference returned by of_get_parent()
    - clk: oxnas: Hold reference returned by of_get_parent()
    - clk: qoriq: Hold reference returned by of_get_parent()
    - clk: berlin: Add of_node_put() for of_get_parent()
    - clk: sprd: Hold reference returned by of_get_parent()
    - clk: tegra: Fix refcount leak in tegra210_clock_init
    - clk: tegra: Fix refcount leak in tegra114_clock_init
    - clk: tegra20: Fix refcount leak in tegra20_clock_init
    - clk: samsung: exynosautov9: correct register offsets of peric0/c1
    - HSI: omap_ssi: Fix refcount leak in ssi_probe
    - HSI: omap_ssi_port: Fix dma_map_sg error check
    - clk: qcom: gcc-sdm660: Use floor ops for SDCC1 clock
    - media: exynos4-is: fimc-is: Add of_node_put() when breaking out of loop
    - tty: xilinx_uartps: Fix the ignore_status
    - media: amphion: insert picture startcode after seek for vc1g format
    - media: amphion: adjust the encoder's value range of gop size
    - media: amphion: don't change the colorspace reported by decoder.
    - media: amphion: fix a bug that vpu core may not resume after suspend
    - media: meson: vdec: add missing clk_disable_unprepare on error in
      vdec_hevc_start()
    - media: uvcvideo: Fix memory leak in uvc_gpio_parse
    - media: uvcvideo: Use entity get_cur in uvc_ctrl_set
    - media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init
    - RDMA/rxe: Fix "kernel NULL pointer dereference" error
    - RDMA/rxe: Fix the error caused by qp->sk
    - clk: mediatek: clk-mt8195-vdo0: Set rate on vdo0_dp_intf0_dp_intf's parent
    - clk: mediatek: clk-mt8195-vdo1: Reparent and set rate on vdo1_dpintf's
      parent
    - clk: mediatek: mt8195-infra_ao: Set pwrmcu clocks as critical
    - misc: ocxl: fix possible refcount leak in afu_ioctl()
    - fpga: prevent integer overflow in dfl_feature_ioctl_set_irq()
    - phy: rockchip-inno-usb2: Return zero after otg sync
    - dmaengine: idxd: avoid deadlock in process_misc_interrupts()
    - dmaengine: hisilicon: Disable channels when unregister hisi_dma
    - dmaengine: hisilicon: Fix CQ head update
    - dmaengine: hisilicon: Add multi-thread support for a DMA channel
    - usb: gadget: f_fs: stricter integer overflow checks
    - dyndbg: fix static_branch manipulation
    - dyndbg: fix module.dyndbg handling
    - dyndbg: let query-modname override actual module name
    - dyndbg: drop EXPORTed dynamic_debug_exec_queries
    - clk: qcom: sm6115: Select QCOM_GDSC
    - mtd: devices: docg3: check the return value of devm_ioremap() in the probe
    - remoteproc: Harden rproc_handle_vdev() against integer overflow
    - phy: amlogic: phy-meson-axg-mipi-pcie-analog: Hold reference returned by
      of_get_parent()
    - phy: phy-mtk-tphy: fix the phy type setting issue
    - mtd: rawnand: intel: Read the chip-select line from the correct OF node
    - mtd: rawnand: intel: Remove undocumented compatible string
    - mtd: rawnand: fsl_elbc: Fix none ECC mode
    - RDMA/irdma: Align AE id codes to correct flush code and event
    - RDMA/irdma: Validate udata inlen and outlen
    - RDMA/srp: Fix srp_abort()
    - RDMA/siw: Always consume all skbuf data in sk_data_ready() upcall.
    - RDMA/siw: Fix QP destroy to wait for all references dropped.
    - ata: fix ata_id_sense_reporting_enabled() and ata_id_has_sense_reporting()
    - ata: fix ata_id_has_devslp()
    - ata: fix ata_id_has_ncq_autosense()
    - ata: fix ata_id_has_dipm()
    - mtd: rawnand: meson: fix bit map use in meson_nfc_ecc_correct()
    - md/raid5: Ensure stripe_fill happens on non-read IO with journal
    - md/raid5: Remove unnecessary bio_put() in raid5_read_one_chunk()
    - RDMA/cm: Use SLID in the work completion as the DLID in responder side
    - IB: Set IOVA/LENGTH on IB_MR in core/uverbs layers
    - xhci: Don't show warning for reinit on known broken suspend
    - usb: gadget: function: fix dangling pnp_string in f_printer.c
    - usb: dwc3: core: fix some leaks in probe
    - drivers: serial: jsm: fix some leaks in probe
    - serial: 8250: Toggle IER bits on only after irq has been set up
    - tty: serial: fsl_lpuart: disable dma rx/tx use flags in lpuart_dma_shutdown
    - phy: qualcomm: call clk_disable_unprepare in the error handling
    - staging: vt6655: fix some erroneous memory clean-up loops
    - slimbus: qcom-ngd-ctrl: allow compile testing without QCOM_RPROC_COMMON
    - slimbus: qcom-ngd: Add error handling in of_qcom_slim_ngd_register
    - firmware: google: Test spinlock on panic path to avoid lockups
    - serial: 8250: Fix restoring termios speed after suspend
    - scsi: libsas: Fix use-after-free bug in smp_execute_task_sg()
    - scsi: pm8001: Fix running_req for internal abort commands
    - scsi: iscsi: Rename iscsi_conn_queue_work()
    - scsi: iscsi: Add recv workqueue helpers
    - scsi: iscsi: Run recv path from workqueue
    - scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername()
    - clk: qcom: apss-ipq6018: mark apcs_alias0_core_clk as critical
    - clk: qcom: gcc-sm6115: Override default Alpha PLL regs
    - RDMA/rxe: Fix resize_finish() in rxe_queue.c
    - fsi: core: Check error number after calling ida_simple_get
    - mfd: intel_soc_pmic: Fix an error handling path in
      intel_soc_pmic_i2c_probe()
    - mfd: fsl-imx25: Fix an error handling path in mx25_tsadc_setup_irq()
    - mfd: lp8788: Fix an error handling path in lp8788_probe()
    - mfd: lp8788: Fix an error handling path in lp8788_irq_init() and
      lp8788_irq_init()
    - mfd: fsl-imx25: Fix check for platform_get_irq() errors
    - mfd: sm501: Add check for platform_driver_register()
    - mfd: da9061: Fix Failed to set Two-Wire Bus Mode.
    - clk: mediatek: mt8183: mfgcfg: Propagate rate changes to parent
    - clk: mediatek: clk-mt8195-mfg: Reparent mfg_bg3d and propagate rate changes
    - clk: mediatek: fix unregister function in mtk_clk_register_dividers cleanup
    - clk: mediatek: Migrate remaining clk_unregister_*() to clk_hw_unregister_*()
    - dmaengine: ioat: stop mod_timer from resurrecting deleted timer in
      __cleanup()
    - usb: mtu3: fix failed runtime suspend in host only mode
    - spmi: pmic-arb: correct duplicate APID to PPID mapping logic
    - clk: vc5: Fix 5P49V6901 outputs disabling when enabling FOD
    - clk: baikal-t1: Fix invalid xGMAC PTP clock divider
    - clk: baikal-t1: Add shared xGMAC ref/ptp clocks internal parent
    - clk: baikal-t1: Add SATA internal ref clock buffer
    - clk: bcm2835: fix bcm2835_clock_rate_from_divisor declaration
    - clk: imx: scu: fix memleak on platform_device_add() fails
    - clk: ti: Balance of_node_get() calls for of_find_node_by_name()
    - clk: ti: dra7-atl: Fix reference leak in of_dra7_atl_clk_probe
    - clk: ast2600: BCLK comes from EPLL
    - mailbox: mpfs: fix handling of the reg property
    - mailbox: mpfs: account for mbox offsets while sending
    - mailbox: bcm-ferxrm-mailbox: Fix error check for dma_map_sg
    - ipc: mqueue: fix possible memory leak in init_mqueue_fs()
    - powerpc/configs: Properly enable PAPR_SCM in pseries_defconfig
    - powerpc/math_emu/efp: Include module.h
    - powerpc/sysdev/fsl_msi: Add missing of_node_put()
    - powerpc/pci_dn: Add missing of_node_put()
    - powerpc/powernv: add missing of_node_put() in opal_export_attrs()
    - cpuidle: riscv-sbi: Fix CPU_PM_CPU_IDLE_ENTER_xyz() macro usage
    - powerpc: Fix fallocate and fadvise64_64 compat parameter combination
    - x86/hyperv: Fix 'struct hv_enlightened_vmcs' definition
    - powerpc/64s: Fix GENERIC_CPU build flags for PPC970 / G5
    - powerpc/64: mark irqs hard disabled in boot paca
    - powerpc/64/interrupt: Fix return to masked context after hard-mask irq
      becomes pending
    - powerpc: Fix SPE Power ISA properties for e500v1 platforms
    - powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe()
    - powerpc/pseries/vas: Pass hw_cpu_id to node associativity HCALL
    - crypto: sahara - don't sleep when in softirq
    - crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr
    - hwrng: arm-smccc-trng - fix NO_ENTROPY handling
    - crypto: ccp - Fail the PSP initialization when writing psp data file failed
    - cgroup: Honor caller's cgroup NS when resolving path
    - hwrng: imx-rngc - Moving IRQ handler registering after
      imx_rngc_irq_mask_clear()
    - crypto: qat - fix default value of WDT timer
    - crypto: hisilicon/qm - fix missing put dfx access
    - cgroup/cpuset: Enable update_tasks_cpumask() on top_cpuset
    - iommu/omap: Fix buffer overflow in debugfs
    - crypto: akcipher - default implementation for setting a private key
    - crypto: ccp - Release dma channels before dmaengine unrgister
    - crypto: inside-secure - Change swab to swab32
    - crypto: qat - fix DMA transfer direction
    - clocksource/drivers/arm_arch_timer: Fix handling of ARM erratum 858921
    - clocksource/drivers/timer-gxp: Add missing error handling in gxp_timer_probe
    - cifs: return correct error in ->calc_signature()
    - iommu/iova: Fix module config properly
    - tracing: kprobe: Fix kprobe event gen test module on exit
    - tracing: kprobe: Make gen test module work in arm and riscv
    - tracing/osnoise: Fix possible recursive locking in stop_per_cpu_kthreads
    - kbuild: remove the target in signal traps when interrupted
    - linux/export: use inline assembler to populate symbol CRCs
    - kbuild: rpm-pkg: fix breakage when V=1 is used
    - crypto: marvell/octeontx - prevent integer overflows
    - crypto: cavium - prevent integer overflow loading firmware
    - random: schedule jitter credit for next jiffy, not in two jiffies
    - thermal/drivers/qcom/tsens-v0_1: Fix MSM8939 fourth sensor hw_id
    - ACPI: APEI: do not add task_work to kernel thread to avoid memory leak
    - f2fs: fix race condition on setting FI_NO_EXTENT flag
    - f2fs: fix to account FS_CP_DATA_IO correctly
    - selftest: tpm2: Add Client.__del__() to close /dev/tpm* handle
    - module: tracking: Keep a record of tainted unloaded modules only
    - fs: dlm: fix race in lowcomms
    - rcu: Avoid triggering strict-GP irq-work when RCU is idle
    - rcu: Back off upon fill_page_cache_func() allocation failure
    - cpufreq: amd_pstate: fix wrong lowest perf fetch
    - ACPI: video: Add Toshiba Satellite/Portege Z830 quirk
    - fortify: Fix __compiletime_strlen() under UBSAN_BOUNDS_LOCAL
    - ACPI: tables: FPDT: Don't call acpi_os_map_memory() on invalid phys address
    - cpufreq: intel_pstate: Add Tigerlake support in no-HWP mode
    - MIPS: BCM47XX: Cast memcmp() of function to (void *)
    - powercap: intel_rapl: fix UBSAN shift-out-of-bounds issue
    - thermal: intel_powerclamp: Use get_cpu() instead of smp_processor_id() to
      avoid crash
    - ARM: decompressor: Include .data.rel.ro.local
    - ACPI: x86: Add a quirk for Dell Inspiron 14 2-in-1 for StorageD3Enable
    - x86/entry: Work around Clang __bdos() bug
    - NFSD: Return nfserr_serverfault if splice_ok but buf->pages have data
    - NFSD: fix use-after-free on source server when doing inter-server copy
    - wifi: ath10k: Set tx credit to one for WCN3990 snoc based devices
    - wifi: brcmfmac: fix invalid address access when enabling SCAN log level
    - bpftool: Clear errno after libcap's checks
    - ice: set tx_tstamps when creating new Tx rings via ethtool
    - net: ethernet: ti: davinci_mdio: Add workaround for errata i2329
    - openvswitch: Fix double reporting of drops in dropwatch
    - openvswitch: Fix overreporting of drops in dropwatch
    - tcp: annotate data-race around tcp_md5sig_pool_populated
    - x86/mce: Retrieve poison range from hardware
    - wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg()
    - thunderbolt: Add back Intel Falcon Ridge end-to-end flow control workaround
    - x86/apic: Don't disable x2APIC if locked
    - net: axienet: Switch to 64-bit RX/TX statistics
    - net-next: Fix IP_UNICAST_IF option behavior for connected sockets
    - xfrm: Update ipcomp_scratches with NULL when freed
    - wifi: ath11k: Register shutdown handler for WCN6750
    - rtw89: ser: leave lps with mutex
    - iavf: Fix race between iavf_close and iavf_reset_task
    - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit()
    - Bluetooth: btintel: Mark Intel controller to support LE_STATES quirk
    - regulator: core: Prevent integer underflow
    - wifi: ath11k: mhi: fix potential memory leak in ath11k_mhi_register()
    - wifi: mt76: mt7921: reset msta->airtime_ac while clearing up hw value
    - wifi: rtw89: free unused skb to prevent memory leak
    - wifi: rtw89: fix rx filter after scan
    - Bluetooth: L2CAP: initialize delayed works at l2cap_chan_create()
    - Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times
    - bnxt_en: replace reset with config timestamps
    - selftests/bpf: Free the allocated resources after test case succeeds
    - can: bcm: check the result of can_send() in bcm_can_tx()
    - wifi: rt2x00: don't run Rt5592 IQ calibration on MT7620
    - wifi: rt2x00: set correct TX_SW_CFG1 MAC register for MT7620
    - wifi: rt2x00: set VGC gain for both chains of MT7620
    - wifi: rt2x00: set SoC wmac clock register
    - wifi: rt2x00: correctly set BBP register 86 for MT7620
    - hwmon: (sht4x) do not overflow clamping operation on 32-bit platforms
    - net: If sock is dead don't access sock's sk_wq in sk_stream_wait_memory
    - bpf: Adjust kprobe_multi entry_ip for CONFIG_X86_KERNEL_IBT
    - bpf: use bpf_prog_pack for bpf_dispatcher
    - Bluetooth: L2CAP: Fix user-after-free
    - i2c: designware-pci: Group AMD NAVI quirk parts together
    - drm/nouveau/nouveau_bo: fix potential memory leak in nouveau_bo_alloc()
    - drm: Use size_t type for len variable in drm_copy_field()
    - drm: Prevent drm_copy_field() to attempt copying a NULL pointer
    - drm/komeda: Fix handling of atomic commits in the atomic_commit_tail hook
    - gpu: lontium-lt9611: Fix NULL pointer dereference in lt9611_connector_init()
    - drm/amd/display: fix overflow on MIN_I64 definition
    - udmabuf: Set ubuf->sg = NULL if the creation of sg table fails
    - platform/x86: pmc_atom: Improve quirk message to be less cryptic
    - drm: bridge: dw_hdmi: only trigger hotplug event on link change
    - drm/amdgpu: Skip the program of MMMC_VM_AGP_* in SRIOV on MMHUB v3_0_0
    - drm/admgpu: Skip CG/PG on SOC21 under SRIOV VF
    - ALSA: usb-audio: Register card at the last interface
    - drm/vc4: vec: Fix timings for VEC modes
    - drm: panel-orientation-quirks: Add quirk for Anbernic Win600
    - drm: panel-orientation-quirks: Add quirk for Aya Neo Air
    - platform/chrome: cros_ec: Notify the PM of wake events during resume
    - platform/x86: hp-wmi: Setting thermal profile fails with 0x06
    - platform/x86: msi-laptop: Change DMI match / alias strings to fix module
      autoloading
    - ALSA: intel-dspconfig: add ES8336 support for AlderLake-PS
    - ASoC: SOF: pci: Change DMI match info to support all Chrome platforms
    - ASoC: SOF: add quirk to override topology mclk_id
    - drm/amdgpu: SDMA update use unlocked iterator
    - drm/amd/display: correct hostvm flag
    - drm/amdgpu: fix initial connector audio value
    - drm/meson: reorder driver deinit sequence to fix use-after-free bug
    - drm/meson: explicitly remove aggregate driver at module unload time
    - drm/meson: remove drm bridges at aggregate driver unbind time
    - drm/dp: Don't rewrite link config when setting phy test pattern
    - drm/amd/display: Remove interface for periodic interrupt 1
    - drm/amd/display: polling vid stream status in hpo dp blank
    - drm/amdkfd: Fix UBSAN shift-out-of-bounds warning
    - ARM: dts: imx6: delete interrupts property if interrupts-extended is set
    - ARM: dts: imx7d-sdb: config the max pressure for tsc2046
    - ARM: dts: imx6q: add missing properties for sram
    - ARM: dts: imx6dl: add missing properties for sram
    - ARM: dts: imx6qp: add missing properties for sram
    - ARM: dts: imx6sl: add missing properties for sram
    - ARM: dts: imx6sll: add missing properties for sram
    - ARM: dts: imx6sx: add missing properties for sram
    - ARM: dts: imx6sl: use tabs for code indent
    - ARM: dts: imx6sx-udoo-neo: don't use multiple blank lines
    - kselftest/arm64: Fix validatation termination record after EXTRA_CONTEXT
    - arm64: dts: imx8mm-kontron: Use the VSELECT signal to switch SD card IO
      voltage
    - arm64: dts: imx8mq-librem5: Add bq25895 as max17055's power supply
    - btrfs: dump extra info if one free space cache has more bitmaps than it
      should
    - btrfs: scrub: properly report super block errors in system log
    - btrfs: scrub: try to fix super block errors
    - btrfs: don't print information about space cache or tree every remount
    - btrfs: call __btrfs_remove_free_space_cache_locked on cache load failure
    - ARM: 9233/1: stacktrace: Skip frame pointer boundary check for
      call_with_stack()
    - ARM: 9234/1: stacktrace: Avoid duplicate saving of exception PC value
    - ARM: 9242/1: kasan: Only map modules if CONFIG_KASAN_VMALLOC=n
    - clk: zynqmp: Fix stack-out-of-bounds in strncpy`
    - media: cx88: Fix a null-ptr-deref bug in buffer_prepare()
    - media: platform: fix some double free in meson-ge2d and mtk-jpeg and s5p-mfc
    - clk: zynqmp: pll: rectify rate rounding in zynqmp_pll_round_rate
    - RDMA/rxe: Delete error messages triggered by incoming Read requests
    - usb: host: xhci-plat: suspend and resume clocks
    - usb: host: xhci-plat: suspend/resume clks for brcm
    - scsi: lpfc: Fix null ndlp ptr dereference in abnormal exit path for GFT_ID
    - dmaengine: ti: k3-udma: Reset UDMA_CHAN_RT byte counters to prevent overflow
    - scsi: 3w-9xxx: Avoid disabling device if failing to enable it
    - nbd: Fix hung when signal interrupts nbd_start_device_ioctl()
    - iommu/arm-smmu-v3: Make default domain type of HiSilicon PTT device to
      identity
    - usb: gadget: uvc: increase worker prio to WQ_HIGHPRI
    - power: supply: adp5061: fix out-of-bounds read in adp5061_get_chg_type()
    - staging: vt6655: fix potential memory leak
    - blk-throttle: prevent overflow while calculating wait time
    - ata: libahci_platform: Sanity check the DT child nodes number
    - bcache: fix set_at_max_writeback_rate() for multiple attached devices
    - soundwire: cadence: Don't overwrite msg->buf during write commands
    - soundwire: intel: fix error handling on dai registration issues
    - HID: roccat: Fix use-after-free in roccat_read()
    - HSI: ssi_protocol: fix potential resource leak in ssip_pn_open()
    - HID: nintendo: check analog user calibration for plausibility
    - eventfd: guard wake_up in eventfd fs calls as well
    - md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d
    - usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info()
    - usb: musb: Fix musb_gadget.c rxstate overflow bug
    - usb: dwc3: core: add gfladj_refclk_lpm_sel quirk
    - arm64: dts: imx8mp: Add snps,gfladj-refclk-lpm-sel quirk to USB nodes
    - usb: dwc3: core: Enable GUCTL1 bit 10 for fixing termination error after
      resume bug
    - Revert "usb: storage: Add quirk for Samsung Fit flash"
    - staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw()
    - staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv()
    - scsi: tracing: Fix compile error in trace_array calls when TRACING is
      disabled
    - ext2: Use kvmalloc() for group descriptor array
    - nvme: handle effects after freeing the request
    - nvme: copy firmware_rev on each init
    - nvmet-tcp: add bounds check on Transfer Tag
    - usb: idmouse: fix an uninit-value in idmouse_open
    - blk-mq: use quiesced elevator switch when reinitializing queues
    - hwmon (occ): Retry for checksum failure
    - fsi: occ: Prevent use after free
    - usb: typec: ucsi: Don't warn on probe deferral
    - clk: bcm2835: Make peripheral PLLC critical
    - clk: bcm2835: Round UART input clock up
    - perf: Skip and warn on unknown format 'configN' attrs
    - perf intel-pt: Fix segfault in intel_pt_print_info() with uClibc
    - perf intel-pt: Fix system_wide dummy event for hybrid
    - mm: hugetlb: fix UAF in hugetlb_handle_userfault
    - net: ieee802154: return -EINVAL for unknown addr type
    - ALSA: usb-audio: Fix last interface check for registration
    - blk-wbt: fix that 'rwb->wc' is always set to 1 in wbt_init()
    - [Config] updateconfigs for MDIO_BITBANG
    - net: ethernet: ti: davinci_mdio: fix build for mdio bitbang uses
    - Revert "drm/amd/display: correct hostvm flag"
    - Revert "net/ieee802154: reject zero-sized raw_sendmsg()"
    - net/ieee802154: don't warn zero-sized raw_sendmsg()
    - powerpc/64s/interrupt: Fix lost interrupts when returning to soft-masked
      context
    - drm/amd/display: Fix build breakage with CONFIG_DEBUG_FS=n
    - kbuild: Add skip_encoding_btf_enum64 option to pahole
    - Kconfig.debug: simplify the dependency of DEBUG_INFO_DWARF4/5
    - Kconfig.debug: add toolchain checks for DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT
    - [Config] updateconfigs for AS_HAS_NON_CONST_LEB128
    - lib/Kconfig.debug: Add check for non-constant .{s,u}leb128 support to DWARF5
    - HID: uclogic: Add missing suffix for digitalizers
    - ext4: continue to expand file system when the target size doesn't reach
    - drm/i915: Rename block_size()/block_offset()
    - drm/i915/bios: Validate fp_timing terminator presence
    - drm/i915/bios: Use hardcoded fp_timing size for generating LFP data pointers
    - Linux 5.19.17
  * Kinetic update: v5.19.16 upstream stable release (LP: #1994164)
    - nilfs2: fix use-after-free bug of struct nilfs_root
    - nilfs2: fix leak of nilfs_root in case of writer thread creation failure
    - nilfs2: replace WARN_ONs by nilfs_error for checkpoint acquisition failure
    - ceph: don't truncate file in atomic_open
    - nvme-pci: set min_align_mask before calculating max_hw_sectors
    - random: restore O_NONBLOCK support
    - random: clamp credited irq bits to maximum mixed
    - ALSA: hda: Fix position reporting on Poulsbo
    - ALSA: hda/realtek: Add quirk for HP Zbook Firefly 14 G9 model
    - efi: Correct Macmini DMI match in uefi cert quirk
    - USB: serial: qcserial: add new usb-id for Dell branded EM7455
    - Revert "USB: fixup for merge issue with "usb: dwc3: Don't switch OTG ->
      peripheral if extcon is present""
    - Revert "usb: dwc3: Don't switch OTG -> peripheral if extcon is present"
    - Revert "powerpc/rtas: Implement reentrant rtas call"
    - Revert "crypto: qat - reduce size of mapped region"
    - random: avoid reading two cache lines on irq randomness
    - random: use expired timer rather than wq for mixing fast pool
    - mctp: prevent double key removal and unref
    - Input: xpad - add supported devices as contributed on github
    - Input: xpad - fix wireless 360 controller breaking after suspend
    - misc: pci_endpoint_test: Aggregate params checking for xfer
    - misc: pci_endpoint_test: Fix pci_endpoint_test_{copy,write,read}() panic
    - Linux 5.19.16
  * Kinetic update: v5.19.15 upstream stable release (LP: #1994078)
    - sparc: Unbreak the build
    - Makefile.extrawarn: Move -Wcast-function-type-strict to W=1
    - [Config] updateconfigs for CC_HAS_AUTO_VAR_INIT_ZERO_ENABLER
    - hardening: Remove Clang's enable flag for -ftrivial-auto-var-init=zero
    - docs: update mediator information in CoC docs
    - xsk: Inherit need_wakeup flag for shared sockets
    - firmware: arm_scmi: Improve checks in the info_get operations
    - firmware: arm_scmi: Harden accesses to the sensor domains
    - firmware: arm_scmi: Add SCMI PM driver remove routine
    - arm64: dts: rockchip: fix upper usb port on BPI-R2-Pro
    - dmaengine: xilinx_dma: Fix devm_platform_ioremap_resource error handling
    - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property
    - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API
      failure
    - wifi: iwlwifi: don't spam logs with NSS>2 messages
    - ARM: dts: fix Moxa SDIO 'compatible', remove 'sdhci' misnomer
    - drm/amdgpu/mes: zero the sdma_hqd_mask of 2nd SDMA engine for SDMA 6.0.1
    - scsi: qedf: Fix a UAF bug in __qedf_probe()
    - net/ieee802154: fix uninit value bug in dgram_sendmsg
    - net: marvell: prestera: add support for for Aldrin2
    - ALSA: hda/hdmi: Fix the converter reuse for the silent stream
    - um: Cleanup syscall_handler_t cast in syscalls_32.h
    - um: Cleanup compiler warning in arch/x86/um/tls_32.c
    - gpio: ftgpio010: Make irqchip immutable
    - arch: um: Mark the stack non-executable to fix a binutils warning
    - net: atlantic: fix potential memory leak in aq_ndev_close()
    - KVM: s390: Pass initialized arg even if unused
    - drm/amd/display: Fix double cursor on non-video RGB MPO
    - drm/amd/display: Assume an LTTPR is always present on fixed_vs links
    - drm/amd/display: update gamut remap if plane has changed
    - drm/amd/display: skip audio setup when audio stream is enabled
    - drm/amd/display: Fix DP MST timeslot issue when fallback happened
    - drm/amd/display: increase dcn315 pstate change latency
    - perf/x86/intel: Fix unchecked MSR access error for Alder Lake N
    - don't use __kernel_write() on kmap_local_page()
    - i2c: davinci: fix PM disable depth imbalance in davinci_i2c_probe
    - usb: mon: make mmapped memory read only
    - USB: serial: ftdi_sio: fix 300 bps rate for SIO
    - gpiolib: acpi: Add support to ignore programming an interrupt
    - gpiolib: acpi: Add a quirk for Asus UM325UAZ
    - mmc: core: Replace with already defined values for readability
    - mmc: core: Terminate infinite loop in SD-UHS voltage switch
    - rpmsg: qcom: glink: replace strncpy() with strscpy_pad()
    - bpf: Gate dynptr API behind CAP_BPF
    - net: ethernet: mtk_eth_soc: fix state in __mtk_foe_entry_clear
    - bpf: Fix resetting logic for unreferenced kptrs
    - Bluetooth: use hdev->workqueue when queuing hdev->{cmd,ncmd}_timer works
    - Revert "clk: ti: Stop using legacy clkctrl names for omap4 and 5"
    - Linux 5.19.15
  * Kinetic update: v5.19.14 upstream stable release (LP: #1994076)
    - riscv: make t-head erratas depend on MMU
    - tools/perf: Fix out of bound access to cpu mask array
    - perf record: Fix cpu mask bit setting for mixed mmaps
    - counter: 104-quad-8: Utilize iomap interface
    - counter: 104-quad-8: Implement and utilize register structures
    - counter: 104-quad-8: Fix skipped IRQ lines during events configuration
    - uas: add no-uas quirk for Hiksemi usb_disk
    - usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS
    - uas: ignore UAS for Thinkplus chips
    - usb: typec: ucsi: Remove incorrect warning
    - thunderbolt: Explicitly reset plug events delay back to USB4 spec value
    - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455
    - Input: snvs_pwrkey - fix SNVS_HPVIDR1 register address
    - can: c_can: don't cache TX messages for C_CAN cores
    - clk: ingenic-tcu: Properly enable registers before accessing timers
    - wifi: mac80211: ensure vif queues are operational after start
    - x86/sgx: Do not fail on incomplete sanitization on premature stop of ksgxd
    - frontswap: don't call ->init if no ops are registered
    - ARM: dts: integrator: Tag PCI host with device_type
    - ntfs: fix BUG_ON in ntfs_lookup_inode_by_name()
    - x86/uaccess: avoid check_object_size() in copy_from_user_nmi()
    - mm/damon/dbgfs: fix memory leak when using debugfs_lookup()
    - net: mt7531: only do PLL once after the reset
    - Revert "firmware: arm_scmi: Add clock management to the SCMI power domain"
    - powerpc/64s/radix: don't need to broadcast IPI for radix pmd collapse flush
    - drm/i915/gt: Restrict forced preemption to the active context
    - drm/amdgpu: Add amdgpu suspend-resume code path under SRIOV
    - vduse: prevent uninitialized memory accesses
    - libata: add ATA_HORKAGE_NOLPM for Pioneer BDR-207M and BDR-205
    - mm: fix BUG splat with kvmalloc + GFP_ATOMIC
    - mptcp: factor out __mptcp_close() without socket lock
    - mptcp: fix unreleased socket in accept queue
    - mmc: moxart: fix 4-bit bus width and remove 8-bit bus width
    - mmc: hsq: Fix data stomping during mmc recovery
    - mm: gup: fix the fast GUP race against THP collapse
    - mm/page_alloc: fix race condition between build_all_zonelists and page
      allocation
    - mm: prevent page_frag_alloc() from corrupting the memory
    - mm/page_isolation: fix isolate_single_pageblock() isolation behavior
    - mm: fix dereferencing possible ERR_PTR
    - mm/migrate_device.c: flush TLB while holding PTL
    - mm/migrate_device.c: add missing flush_cache_page()
    - mm/migrate_device.c: copy pte dirty bit to page
    - mm: fix madivse_pageout mishandling on non-LRU page
    - mm: bring back update_mmu_cache() to finish_fault()
    - mm/hugetlb: correct demote page offset logic
    - mm,hwpoison: check mm when killing accessing process
    - media: dvb_vb2: fix possible out of bound access
    - media: rkvdec: Disable H.264 error detection
    - media: mediatek: vcodec: Drop platform_get_resource(IORESOURCE_IRQ)
    - media: v4l2-compat-ioctl32.c: zero buffer passed to
      v4l2_compat_get_array_args()
    - ARM: dts: am33xx: Fix MMCHS0 dma properties
    - reset: imx7: Fix the iMX8MP PCIe PHY PERST support
    - ARM: dts: am5748: keep usb4_tm disabled
    - soc: sunxi: sram: Actually claim SRAM regions
    - soc: sunxi: sram: Prevent the driver from being unbound
    - soc: sunxi: sram: Fix probe function ordering issues
    - soc: sunxi: sram: Fix debugfs info for A64 SRAM C
    - ASoC: imx-card: Fix refcount issue with of_node_put
    - clk: microchip: mpfs: fix clk_cfg array bounds violation
    - clk: microchip: mpfs: make the rtc's ahb clock critical
    - arm64: dts: qcom: sm8350: fix UFS PHY serdes size
    - ASoC: tas2770: Reinit regcache on reset
    - drm/bridge: lt8912b: add vsync hsync
    - drm/bridge: lt8912b: set hdmi or dvi mode
    - drm/bridge: lt8912b: fix corrupted image output
    - net: macb: Fix ZynqMP SGMII non-wakeup source resume failure
    - Revert "drm: bridge: analogix/dp: add panel prepare/unprepare in
      suspend/resume time"
    - Input: melfas_mip4 - fix return value check in mip4_probe()
    - gpio: mvebu: Fix check for pwm support on non-A8K platforms
    - perf parse-events: Break out tracepoint and printing
    - perf print-events: Fix "perf list" can not display the PMU prefix for some
      hybrid cache events
    - perf parse-events: Remove "not supported" hybrid cache events
    - usbnet: Fix memory leak in usbnet_disconnect()
    - net: sched: act_ct: fix possible refcount leak in tcf_ct_init()
    - cxgb4: fix missing unlock on ETHOFLD desc collect fail path
    - net/mlxbf_gige: Fix an IS_ERR() vs NULL bug in mlxbf_gige_mdio_probe
    - nvme: Fix IOC_PR_CLEAR and IOC_PR_RELEASE ioctls for nvme devices
    - wifi: cfg80211: fix MCS divisor value
    - wifi: mac80211: fix regression with non-QoS drivers
    - wifi: mac80211: fix memory corruption in minstrel_ht_update_rates()
    - net: stmmac: power up/down serdes in stmmac_open/release
    - net: phy: Don't WARN for PHY_UP state in mdio_bus_phy_resume()
    - selftests: Fix the if conditions of in test_extra_filter()
    - ice: xsk: change batched Tx descriptor cleaning
    - ice: xsk: drop power of 2 ring size restriction for AF_XDP
    - vdpa/ifcvf: fix the calculation of queuepair
    - virtio-blk: Fix WARN_ON_ONCE in virtio_queue_rq()
    - vdpa/mlx5: Fix MQ to support non power of two num queues
    - clk: imx: imx6sx: remove the SET_RATE_PARENT flag for QSPI clocks
    - drm/i915/gt: Perf_limit_reasons are only available for Gen11+
    - clk: iproc: Do not rely on node name for correct PLL setup
    - clk: imx93: drop of_match_ptr
    - net: mscc: ocelot: fix tagged VLAN refusal while under a VLAN-unaware bridge
    - net: ethernet: mtk_eth_soc: fix mask of RX_DMA_GET_SPORT{,_V2}
    - perf test: Fix test case 87 ("perf record tests") for hybrid systems
    - perf tests record: Fail the test if the 'errs' counter is not zero
    - KVM: x86: Hide IA32_PLATFORM_DCA_CAP[31:0] from the guest
    - x86/cacheinfo: Add a cpu_llc_shared_mask() UP variant
    - x86/alternative: Fix race in try_get_desc()
    - damon/sysfs: fix possible memleak on damon_sysfs_add_target
    - Linux 5.19.14
  * Kinetic update: v5.19.13 upstream stable release (LP: #1994075)
    - Linux 5.19.13
  * Kinetic update: v5.19.12 upstream stable release (LP: #1994074)
    - smb3: Move the flush out of smb2_copychunk_range() into its callers
    - smb3: fix temporary data corruption in collapse range
    - smb3: fix temporary data corruption in insert range
    - usb: add quirks for Lenovo OneLink+ Dock
    - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio
    - smb3: use filemap_write_and_wait_range instead of filemap_write_and_wait
    - Revert "usb: add quirks for Lenovo OneLink+ Dock"
    - Revert "usb: gadget: udc-xilinx: replace memcpy with memcpy_toio"
    - xfrm: fix XFRMA_LASTUSED comment
    - block: remove QUEUE_FLAG_DEAD
    - block: stop setting the nomerges flags in blk_cleanup_queue
    - block: simplify disk shutdown
    - scsi: core: Fix a use-after-free
    - drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES
    - USB: core: Fix RST error in hub.c
    - USB: serial: option: add Quectel BG95 0x0203 composition
    - USB: serial: option: add Quectel RM520N
    - ALSA: core: Fix double-free at snd_card_new()
    - ALSA: hda/tegra: set depop delay for tegra
    - ALSA: hda: Fix hang at HD-audio codec unbinding due to refcount saturation
    - ALSA: hda: Fix Nvidia dp infoframe
    - ALSA: hda: add Intel 5 Series / 3400 PCI DID
    - ALSA: hda/realtek: Add quirk for Huawei WRT-WX9
    - ALSA: hda/realtek: Enable 4-speaker output Dell Precision 5570 laptop
    - ALSA: hda/realtek: Re-arrange quirk table entries
    - ALSA: hda/realtek: Add pincfg for ASUS G513 HP jack
    - ALSA: hda/realtek: Add pincfg for ASUS G533Z HP jack
    - ALSA: hda/realtek: Add quirk for ASUS GA503R laptop
    - ALSA: hda/realtek: Enable 4-speaker output Dell Precision 5530 laptop
    - ALSA: hda/realtek: Add a quirk for HP OMEN 16 (8902) mute LED
    - iommu/vt-d: Check correct capability for sagaw determination
    - exfat: fix overflow for large capacity partition
    - btrfs: fix hang during unmount when stopping block group reclaim worker
    - btrfs: fix hang during unmount when stopping a space reclaim worker
    - btrfs: zoned: wait for extent buffer IOs before finishing a zone
    - libperf evlist: Fix polling of system-wide events
    - media: flexcop-usb: fix endpoint type check
    - usb: dwc3: core: leave default DMA if the controller does not support 64-bit
      DMA
    - thunderbolt: Add support for Intel Maple Ridge single port controller
    - efi: x86: Wipe setup_data on pure EFI boot
    - efi: libstub: check Shim mode using MokSBStateRT
    - wifi: mt76: fix reading current per-tid starting sequence number for
      aggregation
    - gpio: mockup: fix NULL pointer dereference when removing debugfs
    - gpio: mockup: Fix potential resource leakage when register a chip
    - gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully
    - riscv: fix a nasty sigreturn bug...
    - riscv: fix RISCV_ISA_SVPBMT kconfig dependency warning
    - drm/i915/gem: Flush contexts on driver release
    - drm/i915/gem: Really move i915_gem_context.link under ref protection
    - xen/xenbus: fix xenbus_setup_ring()
    - kasan: call kasan_malloc() from __kmalloc_*track_caller()
    - can: flexcan: flexcan_mailbox_read() fix return value for drop = true
    - net: mana: Add rmb after checking owner bits
    - mm/slub: fix to return errno if kmalloc() fails
    - mm: slub: fix flush_cpu_slab()/__free_slab() invocations in task context.
    - KVM: x86: Reinstate kvm_vcpu_arch.guest_supported_xcr0
    - KVM: x86: Always enable legacy FP/SSE in allowed user XFEATURES
    - KVM: x86: Inject #UD on emulated XSETBV if XSAVES isn't enabled
    - perf/arm-cmn: Add more bits to child node address offset field
    - arm64: topology: fix possible overflow in amu_fie_setup()
    - vmlinux.lds.h: CFI: Reduce alignment of jump-table to function alignment
    - batman-adv: Fix hang up with small MTU hard-interface
    - firmware: arm_scmi: Harden accesses to the reset domains
    - firmware: arm_scmi: Fix the asynchronous reset requests
    - arm64: dts: rockchip: Lower sd speed on quartz64-b
    - arm64: dts: rockchip: Pull up wlan wake# on Gru-Bob
    - arm64: dts: rockchip: Fix typo in lisense text for PX30.Core
    - drm/mediatek: dsi: Add atomic {destroy,duplicate}_state, reset callbacks
    - arm64: dts: imx8mm: Reverse CPLD_Dn GPIO label mapping on MX8Menlo
    - arm64: dts: rockchip: Set RK3399-Gru PCLK_EDP to 24 MHz
    - arm64: dts: imx8mn: remove GPU power domain reset
    - arm64: dts: imx8ulp: add #reset-cells for pcc
    - dmaengine: ti: k3-udma-private: Fix refcount leak bug in of_xudma_dev_get()
    - arm64: dts: rockchip: fix property for usb2 phy supply on rock-3a
    - arm64: dts: rockchip: fix property for usb2 phy supply on rk3568-evb1-v10
    - arm64: dts: rockchip: Remove 'enable-active-low' from rk3399-puma
    - arm64: dts: rockchip: Remove 'enable-active-low' from rk3566-quartz64-a
    - arm64: dts: imx8mm-verdin: extend pmic voltages
    - netfilter: nf_conntrack_sip: fix ct_sip_walk_headers
    - netfilter: nf_conntrack_irc: Tighten matching on DCC message
    - netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()
    - ice: Don't double unplug aux on peer initiated reset
    - ice: Fix crash by keep old cfg when update TCs more than queues
    - iavf: Fix cached head and tail value for iavf_get_tx_pending
    - ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header
    - net: core: fix flow symmetric hash
    - wifi: iwlwifi: Mark IWLMEI as broken
    - [Config] updateconfigs for IWLMEI
    - arm64: dts: tqma8mqml: Include phy-imx8-pcie.h header
    - drm/mediatek: Fix wrong dither settings
    - arm64: dts: imx8mp-venice-gw74xx: fix CAN STBY polarity
    - arm64: dts: imx8mp-venice-gw74xx: fix ksz9477 cpu port
    - ARM: dts: lan966x: Fix the interrupt number for internal PHYs
    - net: phy: aquantia: wait for the suspend/resume operations to finish
    - arm64: dts: imx8mp-venice-gw74xx: fix port/phy validation
    - scsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts()
    - scsi: mpt3sas: Fix return value check of dma_get_required_mask()
    - net: bonding: Share lacpdu_mcast_addr definition
    - net: bonding: Unsync device addresses on ndo_stop
    - net: team: Unsync device addresses on ndo_stop
    - drm/panel: simple: Fix innolux_g121i1_l01 bus_format
    - mm/slab_common: fix possible double free of kmem_cache
    - MIPS: lantiq: export clk_get_io() for lantiq_wdt.ko
    - MIPS: Loongson32: Fix PHY-mode being left unspecified
    - um: fix default console kernel parameter
    - iavf: Fix bad page state
    - mlxbf_gige: clear MDIO gateway lock after read
    - i40e: Fix set max_tx_rate when it is lower than 1 Mbps
    - netdevsim: Fix hwstats debugfs file permissions
    - sfc: fix TX channel offset when using legacy interrupts
    - sfc: fix null pointer dereference in efx_hard_start_xmit
    - bnxt_en: fix flags to check for supported fw version
    - gve: Fix GFP flags when allocing pages
    - drm/hisilicon: Add depends on MMU
    - of: mdio: Add of_node_put() when breaking out of for_each_xx
    - net: ipa: properly limit modem routing table use
    - sfc/siena: fix TX channel offset when using legacy interrupts
    - sfc/siena: fix null pointer dereference in efx_hard_start_xmit
    - wireguard: ratelimiter: disable timings test by default
    - wireguard: netlink: avoid variable-sized memcpy on sockaddr
    - net: enetc: move enetc_set_psfp() out of the common enetc_set_features()
    - net: enetc: deny offload of tc-based TSN features on VF interfaces
    - ipv6: Fix crash when IPv6 is administratively disabled
    - net/sched: taprio: avoid disabling offload when it was never enabled
    - net/sched: taprio: make qdisc_leaf() see the per-netdev-queue pfifo child
      qdiscs
    - ice: config netdev tc before setting queues number
    - ice: Fix interface being down after reset with link-down-on-close flag on
    - netfilter: nf_tables: fix nft_counters_enabled underflow at
      nf_tables_addchain()
    - netfilter: nf_tables: fix percpu memory leak at nf_tables_addchain()
    - netfilter: ebtables: fix memory leak when blob is malformed
    - netfilter: nf_ct_ftp: fix deadlock when nat rewrite is needed
    - net: ravb: Fix PHY state warning splat during system resume
    - net: sh_eth: Fix PHY state warning splat during system resume
    - gpio: tqmx86: fix uninitialized variable girq
    - can: gs_usb: gs_can_open(): fix race dev->can.state condition
    - perf stat: Fix BPF program section name
    - perf stat: Fix cpu map index in bperf cgroup code
    - perf jit: Include program header in ELF files
    - perf kcore_copy: Do not check /proc/modules is unchanged
    - perf tools: Honor namespace when synthesizing build-ids
    - drm/mediatek: dsi: Move mtk_dsi_stop() call back to mtk_dsi_poweroff()
    - ice: Fix ice_xdp_xmit() when XDP TX queue number is not sufficient
    - net/smc: Stop the CLC flow if no link to map buffers on
    - net: phy: micrel: fix shared interrupt on LAN8814
    - bonding: fix NULL deref in bond_rr_gen_slave_id
    - net: sunhme: Fix packet reception for len < RX_COPY_THRESHOLD
    - net: sched: fix possible refcount leak in tc_new_tfilter()
    - bnxt: prevent skb UAF after handing over to PTP worker
    - selftests: forwarding: add shebang for sch_red.sh
    - io_uring: ensure that cached task references are always put on exit
    - serial: fsl_lpuart: Reset prior to registration
    - serial: Create uart_xmit_advance()
    - serial: tegra: Use uart_xmit_advance(), fixes icount.tx accounting
    - serial: tegra-tcu: Use uart_xmit_advance(), fixes icount.tx accounting
    - cgroup: cgroup_get_from_id() must check the looked-up kn is a directory
    - phy: marvell: phy-mvebu-a3700-comphy: Remove broken reset support
    - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup
    - blk-mq: fix error handling in __blk_mq_alloc_disk
    - block: call blk_mq_exit_queue from disk_release for never added disks
    - block: Do not call blk_put_queue() if gendisk allocation fails
    - Drivers: hv: Never allocate anything besides framebuffer from framebuffer
      memory region
    - drm/gma500: Fix BUG: sleeping function called from invalid context errors
    - drm/gma500: Fix WARN_ON(lock->magic != lock) error
    - drm/gma500: Fix (vblank) IRQs not working after suspend/resume
    - gpio: ixp4xx: Make irqchip immutable
    - drm/amd/pm: disable BACO entry/exit completely on several sienna cichlid
      cards
    - drm/amdgpu: change the alignment size of TMR BO to 1M
    - drm/amdgpu: add HDP remap functionality to nbio 7.7
    - drm/amdgpu: Skip reset error status for psp v13_0_0
    - drm/amd/display: Limit user regamma to a valid value
    - drm/amd/display: Reduce number of arguments of dml31's
      CalculateWatermarksAndDRAMSpeedChangeSupport()
    - drm/amd/display: Reduce number of arguments of dml31's
      CalculateFlipSchedule()
    - drm/amd/display: Mark dml30's UseMinimumDCFCLK() as noinline for stack usage
    - drm/rockchip: Fix return type of cdn_dp_connector_mode_valid
    - gpio: mt7621: Make the irqchip immutable
    - pmem: fix a name collision
    - fsdax: Fix infinite loop in dax_iomap_rw()
    - workqueue: don't skip lockdep work dependency in cancel_work_sync()
    - i2c: imx: If pm_runtime_get_sync() returned 1 device access is possible
    - i2c: mlxbf: incorrect base address passed during io write
    - i2c: mlxbf: prevent stack overflow in mlxbf_i2c_smbus_start_transaction()
    - i2c: mlxbf: Fix frequency calculation
    - i2c: mux: harden i2c_mux_alloc() against integer overflows
    - drm/amdgpu: don't register a dirty callback for non-atomic
    - certs: make system keyring depend on built-in x509 parser
    - Makefile.debug: set -g unconditional on CONFIG_DEBUG_INFO_SPLIT
    - Makefile.debug: re-enable debug info for .S files
    - devdax: Fix soft-reservation memory description
    - ext4: fix bug in extents parsing when eh_entries == 0 and eh_depth > 0
    - ext4: limit the number of retries after discarding preallocations blocks
    - ext4: make mballoc try target group first even with mb_optimize_scan
    - ext4: avoid unnecessary spreading of allocations among groups
    - ext4: use locality group preallocation for small closed files
    - ext4: use buckets for cr 1 block scan instead of rbtree
    - Revert "block: freeze the queue earlier in del_gendisk"
    - ext4: fixup possible uninitialized variable access in
      ext4_mb_choose_next_group_cr1()
    - ext4: make directory inode spreading reflect flexbg size
    - Linux 5.19.12
  * Kinetic update: v5.19.11 upstream stable release (LP: #1994070)
    - of: fdt: fix off-by-one error in unflatten_dt_nodes()
    - pinctrl: qcom: sc8180x: Fix gpio_wakeirq_map
    - pinctrl: qcom: sc8180x: Fix wrong pin numbers
    - pinctrl: rockchip: Enhance support for IRQ_TYPE_EDGE_BOTH
    - pinctrl: sunxi: Fix name for A100 R_PIO
    - SUNRPC: Fix call completion races with call_decode()
    - NFSv4: Turn off open-by-filehandle and NFS re-export for NFSv4.0
    - gpio: mpc8xxx: Fix support for IRQ_TYPE_LEVEL_LOW flow_type in mpc85xx
    - NFSv4.2: Update mode bits after ALLOCATE and DEALLOCATE
    - Revert "SUNRPC: Remove unreachable error condition"
    - drm/panel-edp: Fix delays for Innolux N116BCA-EA1
    - drm/meson: Correct OSD1 global alpha value
    - drm/meson: Fix OSD1 RGB to YCbCr coefficient
    - drm/rockchip: vop2: Fix eDP/HDMI sync polarities
    - drm/i915/vdsc: Set VDSC PIC_HEIGHT before using for DP DSC
    - drm/i915/guc: Don't update engine busyness stats too frequently
    - drm/i915/guc: Cancel GuC engine busyness worker synchronously
    - block: blk_queue_enter() / __bio_queue_enter() must return -EAGAIN for
      nowait
    - parisc: ccio-dma: Add missing iounmap in error path in ccio_probe()
    - of/device: Fix up of_dma_configure_id() stub
    - io_uring/msg_ring: check file type before putting
    - cifs: revalidate mapping when doing direct writes
    - cifs: don't send down the destination address to sendmsg for a SOCK_STREAM
    - cifs: always initialize struct msghdr smb_msg completely
    - blk-lib: fix blkdev_issue_secure_erase
    - parisc: Allow CONFIG_64BIT with ARCH=parisc
    - tools/include/uapi: Fix <asm/errno.h> for parisc and xtensa
    - drm/i915/gt: Fix perf limit reasons bit positions
    - drm/i915: Set correct domains values at _i915_vma_move_to_active
    - drm/amdgpu: make sure to init common IP before gmc
    - drm/amdgpu: Don't enable LTR if not supported
    - drm/amdgpu: move nbio ih_doorbell_range() into ih code for vega
    - drm/amdgpu: move nbio sdma_doorbell_range() into sdma code for vega
    - net: Find dst with sk's xfrm policy not ctl_sk
    - dt-bindings: apple,aic: Fix required item "apple,fiq-index" in affinity
      description
    - cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all()
    - ALSA: hda/sigmatel: Keep power up while beep is enabled
    - ALSA: hda/sigmatel: Fix unused variable warning for beep power change
    - Linux 5.19.11
  * Kinetic update: v5.19.10 upstream stable release (LP: #1994069)
    - iommu/vt-d: Fix kdump kernels boot failure with scalable mode
    - net/mlx5: Introduce ifc bits for using software vhca id
    - net/mlx5: Use software VHCA id when it's supported
    - RDMA/mlx5: Rely on RoCE fw cap instead of devlink when setting profile
    - RDMA/mlx5: Add a umr recovery flow
    - RDMA/mlx5: Fix UMR cleanup on error flow of driver init
    - ACPI: resource: skip IRQ override on AMD Zen platforms
    - Input: goodix - add support for GT1158
    - platform/surface: aggregator_registry: Add support for Surface Laptop Go 2
    - drm/msm/rd: Fix FIFO-full deadlock
    - peci: cpu: Fix use-after-free in adev_release()
    - kvm: x86: mmu: Always flush TLBs when enabling dirty logging
    - dt-bindings: iio: gyroscope: bosch,bmg160: correct number of pins
    - HID: ishtp-hid-clientHID: ishtp-hid-client: Fix comment typo
    - hid: intel-ish-hid: ishtp: Fix ishtp client sending disordered message
    - Bluetooth: MGMT: Fix Get Device Flags
    - tg3: Disable tg3 device on system reboot to avoid triggering AER
    - r8152: add PID for the Lenovo OneLink+ Dock
    - gpio: mockup: remove gpio debugfs when remove device
    - ieee802154: cc2520: add rc code in cc2520_tx()
    - Input: iforce - add support for Boeder Force Feedback Wheel
    - drm/amdgpu: disable FRU access on special SIENNA CICHLID card
    - drm/amd/pm: use vbios carried pptable for all SMU13.0.7 SKUs
    - nvme-pci: add NVME_QUIRK_BOGUS_NID for Lexar NM610
    - nvmet-tcp: fix unhandled tcp states in nvmet_tcp_state_change()
    - drm/amd/amdgpu: skip ucode loading if ucode_size == 0
    - net: dsa: hellcreek: Print warning only once
    - perf/arm_pmu_platform: fix tests for platform_get_irq() failure
    - platform/x86: acer-wmi: Acer Aspire One AOD270/Packard Bell Dot keymap fixes
    - usb: storage: Add ASUS <0x0b05:0x1932> to IGNORE_UAS
    - platform/x86: asus-wmi: Increase FAN_CURVE_BUF_LEN to 32
    - LoongArch: Fix section mismatch due to acpi_os_ioremap()
    - LoongArch: Fix arch_remove_memory() undefined build error
    - gpio: 104-dio-48e: Make irq_chip immutable
    - gpio: 104-idio-16: Make irq_chip immutable
    - RDMA/irdma: Use s/g array in post send only when its valid
    - Input: goodix - add compatible string for GT1158
    - Linux 5.19.10
  * Kinetic update: v5.19.9 upstream stable release (LP: #1994068)
    - efi: libstub: Disable struct randomization
    - efi: capsule-loader: Fix use-after-free in efi_capsule_write
    - wifi: mt76: mt7921e: fix crash in chip reset fail
    - wifi: iwlegacy: 4965: corrected fix for potential off-by-one overflow in
      il4965_rs_fill_link_cmd()
    - fs: only do a memory barrier for the first set_buffer_uptodate()
    - soc: fsl: select FSL_GUTS driver for DPIO
    - Revert "mm: kmemleak: take a full lowmem check in kmemleak_*_phys()"
    - scsi: qla2xxx: Disable ATIO interrupt coalesce for quad port ISP27XX
    - scsi: core: Allow the ALUA transitioning state enough time
    - scsi: megaraid_sas: Fix double kfree()
    - drm/gem: Fix GEM handle release errors
    - drm/amdgpu: Move psp_xgmi_terminate call from amdgpu_xgmi_remove_device to
      psp_hw_fini
    - drm/amdgpu: fix hive reference leak when adding xgmi device
    - drm/amdgpu: Check num_gfx_rings for gfx v9_0 rb setup.
    - drm/amdgpu: Remove the additional kfd pre reset call for sriov
    - drm/radeon: add a force flush to delay work when radeon
    - scsi: ufs: core: Reduce the power mode change timeout
    - Revert "parisc: Show error if wrong 32/64-bit compiler is being used"
    - parisc: ccio-dma: Handle kmalloc failure in ccio_init_resources()
    - parisc: Add runtime check to prevent PA2.0 kernels on PA1.x machines
    - [Config] updateconfigs for ARM64_ERRATUM_2457168
    - arm64: errata: add detection for AMEVCNTR01 incrementing incorrectly
    - netfilter: conntrack: work around exceeded receive window
    - thermal/int340x_thermal: handle data_vault when the value is ZERO_SIZE_PTR
    - cpufreq: check only freq_table in __resolve_freq()
    - net/core/skbuff: Check the return value of skb_copy_bits()
    - md: Flush workqueue md_rdev_misc_wq in md_alloc()
    - fbdev: omapfb: Fix tests for platform_get_irq() failure
    - fbdev: fbcon: Destroy mutex on freeing struct fb_info
    - fbdev: chipsfb: Add missing pci_disable_device() in chipsfb_pci_init()
    - x86/sev: Mark snp_abort() noreturn
    - drm/amdgpu: add sdma instance check for gfx11 CGCG
    - drm/amdgpu: mmVM_L2_CNTL3 register not initialized correctly
    - ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC
    - ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc()
    - ALSA: hda: Once again fix regression of page allocations with IOMMU
    - ALSA: aloop: Fix random zeros in capture data when using jiffies timer
    - ALSA: usb-audio: Clear fixed clock rate at closing EP
    - ALSA: usb-audio: Fix an out-of-bounds bug in
      __snd_usb_parse_audio_interface()
    - tracefs: Only clobber mode/uid/gid on remount if asked
    - tracing: hold caller_addr to hardirq_{enable,disable}_ip
    - tracing: Fix to check event_mutex is held while accessing trigger list
    - btrfs: zoned: set pseudo max append zone limit in zone emulation mode
    - btrfs: zoned: fix API misuse of zone finish waiting
    - vfio/type1: Unpin zero pages
    - kprobes: Prohibit probes in gate area
    - perf: RISC-V: fix access beyond allocated array
    - debugfs: add debugfs_lookup_and_remove()
    - sched/debug: fix dentry leak in update_sched_domain_debugfs
    - drm/amd/display: fix memory leak when using debugfs_lookup()
    - driver core: fix driver_set_override() issue with empty strings
    - nvmet: fix a use-after-free
    - drm/i915/bios: Copy the whole MIPI sequence block
    - drm/i915/slpc: Let's fix the PCODE min freq table setup for SLPC
    - scsi: mpt3sas: Fix use-after-free warning
    - scsi: lpfc: Add missing destroy_workqueue() in error path
    - cgroup: Elide write-locking threadgroup_rwsem when updating csses on an
      empty subtree
    - cgroup: Fix threadgroup_rwsem <-> cpus_read_lock() deadlock
    - cifs: remove useless parameter 'is_fsctl' from SMB2_ioctl()
    - smb3: missing inode locks in zero range
    - spi: bitbang: Fix lsb-first Rx
    - ASoC: cs42l42: Only report button state if there was a button interrupt
    - Revert "soc: imx: imx8m-blk-ctrl: set power device name"
    - arm64: dts: imx8mm-verdin: update CAN clock to 40MHz
    - arm64: dts: imx8mm-verdin: use level interrupt for mcp251xfd
    - ASoC: qcom: sm8250: add missing module owner
    - regmap: spi: Reserve space for register address/padding
    - arm64: dts: imx8mp-venice-gw74xx: fix sai2 pin settings
    - arm64: dts: imx8mq-tqma8mq: Remove superfluous interrupt-names
    - RDMA/rtrs-clt: Use the right sg_cnt after ib_dma_map_sg
    - RDMA/rtrs-srv: Pass the correct number of entries for dma mapped SGL
    - ARM: dts: imx6qdl-vicut1.dtsi: Fix node name backlight_led
    - ARM: dts: imx6qdl-kontron-samx6i: remove duplicated node
    - ARM: dts: imx6qdl-kontron-samx6i: fix spi-flash compatible
    - arm64: dts: ls1028a-qds-65bb: don't use in-band autoneg for 2500base-x
    - soc: imx: gpcv2: Assert reset before ungating clock
    - arm64: dts: verdin-imx8mm: add otg2 pd to usbphy
    - arm64: dts: imx8mm-venice-gw7901: fix port/phy validation
    - arm64: dts: freescale: verdin-imx8mm: fix atmel_mxt_ts reset polarity
    - arm64: dts: freescale: verdin-imx8mp: fix atmel_mxt_ts reset polarity
    - regulator: core: Clean up on enable failure
    - ASoC: SOF: Kconfig: Make IPC_FLOOD_TEST depend on SND_SOC_SOF
    - ASoC: SOF: Kconfig: Make IPC_MESSAGE_INJECTOR depend on SND_SOC_SOF
    - tee: fix compiler warning in tee_shm_register()
    - RDMA/irdma: Fix drain SQ hang with no completion
    - arm64: dts: renesas: r8a779g0: Fix HSCIF0 interrupt number
    - RDMA/cma: Fix arguments order in net device validation
    - soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs
    - RDMA/hns: Fix supported page size
    - RDMA/hns: Fix wrong fixed value of qp->rq.wqe_shift
    - RDMA/hns: Remove the num_qpc_timer variable
    - wifi: wilc1000: fix DMA on stack objects
    - ARM: at91: pm: fix self-refresh for sama7g5
    - ARM: at91: pm: fix DDR recalibration when resuming from backup and self-
      refresh
    - ARM: dts: at91: sama5d27_wlsom1: specify proper regulator output ranges
    - ARM: dts: at91: sama5d2_icp: specify proper regulator output ranges
    - ARM: dts: at91: sama7g5ek: specify proper regulator output ranges
    - ARM: dts: at91: sama5d27_wlsom1: don't keep ldo2 enabled all the time
    - ARM: dts: at91: sama5d2_icp: don't keep vdd_other enabled all the time
    - netfilter: br_netfilter: Drop dst references before setting.
    - netfilter: nf_tables: clean up hook list when offload flags check fails
    - riscv: dts: microchip: use an mpfs specific l2 compatible
    - netfilter: nf_conntrack_irc: Fix forged IP logic
    - RDMA/srp: Set scmnd->result only when scmnd is not NULL
    - ALSA: usb-audio: Inform the delayed registration more properly
    - ALSA: usb-audio: Register card again for iface over delayed_register option
    - rxrpc: Fix ICMP/ICMP6 error handling
    - rxrpc: Fix an insufficiently large sglist in rxkad_verify_packet_2()
    - afs: Use the operation issue time instead of the reply time for callbacks
    - kunit: fix assert_type for comparison macros
    - Revert "net: phy: meson-gxl: improve link-up behavior"
    - sch_sfb: Don't assume the skb is still around after enqueueing to child
    - tipc: fix shift wrapping bug in map_get()
    - net: introduce __skb_fill_page_desc_noacc
    - tcp: TX zerocopy should not sense pfmemalloc status
    - ice: Fix DMA mappings leak
    - ice: use bitmap_free instead of devm_kfree
    - i40e: Fix kernel crash during module removal
    - iavf: Detach device during reset task
    - xen-netback: only remove 'hotplug-status' when the vif is actually destroyed
    - block: don't add partitions if GD_SUPPRESS_PART_SCAN is set
    - RDMA/siw: Pass a pointer to virt_to_page()
    - bonding: use unspecified address if no available link local address
    - bonding: add all node mcast address when slave up
    - ipv6: sr: fix out-of-bounds read when setting HMAC data.
    - IB/core: Fix a nested dead lock as part of ODP flow
    - RDMA/mlx5: Set local port to one when accessing counters
    - btrfs: zoned: fix mounting with conventional zones
    - erofs: fix error return code in erofs_fscache_{meta_,}read_folio
    - erofs: fix pcluster use-after-free on UP platforms
    - nvme-tcp: fix UAF when detecting digest errors
    - nvme-tcp: fix regression that causes sporadic requests to time out
    - tcp: fix early ETIMEDOUT after spurious non-SACK RTO
    - btrfs: fix the max chunk size and stripe length calculation
    - nvmet: fix mar and mor off-by-one errors
    - RDMA/irdma: Report the correct max cqes from query device
    - RDMA/irdma: Return error on MR deregister CQP failure
    - RDMA/irdma: Return correct WC error for bind operation failure
    - RDMA/irdma: Report RNR NAK generation in device caps
    - net: dsa: felix: disable cut-through forwarding for frames oversized for tc-
      taprio
    - net: dsa: felix: access QSYS_TAG_CONFIG under tas_lock in
      vsc9959_sched_speed_set
    - net: ethernet: mtk_eth_soc: fix typo in __mtk_foe_entry_clear
    - net: ethernet: mtk_eth_soc: check max allowed hash in mtk_ppe_check_skb
    - net/smc: Fix possible access to freed memory in link clear
    - io_uring: recycle kbuf recycle on tw requeue
    - net: phy: lan87xx: change interrupt src of link_up to comm_ready
    - sch_sfb: Also store skb len before calling child enqueue
    - libperf evlist: Fix per-thread mmaps for multi-threaded targets
    - perf dlfilter dlfilter-show-cycles: Fix types for print format
    - perf script: Fix Cannot print 'iregs' field for hybrid systems
    - perf record: Fix synthesis failure warnings
    - hwmon: (tps23861) fix byte order in resistance register
    - ASoC: mchp-spdiftx: remove references to mchp_i2s_caps
    - ASoC: mchp-spdiftx: Fix clang -Wbitfield-constant-conversion
    - MIPS: loongson32: ls1c: Fix hang during startup
    - kbuild: disable header exports for UML in a straightforward way
    - i40e: Refactor tc mqprio checks
    - i40e: Fix ADQ rate limiting for PF
    - net: bonding: replace dev_trans_start() with the jiffies of the last ARP/NS
    - bonding: accept unsolicited NA message
    - swiotlb: avoid potential left shift overflow
    - iommu/amd: use full 64-bit value in build_completion_wait()
    - s390/boot: fix absolute zero lowcore corruption on boot
    - time64.h: consolidate uses of PSEC_PER_NSEC
    - net: dsa: felix: tc-taprio intervals smaller than MTU should send at least
      one packet
    - hwmon: (mr75203) fix VM sensor allocation when "intel,vm-map" not defined
    - hwmon: (mr75203) update pvt->v_num and vm_num to the actual number of used
      sensors
    - hwmon: (mr75203) fix voltage equation for negative source input
    - hwmon: (mr75203) fix multi-channel voltage reading
    - hwmon: (mr75203) enable polling for all VM channels
    - perf evlist: Always use arch_evlist__add_default_attrs()
    - perf stat: Fix L2 Topdown metrics disappear for raw events
    - Revert "arm64: kasan: Revert "arm64: mte: reset the page tag in
      page->flags""
    - hwmon: (asus-ec-sensors) add support for Strix Z690-a D4
    - hwmon: (asus-ec-sensors) add support for Maximus XI Hero
    - hwmon: (asus-ec-sensors) add missing sensors for X570-I GAMING
    - hwmon: (asus-ec-sensors) add definitions for ROG ZENITH II EXTREME
    - hwmon: (asus-ec-sensors) autoload module via DMI data
    - arm64/bti: Disable in kernel BTI when cross section thunks are broken
    - [Config] updateconfigs for ARM64_BTI_KERNEL
    - iommu/vt-d: Correctly calculate sagaw value of IOMMU
    - iommu/virtio: Fix interaction with VFIO
    - iommu: Fix false ownership failure on AMD systems with PASID activated
    - drm/amd/display: Add SMU logging code
    - drm/amd/display: Removing assert statements for Linux
    - Linux 5.19.9
  * Kinetic update: v5.19.8 upstream stable release (LP: #1994061)
    - drm/msm/dp: make eDP panel as the first connected connector
    - drm/msm/dsi: fix the inconsistent indenting
    - drm/msm/dpu: populate wb or intf before reset_intf_cfg
    - drm/msm/dp: delete DP_RECOVERED_CLOCK_OUT_EN to fix tps4
    - drm/msm/dsi: Fix number of regulators for msm8996_dsi_cfg
    - drm/msm/dsi: Fix number of regulators for SDM660
    - platform/x86: pmc_atom: Fix SLP_TYPx bitfield mask
    - platform/x86: x86-android-tablets: Fix broken touchscreen on Chuwi Hi8 with
      Windows BIOS
    - xsk: Fix corrupted packets for XDP_SHARED_UMEM
    - drm/msm/gpu: Drop qos request if devm_devfreq_add_device() fails
    - peci: aspeed: fix error check return value of platform_get_irq()
    - iio: adc: mcp3911: make use of the sign bit
    - skmsg: Fix wrong last sg check in sk_msg_recvmsg()
    - bpf: Restrict bpf_sys_bpf to CAP_PERFMON
    - ip_tunnel: Respect tunnel key's "flow_flags" in IP tunnels
    - bpf, cgroup: Fix kernel BUG in purge_effective_progs
    - drm/i915/gvt: Fix Comet Lake
    - ieee802154/adf7242: defer destroy_workqueue call
    - bpf: Fix a data-race around bpf_jit_limit.
    - drm/i915/ttm: fix CCS handling
    - drm/i915/display: avoid warnings when registering dual panel backlight
    - ALSA: hda: intel-nhlt: Correct the handling of fmt_config flexible array
    - wifi: cfg80211: debugfs: fix return type in ht40allow_map_read()
    - xhci: Fix null pointer dereference in remove if xHC has only one roothub
    - Revert "xhci: turn off port power in shutdown"
    - bpf: Allow helpers to accept pointers with a fixed size
    - bpf: Tidy up verifier check_func_arg()
    - bpf: Do mark_chain_precision for ARG_CONST_ALLOC_SIZE_OR_ZERO
    - Bluetooth: hci_event: Fix vendor (unknown) opcode status handling
    - Bluetooth: hci_sync: Fix suspend performance regression
    - Bluetooth: hci_event: Fix checking conn for le_conn_complete_evt
    - Bluetooth: hci_sync: hold hdev->lock when cleanup hci_conn
    - net: sparx5: fix handling uneven length packets in manual extraction
    - net: smsc911x: Stop and start PHY during suspend and resume
    - openvswitch: fix memory leak at failed datapath creation
    - nfp: flower: fix ingress police using matchall filter
    - net: dsa: xrs700x: Use irqsave variant for u64 stats update
    - net: sched: tbf: don't call qdisc_put() while holding tree lock
    - net/sched: fix netdevice reference leaks in attach_default_qdiscs()
    - net: phy: micrel: Make the GPIO to be non-exclusive
    - net: lan966x: improve error handle in lan966x_fdma_rx_get_frame()
    - ethernet: rocker: fix sleep in atomic context bug in neigh_timer_handler
    - cachefiles: fix error return code in cachefiles_ondemand_copen()
    - cachefiles: make on-demand request distribution fairer
    - mlxbf_gige: compute MDIO period based on i1clk
    - kcm: fix strp_init() order and cleanup
    - sch_cake: Return __NET_XMIT_STOLEN when consuming enqueued skb
    - tcp: annotate data-race around challenge_timestamp
    - Revert "sch_cake: Return __NET_XMIT_STOLEN when consuming enqueued skb"
    - net/smc: Remove redundant refcount increase
    - soundwire: qcom: fix device status array range
    - mm/slab_common: Deleting kobject in kmem_cache_destroy() without holding
      slab_mutex/cpu_hotplug_lock
    - platform/mellanox: mlxreg-lc: Fix coverity warning
    - platform/mellanox: mlxreg-lc: Fix locking issue
    - serial: fsl_lpuart: RS485 RTS polariy is inverse
    - tty: serial: atmel: Preserve previous USART mode if RS485 disabled
    - staging: rtl8712: fix use after free bugs
    - staging: r8188eu: Add Rosewill USB-N150 Nano to device tables
    - staging: r8188eu: add firmware dependency
    - Revert "powerpc: Remove unused FW_FEATURE_NATIVE references"
    - powerpc: align syscall table for ppc32
    - powerpc/rtas: Fix RTAS MSR[HV] handling for Cell
    - vt: Clear selection before changing the font
    - musb: fix USB_MUSB_TUSB6010 dependency
    - tty: serial: lpuart: disable flow control while waiting for the transmit
      engine to complete
    - Input: iforce - wake up after clearing IFORCE_XMIT_RUNNING flag
    - iio: light: cm3605: Fix an error handling path in cm3605_probe()
    - iio: ad7292: Prevent regulator double disable
    - iio: adc: mcp3911: correct "microchip,device-addr" property
    - iio: adc: mcp3911: use correct formula for AD conversion
    - misc: fastrpc: fix memory corruption on probe
    - misc: fastrpc: fix memory corruption on open
    - firmware_loader: Fix use-after-free during unregister
    - firmware_loader: Fix memory leak in firmware upload
    - USB: serial: ftdi_sio: add Omron CS1W-CIF31 device id
    - landlock: Fix file reparenting without explicit LANDLOCK_ACCESS_FS_REFER
    - mmc: core: Fix UHS-I SD 1.8V workaround branch
    - mmc: core: Fix inconsistent sd3_bus_mode at UHS-I SD voltage switch failure
    - binder: fix UAF of ref->proc caused by race condition
    - binder: fix alloc->vma_vm_mm null-ptr dereference
    - cifs: fix small mempool leak in SMB2_negotiate()
    - KVM: VMX: Heed the 'msr' argument in msr_write_intercepted()
    - riscv: kvm: move extern sbi_ext declarations to a header
    - clk: ti: Fix missing of_node_get() ti_find_clock_provider()
    - drm/i915/reg: Fix spelling mistake "Unsupport" -> "Unsupported"
    - clk: core: Honor CLK_OPS_PARENT_ENABLE for clk gate ops
    - Revert "clk: core: Honor CLK_OPS_PARENT_ENABLE for clk gate ops"
    - clk: core: Fix runtime PM sequence in clk_core_unprepare()
    - Input: rk805-pwrkey - fix module autoloading
    - powerpc/papr_scm: Fix nvdimm event mappings
    - clk: bcm: rpi: Fix error handling of raspberrypi_fw_get_rate
    - clk: bcm: rpi: Prevent out-of-bounds access
    - clk: bcm: rpi: Add missing newline
    - hwmon: (gpio-fan) Fix array out of bounds access
    - gpio: pca953x: Add mutex_lock for regcache sync in PM
    - gpio: realtek-otto: switch to 32-bit I/O
    - KVM: x86: Mask off unsupported and unknown bits of IA32_ARCH_CAPABILITIES
    - powerpc/papr_scm: Ensure rc is always initialized in papr_scm_pmu_register()
    - xen/grants: prevent integer overflow in gnttab_dma_alloc_pages()
    - mm: pagewalk: Fix race between unmap and page walker
    - xen-blkback: Advertise feature-persistent as user requested
    - xen-blkfront: Advertise feature-persistent as user requested
    - xen-blkfront: Cache feature_persistent value before advertisement
    - thunderbolt: Use the actual buffer in tb_async_error()
    - thunderbolt: Check router generation before connecting xHCI
    - usb: dwc3: pci: Add support for Intel Raptor Lake
    - media: mceusb: Use new usb_control_msg_*() routines
    - xhci: Add grace period after xHC start to prevent premature runtime suspend.
    - usb: dwc3: disable USB core PHY management
    - usb: dwc3: gadget: Avoid duplicate requests to enable Run/Stop
    - usb: dwc3: fix PHY disable sequence
    - USB: serial: ch341: fix lost character on LCR updates
    - USB: serial: ch341: fix disabled rx timer on older devices
    - USB: serial: cp210x: add Decagon UCA device id
    - USB: serial: option: add support for OPPO R11 diag port
    - USB: serial: option: add Quectel EM060K modem
    - USB: serial: option: add support for Cinterion MV32-WA/WB RmNet mode
    - Revert "usb: typec: ucsi: add a common function
      ucsi_unregister_connectors()"
    - usb: typec: altmodes/displayport: correct pin assignment for UFP receptacles
    - usb: typec: intel_pmc_mux: Add new ACPI ID for Meteor Lake IOM device
    - usb: typec: tcpm: Return ENOTSUPP for power supply prop writes
    - usb: dwc2: fix wrong order of phy_power_on and phy_init
    - usb: cdns3: fix issue with rearming ISO OUT endpoint
    - usb: cdns3: fix incorrect handling TRB_SMM flag for ISOC transfer
    - USB: cdc-acm: Add Icom PMR F3400 support (0c26:0020)
    - usb-storage: Add ignore-residue quirk for NXP PN7462AU
    - s390/hugetlb: fix prepare_hugepage_range() check for 2 GB hugepages
    - s390: fix nospec table alignments
    - USB: core: Prevent nested device-reset calls
    - usb: xhci-mtk: relax TT periodic bandwidth allocation
    - usb: xhci-mtk: fix bandwidth release issue
    - usb: gadget: f_uac2: fix superspeed transfer
    - usb: gadget: mass_storage: Fix cdrom data transfers on MAC-OS
    - USB: gadget: Fix obscure lockdep violation for udc_mutex
    - dma-buf/dma-resv: check if the new fence is really later
    - arm64/kexec: Fix missing extra range for crashkres_low.
    - driver core: Don't probe devices after bus_type.match() probe deferral
    - wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected
    - wifi: mac80211: Fix UAF in ieee80211_scan_rx()
    - ip: fix triggering of 'icmp redirect'
    - net: Use u64_stats_fetch_begin_irq() for stats fetch.
    - net: mac802154: Fix a condition in the receive path
    - ALSA: memalloc: Revive x86-specific WC page allocations again
    - ALSA: hda/realtek: Add speaker AMP init for Samsung laptops with ALC298
    - ALSA: seq: oss: Fix data-race for max_midi_devs access
    - ALSA: seq: Fix data-race at module auto-loading
    - drm/i915/backlight: Disable pps power hook for aux based backlight
    - drm/i915/guc: clear stalled request after a reset
    - drm/i915/glk: ECS Liva Q2 needs GLK HDMI port timing quirk
    - drm/i915: Skip wm/ddb readout for disabled pipes
    - tty: n_gsm: add sanity check for gsm->receive in gsm_receive_buf()
    - tty: n_gsm: initialize more members at gsm_alloc_mux()
    - tty: n_gsm: replace kicktimer with delayed_work
    - tty: n_gsm: avoid call of sleeping functions from atomic context
    - Linux 5.19.8
  * md: Replace snprintf with scnprintf (LP: #1993315)
    - md: Replace snprintf with scnprintf
  * ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
    systems (LP: #1990985)
    - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
      systems
  * iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500
    (LP: #1983656)
    - iavf: Fix set max MTU size with port VLAN and jumbo frames
    - i40e: Fix VF set max MTU size
  * Fix resume on AMD platforms when TBT monitor is plugged (LP: #1990920)
    - drm/amd/display: Detect dpcd_rev when hotplug mst monitor
    - drm/amd/display: Release remote dc_sink under mst scenario
  * [SRU][J/OEM-5.17][PATCH 0/1] Fix oled brightness set above frame-average
    luminance (LP: #1978986)
    - drm: New function to get luminance range based on static hdr metadata
    - drm/amdgpu_dm: Rely on split out luminance calculation function
    - drm/i915: Use luminance range calculated during edid parsing
  * Update Broadcom Emulex FC HBA lpfc driver to 14.2.0.5 for Ubuntu 22.04
    (LP: #1988711)
    - scsi: lpfc: Fix uninitialized cqe field in lpfc_nvme_cancel_iocb()
    - scsi: lpfc: Set PU field when providing D_ID in XMIT_ELS_RSP64_CX iocb
    - scsi: lpfc: Fix lost NVMe paths during LIF bounce stress test
    - scsi: lpfc: Refactor lpfc_nvmet_prep_abort_wqe() into
      lpfc_sli_prep_abort_xri()
    - scsi: lpfc: Update lpfc version to 14.2.0.5
    - scsi: lpfc: Copyright updates for 14.2.0.5 patches
  * input/keyboard: the keyboard on some Asus laptops can't work (LP: #1992266)
    - ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA
    - ACPI: resource: Add ASUS model S5402ZA to quirks
  * pcieport 0000:00:1b.0: PCIe Bus Error: severity=Uncorrected (Non-Fatal),
    type=Transaction Layer, (Requester ID) (LP: #1988797)
    - PCI/PTM: Cache PTM Capability offset
    - PCI/PTM: Add pci_upstream_ptm() helper
    - PCI/PTM: Separate configuration and enable
    - PCI/PTM: Add pci_suspend_ptm() and pci_resume_ptm()
    - PCI/PTM: Move pci_ptm_info() body into its only caller
    - PCI/PTM: Preserve RsvdP bits in PTM Control register
    - PCI/PTM: Reorder functions in logical order
    - PCI/PTM: Consolidate PTM interface declarations
    - PCI/PM: Always disable PTM for all devices during suspend
    - PCI/PM: Simplify pci_pm_suspend_noirq()

[ Ubuntu: 5.19.0-26.27 ]

* kinetic/linux: 5.19.0-26.27 -proposed tracker (LP: #1997434)
  * CVE-2022-3566
    - tcp: Fix data races around icsk->icsk_af_ops.
  * CVE-2022-3567
    - ipv6: Fix data races around sk->sk_prot.
  * CVE-2022-3621
    - nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level()
  * CVE-2022-3565
    - mISDN: fix use-after-free bugs in l1oip timer handlers
  * CVE-2022-3594
    - r8152: Rate limit overflow messages
  * CVE-2022-3564
    - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu
  * CVE-2022-3524
    - tcp/udp: Fix memory leak in ipv6_renew_options().
  * CVE-2022-43945
    - SUNRPC: Fix svcxdr_init_decode's end-of-buffer calculation
    - SUNRPC: Fix svcxdr_init_encode's buflen calculation
    - NFSD: Protect against send buffer overflow in NFSv2 READDIR
    - NFSD: Protect against send buffer overflow in NFSv3 READDIR
    - NFSD: Protect against send buffer overflow in NFSv2 READ
    - NFSD: Protect against send buffer overflow in NFSv3 READ
    - NFSD: Remove "inline" directives on op_rsize_bop helpers
    - NFSD: Cap rsize_bop result based on send buffer size

-- Tim Gardner <tim.gardner@canonical.com>  Thu, 15 Dec 2022 11:28:09 -0700

Changed in linux-azure (Ubuntu Kinetic):
status:	Fix Committed → Fix Released

Revision history for this message

Launchpad Janitor (janitor) wrote on 2023-03-26:

This bug was fixed in the package linux-azure - 6.2.0-1002.2

---------------
linux-azure (6.2.0-1002.2) lunar; urgency=medium

* lunar/linux-azure: 6.2.0-1002.2 -proposed tracker (LP: #2011602)

  * Miscellaneous upstream changes
    - Revert "UBUNTU: SAUCE: azure: x86/hyperv: Make swiotlb bounce buffer
      allocation not just from low pages"

-- Paolo Pisati <email address hidden> Tue, 14 Mar 2023 17:30:00 +0100

Changed in linux-azure (Ubuntu):
status:	Fix Committed → Fix Released

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2023-07-19:

This bug is awaiting verification that the linux-azure/6.2.0-1009.9 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-lunar' to 'verification-done-lunar'. If the problem still exists, change the tag 'verification-needed-lunar' to 'verification-failed-lunar'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-lunar-linux-azure verification-needed-lunar

Tim Gardner (timg-tpi) on 2023-07-19

tags:

added: verification-done-lunar
removed: verification-needed-lunar

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntulinux-azure package

Jammy/linux-azure: CONFIG_BLK_DEV_FD=n

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntu
linux-azure package