mirrors
/
linux-stable
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
1
0
Fork 0
Code Issues Releases Wiki Activity
1,078,256 Commits 103 Branches 4,995 Tags 5.4 GiB
C 97.6%
Assembly 1%
Shell 0.5%
Python 0.3%
Makefile 0.3%
Go to file
David Safford 776d2c5523 KEYS: trusted: tpm2: Fix migratable logic 
commit dda5384313 upstream.

When creating (sealing) a new trusted key, migratable
trusted keys have the FIXED_TPM and FIXED_PARENT attributes
set, and non-migratable keys don't. This is backwards, and
also causes creation to fail when creating a migratable key
under a migratable parent. (The TPM thinks you are trying to
seal a non-migratable blob under a migratable parent.)

The following simple patch fixes the logic, and has been
tested for all four combinations of migratable and non-migratable
trusted keys and parent storage keys. With this logic, you will
get a proper failure if you try to create a non-migratable
trusted key under a migratable parent storage key, and all other
combinations work correctly.

Cc: stable@vger.kernel.org # v5.13+
Fixes: e5fb5d2c5a ("security: keys: trusted: Make sealed key properly interoperable")
Signed-off-by: David Safford <david.safford@gmail.com>
Reviewed-by: Ahmad Fatoum <a.fatoum@pengutronix.de>
Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org>
Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
 		2022-06-14 18:41:45 +02:00
Documentation rtla/Makefile: Properly handle dependencies 2022-06-14 18:41:28 +02:00
LICENSES LICENSES/LGPL-2.1: Add LGPL-2.1-or-later as valid identifiers 2021-12-16 14:33:10 +01:00
arch s390/gmap: voluntarily schedule during key setting 2022-06-14 18:41:41 +02:00
block blk-mq: do not update io_ticks with passthrough requests 2022-06-14 18:41:23 +02:00
certs certs: Fix build error when CONFIG_MODULE_SIG_KEY is empty 2022-01-23 00:08:44 +09:00
crypto crypto: cryptd - Protect per-CPU resource by disabling BH. 2022-06-09 10:26:07 +02:00
drivers scsi: sd: Fix interpretation of VPD B9h length 2022-06-14 18:41:45 +02:00
fs cifs: populate empty hostnames for extra channels 2022-06-14 18:41:45 +02:00
include nodemask: Fix return values to be unsigned 2022-06-14 18:41:42 +02:00
init Kconfig: Add option for asm goto w/ tied outputs to workaround clang-13 bug 2022-06-09 10:26:25 +02:00
ipc ipc/mqueue: use get_tree_nodev() in mqueue_get_tree() 2022-06-09 10:26:06 +02:00
kernel tracing: Avoid adding tracer option before update_tracer_options 2022-06-14 18:41:27 +02:00
lib nodemask: Fix return values to be unsigned 2022-06-14 18:41:42 +02:00
mm mm/memremap: fix missing call to untrack_pfn() in pagemap_range() 2022-06-09 10:26:28 +02:00
net net, neigh: Set lower cap for neigh_managed_work rearming 2022-06-14 18:41:37 +02:00
samples samples/landlock: Format with clang-format 2022-06-09 10:26:22 +02:00
scripts scripts/gdb: change kernel config dumping method 2022-06-14 18:41:42 +02:00
security KEYS: trusted: tpm2: Fix migratable logic 2022-06-14 18:41:45 +02:00
sound ALSA: hda/realtek: Add quirk for HP Dev One 2022-06-14 18:41:44 +02:00
tools netfilter: nat: really support inet nat without l3 address 2022-06-14 18:41:29 +02:00
usr kbuild: remove include/linux/cyclades.h from header file check 2022-01-27 08:51:08 +01:00
virt KVM: Free new dirty bitmap if creating a new memslot fails 2022-05-25 09:59:03 +02:00
.clang-format genirq/msi: Make interrupt allocation less convoluted 2021-12-16 22:22:20 +01:00
.cocciconfig
.get_maintainer.ignore
.gitattributes
.gitignore .gitignore: ignore only top-level modules.builtin 2021-05-02 00:43:35 +09:00
.mailmap MAINTAINERS: Update Jisheng's email address 2022-03-08 17:30:32 +01:00
COPYING COPYING: state that all contributions really are covered by this file 2020-02-10 13:32:20 -08:00
CREDITS MAINTAINERS: replace a Microchip AT91 maintainer 2022-02-09 11:30:01 +01:00
Kbuild kbuild: rename hostprogs-y/always to hostprogs/always-y 2020-02-04 01:53:07 +09:00
Kconfig kbuild: ensure full rebuild when the compiler is updated 2020-05-12 13:28:33 +09:00
MAINTAINERS net: dsa: realtek-smi: move to subdirectory 2022-04-08 13:58:12 +02:00
Makefile Linux 5.17.14 2022-06-09 10:26:33 +02:00
README

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.