| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20251209073903.767518-1-jarkko@kernel.org> Date: Tue, 9 Dec 2025 09:38:58 +0200 From: Jarkko Sakkinen <jarkko@...nel.org> To: linux-integrity@...r.kernel.org Cc: Jarkko Sakkinen <jarkko@...nel.org>, Peter Huewe <peterhuewe@....de>, Jason Gunthorpe <jgg@...pe.ca>, linux-kernel@...r.kernel.org (open list) Subject: [PATCH 0/4] Streamline TPM2 HMAC sessions Since we cannot at this point cache names of the keys given limitations of the ASN.1 file format, I'll start a fresh patch set. Let's fixup what we can right now. This patch set addresses two major issues in the feature: 1. Dynamic resolution without gain. All kernel sites have at most single handle to authorize. Even if this changes some day this is how it is as of today and we definitely do not want to dictate the future but instead downscale code to the metrics that we have as of today. 2. Eliminate at least one unnnecessary tpm2_read_public() call. Jarkko Sakkinen (4): tpm2-sessions: Define TPM2_NAME_MAX_SIZE KEYS: trusted: Re-orchestrate tpm2_read_public() calls tpm2-sessions: Remove AUTH_MAX_NAMES tpm-buf: Remove tpm_buf_append_handle drivers/char/tpm/tpm-buf.c | 25 ----- drivers/char/tpm/tpm2-cmd.c | 7 +- drivers/char/tpm/tpm2-sessions.c | 120 +++++++-------------- include/linux/tpm.h | 20 +++- security/keys/trusted-keys/trusted_tpm2.c | 126 ++++++++++++++-------- 5 files changed, 138 insertions(+), 160 deletions(-) -- 2.52.0
Powered by blists - more mailing lists