| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <1eeddbdc-c1f0-4499-b3d1-24c96f42a50b@amd.com>
Date: Wed, 23 Aug 2023 13:58:38 -0500
From: Mario Limonciello <mario.limonciello@....com>
To: Jarkko Sakkinen <jarkko@...nel.org>,
Paul Menzel <pmenzel@...gen.mpg.de>
Cc: linux-integrity@...r.kernel.org,
Jerry Snitselaar <jsnitsel@...hat.com>, stable@...r.kernel.org,
Todd Brandt <todd.e.brandt@...el.com>,
Peter Huewe <peterhuewe@....de>,
Jason Gunthorpe <jgg@...pe.ca>, linux-kernel@...r.kernel.org,
Patrick Steinhardt <ps@....im>, Ronan Pigott <ronan@....ie>,
Raymond Jay Golo <rjgolo@...il.com>
Subject: Re: [PATCH v3] tpm: Enable hwrng only for Pluton on AMD CPUs
On 8/23/2023 12:40, Jarkko Sakkinen wrote:
> On Wed Aug 23, 2023 at 11:23 AM EEST, Paul Menzel wrote:
>> Dear Jarkko,
>>
>>
>> Thank you for your patch.
>>
>>
>> Am 23.08.23 um 01:15 schrieb Jarkko Sakkinen:
>>> The vendor check introduced by commit 554b841d4703 ("tpm: Disable RNG for
>>> all AMD fTPMs") doesn't work properly on a number of Intel fTPMs. On the
>>> reported systems the TPM doesn't reply at bootup and returns back the
>>> command code. This makes the TPM fail probe.
>>>
>>> Since only Microsoft Pluton is the only known combination of AMD CPU and
>>> fTPM from other vendor, disable hwrng otherwise. In order to make sysadmin
>>> aware of this, print also info message to the klog.
>>>
>>> Cc: stable@...r.kernel.org
>>> Fixes: 554b841d4703 ("tpm: Disable RNG for all AMD fTPMs")
>>> Reported-by: Todd Brandt <todd.e.brandt@...el.com>
>>> Closes: https://bugzilla.kernel.org/show_bug.cgi?id=217804
>>> Signed-off-by: Jarkko Sakkinen <jarkko@...nel.org>
>>
>> Mario’s patch also had the three reporters below listed:
>>
>> Reported-by: Patrick Steinhardt <ps@....im>
>> Reported-by: Ronan Pigott <ronan@....ie>
>> Reported-by: Raymond Jay Golo <rjgolo@...il.com>
>
> The problem here is that checkpatch throws three warnings:
>
> WARNING: Reported-by: should be immediately followed by Closes: with a URL to the report
> #19:
> Reported-by: Patrick Steinhardt <ps@....im>
> Reported-by: Ronan Pigott <ronan@....ie>
>
> WARNING: Reported-by: should be immediately followed by Closes: with a URL to the report
> #20:
> Reported-by: Ronan Pigott <ronan@....ie>
> Reported-by: Raymond Jay Golo <rjgolo@...il.com>
>
> WARNING: Reported-by: should be immediately followed by Closes: with a URL to the report
> #21:
> Reported-by: Raymond Jay Golo <rjgolo@...il.com>
> Signed-off-by: Jarkko Sakkinen <jarkko@...nel.org>
>
FWIW I observed the same checkpatch warning when I submitted my version
of the patch. I figured it's better to ignore the warning and attribute
everyone who reported the issue affected them.
If nothing else it gives more people to pull in and check any future
fixes if there is a regression caused by this patch that forces it to be
reverted.
> Since bugzilla is not part of the documented process afaik, I used this
> field as the guideline:
>
> Reported: 2023-08-17 20:59 UTC by Todd Brandt
>
> How otherwise I should interpret kernel bugzilla?
>
> In any case new version is still needed as the commit message must
> contain a mention of "Lenovo Legion Y540" as the stimulus for doing
> this code change in the first place.
>
> BR, Jarkko
Powered by blists - more mailing lists