APPLIED[M]: [M][PATCH 0/1] pkey: support EP11 API ordinal 6 for secure guests (LP: 2029390)
Andrea Righi
andrea.righi at canonical.com
Wed Sep 13 15:18:31 UTC 2023
On Wed, Sep 13, 2023 at 05:08:30PM +0200, Andrea Righi wrote:
> On Wed, Sep 06, 2023 at 03:30:30PM +0200, frank.heimes at canonical.com wrote:
> > BugLink: https://bugs.launchpad.net/bugs/2029390
> >
> > Secure Execution guests must use the EP11 API ordinal 6 to create (generate,
> > unwrap, derive) secure keys which encodes a NULL PIN (no session) as a string
> > of zero-bytes.
> > Therefore, the pkey module must be updated to check whether the Linux system
> > is running as a secure guest and if so modify secure key creating requests
> > (key(pair) gen, unwrap) to use ordinal 6 API.
> > As pre-requirement, the PR for LP: 2028937 need to be applied prior to this.
>
> For some reasons this email was moved to my spam folder and I'm noticing
> it only now.
>
> The patch doesn't apply anymore cleanly anymore to our latest
> mantic/linux 6.5 kernel. Frank, Do you have a newer patch for this?
Nevermind, as discussed privately, after applying LP: #2028937 this
patch can be also applied cleanly, therefore: applied to mantic/linux.
Thanks,
-Andrea
More information about the kernel-team
mailing list