From: Dave Jiang <dave.jiang@intel.com>
To: dan.j.williams@intel.com
Cc: linux-nvdimm@lists.01.org
Subject: [PATCH v2 1/4] libnvdimm: fix updating of kernel key during nvdimm key update
Date: Fri, 12 Oct 2018 13:39:54 -0700 [thread overview]
Message-ID: <153937679428.70378.14173556349575982662.stgit@djiang5-desk3.ch.intel.com> (raw)
In-Reply-To: <153937659078.70378.7857051533055879370.stgit@djiang5-desk3.ch.intel.com>
There are several issues WRT kernel key update when we are doing nvdimm
security key update.
1. The kernel key created needs to have proper permission for update
2. We need to check key_update() return value and make sure it didn't fail
3. We need to not hold the key->sem when calling key_update() since it will
call down_write() when doing modification to the key.
Signed-off-by: Dave Jiang <dave.jiang@intel.com>
---
drivers/nvdimm/security.c | 23 ++++++++++++++++++-----
1 file changed, 18 insertions(+), 5 deletions(-)
diff --git a/drivers/nvdimm/security.c b/drivers/nvdimm/security.c
index 2e764abe015a..8de34b03d402 100644
--- a/drivers/nvdimm/security.c
+++ b/drivers/nvdimm/security.c
@@ -27,7 +27,8 @@ static struct key *make_kernel_key(struct key *key)
new_key = key_alloc(&key_type_logon, key->description,
GLOBAL_ROOT_UID, GLOBAL_ROOT_GID, current_cred(),
- KEY_POS_SEARCH, KEY_ALLOC_NOT_IN_QUOTA, NULL);
+ KEY_POS_ALL & ~KEY_POS_SETATTR,
+ KEY_ALLOC_NOT_IN_QUOTA, NULL);
if (IS_ERR(new_key))
return NULL;
@@ -413,11 +414,23 @@ int nvdimm_security_change_key(struct nvdimm *nvdimm,
dev_warn(dev, "key update failed: %d\n", rc);
if (old_key) {
- /* copy new payload to old payload */
- if (rc == 0)
- key_update(make_key_ref(old_key, 1), new_data,
- old_key->datalen);
up_read(&old_key->sem);
+ /*
+ * With the key update done via hardware, we no longer need
+ * the old payload and need to replace it with the new
+ * payload. key_update() will acquire write sem of the
+ * old key and update with new data.
+ */
+ if (rc == 0) {
+ rc = key_update(make_key_ref(old_key, 1), new_data,
+ old_key->datalen);
+ if (rc < 0) {
+ dev_warn(dev,
+ "kernel key update failed: %d\n", rc);
+ key_destroy(old_key);
+ nvdimm->key = NULL;
+ }
+ }
}
up_read(&key->sem);
_______________________________________________
Linux-nvdimm mailing list
Linux-nvdimm@lists.01.org
https://lists.01.org/mailman/listinfo/linux-nvdimm
next prev parent reply other threads:[~2018-10-12 20:39 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-10-12 20:39 [PATCH v2 0/4] misc patches for nvdimm security fixes Dave Jiang
2018-10-12 20:39 ` Dave Jiang [this message]
2018-10-12 20:39 ` [PATCH v2 2/4] libnvdimm: fix incorrect output when nvdimm disable failed Dave Jiang
2018-10-12 20:40 ` [PATCH v2 3/4] libnvdimm: remove code to pull user key when there's no kernel key Dave Jiang
2018-10-12 20:40 ` [PATCH v2 4/4] libnvdimm: address state where dimm is unlocked in preOS Dave Jiang
2018-10-12 23:26 ` [PATCH v2 0/4] misc patches for nvdimm security fixes Dan Williams
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=153937679428.70378.14173556349575982662.stgit@djiang5-desk3.ch.intel.com \
--to=dave.jiang@intel.com \
--cc=dan.j.williams@intel.com \
--cc=linux-nvdimm@lists.01.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.