[Bug 1877425] Re: linux-azure: Enable FSGSBASE instructions to support SGX
This bug was fixed in the package linux-azure - 5.8.0-1007.7 --- linux-azure (5.8.0-1007.7) groovy; urgency=medium * groovy/linux-azure: 5.8.0-1007.7 -proposed tracker (LP: #1898144) * linux-azure: Enable FSGSBASE instructions to support SGX (LP: #1877425) - x86/ptrace: Prevent ptrace from clearing the FS/GS selector - x86/cpu: Add 'unsafe_fsgsbase' to enable CR4.FSGSBASE - x86/fsgsbase/64: Add intrinsics for FSGSBASE instructions - x86/fsgsbase/64: Enable FSGSBASE instructions in helper functions - x86/process/64: Make save_fsgs_for_kvm() ready for FSGSBASE - x86/process/64: Use FSBSBASE in switch_to() if available - x86/process/64: Use FSGSBASE instructions on thread copy and ptrace - x86/speculation/swapgs: Check FSGSBASE in enabling SWAPGS mitigation - x86/entry/64: Switch CR3 before SWAPGS in paranoid entry - x86/entry/64: Introduce the FIND_PERCPU_BASE macro - x86/entry/64: Handle FSGSBASE enabled paranoid entry/exit - x86/cpu: Enable FSGSBASE on 64bit by default and add a chicken bit - x86/elf: Enumerate kernel FSGSBASE capability in AT_HWCAP2 - Documentation/x86/64: Add documentation for GS/FS addressing mode - selftests/x86/fsgsbase: Test GS selector on ptracer-induced GS base write - selftests/x86/fsgsbase: Test ptracer-induced GS base write with FSGSBASE - x86/ptrace: Fix 32-bit PTRACE_SETREGS vs fsbase and gsbase - x86/fsgsbase: Fix Xen PV support * Miscellaneous Ubuntu changes - [Config] GCC version update [ Ubuntu: 5.8.0-21.22 ] * groovy/linux: 5.8.0-21.22 -proposed tracker (LP: #1898150) * Packaging resync (LP: #1786013) - update dkms package versions * Fix broken e1000e device after S3 (LP: #1897755) - SAUCE: e1000e: Increase polling timeout on MDIC ready bit * EFA: add support for 0xefa1 devices (LP: #1896791) - RDMA/efa: Expose maximum TX doorbell batch - RDMA/efa: Expose minimum SQ size - RDMA/efa: User/kernel compatibility handshake mechanism - RDMA/efa: Add EFA 0xefa1 PCI ID * Groovy update: v5.8.13 upstream stable release (LP: #1898076) - device_cgroup: Fix RCU list debugging warning - ASoC: pcm3168a: ignore 0 Hz settings - ASoC: wm8994: Skip setting of the WM8994_MICBIAS register for WM1811 - ASoC: wm8994: Ensure the device is resumed in wm89xx_mic_detect functions - ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN Converter9 2-in-1 - clk: versatile: Add of_node_put() before return statement - RISC-V: Take text_mutex in ftrace_init_nop() - i2c: aspeed: Mask IRQ status to relevant bits - s390/init: add missing __init annotations - lockdep: fix order in trace_hardirqs_off_caller() - EDAC/ghes: Check whether the driver is on the safe list correctly - drm/amdkfd: fix a memory leak issue - drm/amd/display: Don't use DRM_ERROR() for DTM add topology - drm/amd/display: update nv1x stutter latencies - drm/amdgpu/dc: Require primary plane to be enabled whenever the CRTC is - drm/amd/display: Don't log hdcp module warnings in dmesg - objtool: Fix noreturn detection for ignored functions - i2c: mediatek: Send i2c master code at more than 1MHz - riscv: Fix Kendryte K210 device tree - ieee802154: fix one possible memleak in ca8210_dev_com_init - ieee802154/adf7242: check status of adf7242_read_reg - clocksource/drivers/h8300_timer8: Fix wrong return value in h8300_8timer_init() - batman-adv: bla: fix type misuse for backbone_gw hash indexing - libbpf: Fix build failure from uninitialized variable warning - atm: eni: fix the missed pci_disable_device() for eni_init_one() - batman-adv: mcast/TT: fix wrongly dropped or rerouted packets - netfilter: ctnetlink: add a range check for l3/l4 protonum - netfilter: ctnetlink: fix mark based dump filtering regression - netfilter: conntrack: nf_conncount_init is failing with IPv6 disabled - netfilter: nft_meta: use socket user_ns to retrieve skuid and skgid - mac802154: tx: fix use-after-free - bpf: Fix clobbering of r2 in bpf_gen_ld_abs - tools/libbpf: Avoid counting local symbols in ABI check - drm/vc4/vc4_hdmi: fill ASoC card owner - net: qed: Disable aRFS for NPAR and 100G - net: qede: Disable aRFS for NPAR and 100G - net: qed: RDMA personality shouldn't fail VF load - igc: Fix wrong timestamp latency numbers - igc: Fix not considering the TX delay for timestamps - drm/sun4i: sun8i-csc: Secondary CSC register correction - hv_netvsc: Switch the data path at the right time during hibernation - spi: spi-fsl-dspi: use XSPI mode instead of DMA for DPAA2 SoCs - RDMA/core: Fix ordering of CQ pool destruction - batman-adv: Add missing include for in_interrupt() - xsk: Fix number of pinned pages/umem size discrepancy - nvme-tcp: fix kconfig dependency warning when !CRYPTO - batman-adv: mcast: fix duplicate mcast packets in BLA backbone from
[Bug 1877425] Re: linux-azure: Enable FSGSBASE instructions to support SGX
** Also affects: linux-azure (Ubuntu Groovy) Importance: Undecided Assignee: Marcelo Cerri (mhcerri) Status: Fix Released ** Also affects: linux-azure-4.15 (Ubuntu Groovy) Importance: Undecided Status: In Progress ** Changed in: linux-azure-4.15 (Ubuntu Groovy) Status: In Progress => Invalid ** Changed in: linux-azure (Ubuntu Groovy) Status: Fix Released => In Progress -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1877425 Title: linux-azure: Enable FSGSBASE instructions to support SGX To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux-azure/+bug/1877425/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1877425] Re: linux-azure: Enable FSGSBASE instructions to support SGX
This bug was fixed in the package linux-azure - 5.4.0-1016.16 --- linux-azure (5.4.0-1016.16) focal; urgency=medium [ Ubuntu: 5.4.0-37.41 ] * CVE-2020-0543 - SAUCE: x86/speculation/spectre_v2: Exclude Zhaoxin CPUs from SPECTRE_V2 - SAUCE: x86/cpu: Add a steppings field to struct x86_cpu_id - SAUCE: x86/cpu: Add 'table' argument to cpu_matches() - SAUCE: x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation - SAUCE: x86/speculation: Add SRBDS vulnerability and mitigation documentation - SAUCE: x86/speculation: Add Ivy Bridge to affected list linux-azure (5.4.0-1013.13) focal; urgency=medium * focal/linux-azure: 5.4.0-1013.13 -proposed tracker (LP: #1878793) * Add support for Ambiq micro AM1805 RTC chip (LP: #1876667) - SAUCE: rtc: add am-1805 RTC driver * linux-azure: Enable FSGSBASE instructions to support SGX (LP: #1877425) - SAUCE: x86/ptrace: Prevent ptrace from clearing the FS/GS selector - SAUCE: selftests/x86/fsgsbase: Test GS selector on ptracer-induced GS base write - SAUCE: x86/cpu: Add 'unsafe_fsgsbase' to enable CR4.FSGSBASE - SAUCE: x86/entry/64: Clean up paranoid exit - SAUCE: x86/entry/64: Switch CR3 before SWAPGS in paranoid entry - SAUCE: x86/entry/64: Introduce the FIND_PERCPU_BASE macro - SAUCE: x86/entry/64: Handle FSGSBASE enabled paranoid entry/exit - SAUCE: x86/entry/64: Document GSBASE handling in the paranoid path - SAUCE: x86/fsgsbase/64: Add intrinsics for FSGSBASE instructions - SAUCE: x86/fsgsbase/64: Enable FSGSBASE instructions in helper functions - SAUCE: x86/fsgsbase/64: Use FSGSBASE in switch_to() if available - SAUCE: x86/fsgsbase/64: Use FSGSBASE instructions on thread copy and ptrace - SAUCE: x86/speculation/swapgs: Check FSGSBASE in enabling SWAPGS mitigation - SAUCE: selftests/x86/fsgsbase: Test ptracer-induced GS base write with FSGSBASE - SAUCE: x86/fsgsbase/64: Enable FSGSBASE on 64bit by default and add a chicken bit - SAUCE: x86/elf: Enumerate kernel FSGSBASE capability in AT_HWCAP2 - SAUCE: Documentation/x86/64: Add documentation for GS/FS addressing mode * rtkit-daemon[*]: Failed to make ourselves RT: Operation not permitted after upgrade to 20.04 (LP: #1875665) - [Config] Turn off CONFIG_RT_GROUP_SCHED [ Ubuntu: 5.4.0-34.38 ] * focal/linux: 5.4.0-34.38 -proposed tracker (LP: #1880118) * debian/scripts/file-downloader does not handle positive failures correctly (LP: #1878897) - [Packaging] file-downloader not handling positive failures correctly * Focal update: v5.4.41 upstream stable release (LP: #1878649) - USB: serial: qcserial: Add DW5816e support - nvme: refactor nvme_identify_ns_descs error handling - nvme: fix possible hang when ns scanning fails during error recovery - tracing/kprobes: Fix a double initialization typo - net: macb: Fix runtime PM refcounting - drm/amdgpu: move kfd suspend after ip_suspend_phase1 - drm/amdgpu: drop redundant cg/pg ungate on runpm enter - vt: fix unicode console freeing with a common interface - tty: xilinx_uartps: Fix missing id assignment to the console - devlink: fix return value after hitting end in region read - dp83640: reverse arguments to list_add_tail - fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks - ipv6: Use global sernum for dst validation with nexthop objects - mlxsw: spectrum_acl_tcam: Position vchunk in a vregion list properly - neigh: send protocol value in neighbor create notification - net: dsa: Do not leave DSA master with NULL netdev_ops - net: macb: fix an issue about leak related system resources - net: macsec: preserve ingress frame ordering - net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() - net_sched: sch_skbprio: add message validation to skbprio_change() - net: stricter validation of untrusted gso packets - net: tc35815: Fix phydev supported/advertising mask - net/tls: Fix sk_psock refcnt leak in bpf_exec_tx_verdict() - net/tls: Fix sk_psock refcnt leak when in tls_data_ready() - net: usb: qmi_wwan: add support for DW5816e - nfp: abm: fix a memory leak bug - sch_choke: avoid potential panic in choke_reset() - sch_sfq: validate silly quantum values - tipc: fix partial topology connection closure - tunnel: Propagate ECT(1) when decapsulating as recommended by RFC6040 - bnxt_en: Fix VF anti-spoof filter setup. - bnxt_en: Reduce BNXT_MSIX_VEC_MAX value to supported CQs per PF. - bnxt_en: Improve AER slot reset. - bnxt_en: Return error when allocating zero size context memory. - bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features(). - net/mlx5: DR, On creation set CQ's arm_db member to right value - net/mlx5: Fix forced completion access non initialized command entry - net/mlx5: Fix command entry leak in Internal Error
[Bug 1877425] Re: linux-azure: Enable FSGSBASE instructions to support SGX
This bug was fixed in the package linux-azure - 4.15.0-1089.99~16.04.1 --- linux-azure (4.15.0-1089.99~16.04.1) xenial; urgency=medium [ Ubuntu: 4.15.0-1089.99 ] * CVE-2020-0543 - SAUCE: x86/cpu: Add a steppings field to struct x86_cpu_id - SAUCE: x86/cpu: Add 'table' argument to cpu_matches() - SAUCE: x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation - SAUCE: x86/speculation: Add SRBDS vulnerability and mitigation documentation - SAUCE: x86/speculation: Add Ivy Bridge to affected list * bionic/linux: 4.15.0-103.104 -proposed tracker (LP: #1881272) * "BUG: unable to handle kernel paging request" when testing ubuntu_kvm_smoke_test.kvm_smoke_test with B-KVM in proposed (LP: #1881072) - KVM: VMX: Explicitly reference RCX as the vmx_vcpu pointer in asm blobs - KVM: VMX: Mark RCX, RDX and RSI as clobbered in vmx_vcpu_run()'s asm blob linux-azure (4.15.0-1084.94~16.04.1) xenial; urgency=medium * xenial/linux-azure: 4.15.0-1084.94~16.04.1 -proposed tracker (LP: #1878840) [ Ubuntu: 4.15.0-1084.94 ] * bionic/linux-azure-4.15: 4.15.0-1084.94 -proposed tracker (LP: #1878842) * Add support for Ambiq micro AM1805 RTC chip (LP: #1876667) - SAUCE: rtc: add am-1805 RTC driver * linux-azure: Enable FSGSBASE instructions to support SGX (LP: #1877425) - x86/entry: Add some paranoid entry/exit CR3 handling comments - x86/entry/64: Further improve paranoid_entry comments - x86/fsgsbase/64: Introduce FS/GS base helper functions - x86/fsgsbase/64: Make ptrace use the new FS/GS base helpers - x86/fsgsbase/64: Factor out FS/GS segment loading from __switch_to() - x86/segments/64: Rename the GDT PER_CPU entry to CPU_NUMBER - x86/vdso: Introduce helper functions for CPU and node number - x86/vdso: Initialize the CPU/node NR segment descriptor earlier - x86/segments: Introduce the 'CPUNODE' naming to better document the segment limit CPU/node NR trick - x86/fsgsbase/64: Clean up various details - x86/fsgsbase/64: Fix the base write helper functions - selftests/x86/fsgsbase: Test ptracer-induced GSBASE write - selftests/x86/fsgsbase: Test RD/WRGSBASE - selftests/x86/fsgsbase: Test ptracer-induced GSBASE write with FSGSBASE - selftests/x86/fsgsbase: Fix some test case bugs - Revert "x86/ptrace: Prevent ptrace from clearing the FS/GS selector" and fix the test - SAUCE: x86/ptrace: Prevent ptrace from clearing the FS/GS selector - SAUCE: selftests/x86/fsgsbase: Test GS selector on ptracer-induced GS base write - SAUCE: x86/cpu: Add 'unsafe_fsgsbase' to enable CR4.FSGSBASE - SAUCE: x86/entry/64: Clean up paranoid exit - SAUCE: x86/entry/64: Switch CR3 before SWAPGS in paranoid entry - SAUCE: x86/entry/64: Introduce the FIND_PERCPU_BASE macro - SAUCE: x86/entry/64: Handle FSGSBASE enabled paranoid entry/exit - SAUCE: x86/fsgsbase/64: Add intrinsics for FSGSBASE instructions - SAUCE: x86/fsgsbase/64: Enable FSGSBASE instructions in helper functions - SAUCE: x86/fsgsbase/64: Use FSGSBASE in switch_to() if available - SAUCE: x86/fsgsbase/64: Use FSGSBASE instructions on thread copy and ptrace - SAUCE: x86/speculation/swapgs: Check FSGSBASE in enabling SWAPGS mitigation - SAUCE: selftests/x86/fsgsbase: Test ptracer-induced GS base write with FSGSBASE - SAUCE: x86/fsgsbase/64: Enable FSGSBASE on 64bit by default and add a chicken bit - SAUCE: x86/elf: Enumerate kernel FSGSBASE capability in AT_HWCAP2 * bionic/linux: 4.15.0-102.103 -proposed tracker (LP: #1878856) * Packaging resync (LP: #1786013) - update dkms package versions * debian/scripts/file-downloader does not handle positive failures correctly (LP: #1878897) - [Packaging] file-downloader not handling positive failures correctly * Kernel log flood "ceph: Failed to find inode for 1" (LP: #1875884) - ceph: don't check quota for snap inode - ceph: quota: cache inode pointer in ceph_snap_realm * [UBUNTU 18.04] zpcictl --reset - contribution for kernel (LP: #1870320) - s390/pci: Recover handle in clp_set_pci_fn() - s390/pci: Fix possible deadlock in recover_store() * Bionic update: upstream stable patchset 2020-05-12 (LP: #1878256) - drm/edid: Fix off-by-one in DispID DTD pixel clock - drm/qxl: qxl_release leak in qxl_draw_dirty_fb() - drm/qxl: qxl_release leak in qxl_hw_surface_alloc() - drm/qxl: qxl_release use after free - btrfs: fix block group leak when removing fails - btrfs: fix partial loss of prealloc extent past i_size after fsync - mmc: sdhci-xenon: fix annoying 1.8V regulator warning - mmc: sdhci-pci: Fix eMMC driver strength for BYT-based controllers - ALSA: hda/realtek - Two front mics on a Lenovo ThinkCenter - ALSA: hda/hdmi: fix without unlocked before return - ALSA: pcm: oss: Place the plugin buffer overflow checks correctly -
[Bug 1877425] Re: linux-azure: Enable FSGSBASE instructions to support SGX
This bug was fixed in the package linux-azure-4.15 - 4.15.0-1089.99 --- linux-azure-4.15 (4.15.0-1089.99) bionic; urgency=medium [ Ubuntu: 4.15.0-106.107 ] * CVE-2020-0543 - SAUCE: x86/cpu: Add a steppings field to struct x86_cpu_id - SAUCE: x86/cpu: Add 'table' argument to cpu_matches() - SAUCE: x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation - SAUCE: x86/speculation: Add SRBDS vulnerability and mitigation documentation - SAUCE: x86/speculation: Add Ivy Bridge to affected list [ Ubuntu: 4.15.0-103.104 ] * bionic/linux: 4.15.0-103.104 -proposed tracker (LP: #1881272) * "BUG: unable to handle kernel paging request" when testing ubuntu_kvm_smoke_test.kvm_smoke_test with B-KVM in proposed (LP: #1881072) - KVM: VMX: Explicitly reference RCX as the vmx_vcpu pointer in asm blobs - KVM: VMX: Mark RCX, RDX and RSI as clobbered in vmx_vcpu_run()'s asm blob linux-azure-4.15 (4.15.0-1084.94) bionic; urgency=medium * bionic/linux-azure-4.15: 4.15.0-1084.94 -proposed tracker (LP: #1878842) * Add support for Ambiq micro AM1805 RTC chip (LP: #1876667) - SAUCE: rtc: add am-1805 RTC driver * linux-azure: Enable FSGSBASE instructions to support SGX (LP: #1877425) - x86/entry: Add some paranoid entry/exit CR3 handling comments - x86/entry/64: Further improve paranoid_entry comments - x86/fsgsbase/64: Introduce FS/GS base helper functions - x86/fsgsbase/64: Make ptrace use the new FS/GS base helpers - x86/fsgsbase/64: Factor out FS/GS segment loading from __switch_to() - x86/segments/64: Rename the GDT PER_CPU entry to CPU_NUMBER - x86/vdso: Introduce helper functions for CPU and node number - x86/vdso: Initialize the CPU/node NR segment descriptor earlier - x86/segments: Introduce the 'CPUNODE' naming to better document the segment limit CPU/node NR trick - x86/fsgsbase/64: Clean up various details - x86/fsgsbase/64: Fix the base write helper functions - selftests/x86/fsgsbase: Test ptracer-induced GSBASE write - selftests/x86/fsgsbase: Test RD/WRGSBASE - selftests/x86/fsgsbase: Test ptracer-induced GSBASE write with FSGSBASE - selftests/x86/fsgsbase: Fix some test case bugs - Revert "x86/ptrace: Prevent ptrace from clearing the FS/GS selector" and fix the test - SAUCE: x86/ptrace: Prevent ptrace from clearing the FS/GS selector - SAUCE: selftests/x86/fsgsbase: Test GS selector on ptracer-induced GS base write - SAUCE: x86/cpu: Add 'unsafe_fsgsbase' to enable CR4.FSGSBASE - SAUCE: x86/entry/64: Clean up paranoid exit - SAUCE: x86/entry/64: Switch CR3 before SWAPGS in paranoid entry - SAUCE: x86/entry/64: Introduce the FIND_PERCPU_BASE macro - SAUCE: x86/entry/64: Handle FSGSBASE enabled paranoid entry/exit - SAUCE: x86/fsgsbase/64: Add intrinsics for FSGSBASE instructions - SAUCE: x86/fsgsbase/64: Enable FSGSBASE instructions in helper functions - SAUCE: x86/fsgsbase/64: Use FSGSBASE in switch_to() if available - SAUCE: x86/fsgsbase/64: Use FSGSBASE instructions on thread copy and ptrace - SAUCE: x86/speculation/swapgs: Check FSGSBASE in enabling SWAPGS mitigation - SAUCE: selftests/x86/fsgsbase: Test ptracer-induced GS base write with FSGSBASE - SAUCE: x86/fsgsbase/64: Enable FSGSBASE on 64bit by default and add a chicken bit - SAUCE: x86/elf: Enumerate kernel FSGSBASE capability in AT_HWCAP2 [ Ubuntu: 4.15.0-102.103 ] * bionic/linux: 4.15.0-102.103 -proposed tracker (LP: #1878856) * Packaging resync (LP: #1786013) - update dkms package versions * debian/scripts/file-downloader does not handle positive failures correctly (LP: #1878897) - [Packaging] file-downloader not handling positive failures correctly * Kernel log flood "ceph: Failed to find inode for 1" (LP: #1875884) - ceph: don't check quota for snap inode - ceph: quota: cache inode pointer in ceph_snap_realm * [UBUNTU 18.04] zpcictl --reset - contribution for kernel (LP: #1870320) - s390/pci: Recover handle in clp_set_pci_fn() - s390/pci: Fix possible deadlock in recover_store() * Bionic update: upstream stable patchset 2020-05-12 (LP: #1878256) - drm/edid: Fix off-by-one in DispID DTD pixel clock - drm/qxl: qxl_release leak in qxl_draw_dirty_fb() - drm/qxl: qxl_release leak in qxl_hw_surface_alloc() - drm/qxl: qxl_release use after free - btrfs: fix block group leak when removing fails - btrfs: fix partial loss of prealloc extent past i_size after fsync - mmc: sdhci-xenon: fix annoying 1.8V regulator warning - mmc: sdhci-pci: Fix eMMC driver strength for BYT-based controllers - ALSA: hda/realtek - Two front mics on a Lenovo ThinkCenter - ALSA: hda/hdmi: fix without unlocked before return - ALSA: pcm: oss: Place the plugin buffer overflow checks correctly - PM: ACPI: Output correct message on target power state
[Bug 1877425] Re: linux-azure: Enable FSGSBASE instructions to support SGX
This bug was fixed in the package linux-azure - 5.3.0-1028.29 --- linux-azure (5.3.0-1028.29) eoan; urgency=medium [ Ubuntu: 5.3.0-59.53 ] * CVE-2020-0543 - SAUCE: x86/speculation/spectre_v2: Exclude Zhaoxin CPUs from SPECTRE_V2 - SAUCE: x86/cpu: Add a steppings field to struct x86_cpu_id - SAUCE: x86/cpu: Add 'table' argument to cpu_matches() - SAUCE: x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation - SAUCE: x86/speculation: Add SRBDS vulnerability and mitigation documentation - SAUCE: x86/speculation: Add Ivy Bridge to affected list linux-azure (5.3.0-1023.24) eoan; urgency=medium * eoan/linux-azure: 5.3.0-1023.24 -proposed tracker (LP: #1878809) * Build and ship a signed wireguard.ko (LP: #1861284) - [Config] azure: wireguard -- enable on all architectures * linux-azure: Enable FSGSBASE instructions to support SGX (LP: #1877425) - SAUCE: x86/ptrace: Prevent ptrace from clearing the FS/GS selector - SAUCE: selftests/x86/fsgsbase: Test GS selector on ptracer-induced GS base write - SAUCE: x86/cpu: Add 'unsafe_fsgsbase' to enable CR4.FSGSBASE - SAUCE: x86/entry/64: Clean up paranoid exit - SAUCE: x86/entry/64: Switch CR3 before SWAPGS in paranoid entry - SAUCE: x86/entry/64: Introduce the FIND_PERCPU_BASE macro - SAUCE: x86/entry/64: Handle FSGSBASE enabled paranoid entry/exit - SAUCE: x86/entry/64: Document GSBASE handling in the paranoid path - SAUCE: x86/fsgsbase/64: Add intrinsics for FSGSBASE instructions - SAUCE: x86/fsgsbase/64: Enable FSGSBASE instructions in helper functions - SAUCE: x86/fsgsbase/64: Use FSGSBASE in switch_to() if available - SAUCE: x86/fsgsbase/64: Use FSGSBASE instructions on thread copy and ptrace - SAUCE: x86/speculation/swapgs: Check FSGSBASE in enabling SWAPGS mitigation - SAUCE: selftests/x86/fsgsbase: Test ptracer-induced GS base write with FSGSBASE - SAUCE: x86/fsgsbase/64: Enable FSGSBASE on 64bit by default and add a chicken bit - SAUCE: x86/elf: Enumerate kernel FSGSBASE capability in AT_HWCAP2 - SAUCE: Documentation/x86/64: Add documentation for GS/FS addressing mode [ Ubuntu: 5.3.0-56.50 ] * eoan/linux: 5.3.0-56.50 -proposed tracker (LP: #1880111) * Build and ship a signed wireguard.ko (LP: #1861284) - [Packaging] wireguard -- add support for building signed .ko - [Config] wireguard -- enable on all architectures * Packaging resync (LP: #1786013) - update dkms package versions * debian/scripts/file-downloader does not handle positive failures correctly (LP: #1878897) - [Packaging] file-downloader not handling positive failures correctly * Killer(R) Wi-Fi 6 AX1650i 160MHz Wireless Network Adapter (201NGW), REV=0x354 [8086:a0f0] subsystem id [1a56:1651] wireless adapter not found due to firmware crash (LP: #1874685) - iwlwifi: pcie: handle QuZ configs with killer NICs as well * CVE-2020-12114 - propagate_one(): mnt_set_mountpoint() needs mount_lock * Eoan update: upstream stable patchset 2020-05-11 (LP: #1878073) - ext4: fix extent_status fragmentation for plain files - bpftool: Fix printing incorrect pointer in btf_dump_ptr - [Config] updateconfigs for ARM64_ERRATUM_1542419 - arm64: errata: Hide CTR_EL0.DIC on systems affected by Neoverse-N1 #1542419 - arm64: Fake the IminLine size on systems affected by Neoverse-N1 #1542419 - arm64: compat: Workaround Neoverse-N1 #1542419 for compat user-space - arm64: Silence clang warning on mismatched value/register sizes - watchdog: reset last_hw_keepalive time at start - scsi: lpfc: Fix kasan slab-out-of-bounds error in lpfc_unreg_login - scsi: lpfc: Fix crash in target side cable pulls hitting WAIT_FOR_UNREG - ceph: return ceph_mdsc_do_request() errors from __get_parent() - ceph: don't skip updating wanted caps when cap is stale - pwm: rcar: Fix late Runtime PM enablement - scsi: iscsi: Report unbind session event when the target has been removed - ASoC: Intel: atom: Take the drv->lock mutex before calling sst_send_slot_map() - nvme: fix deadlock caused by ANA update wrong locking - kernel/gcov/fs.c: gcov_seq_next() should increase position index - selftests: kmod: fix handling test numbers above 9 - ipc/util.c: sysvipc_find_ipc() should increase position index - kconfig: qconf: Fix a few alignment issues - s390/cio: avoid duplicated 'ADD' uevents - loop: Better discard support for block devices - Revert "powerpc/64: irq_work avoid interrupt when called with hardware irqs enabled" - pwm: renesas-tpu: Fix late Runtime PM enablement - pwm: bcm2835: Dynamically allocate base - perf/core: Disable page faults when getting phys address - ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN MPWIN895CL tablet - drm/amd/display: Not doing optimize bandwidth if flip pending. -
[Bug 1877425] Re: linux-azure: Enable FSGSBASE instructions to support SGX
** Changed in: linux-azure (Ubuntu Focal) Status: In Progress => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1877425 Title: linux-azure: Enable FSGSBASE instructions to support SGX To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux-azure/+bug/1877425/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1877425] Re: linux-azure: Enable FSGSBASE instructions to support SGX
** Changed in: linux-azure (Ubuntu Eoan) Status: In Progress => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1877425 Title: linux-azure: Enable FSGSBASE instructions to support SGX To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux-azure/+bug/1877425/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs