[RFC,v2,04/20] certs: Create blacklist keyring earlier

Message ID	20250227030952.2319050-5-alistair@alistair23.me
State	New
Headers	show Received: from fhigh-b5-smtp.messagingengine.com (fhigh-b5-smtp.messagingengine.com [202.12.124.156]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id E01F1182BD; Thu, 27 Feb 2025 03:10:34 +0000 (UTC) Feedback-ID: ifd214418:Fastmail From: Alistair Francis <alistair@alistair23.me> To: linux-cxl@vger.kernel.org, linux-kernel@vger.kernel.org, lukas@wunner.de, linux-pci@vger.kernel.org, bhelgaas@google.com, Jonathan.Cameron@huawei.com, rust-for-linux@vger.kernel.org, akpm@linux-foundation.org Cc: boqun.feng@gmail.com, bjorn3_gh@protonmail.com, wilfred.mallawa@wdc.com, aliceryhl@google.com, ojeda@kernel.org, alistair23@gmail.com, a.hindborg@kernel.org, tmgross@umich.edu, gary@garyguo.net, alex.gaynor@gmail.com, benno.lossin@proton.me, Dan Williams <dan.j.williams@intel.com>, Alistair Francis <alistair.francis@wdc.com>, =?utf-8?q?Ilpo_J=C3=A4rvinen?= <ilpo.jarvinen@linux.intel.com> Subject: [RFC v2 04/20] certs: Create blacklist keyring earlier Date: Thu, 27 Feb 2025 13:09:36 +1000 Message-ID: <20250227030952.2319050-5-alistair@alistair23.me> In-Reply-To: <20250227030952.2319050-1-alistair@alistair23.me> References: <20250227030952.2319050-1-alistair@alistair23.me> Precedence: bulk MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit
Series	lib: Rust implementation of SPDM \| expand [RFC,v2,00/20] lib: Rust implementation of SPDM [RFC,v2,01/20] X.509: Make certificate parser public [RFC,v2,02/20] X.509: Parse Subject Alternative Name in certificates [RFC,v2,03/20] X.509: Move certificate length retrieval into new helper [RFC,v2,04/20] certs: Create blacklist keyring earlier [RFC,v2,05/20] lib: rspdm: Initial commit of Rust SPDM [RFC,v2,06/20] PCI/CMA: Authenticate devices on enumeration [RFC,v2,07/20] PCI/CMA: Validate Subject Alternative Name in certificates [RFC,v2,08/20] PCI/CMA: Reauthenticate devices on reset and resume [RFC,v2,09/20] PCI/CMA: Expose in sysfs whether devices are authenticated [RFC,v2,10/20] lib: rspdm: Support SPDM get_version [RFC,v2,11/20] lib: rspdm: Support SPDM get_capabilities [RFC,v2,12/20] lib: rspdm: Support SPDM negotiate_algorithms [RFC,v2,13/20] lib: rspdm: Support SPDM get_digests [RFC,v2,14/20] lib: rspdm: Support SPDM get_certificate [RFC,v2,15/20] crypto: asymmetric_keys - Load certificate parsing early in boot [RFC,v2,16/20] KEYS: Load keyring and certificates early in boot [RFC,v2,17/20] PCI/CMA: Support built in X.509 certificates [RFC,v2,18/20] lib: rspdm: Support SPDM certificate validation [RFC,v2,19/20] rust: allow extracting the buffer from a CString [RFC,v2,20/20] lib: rspdm: Support SPDM challenge

Message ID

20250227030952.2319050-5-alistair@alistair23.me

State

New

Headers

Feedback-ID: ifd214418:Fastmail
From: Alistair Francis <alistair@alistair23.me>
To: linux-cxl@vger.kernel.org,
	linux-kernel@vger.kernel.org,
	lukas@wunner.de,
	linux-pci@vger.kernel.org,
	bhelgaas@google.com,
	Jonathan.Cameron@huawei.com,
	rust-for-linux@vger.kernel.org,
	akpm@linux-foundation.org
Cc: boqun.feng@gmail.com, bjorn3_gh@protonmail.com, wilfred.mallawa@wdc.com,
 aliceryhl@google.com, ojeda@kernel.org, alistair23@gmail.com,
 a.hindborg@kernel.org, tmgross@umich.edu, gary@garyguo.net,
 alex.gaynor@gmail.com, benno.lossin@proton.me,
 Dan Williams <dan.j.williams@intel.com>,
 Alistair Francis <alistair.francis@wdc.com>,
 =?utf-8?q?Ilpo_J=C3=A4rvinen?= <ilpo.jarvinen@linux.intel.com>
Subject: [RFC v2 04/20] certs: Create blacklist keyring earlier
Date: Thu, 27 Feb 2025 13:09:36 +1000
Message-ID: <20250227030952.2319050-5-alistair@alistair23.me>
In-Reply-To: <20250227030952.2319050-1-alistair@alistair23.me>
References: <20250227030952.2319050-1-alistair@alistair23.me>
Precedence: bulk
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Series

lib: Rust implementation of SPDM | expand

Commit Message

Alistair Francis Feb. 27, 2025, 3:09 a.m. UTC

From: Lukas Wunner <lukas@wunner.de>

The upcoming support for PCI device authentication with CMA-SPDM
(PCIe r6.2 sec 6.31) requires parsing X.509 certificates upon
device enumeration, which happens in a subsys_initcall().

Parsing X.509 certificates accesses the blacklist keyring:
x509_cert_parse()
  x509_get_sig_params()
    is_hash_blacklisted()
      keyring_search()

So far the keyring is created much later in a device_initcall().  Avoid
a NULL pointer dereference on access to the keyring by creating it one
initcall level earlier than PCI device enumeration, i.e. in an
arch_initcall().

Signed-off-by: Lukas Wunner <lukas@wunner.de>
Reviewed-by: Dan Williams <dan.j.williams@intel.com>
Reviewed-by: Wilfred Mallawa <wilfred.mallawa@wdc.com>
Reviewed-by: Alistair Francis <alistair.francis@wdc.com>
Reviewed-by: Ilpo Järvinen <ilpo.jarvinen@linux.intel.com>
Reviewed-by: Jonathan Cameron <Jonathan.Cameron@huawei.com>
---
 certs/blacklist.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/certs/blacklist.c b/certs/blacklist.c
index 675dd7a8f07a..34185415d451 100644
--- a/certs/blacklist.c
+++ b/certs/blacklist.c
@@ -311,7 +311,7 @@  static int restrict_link_for_blacklist(struct key *dest_keyring,
  * Initialise the blacklist
  *
  * The blacklist_init() function is registered as an initcall via
- * device_initcall().  As a result if the blacklist_init() function fails for
+ * arch_initcall().  As a result if the blacklist_init() function fails for
  * any reason the kernel continues to execute.  While cleanly returning -ENODEV
  * could be acceptable for some non-critical kernel parts, if the blacklist
  * keyring fails to load it defeats the certificate/key based deny list for
@@ -356,7 +356,7 @@  static int __init blacklist_init(void)
 /*
  * Must be initialised before we try and load the keys into the keyring.
  */
-device_initcall(blacklist_init);
+arch_initcall(blacklist_init);
 
 #ifdef CONFIG_SYSTEM_REVOCATION_LIST
 /*

[RFC,v2,04/20] certs: Create blacklist keyring earlier

Commit Message

Patch