Re: [PATCH] KEYS: trusted: Protocol debugging as a feature

Next message: Konrad Dybcio: "Re: [PATCH] ASoC: codecs: wcd934x: fix typo in dt parsing"
Previous message: Johan Hovold: "[PATCH] spi: fix resource leaks on device setup failure"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Jarkko Sakkinen

Date: Tue Mar 24 2026 - 06:36:49 EST

On Mon, Mar 23, 2026 at 11:00:46AM +0200, Jarkko Sakkinen wrote:
> TPM_DEBUG is a non-standard way to specify a feature in Linux kernel.
> Introduce CONFIG_TRUSTED_KEYS_DEBUG, and use it to replace TPM_DEBUG in
> TPM 1.x trusted keys.
>
> Given that protocol bus could contain sensitive data, harden the feature as
> follows:
>
> 1. In the Kconfig description postulate that pr_debug() statements must be
> used.
> 2. Use pr_debug() statements in TPM 1.x driver to print the protocol dump.
>
> Traces can be enabled e.g., by providing trusted.dyndbg='+p' for the kernel
> command-line.
>
> Cc: Srish Srinivasan <ssrish@xxxxxxxxxxxxx>
> Reported-by: Nayna Jain <nayna@xxxxxxxxxxxxx>
> Closes: https://lore.kernel.org/all/7f8b8478-5cd8-4d97-bfd0-341fd5cf10f9@xxxxxxxxxxxxx/
> Signed-off-by: Jarkko Sakkinen <jarkko@xxxxxxxxxx>
> ---

I'm posting a v2 update with HAVE_* flag and a bit wider scope.

BR, Jarkko