Re: [PATCH] KEYS: trusted: allow module init if TPM is inactive or deactivated

From: Mimi Zohar
Date: Tue Jul 09 2019 - 12:32:08 EST

Next message: Casey Schaufler: "Re: RFC: BUG: overlayfs getxattr recursion leaves a poison sid."
Previous message: Christoph Hellwig: "Re: [PATCH] kbuild: Inform user to pass ARCH= for make mrproper"
In reply to: Jarkko Sakkinen: "Re: [PATCH] KEYS: trusted: allow module init if TPM is inactive or deactivated"
Next in thread: Jarkko Sakkinen: "Re: [PATCH] KEYS: trusted: allow module init if TPM is inactive or deactivated"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 2019-07-09 at 19:24 +0300, Jarkko Sakkinen wrote:
> On Mon, Jul 08, 2019 at 01:34:59PM -0700, James Bottomley wrote:
> > Not a criticism of your patch, but can we please stop doing this.
> > Single random number sources are horrendously bad practice because it
> > gives an attacker a single target to subvert. We should ensure the TPM
> > is plugged into the kernel RNG as a source and then take randomness
> > from the mixed pool so it's harder for an attacker because they have to
> > subvert all our sources to predict what came out.
>
> It is and I agree.

I still haven't quite figured out why the digests need to be
initialized to anything other than 0.

Mimi

Next message: Casey Schaufler: "Re: RFC: BUG: overlayfs getxattr recursion leaves a poison sid."
Previous message: Christoph Hellwig: "Re: [PATCH] kbuild: Inform user to pass ARCH= for make mrproper"
In reply to: Jarkko Sakkinen: "Re: [PATCH] KEYS: trusted: allow module init if TPM is inactive or deactivated"
Next in thread: Jarkko Sakkinen: "Re: [PATCH] KEYS: trusted: allow module init if TPM is inactive or deactivated"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]