From: Sasha Levin <sashal@kernel.org>
To: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
Cc: linux-integrity@vger.kernel.org,
linux-security-module@vger.kernel.org,
James Bottomley <James.Bottomley@HansenPartnership.com>,
Tomas Winkler <tomas.winkler@intel.com>,
Tadeusz Struk <tadeusz.struk@intel.com>,
Stefan Berger <stefanb@linux.vnet.ibm.com>,
Nayna Jain <nayna@linux.ibm.com>,
stable@vger.kernel.org, Peter Huewe <peterhuewe@gmx.de>,
Jason Gunthorpe <jgg@ziepe.ca>, Arnd Bergmann <arnd@arndb.de>,
Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
open list <linux-kernel@vger.kernel.org>
Subject: Re: [PATCH v8 08/17] tpm: call tpm2_flush_space() on error in tpm_try_transmit()
Date: Sun, 18 Nov 2018 18:21:57 -0500 [thread overview]
Message-ID: <20181118232157.GA1711@sasha-vm> (raw)
In-Reply-To: <20181118073618.GD5897@linux.intel.com>
On Sun, Nov 18, 2018 at 09:36:18AM +0200, Jarkko Sakkinen wrote:
>On Fri, Nov 16, 2018 at 11:19:57AM -0500, Sasha Levin wrote:
>> On Fri, Nov 16, 2018 at 02:38:32PM +0200, Jarkko Sakkinen wrote:
>> > Always call tpm2_flush_space() on failure in tpm_try_transmit() so that
>> > the volatile memory of the TPM gets cleared. If /dev/tpm0 does not have
>> > sufficient permissions (usually it has), this could lead to the leakage
>> > of TPM objects. Through /dev/tpmrm0 this issue does not raise any new
>> > security concerns.
>> >
>> > Cc: James Bottomley <James.Bottomley@HansenPartnership.com>
>> > Cc: stable@vger.kernel.org
>> > Fixes: 745b361e989a ("tpm:tpm: infrastructure for TPM spaces")
>> > Signed-off-by: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
>> > Reviewed-by: Stefan Berger <stefanb@linux.ibm.com>
>>
>> Hi Jarkko,
>>
>> This patch seems to depend on previous patches in this series, but those
>> were not tagged for stable. Do they also need to be backported? If so,
>> can you tag them as such?
>
>Hi
>
>Is that the preferred approach?
>
>I've usually followed this workflow:
>
>1. Mark patches with a fix to a regression with the fixes tag.
>2. If a merge conflict raises, I'll locate the deps.
>
>I've done it this way because often patches can depend on patches
>outside the patch set. Anyway, I'm open to change my workflow if
>that is required.
>
>/Jarkko
Hi Jarkko,
There's no "preferred" approach really. I try to warn about cases like
this early because the response rates to Greg's "FAILED" email seem to
be low - by the time they are sent out people are done with that code
and have moved on.
In this scenario, for exmaple, this patch would not apply to any stable
tree because it depends on a previous patch in this series that was not
tagged for stable. My hopes are that if I warn you about this early you
can work around this (for example, by marking that prior patch for
stable as well) so you won't need to deal with this patch again in a few
weeks.
There's no need to change anything about your flow if it works for you.
--
Thanks,
Sasha
next prev parent reply other threads:[~2018-11-18 23:22 UTC|newest]
Thread overview: 27+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-11-16 12:38 [PATCH v8 00/17] Removed nested TPM operations Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 01/17] tpm: use tpm_buf in tpm_transmit_cmd() as the IO parameter Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 02/17] tpm: fix invalid return value in pubek_show() Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 03/17] tpm: return 0 from pcrs_show() when tpm1_pcr_read() fails Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 04/17] tpm: print tpm2_commit_space() error inside tpm2_commit_space() Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 05/17] tpm: declare struct tpm_header Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 06/17] tpm: access command header through struct in tpm_try_transmit() Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 07/17] tpm: encapsulate tpm_dev_transmit() Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 08/17] tpm: call tpm2_flush_space() on error in tpm_try_transmit() Jarkko Sakkinen
2018-11-16 16:19 ` Sasha Levin
2018-11-18 7:36 ` Jarkko Sakkinen
2018-11-18 23:21 ` Sasha Levin [this message]
2018-11-19 12:57 ` Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 09/17] tpm: clean up tpm_try_transmit() error handling flow Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 10/17] tpm: move tpm_validate_commmand() to tpm2-space.c Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 11/17] tpm: move TPM space code out of tpm_transmit() Jarkko Sakkinen
2018-11-16 17:06 ` Stefan Berger
2018-11-16 12:38 ` [PATCH v8 12/17] tpm: remove @space from tpm_transmit() Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 13/17] tpm: use tpm_try_get_ops() in tpm-sysfs.c Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 14/17] tpm: remove TPM_TRANSMIT_UNLOCKED flag Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 15/17] tpm: introduce tpm_chip_start() and tpm_chip_stop() Jarkko Sakkinen
2018-11-16 17:00 ` Stefan Berger
2018-11-16 12:38 ` [PATCH v8 16/17] tpm: take TPM chip power gating out of tpm_transmit() Jarkko Sakkinen
2018-11-16 17:02 ` Stefan Berger
2018-11-18 7:37 ` Jarkko Sakkinen
2018-11-16 12:38 ` [PATCH v8 17/17] tpm: remove @flags from tpm_transmit() Jarkko Sakkinen
2018-11-16 17:02 ` Stefan Berger
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20181118232157.GA1711@sasha-vm \
--to=sashal@kernel.org \
--cc=James.Bottomley@HansenPartnership.com \
--cc=arnd@arndb.de \
--cc=gregkh@linuxfoundation.org \
--cc=jarkko.sakkinen@linux.intel.com \
--cc=jgg@ziepe.ca \
--cc=linux-integrity@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-security-module@vger.kernel.org \
--cc=nayna@linux.ibm.com \
--cc=peterhuewe@gmx.de \
--cc=stable@vger.kernel.org \
--cc=stefanb@linux.vnet.ibm.com \
--cc=tadeusz.struk@intel.com \
--cc=tomas.winkler@intel.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).