mirrors/linux
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2026-02-12 08:45:39 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
63804fed149a6750ffd28610c5c1c98cce6bd377
linux/security
History
Srish Srinivasan 6342969daf keys/trusted_keys: fix handle passed to tpm_buf_append_name during unseal 
TPM2_Unseal[1] expects the handle of a loaded data object, and not the
handle of the parent key. But the tpm2_unseal_cmd provides the parent
keyhandle instead of blob_handle for the session HMAC calculation. This
causes unseal to fail.

Fix this by passing blob_handle to tpm_buf_append_name().

References:

[1] trustedcomputinggroup.org/wp-content/uploads/
    Trusted-Platform-Module-2.0-Library-Part-3-Version-184_pub.pdf

Fixes: 6e9722e9a7 ("tpm2-sessions: Fix out of range indexing in name_size")
Signed-off-by: Srish Srinivasan <ssrish@linux.ibm.com>
Reviewed-by: Stefan Berger <stefanb@linux.ibm.com>
Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org>
Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>
2026-01-25 19:03:45 +02:00
..
apparmor
Merge tag 'pull-persistency' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2025-12-05 14:36:21 -08:00
bpf
lsm: replace the name field with a pointer to the lsm_id struct
2025-10-22 19:24:18 -04:00
integrity
kernel/kexec: change the prototype of kimage_map_segment()
2025-12-23 11:23:13 -08:00
ipe
Merge tag 'ipe-pr-20251202' of git://git.kernel.org/pub/scm/linux/kernel/git/wufan/ipe
2025-12-03 11:19:34 -08:00
keys
keys/trusted_keys: fix handle passed to tpm_buf_append_name during unseal
2026-01-25 19:03:45 +02:00
landlock
landlock: Improve the comment for domain_is_scoped
2025-12-29 16:19:39 +01:00
loadpin
loadpin: move initcalls to the LSM framework
2025-10-22 19:24:25 -04:00
lockdown
lockdown: move initcalls to the LSM framework
2025-10-22 19:24:27 -04:00
safesetid
safesetid: move initcalls to the LSM framework
2025-10-22 19:24:26 -04:00
selinux
Merge tag 'pull-persistency' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2025-12-05 14:36:21 -08:00
smack
Merge tag 'pull-persistency' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2025-12-05 14:36:21 -08:00
tomoyo
Merge tag 'tomoyo-pr-20251212' of git://git.code.sf.net/p/tomoyo/tomoyo
2025-12-14 15:21:02 +12:00
yama
lsm: replace the name field with a pointer to the lsm_id struct
2025-10-22 19:24:18 -04:00
commoncap.c
Merge tag 'caps-pr-20251204' of git://git.kernel.org/pub/scm/linux/kernel/git/sergeh/linux
2025-12-04 20:10:28 -08:00
device_cgroup.c
device_cgroup: Refactor devcgroup_seq_show to use seq_put* helpers
2025-11-11 19:47:24 -05:00
inode.c
Merge tag 'pull-persistency' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2025-12-05 14:36:21 -08:00
Kconfig
lsm: CONFIG_LSM can depend on CONFIG_SECURITY
2025-09-11 16:32:04 -04:00
Kconfig.hardening
rust: add bitmap API.
2025-09-22 15:52:44 -04:00
lsm_audit.c
net: Retire DCCP socket.
2025-04-11 18:58:10 -07:00
lsm_init.c
lsm: use unrcu_pointer() for current->cred in security_init()
2025-11-19 10:32:06 -05:00
lsm_notifier.c
lsm: split the notifier code out into lsm_notifier.c
2025-10-22 19:24:15 -04:00
lsm_syscalls.c
lsm: rework lsm_active_cnt and lsm_idlist[]
2025-10-22 19:24:19 -04:00
lsm.h
lsm: consolidate all of the LSM framework initcalls
2025-10-22 19:24:28 -04:00
Makefile
lsm: split the init code out into lsm_init.c
2025-10-22 19:24:16 -04:00
min_addr.c
lsm: consolidate all of the LSM framework initcalls
2025-10-22 19:24:28 -04:00
security.c
lsm: cleanup the debug and console output in lsm_init.c
2025-10-22 19:24:23 -04:00