[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

Hello, I also did the verification on Oracular (24.10) with the same steps and outcomes as described in the previous comment (https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/2100024/comments/8) We can conclude that the fix also works on 24.10. Thanks @paelzer and @slyon ! -- You received

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

Hello, I did the following verification on Noble (24.04) I have a machine with INTEL(R) XEON(R) PLATINUM 8592+ CPU, the machine has SGX capability and sgx is enabled in Ubuntu. I used the VM configuration in the bug description, I'm quite lucky to only have to modify the path to Ubuntu qcow2 ima

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

This bug was fixed in the package libvirt - 11.0.0-2ubuntu4 --- libvirt (11.0.0-2ubuntu4) plucky; urgency=medium * apparmor: Allow SGX if configured (LP: #2100024) - d/p/u-aa/lp-2100024-Allow-SGX-if-configured.patch -- Lukas Märdian Wed, 12 Mar 2025 11:40:34 +0100 ** Change

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

** Changed in: libvirt (Ubuntu Noble) Assignee: (unassigned) => Lukas Märdian (slyon) ** Changed in: libvirt (Ubuntu Oracular) Assignee: (unassigned) => Lukas Märdian (slyon) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. h

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

** Changed in: libvirt (Ubuntu) Status: In Progress => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2100024 Title: apparmor: SGX EPC passthrough, cannot add memory module=sgx-e

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

Awesome for cross checking - thanks Mohammed. Hector also offered to test this on an Intel machine he has, which might help eventually verifying this on all releases. I've reviewed the MRs and the look good to me. We should upload it soon to plucky and then group this with other ready SRUs. --

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

I just wanted to add i tested from ppa and this fix works -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2100024 Title: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc To manage noti

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

** Description changed: + [ Impact ] + + * SGX EPC passthrough, cannot add memory module=sgx-epc + * Despite having SGX enabled on the host, a VM wont run with the memory-backend-epc module. + + * This is fixed (upstream) by allowing QEMU access some additional + files, if SGX memory model i

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

PPA: https://launchpad.net/~slyon/+archive/ubuntu/lp-2100024-libvirt-sgx PRs: - Plucky: https://code.launchpad.net/~slyon/ubuntu/+source/libvirt/+git/libvirt/+merge/482382 - Oracular: https://code.launchpad.net/~slyon/ubuntu/+source/libvirt/+git/libvirt/+merge/482384 - Noble: https://code.launc

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

** Changed in: libvirt (Ubuntu Oracular) Status: Triaged => In Progress -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2100024 Title: apparmor: SGX EPC passthrough, cannot add memory module=sg

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

** Merge proposal linked: https://code.launchpad.net/~slyon/ubuntu/+source/libvirt/+git/libvirt/+merge/482386 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2100024 Title: apparmor: SGX EPC passt

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

** Merge proposal linked: https://code.launchpad.net/~slyon/ubuntu/+source/libvirt/+git/libvirt/+merge/482384 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2100024 Title: apparmor: SGX EPC passt

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

** Changed in: libvirt (Ubuntu) Status: Triaged => In Progress ** Changed in: libvirt (Ubuntu) Assignee: (unassigned) => Lukas Märdian (slyon) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

** Merge proposal linked: https://code.launchpad.net/~slyon/ubuntu/+source/libvirt/+git/libvirt/+merge/482382 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2100024 Title: apparmor: SGX EPC passt

[Bug 2100024] Re: apparmor: SGX EPC passthrough, cannot add memory module=sgx-epc

Hey Christian, Yea i am only doing it on Noble, as Jammy does not even have the libvrt version that supports SGX from the just the version number (not sure of features had been backported there too). SGX has been on the uptick as the old gen hardware is going out support from intel and only new G