[v2,1/3] ndctl: fix load-keys for user master-key

Message ID	155381182887.13778.15556671056565903543.stgit@djiang5-desk3.ch.intel.com (mailing list archive)
State	Accepted
Commit	50da6303f22978c7ef02ec08f19b8dabed21d9c1
Headers	show Return-Path: <linux-nvdimm-bounces@lists.01.org> Received-SPF: Pass (sender SPF authorized) identity=mailfrom; client-ip=134.134.136.100; helo=mga07.intel.com; envelope-from=dave.jiang@intel.com; receiver=linux-nvdimm@lists.01.org Subject: [PATCH v2 1/3] ndctl: fix load-keys for user master-key From: Dave Jiang <dave.jiang@intel.com> To: vishal.l.verma@intel.com Date: Thu, 28 Mar 2019 15:24:30 -0700 Message-ID: <155381182887.13778.15556671056565903543.stgit@djiang5-desk3.ch.intel.com> User-Agent: StGit/unknown-version MIME-Version: 1.0 Precedence: list Cc: linux-nvdimm@lists.01.org Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: linux-nvdimm-bounces@lists.01.org Sender: "Linux-nvdimm" <linux-nvdimm-bounces@lists.01.org>
Series	[v2,1/3] ndctl: fix load-keys for user master-key \| expand [v2,1/3] ndctl: fix load-keys for user master-key [v2,2/3] ndctl: fix key blob loading for user keys [v2,3/3] ndctl: add unit test for load-keys

Message ID

155381182887.13778.15556671056565903543.stgit@djiang5-desk3.ch.intel.com (mailing list archive)

State

Accepted

Commit

50da6303f22978c7ef02ec08f19b8dabed21d9c1

Headers

Received-SPF: Pass (sender SPF authorized) identity=mailfrom;
 client-ip=134.134.136.100; helo=mga07.intel.com;
 envelope-from=dave.jiang@intel.com; receiver=linux-nvdimm@lists.01.org
Subject: [PATCH v2 1/3] ndctl: fix load-keys for user master-key
From: Dave Jiang <dave.jiang@intel.com>
To: vishal.l.verma@intel.com
Date: Thu, 28 Mar 2019 15:24:30 -0700
Message-ID: 
 <155381182887.13778.15556671056565903543.stgit@djiang5-desk3.ch.intel.com>
User-Agent: StGit/unknown-version
MIME-Version: 1.0
Precedence: list
Cc: linux-nvdimm@lists.01.org
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: linux-nvdimm-bounces@lists.01.org
Sender: "Linux-nvdimm" <linux-nvdimm-bounces@lists.01.org>

Series

[v2,1/3] ndctl: fix load-keys for user master-key | expand

Commit Message

Dave Jiang March 28, 2019, 10:24 p.m. UTC

load-keys incorrectly assumes that all keys have TPM handles. TPM handle is
only for trusted-keys. Fix in order to allow user master-key to operate.

Signed-off-by: Dave Jiang <dave.jiang@intel.com>
---

v2:
- Make output go to stderr. (Dan)


 ndctl/load-keys.c |    6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/ndctl/load-keys.c b/ndctl/load-keys.c
index 8e4998f2..7d86a94b 100644
--- a/ndctl/load-keys.c
+++ b/ndctl/load-keys.c
@@ -213,10 +213,8 @@  static int load_keys(struct loadkeys *lk_ctx, const char *keypath,
 
 	if (!tpmhandle) {
 		rc = check_tpm_handle(lk_ctx);
-		if (rc < 0) {
-			rc = -errno;
-			goto erropen;
-		}
+		if (rc < 0)
+			fprintf(stderr, "No TPM handle discovered.\n");
 	}
 
 	rc = load_master_key(lk_ctx, param.key_path);

[v2,1/3] ndctl: fix load-keys for user master-key

Commit Message

Patch