From: "Jarkko Sakkinen" <jarkko@kernel.org>
To: "Alexander Steffen" <Alexander.Steffen@infineon.com>,
"Daniel P. Smith" <dpsmith@apertussolutions.com>,
"Jason Gunthorpe" <jgg@ziepe.ca>,
"Lino Sanfilippo" <l.sanfilippo@kunbus.com>,
"Sasha Levin" <sashal@kernel.org>,
<linux-integrity@vger.kernel.org>, <linux-kernel@vger.kernel.org>
Cc: "Ross Philipson" <ross.philipson@oracle.com>,
"Kanth Ghatraju" <kanth.ghatraju@oracle.com>,
"Peter Huewe" <peterhuewe@gmx.de>
Subject: Re: [PATCH] tpm: make locality handling resilient
Date: Fri, 19 Jan 2024 21:38:32 +0000 [thread overview]
Message-ID: <CYJ0APT6N1KL.CSHV5R4VRWHB@seitikki> (raw)
In-Reply-To: <711d659f-3f57-48e4-b5b3-efbc2fe236c8@infineon.com>
On Wed Jan 17, 2024 at 8:44 AM UTC, Alexander Steffen wrote:
> On 15.01.2024 02:15, Daniel P. Smith wrote:
> > Commit 933bfc5ad213 introduced the use of a locality counter to control when
> > locality request was actually sent to the TPM. This locality counter created a
> > hard enforcement that the TPM had no active locality at the time of the driver
> > initialization. The reality is that this may not always be the case coupled
> > with the fact that the commit indiscriminately decremented the counter created
> > the condition for integer underflow of the counter. The underflow was triggered
> > by the first pair of request/relinquish calls made in tpm_tis_init_core and all
> > subsequent calls to request/relinquished calls would have the counter flipping
> > between the underflow value and 0. The result is that it appeared all calls to
> > request/relinquish were successful, but they were not. The end result is that
> > the locality that was active when the driver loaded would always remain active,
> > to include after the driver shutdown. This creates a significant issue when
> > using Intel TXT and Locality 2 is active at boot. After the GETSEC[SEXIT]
> > instruction is called, the PCH will close access to Locality 2 MMIO address
> > space, leaving the TPM locked in Locality 2 with no means to relinquish the
> > locality until system reset.
> >
> > The commit seeks to address this situation through three changes.
>
> Could you split this up into multiple patches then, so that they can be
> discussed separately?
I have to agree with you ttly.
Yeah also the text above is not exactly in the ballpark.
I did not understand what I read. I had to read the code change instead
to get an idea. A huge pile of text does not equal to stronger story.
Like for any essay, scientific paper or a kernel message one should do
also few edit rounds. The commit message is more important than the code
change itself in bug fixes...
There is trigger (TXT) and solution. A great commit message should have
motivation and implementation parts and somewhat concise story where
things lead to another. It should essentially make *any* reader who
knows the basics of kernel code base convinced, not confused. This is
at leat a good aim even tho sometimes unreachable.
BR, Jarkko
next prev parent reply other threads:[~2024-01-19 21:38 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-01-15 1:15 [PATCH] tpm: make locality handling resilient Daniel P. Smith
2024-01-17 8:44 ` Alexander Steffen
2024-01-19 21:38 ` Jarkko Sakkinen [this message]
2024-01-25 0:01 ` Daniel P. Smith
2024-02-01 23:51 ` Jarkko Sakkinen
2024-01-19 21:28 ` Jarkko Sakkinen
2024-01-25 0:12 ` Daniel P. Smith
2024-02-02 2:52 ` Lino Sanfilippo
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=CYJ0APT6N1KL.CSHV5R4VRWHB@seitikki \
--to=jarkko@kernel.org \
--cc=Alexander.Steffen@infineon.com \
--cc=dpsmith@apertussolutions.com \
--cc=jgg@ziepe.ca \
--cc=kanth.ghatraju@oracle.com \
--cc=l.sanfilippo@kunbus.com \
--cc=linux-integrity@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=peterhuewe@gmx.de \
--cc=ross.philipson@oracle.com \
--cc=sashal@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox