[PATCH 0/1][j linux] Fix minor regression in CVE-2022-40982
Tim Gardner
tim.gardner at canonical.com
Tue Sep 12 15:07:49 UTC 2023
BugLink: https://bugs.launchpad.net/bugs/2034745
SRU Justification
[Impact]
In 5.15.0-1045, only loading enclaves with XFRM set to 3 works, sgx_encl_init returns
EINVAL. The only reason this wouldn't work properly is if sgx_drv_init thinks XSAVE
isn't enabled. This works fine in j/linux-azure 5.15.0-1043.
Likely cause:
1045 adds this patch: https://github.com/torvalds/linux/commit/b81fac906a8f9e682e513ddd95697ec7a20878d4 .
This later patch indicates that the former patch introduced some ordering problems.
https://github.com/torvalds/linux/commit/2c66ca3949dc701da7f4c9407f2140ae425683a5 .
That later patch isn't applied to j/linux-azure 5.15.0-1045.
[Test Plan]
User test results pending, but it is a fix commit, so likely worth
applying regardless.
[Regression Potential]
SGX could continue to fail.
More information about the kernel-team
mailing list