|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [xen master] vtpmmgr: Flush transient keys on shutdown
commit ec9596dc534d6869ddcb2fb78a0c5accc91e3f38
Author: Jason Andryuk <jandryuk@xxxxxxxxx>
AuthorDate: Thu May 6 09:59:16 2021 -0400
Commit: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
CommitDate: Mon May 10 14:49:00 2021 +0100
vtpmmgr: Flush transient keys on shutdown
Remove our key so it isn't left in the TPM for someone to come along
after vtpmmgr shutsdown.
Signed-off-by: Jason Andryuk <jandryuk@xxxxxxxxx>
Reviewed-by: Samuel Thibault <samuel.thibault@xxxxxxxxxxxx>
Reviewed-by: Daniel P. Smith <dpsmith@xxxxxxxxxxxxxxxxxxxx>
---
stubdom/vtpmmgr/init.c | 8 ++++++++
1 file changed, 8 insertions(+)
diff --git a/stubdom/vtpmmgr/init.c b/stubdom/vtpmmgr/init.c
index decf8e8b4d..56b4be85b3 100644
--- a/stubdom/vtpmmgr/init.c
+++ b/stubdom/vtpmmgr/init.c
@@ -792,6 +792,14 @@ void vtpmmgr_shutdown(void)
/* Close tpmback */
shutdown_tpmback();
+ if (hw_is_tpm2()) {
+ /* Blow away all stale handles left in the tpm*/
+ if (flush_tpm2() != TPM_SUCCESS) {
+ vtpmlogerror(VTPM_LOG_TPM,
+ "TPM2_FlushResources failed, continuing
shutdown..\n");
+ }
+ }
+
/* Close tpmfront/tpm_tis */
close(vtpm_globals.tpm_fd);
--
generated by git-patchbot for /home/xen/git/xen.git#master
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |