From mboxrd@z Thu Jan 1 00:00:00 1970 From: zohar@linux.ibm.com (Mimi Zohar) Date: Fri, 24 Aug 2018 07:22:39 -0400 Subject: [PATCH 01/23] TPM: Add new TPMs to the tail of the list to prevent inadvertent change of dev In-Reply-To: <20180824062557.GC3584@linux.intel.com> References: <153486700916.13066.12870860668352070081.stgit@warthog.procyon.org.uk> <153486701644.13066.13372706238885253812.stgit@warthog.procyon.org.uk> <20180821183004.GB25543@ziepe.ca> <20180824062434.GB3584@linux.intel.com> <20180824062557.GC3584@linux.intel.com> Message-ID: <1535109759.19550.355.camel@linux.ibm.com> To: linux-security-module@vger.kernel.org List-Id: linux-security-module.vger.kernel.org On Fri, 2018-08-24 at 09:25 +0300, Jarkko Sakkinen wrote: > On Fri, Aug 24, 2018 at 09:24:34AM +0300, Jarkko Sakkinen wrote: > > On Tue, Aug 21, 2018 at 12:30:04PM -0600, Jason Gunthorpe wrote: > > > On Tue, Aug 21, 2018 at 04:56:56PM +0100, David Howells wrote: > > > > Add newly registered TPMs to the tail of the list, not the beginning, so that > > > > things that are specifying TPM_ANY_NUM don't find that the device they're > > > > using has inadvertently changed. Adding a second device would break IMA, for > > > > instance. > > > > > > > > Signed-off-by: David Howells > > > > Reviewed-by: Jason Gunthorpe > > > > Signed-off-by: Peter Huewe > > > > cc: stable at vger.kernel.org > > > > --- > > > > > > We really should apply this patch... > > > > > > Jason > > > > This is the first time I remember seeing it. > > At least in the sense that I should review it. I remember this patch, because it affected IMA. ?It has already been upstreamed as 398a1e71dc82. Mimi