xiaomi-sm8450/android_kernel_xiaomi_sm8450
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
54c527c18e7fc4c00ee2c97d10c24ccdb07393aa
android_kernel_xiaomi_sm8450/security/keys
History
Jarkko Sakkinen 54c527c18e KEYS: trusted: Fix migratable=1 failing 
commit 8da7520c80468c48f981f0b81fc1be6599e3b0ad upstream.

Consider the following transcript:

$ keyctl add trusted kmk "new 32 blobauth=helloworld keyhandle=80000000 migratable=1" @u
add_key: Invalid argument

The documentation has the following description:

  migratable=   0|1 indicating permission to reseal to new PCR values,
                default 1 (resealing allowed)

The consequence is that "migratable=1" should succeed. Fix this by
allowing this condition to pass instead of return -EINVAL.

[*] Documentation/security/keys/trusted-encrypted.rst

Cc: stable@vger.kernel.org
Cc: "James E.J. Bottomley" <jejb@linux.ibm.com>
Cc: Mimi Zohar <zohar@linux.ibm.com>
Cc: David Howells <dhowells@redhat.com>
Fixes: d00a1c72f7 ("keys: add new trusted key-type")
Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2021-03-04 11:38:29 +01:00
..
encrypted-keys
Merge tag 'for-v5.9' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
2020-08-11 14:30:36 -07:00
trusted-keys
KEYS: trusted: Fix migratable=1 failing
2021-03-04 11:38:29 +01:00
big_key.c
mm, treewide: rename kzfree() to kfree_sensitive()
2020-08-07 11:33:22 -07:00
compat_dh.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
compat.c
security/keys: remove compat_keyctl_instantiate_key_iov
2020-10-03 00:02:16 -04:00
dh.c
mm, treewide: rename kzfree() to kfree_sensitive()
2020-08-07 11:33:22 -07:00
gc.c
watch_queue: Add a key/keyring notification facility
2020-05-19 15:19:06 +01:00
internal.h
security/keys: remove compat_keyctl_instantiate_key_iov
2020-10-03 00:02:16 -04:00
Kconfig
watch_queue: Drop references to /dev/watch_queue
2021-03-04 11:37:59 +01:00
key.c
certs: Fix blacklist flag type confusion
2021-03-04 11:37:59 +01:00
keyctl_pkey.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36
2019-05-24 17:27:11 +02:00
keyctl.c
task_work: cleanup notification modes
2020-10-17 15:05:30 -06:00
keyring.c
watch_queue: Add a key/keyring notification facility
2020-05-19 15:19:06 +01:00
Makefile
KEYS: remove CONFIG_KEYS_COMPAT
2019-12-12 23:41:17 +02:00
permission.c
keys: Make the KEY_NEED_* perms an enum rather than a mask
2020-05-19 15:42:22 +01:00
persistent.c
Revert "Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs"
2019-07-10 18:43:43 -07:00
proc.c
keys: Fix proc_keys_next to increase position index
2020-04-16 10:10:50 -07:00
process_keys.c
treewide: Use fallthrough pseudo-keyword
2020-08-23 17:36:59 -05:00
request_key_auth.c
KEYS: Don't write out to userspace while holding key semaphore
2020-03-29 12:40:41 +01:00
request_key.c
treewide: Use fallthrough pseudo-keyword
2020-08-23 17:36:59 -05:00
sysctl.c
proc/sysctl: add shared variables for range check
2019-07-18 17:08:07 -07:00
user_defined.c
mm, treewide: rename kzfree() to kfree_sensitive()
2020-08-07 11:33:22 -07:00