Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions

[PATCH v4 0/7] add integrity and security to TPM2 transactions · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · Ken Goldman <hidden> · 2018-10-22
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · Ken Goldman <hidden> · 2018-10-22
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · Jarkko Sakkinen <hidden> · 2018-10-24
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-24
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · Jarkko Sakkinen <hidden> · 2018-10-25
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · Jarkko Sakkinen <hidden> · 2018-10-24
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-24
[PATCH v4 1/7] tpm-buf: create new functions for handling TPM buffers · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
Re: [PATCH v4 1/7] tpm-buf: create new functions for handling TPM buffers · Jarkko Sakkinen <hidden> · 2018-10-24
Re: [PATCH v4 1/7] tpm-buf: create new functions for handling TPM buffers · Jarkko Sakkinen <hidden> · 2018-10-24
[PATCH v4 2/7] tpm2-sessions: Add full HMAC and encrypt/decrypt session handling · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
Re: [PATCH v4 2/7] tpm2-sessions: Add full HMAC and encrypt/decrypt session handling · Ard Biesheuvel <hidden> · 2018-10-23
Re: [PATCH v4 2/7] tpm2-sessions: Add full HMAC and encrypt/decrypt session handling · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-23
Re: [PATCH v4 2/7] tpm2-sessions: Add full HMAC and encrypt/decrypt session handling · Ard Biesheuvel <hidden> · 2018-10-23
Re: [PATCH v4 2/7] tpm2-sessions: Add full HMAC and encrypt/decrypt session handling · Jarkko Sakkinen <hidden> · 2018-10-24
Re: [PATCH v4 2/7] tpm2-sessions: Add full HMAC and encrypt/decrypt session handling · Jarkko Sakkinen <hidden> · 2018-10-24
Re: [PATCH v4 2/7] tpm2-sessions: Add full HMAC and encrypt/decrypt session handling · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-24
Re: [PATCH v4 2/7] tpm2-sessions: Add full HMAC and encrypt/decrypt session handling · Jarkko Sakkinen <hidden> · 2018-10-26
[PATCH v4 3/7] tpm2: add hmac checks to tpm2_pcr_extend() · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
[PATCH v4 4/7] tpm2: add session encryption protection to tpm2_get_random() · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
[PATCH v4 5/7] trusted keys: Add session encryption protection to the seal/unseal path · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
Re: [PATCH v4 5/7] trusted keys: Add session encryption protection to the seal/unseal path · Jarkko Sakkinen <hidden> · 2018-10-24
[PATCH v4 6/7] tpm: add the null key name as a tpm2 sysfs variable · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
[PATCH v4 7/7] tpm2-sessions: NOT FOR COMMITTING add sessions testing · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-22
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · Jarkko Sakkinen <hidden> · 2018-10-24
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · James Bottomley <James.Bottomley@HansenPartnership.com> · 2018-10-24
Re: [PATCH v4 0/7] add integrity and security to TPM2 transactions · Jarkko Sakkinen <hidden> · 2018-10-26

From: James Bottomley <James.Bottomley@HansenPartnership.com>
Date: 2018-10-22 15:55:13
Also in: linux-integrity

On Mon, 2018-10-22 at 11:50 -0400, Ken Goldman wrote:

On 10/22/2018 10:18 AM, James Bottomley wrote:

quoted

1 - Any policy that requires a password (policypassword) can
substitute
an HMAC (policyauthvalue) at the callers discretion.  They result
in the same policy digest.

Right but this requires the co-operation of the policy handle
creator, so it's an API change.

In case it wasn't clear:  The choice is not made at the time the
policy is calculated, nor is it made at startauthsession (when
the policy is created).

The choice is made when the policy is being satisfied.

policypassword tells the TPM to expect a plaintext password, while
policyauthvalue tells the TPM to expect an HMAC.

It's subtle that either policy command results in the same policy
digest.

I understand, but the API just has a policy handle from a fully
constructed policy passed in.  There's no way to deconstruct this even
to know if it has auth requirements and what type.  To get that info we
 have to see the policy commands that go into building up the policy
session ... this means the API needs to change.

James

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help