git.samba.org - sfrench/cifs-2.6.git/commit

security: keys: trusted: fix lost handle flush

The original code, before it was moved into security/keys/trusted-keys
had a flush after the blob unseal. Without that flush, the volatile
handles increase in the TPM until it becomes unusable and the system
either has to be rebooted or the TPM volatile area manually flushed.
Fix by adding back the lost flush, which we now have to export because
of the relocation of the trusted key code may cause the consumer to be
modular.

Signed-off-by: James Bottomley <James.Bottomley@HansenPartnership.com>
Fixes: 2e19e10131a0 ("KEYS: trusted: Move TPM2 trusted keys code")
Reviewed-by: Jerry Snitselaar <jsnitsel@redhat.com>
Reviewed-by: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
Signed-off-by: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>

author	James Bottomley <James.Bottomley@HansenPartnership.com>
	Thu, 12 Dec 2019 17:58:35 +0000 (12:58 -0500)
committer	Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
	Tue, 17 Dec 2019 09:46:43 +0000 (11:46 +0200)
commit	45477b3fe3d10376b649b1b85fce72b2f9f1da84
tree	f69752a69b3338d21d95331963c7c86133d62cbf	tree
parent	21df4a8b6018b842d4db181a8b24166006bad3cd	commit \| diff

drivers/char/tpm/tpm.h		diff \| blob \| history
drivers/char/tpm/tpm2-cmd.c		diff \| blob \| history
include/linux/tpm.h		diff \| blob \| history
security/keys/trusted-keys/trusted_tpm2.c		diff \| blob \| history