!4991 CVE-2023-52568 (f470ef88) · Commits · EulixOS / Software / Kernel

arch/x86/kernel/cpu/sgx/encl.c

+25 −5

Original line number	Diff line number	Diff line
		@@ -235,6 +235,21 @@ static struct sgx_epc_page sgx_encl_eldu(struct sgx_encl_page encl_page,
		return epc_page;
		}

		/*
		* Ensure the SECS page is not swapped out. Must be called with encl->lock
		* to protect the enclave states including SECS and ensure the SECS page is
		* not swapped out again while being used.
		*/
		static struct sgx_epc_page sgx_encl_load_secs(struct sgx_encl encl)
		{
		struct sgx_epc_page *epc_page = encl->secs.epc_page;

		if (!epc_page)
		epc_page = sgx_encl_eldu(&encl->secs, NULL);

		return epc_page;
		}

		static struct sgx_encl_page __sgx_encl_load_page(struct sgx_encl encl,
		struct sgx_encl_page *entry)
		{
		@@ -248,11 +263,9 @@ static struct sgx_encl_page __sgx_encl_load_page(struct sgx_encl encl,
		return entry;
		}

		if (!(encl->secs.epc_page)) {
		epc_page = sgx_encl_eldu(&encl->secs, NULL);
		epc_page = sgx_encl_load_secs(encl);
		if (IS_ERR(epc_page))
		return ERR_CAST(epc_page);
		}

		epc_page = sgx_encl_eldu(entry, encl->secs.epc_page);
		if (IS_ERR(epc_page))
		@@ -339,6 +352,13 @@ static vm_fault_t sgx_encl_eaug_page(struct vm_area_struct *vma,

		mutex_lock(&encl->lock);

		epc_page = sgx_encl_load_secs(encl);
		if (IS_ERR(epc_page)) {
		if (PTR_ERR(epc_page) == -EBUSY)
		vmret = VM_FAULT_NOPAGE;
		goto err_out_unlock;
		}

		epc_page = sgx_alloc_epc_page(encl_page, false);
		if (IS_ERR(epc_page)) {
		if (PTR_ERR(epc_page) == -EBUSY)