linux

mirror of https://github.com/torvalds/linux.git synced 2026-05-18 03:27:14 +02:00

History

Jonathan McDowell 1dbf74e00a tpm: End any active auth session before shutdown Lazy flushing of TPM auth sessions can interact badly with IMA + kexec, resulting in loaded session handles being leaked across the kexec and not cleaned up. Fix by ensuring any active auth session is ended before the TPM is told about the shutdown, matching what is done when suspending. Before: root@debian-qemu-efi:~# tpm2_getcap handles-loaded-session root@debian-qemu-efi:~# tpm2_getcap handles-saved-session root@debian-qemu-efi:~# kexec --load --kexec-file-syscall … root@debian-qemu-efi:~# systemctl kexec … root@debian-qemu-efi:~# tpm2_getcap handles-loaded-session - 0x2000000 root@debian-qemu-efi:~# tpm2_getcap handles-saved-session root@debian-qemu-efi:~# (repeat kexec steps) root@debian-qemu-efi:~# tpm2_getcap handles-loaded-session - 0x2000000 - 0x2000001 root@debian-qemu-efi:~# tpm2_getcap handles-saved-session root@debian-qemu-efi:~# After: root@debian-qemu-efi:~# tpm2_getcap handles-loaded-session root@debian-qemu-efi:~# tpm2_getcap handles-saved-session root@debian-qemu-efi:~# kexec --load --kexec-file-syscall … root@debian-qemu-efi:~# systemctl kexec … root@debian-qemu-efi:~# tpm2_getcap handles-loaded-session root@debian-qemu-efi:~# tpm2_getcap handles-saved-session root@debian-qemu-efi:~# Signed-off-by: Jonathan McDowell <noodles@meta.com> Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>		2025-03-27 15:34:05 +02:00
..
agp	Char/Misc and other driver changes for 6.11-rc1	2024-07-19 15:55:08 -07:00
hw_random	hwrng: timeriomem: Switch to use hrtimer_setup()	2025-02-18 10:32:34 +01:00
ipmi	treewide: const qualify ctl_tables where applicable	2025-01-28 13:48:37 +01:00
mwave
tpm	tpm: End any active auth session before shutdown	2025-03-27 15:34:05 +02:00
xilinx_hwicap	char: Switch back to struct platform_driver::remove()	2024-11-05 05:33:47 +01:00
xillybus	char: Switch back to struct platform_driver::remove()	2024-11-05 05:33:47 +01:00
adi.c	vfs-6.12.file	2024-09-16 09:14:02 +02:00
apm-emulation.c
applicom.c	[tree-wide] finally take no_llseek out	2024-09-27 08:18:43 -07:00
applicom.h
bsr.c	bsr: add missing MODULE_DESCRIPTION() macro	2024-07-03 16:40:53 +02:00
ds1620.c	[tree-wide] finally take no_llseek out	2024-09-27 08:18:43 -07:00
dsp56k.c	dsp56k: add missing MODULE_DESCRIPTION() macro	2024-07-03 16:40:26 +02:00
dtlk.c	[tree-wide] finally take no_llseek out	2024-09-27 08:18:43 -07:00
hangcheck-timer.c
hpet.c	treewide: const qualify ctl_tables where applicable	2025-01-28 13:48:37 +01:00
Kconfig	ACPI: EC: make EC support compile-time conditional	2024-10-24 17:47:15 +02:00
lp.c	parport: Remove parport_driver.devmodel	2024-07-03 16:44:22 +02:00
Makefile	arch: Remove Itanium (IA-64) architecture	2023-09-11 08:13:17 +00:00
mem.c	fs: move FMODE_UNSIGNED_OFFSET to fop_flags	2024-08-30 08:22:36 +02:00
misc.c	char: misc: deallocate static minor in error path	2025-02-20 15:21:34 +01:00
nsc_gpio.c
nvram.c	char: add missing MODULE_DESCRIPTION() macros	2024-06-04 17:40:17 +02:00
nwbutton.c	char: add missing NetWinder MODULE_DESCRIPTION() macros	2024-07-31 13:47:45 +02:00
nwbutton.h
nwflash.c	char: add missing NetWinder MODULE_DESCRIPTION() macros	2024-07-31 13:47:45 +02:00
pc8736x_gpio.c	[tree-wide] finally take no_llseek out	2024-09-27 08:18:43 -07:00
powernv-op-panel.c	char: Switch back to struct platform_driver::remove()	2024-11-05 05:33:47 +01:00
ppdev.c	[tree-wide] finally take no_llseek out	2024-09-27 08:18:43 -07:00
ps3flash.c
random.c	vdso: Add generic random data storage	2025-02-21 09:54:01 +01:00
scx200_gpio.c	[tree-wide] finally take no_llseek out	2024-09-27 08:18:43 -07:00
sonypi.c	sonypi: Use str_on_off() helper in sonypi_display_info()	2025-02-13 14:27:09 +02:00
tlclk.c	tlclk: add missing MODULE_DESCRIPTION() macro	2024-06-04 17:40:14 +02:00
toshiba.c
ttyprintk.c	char: add missing MODULE_DESCRIPTION() macros	2024-06-04 17:40:17 +02:00
uv_mmtimer.c
virtio_console.c	fs/pipe: add simpler helpers for common cases	2025-03-06 18:25:35 -10:00