| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20190805160451.GB3449@elm>
Date: Mon, 5 Aug 2019 11:04:52 -0500
From: Tyler Hicks <tyhicks@...onical.com>
To: Mimi Zohar <zohar@...ux.ibm.com>
Cc: Roberto Sassu <roberto.sassu@...wei.com>,
Jarkko Sakkinen <jarkko.sakkinen@...ux.intel.com>,
jejb@...ux.ibm.com, jgg@...pe.ca, linux-integrity@...r.kernel.org,
linux-security-module@...r.kernel.org, keyrings@...r.kernel.org,
linux-kernel@...r.kernel.org, crazyt2019+lml@...il.com,
nayna@...ux.vnet.ibm.com, silviu.vlasceanu@...wei.com
Subject: Re: [PATCH] KEYS: trusted: allow module init if TPM is inactive or
deactivated
On 2019-08-05 11:54:19, Mimi Zohar wrote:
> On Mon, 2019-08-05 at 16:50 +0200, Roberto Sassu wrote:
> > Regarding Mimi's proposal to avoid the issue by extending the PCR with
> > zeros, I think it also achieve the goal.
>
> Roberto, removing the following code from init_digests() would be the
> equivalent to the prior code, without needing to make any other
> changes. Let's keep it simple. Do you want to post the patch with
> the change, or should I?
>
> ret = tpm_get_random(chip, digest, TPM_MAX_DIGEST_SIZE);
> if (ret < 0)
> return ret;
> if (ret < TPM_MAX_DIGEST_SIZE)
> return -EFAULT;
>
> As I can't duplicate the problem, it would need to be tested by others
> experiencing the problem.
The bug reporter tested Roberto's last patch:
https://bugzilla.kernel.org/show_bug.cgi?id=203953#c8
We should Cc the reporter on future patches or at least leave another
testing request in the bugzilla.
Tyler
>
> thanks,
>
> Mimi
>
Powered by blists - more mailing lists