Re: [PATCH v5 0/5] Lazy flush for the auth session

[PATCH v5 0/5] Lazy flush for the auth session · Jarkko Sakkinen <jarkko@kernel.org> · 2024-09-21
[PATCH v5 1/5] tpm: Return on tpm2_create_null_primary() failure · Jarkko Sakkinen <jarkko@kernel.org> · 2024-09-21
Re: [PATCH v5 1/5] tpm: Return on tpm2_create_null_primary() failure · Stefan Berger <stefanb@linux.ibm.com> · 2024-10-03
Re: [PATCH v5 1/5] tpm: Return on tpm2_create_null_primary() failure · Jarkko Sakkinen <jarkko@kernel.org> · 2024-10-07
[PATCH v5 2/5] tpm: Implement tpm2_load_null() rollback · Jarkko Sakkinen <jarkko@kernel.org> · 2024-09-21
Re: [PATCH v5 2/5] tpm: Implement tpm2_load_null() rollback · Stefan Berger <stefanb@linux.ibm.com> · 2024-10-03
[PATCH v5 3/5] tpm: flush the null key only when /dev/tpm0 is accessed · Jarkko Sakkinen <jarkko@kernel.org> · 2024-09-21
[PATCH v5 4/5] tpm: Allocate chip->auth in tpm2_start_auth_session() · Jarkko Sakkinen <jarkko@kernel.org> · 2024-09-21
Re: [PATCH v5 4/5] tpm: Allocate chip->auth in tpm2_start_auth_session() · James Bottomley <James.Bottomley@HansenPartnership.com> · 2024-09-24
Re: [PATCH v5 4/5] tpm: Allocate chip->auth in tpm2_start_auth_session() · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
Re: [PATCH v5 4/5] tpm: Allocate chip->auth in tpm2_start_auth_session() · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
[PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · Jarkko Sakkinen <jarkko@kernel.org> · 2024-09-21
Re: [PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · James Bottomley <James.Bottomley@HansenPartnership.com> · 2024-09-24
Re: [PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
Re: [PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
Re: [PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · James Bottomley <James.Bottomley@HansenPartnership.com> · 2024-09-24
Re: [PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
Re: [PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · James Bottomley <James.Bottomley@HansenPartnership.com> · 2024-09-24
Re: [PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-25
Re: [PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-25
Re: [PATCH v5 5/5] tpm: flush the auth session only when /dev/tpm0 is open · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-25
Re: [PATCH v5 0/5] Lazy flush for the auth session · Paul Menzel <hidden> · 2024-09-21
Re: [PATCH v5 0/5] Lazy flush for the auth session · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-21
Re: [PATCH v5 0/5] Lazy flush for the auth session · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-21
Re: [PATCH v5 0/5] Lazy flush for the auth session · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-22
Re: [PATCH v5 0/5] Lazy flush for the auth session · James Bottomley <James.Bottomley@HansenPartnership.com> · 2024-09-24
Re: [PATCH v5 0/5] Lazy flush for the auth session · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
Re: [PATCH v5 0/5] Lazy flush for the auth session · James Bottomley <James.Bottomley@HansenPartnership.com> · 2024-09-24
Re: [PATCH v5 0/5] Lazy flush for the auth session · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
Re: [PATCH v5 0/5] Lazy flush for the auth session · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
Re: [PATCH v5 0/5] Lazy flush for the auth session · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
Re: [PATCH v5 0/5] Lazy flush for the auth session · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-09-24
Re: [PATCH v5 0/5] Lazy flush for the auth session · Mimi Zohar <zohar@linux.ibm.com> · 2024-10-01
Re: [PATCH v5 0/5] Lazy flush for the auth session · Jarkko Sakkinen <jarkko@kernel.org> · 2024-10-07
Re: [PATCH v5 0/5] Lazy flush for the auth session · Stefan Berger <stefanb@linux.ibm.com> · 2024-10-03
Re: [PATCH v5 0/5] Lazy flush for the auth session · Jarkko Sakkinen <jarkko@kernel.org> · 2024-10-07
Re: [PATCH v5 0/5] Lazy flush for the auth session · Jarkko Sakkinen <jarkko@kernel.org> · 2024-10-11
Re: [PATCH v5 0/5] Lazy flush for the auth session · Roberto Sassu <hidden> · 2024-10-11
Re: [PATCH v5 0/5] Lazy flush for the auth session · Jarkko Sakkinen <jarkko@kernel.org> · 2024-10-11
Re: [PATCH v5 0/5] Lazy flush for the auth session · Jarkko Sakkinen <jarkko@kernel.org> · 2024-10-12
Re: [PATCH v5 0/5] Lazy flush for the auth session · Mimi Zohar <zohar@linux.ibm.com> · 2024-10-14
Re: [PATCH v5 0/5] Lazy flush for the auth session · Jarkko Sakkinen <jarkko@kernel.org> · 2024-10-14
Re: [PATCH v5 0/5] Lazy flush for the auth session · Mimi Zohar <zohar@linux.ibm.com> · 2024-10-15
Re: [PATCH v5 0/5] Lazy flush for the auth session · "Jarkko Sakkinen" <jarkko@kernel.org> · 2024-10-15

From: Jarkko Sakkinen <jarkko@kernel.org>
Date: 2024-10-14 12:34:11
Also in: keyrings, linux-integrity, lkml

On Mon, 2024-10-14 at 07:45 -0400, Mimi Zohar wrote:

quoted

For server/IMA use case I'll add a boot parameter it can be
either on or off by default, I will state that in the commit
message and we'll go from there.

Sounds good.

But only after this patch set lands. I gave this a thought and since
this patch set is specifically for a specific Bugzilla bug that it
closes, I have no interest to increase its scope.

quoted

Up until legit fixes are place distributors can easily disable
the feature. It would be worse if TCG_TPM2_HMAC did not exist.

So I think it is better to focus on doing right things right,
since the feature itself is useful objectively, and make sure
that those fixes bring the wanted results.

Are you backtracking on having a boot parameter here specifically to
turn on/off
HMAC encryption for IMA?

I'm not really sure yet but obviously any change goes through review.

Also fastest route is to send your own RFC's to IMA specific issue.
For me it will take some time (post this patch set).

Mimi

BR, Jarkko

BR, Jarkko

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help