Package "linux-gcp-5.15"

  linux-gcp-5.15 (5.15.0-1029.36~20.04.1) focal; urgency=medium

  * focal/linux-gcp-5.15: 5.15.0-1029.36~20.04.1 -proposed tracker
    (LP: #2003490)

  [ Ubuntu: 5.15.0-1029.36 ]

  * jammy/linux-gcp: 5.15.0-1029.36 -proposed tracker (LP: #2003429)
  * jammy/linux: 5.15.0-60.66 -proposed tracker (LP: #2003450)
  * Revoke & rotate to new signing key (LP: #2002812)
    - [Packaging] Revoke and rotate to new signing key

  [ Ubuntu: 5.15.0-1028.35 ]

  * jammy/linux-gcp: 5.15.0-1028.35 -proposed tracker (LP: #2001767)
  * Add support for SEV-SNP (LP: #2001605)
    - KVM: SVM: Define sev_features and vmpl field in the VMSA
    - KVM: SEV: Refactor out sev_es_state struct
    - KVM: SVM: Create a separate mapping for the SEV-ES save area
    - KVM: SVM: Create a separate mapping for the GHCB save area
    - KVM: SVM: Update the SEV-ES save area mapping
    - x86/boot: Introduce helpers for MSR reads/writes
    - x86/boot: Use MSR read/write helpers instead of inline assembly
    - SAUCE: x86/compressed/64: Detect/setup SEV/SME features earlier in boot
    - x86/sev: Detect/setup SEV/SME features earlier in boot
    - x86/sev: Use CC_ATTR attribute to generalize string I/O unroll
    - x86/mm: Extend cc_attr to include AMD SEV-SNP
    - x86/sev: Shorten GHCB terminate macro names
    - SAUCE: x86/sev: Define the Linux specific guest termination reasons
    - x86/sev: Save the negotiated GHCB version
    - x86/sev: Carve out HV call's return value verification
    - x86/sev: Expose sev_es_ghcb_hv_call() for use by HyperV
    - x86/sev: Check SEV-SNP features support
    - x86/sev: Add a helper for the PVALIDATE instruction
    - x86/sev: Check the vmpl level
    - x86/compressed: Add helper for validating pages in the decompression stage
    - x86/compressed: Register GHCB memory when SEV-SNP is active
    - x86/sev: Register GHCB memory when SEV-SNP is active
    - x86/sev: Rename mem_encrypt.c to mem_encrypt_amd.c
    - x86/sev: Add helper for validating pages in early enc attribute changes
    - treewide: Replace the use of mem_encrypt_active() with cc_platform_has()
    - x86/head64: Carve out the guest encryption postprocessing into a helper
    - SAUCE: x86/kernel: Make the .bss..decrypted section shared in RMP table
    - x86/kernel: Validate ROM memory before accessing when SEV-SNP is active
    - SAUCE: x86/mm: Add support to validate memory when changing C-bit
    - x86/sev: Remove do_early_exception() forward declarations
    - x86/sev: Use SEV-SNP AP creation to start secondary CPUs
    - x86/head/64: Re-enable stack protection
    - x86/compressed/acpi: Move EFI detection to helper
    - x86/compressed/acpi: Move EFI system table lookup to helper
    - x86/compressed/acpi: Move EFI config table lookup to helper
    - x86/compressed/acpi: Move EFI vendor table lookup to helper
    - x86/compressed/acpi: Move EFI kexec handling into common code
    - x86/boot: Add Confidential Computing type to setup_data
    - KVM: x86: Move lookup of indexed CPUID leafs to helper
    - x86/sev: Move MSR-based VMGEXITs for CPUID to helper
    - x86/compressed/64: Add support for SEV-SNP CPUID table in #VC handlers
    - x86/boot: Add a pointer to Confidential Computing blob in bootparams
    - x86/compressed: Add SEV-SNP feature detection/setup
    - x86/compressed: Use firmware-validated CPUID leaves for SEV-SNP guests
    - x86/compressed: Export and rename add_identity_map()
    - x86/compressed/64: Add identity mapping for Confidential Computing blob
    - x86/sev: Add SEV-SNP feature detection/setup
    - x86/sev: Use firmware-validated CPUID for SEV-SNP guests
    - x86/sev: Provide support for SNP guest request NAEs
    - x86/sev: Register SEV-SNP guest request platform device
    - virt: Add SEV-SNP guest driver
    - virt: sevguest: Add support to derive key
    - virt: sevguest: Add support to get extended report
    - virt: sevguest: Add documentation for SEV-SNP CPUID Enforcement
    - [config] Enable SEV_GUEST
  * jammy/linux: 5.15.0-59.65 -proposed tracker (LP: #2001801)
  * Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts
  * CVE-2022-47940
    - ksmbd: validate length in smb2_write()
  * Fix iosm: WWAN cannot build the connection (DW5823e) (LP: #1998115)
    - net: wwan: iosm: fix driver not working with INTEL_IOMMU disabled
    - [Config] CONFIG_IOSM update annotations on arm64 armhf ppc64el s390x
  * support for same series backports versioning numbers (LP: #1993563)
    - [Packaging] sameport -- add support for sameport versioning
  * [DEP-8] Run ADT regression suite for lowlatency kernels Jammy and later
    (LP: #1999528)
    - [DEP-8] Fix regression suite to run on lowlatency
  * Micron NVME storage failure [1344,5407] (LP: #1998883)
    - nvme: add a bogus subsystem NQN quirk for Micron MTFDKBA2T0TFH
  * Jammy update: v5.15.78 upstream stable release (LP: #1998843)
    - scsi: lpfc: Rework MIB Rx Monitor debug info logic
    - serial: ar933x: Deassert Transmit Enable on ->rs485_config()
    - KVM: x86: Trace re-injected exceptions
    - KVM: x86: Treat #DBs from the emulator as fault-like (code and DR7.GD=1)
    - drm/amd/display: explicitly disable psr_feature_enable appropriately
    - mm/hugetlb: fix races when looking up a CONT-PTE/PMD size hugetlb page
    - HID: playstation: add initial DualSense Edge controller support
    - KVM: x86: Protect the unused bits in MSR exiting flags
    - KVM: x86: Copy filter arg outside kvm_vm_ioctl_set_msr_filter()
    - KVM: x86: Add compat handler for KVM_X86_SET_MSR_FILTER
    - RDMA/cma: Use output interface for net_dev check
    - IB/hfi1: Correctly move list in sc_disable()
    - RDMA/hns: Remove magic number
    - RDMA/hns: Use hr_reg_xxx() instead of remaining roce_set_xxx()
    - RDMA/hns: Disable local invalidate operation
    - NFSv4: Fix a potential state reclaim deadlock
    - NFSv4.1: Handle RECLAIM_COMPLETE trunking errors
    - NFSv4.1: We must always send RECLAIM_COMPLETE after a reboot
  

  linux-gcp-5.15 (5.15.0-1026.33~20.04.1) focal; urgency=medium

  * focal/linux-gcp-5.15: 5.15.0-1026.33~20.04.1 -proposed tracker
    (LP: #1997702)

  [ Ubuntu: 5.15.0-1026.33 ]

  * jammy/linux-gcp: 5.15.0-1026.33 -proposed tracker (LP: #1997703)
  * Jammy update: v5.15.68 upstream stable release (LP: #1993003)
    - [Config]: update for latest upstream changes
  * jammy/linux: 5.15.0-57.63 -proposed tracker (LP: #1997737)
  * Packaging resync (LP: #1786013)
    - [Packaging] update variants
    - debian/dkms-versions -- update from kernel-versions (main/2022.11.14)
  * Expose built-in trusted and revoked certificates (LP: #1996892)
    - [Packaging] Expose built-in trusted and revoked certificates
  * TEE Support for CCP driver (LP: #1991608)
    - crypto: ccp: Add support for TEE for PCI ID 0x14CA
  * alsa: soc: the kernel print UBSAN calltrace on the machine with cs35l41
    codec (LP: #1996121)
    - ASoC: cs35l41: Add one more variable in the debug log
    - ASoC: cs35l41: Fix an out-of-bounds access in otp_packed_element_t
  * Fix ath11k deadlock on WCN6855 (LP: #1995041)
    - wifi: ath11k: avoid deadlock during regulatory update in
      ath11k_regd_update()
  * [UBUNTU 20.04] boot: Add s390x secure boot trailer (LP: #1996071)
    - s390/boot: add secure boot trailer
  * Fix rfkill causing soft blocked wifi (LP: #1996198)
    - platform/x86: hp_wmi: Fix rfkill causing soft blocked wifi
  * Fix Thunderbolt device hotplug fail when connect via thunderbolt dock
    (LP: #1991366)
    - PCI: Fix used_buses calculation in pci_scan_child_bus_extend()
    - PCI: Pass available buses even if the bridge is already configured
    - PCI: Move pci_assign_unassigned_root_bus_resources()
    - PCI: Distribute available resources for root buses, too
    - PCI: Fix whitespace and indentation
    - PCI: Fix typo in pci_scan_child_bus_extend()
  * md: Replace snprintf with scnprintf (LP: #1993315)
    - md: Replace snprintf with scnprintf
  * input/keyboard: the keyboard on some Asus laptops can't work (LP: #1992266)
    - ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA
    - ACPI: resource: Add ASUS model S5402ZA to quirks
  * Fix Turbostat is not working for fam: 6 model: 191: stepping: 2 CPU
    (LP: #1991365)
    - tools/power turbostat: Add support for RPL-S
  * pcieport 0000:00:1b.0: PCIe Bus Error: severity=Uncorrected (Non-Fatal),
    type=Transaction Layer, (Requester ID) (LP: #1988797)
    - PCI/PTM: Cache PTM Capability offset
    - PCI/PTM: Add pci_upstream_ptm() helper
    - PCI/PTM: Separate configuration and enable
    - PCI/PTM: Add pci_suspend_ptm() and pci_resume_ptm()
    - PCI/PTM: Move pci_ptm_info() body into its only caller
    - PCI/PTM: Preserve RsvdP bits in PTM Control register
    - PCI/PTM: Reorder functions in logical order
    - PCI/PTM: Consolidate PTM interface declarations
    - PCI/PM: Always disable PTM for all devices during suspend
    - PCI/PM: Simplify pci_pm_suspend_noirq()
  * Fix RPL-S support on powercap/intel_rapl (LP: #1990161)
    - x86/cpu: Drop spurious underscore from RAPTOR_LAKE #define
    - x86/cpu: Add new Alderlake and Raptorlake CPU model numbers
    - x86/cpu: Add new Raptor Lake CPU model number
    - powercap: intel_rapl: add support for RaptorLake
    - powercap: intel_rapl: Add support for RAPTORLAKE_P
    - powercap: intel_rapl: Add support for RAPTORLAKE_S
  * AMD Yellow Carp system hang on HDMI plug in/out over HP hook2 docking
    (LP: #1991974)
    - drm/amd/display: Fix for link encoder access for MST.
    - drm/amd/display: Fix MST link encoder availability check.
    - drm/amd/display: FEC configuration for dpia links
    - drm/amd/display: FEC configuration for dpia links in MST mode
    - drm/amd/display: Add work around for tunneled MST.
  * Jammy update: v5.15.74 upstream stable release (LP: #1995638)
    - nilfs2: fix use-after-free bug of struct nilfs_root
    - nilfs2: fix leak of nilfs_root in case of writer thread creation failure
    - nilfs2: replace WARN_ONs by nilfs_error for checkpoint acquisition failure
    - ceph: don't truncate file in atomic_open
    - random: restore O_NONBLOCK support
    - random: clamp credited irq bits to maximum mixed
    - ALSA: hda: Fix position reporting on Poulsbo
    - efi: Correct Macmini DMI match in uefi cert quirk
    - USB: serial: qcserial: add new usb-id for Dell branded EM7455
    - Revert "powerpc/rtas: Implement reentrant rtas call"
    - Revert "crypto: qat - reduce size of mapped region"
    - random: avoid reading two cache lines on irq randomness
    - random: use expired timer rather than wq for mixing fast pool
    - Input: xpad - add supported devices as contributed on github
    - Input: xpad - fix wireless 360 controller breaking after suspend
    - misc: pci_endpoint_test: Aggregate params checking for xfer
    - misc: pci_endpoint_test: Fix pci_endpoint_test_{copy,write,read}() panic
    - Linux 5.15.74
  * Jammy update: v5.15.73 upstream stable release (LP: #1995637)
    - Makefile.extrawarn: Move -Wcast-function-type-strict to W=1
    - docs: update mediator information in CoC docs
    - xsk: Inherit need_wakeup flag for shared sockets
    - mm: gup: fix the fast GUP race against THP collapse
    - powerpc/64s/radix: don't need to broadcast IPI for radix pmd collapse flush
    - firmware: arm_scmi: Improve checks in the info_get operations
    - firmware: arm_scmi: Harden accesses to the sensor domains
    - firmware: arm_scmi: Add SCMI PM driver remove routine
    - dmaengine: xilinx_dma: Fix devm_platform_ioremap_resource error handling
    - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property
    - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API
      failure
    - ARM: dts: fix Moxa SDIO 'compatible', remove 'sdhci' misnomer
    - scsi: qedf: Fix a UAF bug in __qedf_probe()
    - net/ieee802154: fix uninit value bug in dgram_sendmsg
    - net: marvell: prestera: add support for for Aldrin

  linux-gcp-5.15 (5.15.0-1022.29~20.04.1) focal; urgency=medium

  * focal/linux-gcp-5.15: 5.15.0-1022.29~20.04.1 -proposed tracker
    (LP: #1991986)

  * Jammy update: v5.15.61 upstream stable release (LP: #1990162)
    - [packaging] Remove modules blake2s-x86_64 and blake2s_generic from ABI

  [ Ubuntu: 5.15.0-1022.29 ]

  * jammy/linux-gcp: 5.15.0-1022.29 -proposed tracker (LP: #1991987)
  * Jammy update: v5.15.61 upstream stable release (LP: #1990162)
    - [Config] updateconfigs for CRYPTO_LIB_BLAKE2S
  * Update gvnic driver code (LP: #1953575)
    - gve: Use kvcalloc() instead of kvzalloc()
    - gve: Switch to use napi_complete_done
    - gve: Add rx buffer pagecnt bias
    - gve: Do lazy cleanup in TX path
    - gve: Add netif_set_xps_queue call
    - gve: Allow pageflips on larger pages
    - gve: Add RX context.
    - gve: Implement packet continuation for RX.
    - gve: Add a jumbo-frame device option.
    - gve: fix unmatched u64_stats_update_end()
    - gve: fix for null pointer dereference.
    - gve: Correct order of processing device options
    - gve: Move the irq db indexes out of the ntfy block struct
    - gve: Update gve_free_queue_page_list signature
    - gve: remove memory barrier around seqno
    - gve: Add optional metadata descriptor type GVE_TXD_MTD
    - gve: Implement suspend/resume/shutdown
    - gve: Add consumed counts to ethtool stats
    - gve: Add tx|rx-coalesce-usec for DQO
  * Fix blank screen on Thinkpad ADL 4K+ panel (LP: #1980621)
    - drm/i915: Implement WaEdpLinkRateDataReload
  * Kernel regresses openjdk on riscv64 (LP: #1992484)
    - SAUCE: Revert "riscv: mmap with PROT_WRITE but no PROT_READ is invalid"
  * iavf: SR-IOV VFs error with no traffic flow when MTU greater than 1500
    (LP: #1983656)
    - iavf: Fix set max MTU size with port VLAN and jumbo frames
    - i40e: Fix VF set max MTU size
  * [Ubuntu 22.04] mpt3sas: Request to include latest bug fix patches
    (LP: #1965927)
    - scsi: mpt3sas: Remove scsi_dma_map() error messages
    - scsi: mpt3sas: Update persistent trigger pages from sysfs interface
  * ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
    systems (LP: #1990985)
    - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel
      systems
  * Fix resume on AMD platforms when TBT monitor is plugged (LP: #1990920)
    - SAUCE: Revert "drm/amd/display: Add helper for blanking all dp displays"
    - drm/amd/display: Detect dpcd_rev when hotplug mst monitor
    - drm/amd/display: Release remote dc_sink under mst scenario
  * LSM: Configuring Too Many LSMs Causes Kernel Panic on Boot (LP: #1987998)
    - SAUCE: LSM: Change Landlock from LSMBLOB_NEEDED to LSMBLOB_NOT_NEEDED
  * To support Intel Maple Ridge Thunderbolt [8086:1134] (LP: #1990240)
    - thunderbolt: Add support for Intel Maple Ridge single port controller
  * Intel graphic driver is not probing[8086:468b] (LP: #1990242)
    - drm/i915/adl_s: Update ADL-S PCI IDs
    - drm/i915: Add new ADL-S pci id
  * Add HDMI codec ID for Intel Raptor Lake (LP: #1989578)
    - ALSA: hda: Add PCI and HDMI IDs for Intel Raptor Lake
  * Jammy update: v5.15.64 upstream stable release (LP: #1991717)
    - wifi: rtlwifi: remove always-true condition pointed out by GCC 12
    - eth: sun: cassini: remove dead code
    - audit: fix potential double free on error path from fsnotify_add_inode_mark
    - cgroup: Fix race condition at rebind_subsystems()
    - parisc: Make CONFIG_64BIT available for ARCH=parisc64 only
    - parisc: Fix exception handler for fldw and fstw instructions
    - kernel/sys_ni: add compat entry for fadvise64_64
    - x86/entry: Move CLD to the start of the idtentry macro
    - block: add a bdev_max_zone_append_sectors helper
    - block: add bdev_max_segments() helper
    - btrfs: zoned: revive max_zone_append_bytes
    - btrfs: replace BTRFS_MAX_EXTENT_SIZE with fs_info->max_extent_size
    - btrfs: convert count_max_extents() to use fs_info->max_extent_size
    - Input: i8042 - move __initconst to fix code styling warning
    - Input: i8042 - merge quirk tables
    - Input: i8042 - add TUXEDO devices to i8042 quirk tables
    - Input: i8042 - add additional TUXEDO devices to i8042 quirk tables
    - drivers/base: fix userspace break from using bin_attributes for cpumap and
      cpulist
    - scsi: qla2xxx: Fix response queue handler reading stale packets
    - scsi: qla2xxx: edif: Fix dropped IKE message
    - btrfs: put initial index value of a directory in a constant
    - btrfs: pass the dentry to btrfs_log_new_name() instead of the inode
    - btrfs: remove unnecessary parameter delalloc_start for writepage_delalloc()
    - riscv: lib: uaccess: fold fixups into body
    - riscv: lib: uaccess: fix CSR_STATUS SR_SUM bit
    - xfrm: fix refcount leak in __xfrm_policy_check()
    - xfrm: clone missing x->lastused in xfrm_do_migrate
    - xfrm: policy: fix metadata dst->dev xmit null pointer dereference
    - fs: require CAP_SYS_ADMIN in target namespace for idmapped mounts
    - net: use eth_hw_addr_set() instead of ether_addr_copy()
    - Revert "net: macsec: update SCI upon MAC address change."
    - NFS: Don't allocate nfs_fattr on the stack in __nfs42_ssc_open()
    - NFSv4.2 fix problems with __nfs42_ssc_open
    - SUNRPC: RPC level errors should set task->tk_rpc_status
    - mm/smaps: don't access young/dirty bit if pte unpresent
    - ntfs: fix acl handling
    - rose: check NULL rose_loopback_neigh->loopback
    - r8152: fix the units of some registers for RTL8156A
    - r8152: fix the RX FIFO settings when suspending
    - nfc: pn533: Fix use-after-free bugs caused by pn532_cmd_timeout
    - ice: xsk: Force rings to be sized to power of 2
    - ice: xsk: prohibit usage of non-balanced queue id
    - net/mlx5e: Properly disable vlan strip on non-UL reps
    - net/mlx5: Avoid false positive lockdep warning by adding lock_class_key
    - net/mlx5e: Fix wrong application of the LRO st