git.hungrycats.org Git - linux/commit

author	Jarkko Sakkinen <jarkko@kernel.org>
	Thu, 31 Oct 2024 00:16:09 +0000 (02:16 +0200)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Mon, 9 Dec 2024 09:33:10 +0000 (10:33 +0100)
commit	cfaf83501a0cbb104499c5b0892ee5ebde4e967f
tree	3f3c89cbb29ddda0c4842c7c307763a124108d6f	tree \| snapshot
parent	135b4819f6fba87fd5a2693023133e78ac73f1d3	commit \| diff

tpm: Lock TPM chip in tpm_pm_suspend() first

commit 9265fed6db601ee2ec47577815387458ef4f047a upstream.

Setting TPM_CHIP_FLAG_SUSPENDED in the end of tpm_pm_suspend() can be racy
according, as this leaves window for tpm_hwrng_read() to be called while
the operation is in progress. The recent bug report gives also evidence of
this behaviour.

Aadress this by locking the TPM chip before checking any chip->flags both
in tpm_pm_suspend() and tpm_hwrng_read(). Move TPM_CHIP_FLAG_SUSPENDED
check inside tpm_get_random() so that it will be always checked only when
the lock is reserved.

Cc: stable@vger.kernel.org # v6.4+
Fixes: 99d464506255 ("tpm: Prevent hwrng from activating during resume")
Reported-by: Mike Seo <mikeseohyungjin@gmail.com>
Closes: https://bugzilla.kernel.org/show_bug.cgi?id=219383
Reviewed-by: Jerry Snitselaar <jsnitsel@redhat.com>
Tested-by: Mike Seo <mikeseohyungjin@gmail.com>
Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>
[ Don't call tpm2_end_auth_session() for this function does not exist in 6.6.y.]
Signed-off-by: Bin Lan <bin.lan.cn@windriver.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

drivers/char/tpm/tpm-chip.c		diff \| blob \| history
drivers/char/tpm/tpm-interface.c		diff \| blob \| history