2022-04-30 08:31:29 |
Gongjun Song |
bug |
|
|
added bug |
2022-04-30 08:31:55 |
Gongjun Song |
bug |
|
|
added subscriber quanxian |
2022-04-30 08:32:01 |
Gongjun Song |
bug task added |
|
ubuntu |
|
2022-05-19 02:31:52 |
quanxian |
description |
[Feature Description]
There currently is no length checking in the TDX_CMD_GEN_QUOTE ioctl. The TDCALL also doesn't offer the length.
This can lead to strange effects, e.g. if the QUOTE is shorter than the report it would copy out parts of the quote. Also if the length of the report changes over tdcalls it might copy parts of previous reports.
There is a proposal to define a header with a length. Use header only copy the actual length. This would be also more efficient.
[HW/SW Information]
Target Kernel: 5.17
Target Release: 22.10
Sapphire Rapids server platform
[Business Justification]
Function enabling |
[Feature Description]
There currently is no length checking in the TDX_CMD_GEN_QUOTE ioctl. The TDCALL also doesn't offer the length.
This can lead to strange effects, e.g. if the QUOTE is shorter than the report it would copy out parts of the quote. Also if the length of the report changes over tdcalls it might copy parts of previous reports.
There is a proposal to define a header with a length. Use header only copy the actual length. This would be also more efficient.
[HW/SW Information]
Target Kernel: 5.19
Target Release: 22.10
Sapphire Rapids server platform
[Business Justification]
Function enabling |
|
2022-07-22 01:46:27 |
huzhiming100 |
attachment added |
|
Intel TDX guest attestation driver enabling https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5604665/+files/attest_patch.tar.gz |
|
2022-07-22 02:03:30 |
huzhiming100 |
attachment added |
|
Get quote test log https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5604668/+files/Ubuntu_tdx_quote_log_20220721.txt |
|
2022-08-15 09:50:04 |
huzhiming100 |
attachment added |
|
Intel TDX guest attestation driver enabling https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5608761/+files/Intel_TDX_guest_attestion_driver_enabling.tar |
|
2022-08-15 09:57:48 |
huzhiming100 |
attachment added |
|
tdx guest attestation driver test log https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5608762/+files/tdx_guest_attestion_driver.log |
|
2022-08-21 23:48:06 |
quanxian |
description |
[Feature Description]
There currently is no length checking in the TDX_CMD_GEN_QUOTE ioctl. The TDCALL also doesn't offer the length.
This can lead to strange effects, e.g. if the QUOTE is shorter than the report it would copy out parts of the quote. Also if the length of the report changes over tdcalls it might copy parts of previous reports.
There is a proposal to define a header with a length. Use header only copy the actual length. This would be also more efficient.
[HW/SW Information]
Target Kernel: 5.19
Target Release: 22.10
Sapphire Rapids server platform
[Business Justification]
Function enabling |
[Feature Description]
There currently is no length checking in the TDX_CMD_GEN_QUOTE ioctl. The TDCALL also doesn't offer the length.
This can lead to strange effects, e.g. if the QUOTE is shorter than the report it would copy out parts of the quote. Also if the length of the report changes over tdcalls it might copy parts of previous reports.
There is a proposal to define a header with a length. Use header only copy the actual length. This would be also more efficient.
[HW/SW Information]
Target Kernel: 6.2
Target Release: 22.10
Sapphire Rapids server platform
[Business Justification]
Function enabling |
|
2022-08-30 08:43:35 |
quanxian |
summary |
[SPR] Need length parsing in TDX attestation driver |
[SPR] TDX attestation driver enabling |
|
2022-08-30 08:44:00 |
quanxian |
description |
[Feature Description]
There currently is no length checking in the TDX_CMD_GEN_QUOTE ioctl. The TDCALL also doesn't offer the length.
This can lead to strange effects, e.g. if the QUOTE is shorter than the report it would copy out parts of the quote. Also if the length of the report changes over tdcalls it might copy parts of previous reports.
There is a proposal to define a header with a length. Use header only copy the actual length. This would be also more efficient.
[HW/SW Information]
Target Kernel: 6.2
Target Release: 22.10
Sapphire Rapids server platform
[Business Justification]
Function enabling |
[Feature Description]
In TD Guest, the attestation process is used to verify the trustworthiness of TD guest to the 3rd party servers. Such attestation
process is required by 3rd party servers before sending sensitive information to TD guests. One usage example is to get encryption keys
from the key server for mounting the encrypted rootfs or secondary drive.
Test and Enable attestation driver in TDX guest kernel.
[HW/SW Information]
Target Kernel: 6.2
Target Release: 22.10
Sapphire Rapids server platform
[Business Justification]
Function enabling |
|
2022-11-02 06:39:35 |
quanxian |
intel: status |
New |
Fix Released |
|
2022-12-07 15:22:08 |
pragyansri.pathi@intel.com |
information type |
Private |
Public |
|
2022-12-07 16:21:49 |
Ubuntu Foundations Team Bug Bot |
tags |
intel-kernel-22.10 spr |
intel-kernel-22.10 patch spr |
|
2022-12-07 16:21:59 |
Ubuntu Foundations Team Bug Bot |
bug |
|
|
added subscriber Ubuntu Review Team |
2023-02-25 11:10:21 |
huzhiming100 |
attachment added |
|
attestation_driver.tar.gz https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5649956/+files/attestation_driver.tar.gz |
|
2023-02-25 11:11:32 |
huzhiming100 |
attachment added |
|
vm_log_2023-02-25T0523.log https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5649957/+files/vm_log_2023-02-25T0523.log |
|
2023-02-25 11:12:02 |
huzhiming100 |
attachment added |
|
test_log.txt https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5649958/+files/test_log.txt |
|
2023-02-25 11:20:37 |
huzhiming100 |
attachment removed |
attestation_driver.tar.gz https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5649956/+files/attestation_driver.tar.gz |
|
|
2023-02-25 13:02:05 |
huzhiming100 |
attachment removed |
vm_log_2023-02-25T0523.log https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5649957/+files/vm_log_2023-02-25T0523.log |
|
|
2023-02-25 13:04:07 |
huzhiming100 |
attachment added |
|
attestation_driver_patch.tar.gz https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5649959/+files/attestation_driver_patch.tar.gz |
|
2023-02-25 13:04:42 |
huzhiming100 |
attachment added |
|
vm_log_2023-02-25T0755.log https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5649960/+files/vm_log_2023-02-25T0755.log |
|
2023-02-25 13:04:56 |
huzhiming100 |
attachment removed |
test_log.txt https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5649958/+files/test_log.txt |
|
|
2023-02-25 13:05:39 |
huzhiming100 |
attachment added |
|
test_log.txt https://bugs.launchpad.net/intel/+bug/1971027/+attachment/5649961/+files/test_log.txt |
|
2023-08-25 07:38:48 |
Kleber Sacilotto de Souza |
ubuntu: status |
New |
Fix Released |
|