SGX fixes for 5.15 Azure tuned kernel
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux-azure (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Jammy |
Fix Released
|
Medium
|
Tim Gardner |
Bug Description
SRU Justification
[Impact]
https://<email address hidden>/T/ = This fix introduced a bug and fixed and reverted by series added to 5.19 (https://<email address hidden>/)
Backport several SGX fixes.
x86/sgx: Ensure no data in PCMD page after truncate
x86/sgx: Fix race between reclaimer and page fault handler
x86/sgx: Obtain backing storage page with enclave mutex held
x86/sgx: Mark PCMD page as dirty when modifying contents
x86/sgx: Disconnect backing page references from dirty status
[Test Plan]
Microsoft tested, "Update from engineer - I was unable to reproduce the softlock issue after the patches were installed"
[Where things could go wrong]
These patches could cause a different soft lockup.
[Other Info]
SF: #00338537
CVE References
affects: | linux (Ubuntu) → linux-azure (Ubuntu) |
Changed in linux-azure (Ubuntu): | |
assignee: | nobody → Tim Gardner (timg-tpi) |
importance: | Undecided → Medium |
status: | New → In Progress |
Changed in linux-azure (Ubuntu Jammy): | |
assignee: | nobody → Tim Gardner (timg-tpi) |
importance: | Undecided → Medium |
status: | New → In Progress |
Changed in linux-azure (Ubuntu): | |
assignee: | Tim Gardner (timg-tpi) → nobody |
importance: | Medium → Undecided |
status: | In Progress → Fix Released |
Changed in linux-azure (Ubuntu Jammy): | |
status: | In Progress → Fix Committed |
This bug is awaiting verification that the linux-azure/ 5.15.0- 1014.17 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification- needed- jammy' to 'verification- done-jammy' . If the problem still exists, change the tag 'verification- needed- jammy' to 'verification- failed- jammy'.
If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.
See https:/ /wiki.ubuntu. com/Testing/ EnableProposed for documentation how to enable and use -proposed. Thank you!