linux-azure: Update SGX version and udev rules
Bug #1867820 reported by
Marcelo Cerri
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux-azure (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Trusty |
Invalid
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Eoan |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Undecided
|
Unassigned | ||
linux-azure-5.4 (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
Trusty |
Invalid
|
Undecided
|
Unassigned | ||
Xenial |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Eoan |
Invalid
|
Undecided
|
Unassigned | ||
Focal |
Invalid
|
Undecided
|
Unassigned | ||
linux-base (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Trusty |
Invalid
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Eoan |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Impact]
We will use the official Intel's DCAP git repository to keep SGX up-to-date. We need to update the driver included to the linux-azure kernels to the version located at:
https:/
Including the provided udev rules.
[Test Case]
The driver should continue to work normally. The main difference should be the permissions and groups for the /dev/sgx (0666) and /dev/sgx_prv (0660 with sgx_prv group).
[Regression Potential]
The regression potential is low since the functional changes are not meaningful and the permissions are less restrictive.
CVE References
Changed in linux-azure (Ubuntu Trusty): | |
status: | New → Invalid |
no longer affects: | linux-azure (Ubuntu Disco) |
no longer affects: | linux-base (Ubuntu Disco) |
Changed in linux-azure (Ubuntu Bionic): | |
status: | New → In Progress |
Changed in linux-base (Ubuntu Bionic): | |
status: | New → In Progress |
tags: | added: patch |
Changed in linux-base (Ubuntu Trusty): | |
status: | New → Invalid |
Changed in linux-azure-5.4 (Ubuntu Trusty): | |
status: | New → Invalid |
Changed in linux-azure-5.4 (Ubuntu Xenial): | |
status: | New → Invalid |
Changed in linux-azure-5.4 (Ubuntu Bionic): | |
assignee: | nobody → Tim Gardner (timg-tpi) |
status: | New → Triaged |
Changed in linux-azure-5.4 (Ubuntu Eoan): | |
status: | New → Invalid |
Changed in linux-azure-5.4 (Ubuntu Focal): | |
status: | New → Invalid |
description: | updated |
Changed in linux-azure-5.4 (Ubuntu Bionic): | |
status: | Triaged → In Progress |
Changed in linux-azure-5.4 (Ubuntu Bionic): | |
assignee: | Tim Gardner (timg-tpi) → nobody |
status: | In Progress → Fix Released |
To post a comment you must log in.
https:/ /lists. ubuntu. com/archives/ kernel- team/2020- March/108333. html /lists. ubuntu. com/archives/ kernel- team/2020- March/108335. html
https:/