APPLIED[N]/Cmnt: [PATCH 0/1][SRU M/N/U] Fix secure execution regression on s390x
Stefan Bader
stefan.bader at canonical.com
Fri Jan 12 10:33:23 UTC 2024
On 11.01.24 11:28, Stefan Bader wrote:
> == SRU Justification ==
>
> Impact: To allow secure execution the S390X_UV_UAPI driver is a critical
> requirement. For 22.04/Jammy LTS we backported the driver and enabled it
> as built-in. It seems 22.10/Kinetic also had this enabled. But then in
> later releases this option flipped back to 'n'.
>
> Fix: Turn this back on (built-in) in the annotation file. Note, this
> patch is made against Mantic. Noble and Unstable might need adjustments.
>
> Test case (on a s390x instance):
> #> cat /boot/config-$(uname -r) | grep UV_UAPI
> CONFIG_S390X_UV_UAPI=y
>
> Regression potential: If anything goes wrong, then likeliy within secure
> execution bounds.
>
> Stefan Bader (1):
> UBUNTU: [Config] Enable S390_UV_UAPI (built-in)
>
> debian.master/config/annotations | 4 +++-
> 1 file changed, 3 insertions(+), 1 deletion(-)
>
Applied to noble:linux/master-next by Andrea. Thanks.
-Stefan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE8675DEECBEECEA3.asc
Type: application/pgp-keys
Size: 48643 bytes
Desc: OpenPGP public key
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20240112/34e3dd85/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20240112/34e3dd85/attachment-0001.sig>
More information about the kernel-team
mailing list