tpm: Add NULL primary creation

The session handling code uses a "salted" session, meaning a session whose salt is encrypted to the public part of another TPM key so an observer cannot obtain it (and thus deduce the session keys). This patch creates and context saves in the tpm_chip area the primary key of the NULL hierarchy for this purpose. [jarkko@kernel.org: fixed documentation errors] Signed-off-by: James Bottomley <James.Bottomley@HansenPartnership.com> Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org> Tested-by: Jarkko Sakkinen <jarkko@kernel.org> Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>
author: James Bottomley <James.Bottomley@HansenPartnership.com> 2024-04-29 16:28:01 -0400
committer: Jarkko Sakkinen <jarkko@kernel.org> 2024-05-09 22:30:51 +0300
commit: d2add27cf2b823a8c1f8caf7ff10c98070df71f5 (patch)
tree: 59c6558e871892754a231ff63c847ecce9ca9172 /drivers/char/tpm/tpm2-cmd.c
parent: fefb9f12726bebce74be7b95e259594696d0c423 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/drivers/char/tpm/tpm2-cmd.c b/drivers/char/tpm/tpm2-cmd.c
index 93545be190a5..b0e72fb563d9 100644
--- a/drivers/char/tpm/tpm2-cmd.c
+++ b/drivers/char/tpm/tpm2-cmd.c
@@ -759,6 +759,11 @@ int tpm2_auto_startup(struct tpm_chip *chip)
 		rc = 0;
 	}
 
+	if (rc)
+		goto out;
+
+	rc = tpm2_sessions_init(chip);
+
 out:
 	/*
 	 * Infineon TPM in field upgrade mode will return no data for the number
author	James Bottomley <James.Bottomley@HansenPartnership.com>	2024-04-29 16:28:01 -0400
committer	Jarkko Sakkinen <jarkko@kernel.org>	2024-05-09 22:30:51 +0300
commit	d2add27cf2b823a8c1f8caf7ff10c98070df71f5 (patch)
tree	59c6558e871892754a231ff63c847ecce9ca9172 /drivers/char/tpm/tpm2-cmd.c
parent	fefb9f12726bebce74be7b95e259594696d0c423 (diff)