Received: by 2002:a05:6a10:8c0a:0:0:0:0 with SMTP id go10csp87173pxb; Fri, 19 Feb 2021 19:09:25 -0800 (PST) X-Google-Smtp-Source: ABdhPJzycJtzbdLsbAloHfpe4FT97Slt+JFjxYaCFvzFKoS3TLpvKf65s+MSuF7lesMRdIIHtIgH X-Received: by 2002:a17:906:b214:: with SMTP id p20mr3452510ejz.22.1613790565671; Fri, 19 Feb 2021 19:09:25 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1613790565; cv=none; d=google.com; s=arc-20160816; b=VlzA1DO+Law4IaN20x2dtDMP6HAw/5I1fj8u/T6AmU8B7GgTLRH/c1BdVaqZ4J7ESb 8294S2VhWTg0sQ8MZYJkIKYl3gJa57A+Qf9dIVLFi4yb1pWUa4iBbnSgH4Sj0vXnAnHz 998Cugk/PQrVkiprOGhHz2Rt8ZYO+Dc8j+tHei5BltRWOxA9n1Qg2UUOTqL6sHAlJMjA 2QYVUGs9nNZrIIyW1N5SH0IK/oZR+ADyczeFBDrqFo1268bOydfiB8Ajhf9Kn1DV72VH /SBS6mOVtmUVt2LGfGoB/x+DZErUhBKFZWcelOP3MoVAtSF668v/PoyMIXRpcaYbpf/3 uqJg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=gUDa0varAUog69pVY586zoYXqKsh032nMNMcBeAHmuo=; b=EHzkMLPwLaNKKVAd6WPJWuCArCS2wEJwwc3kPTo8m4thaI2aI/kwDu+R07gRC4jDLN qeqDOWDO7Y1kGnaVwTJ+Ep/q81WSqXUo81PdbUaUV4lsVTFTRkxQZvFXptpHkq1EVlCp ShpMIwc5sr1yhvBKgWnETyvGYkOTt1r4CZbrE4rRuNwxWZArdpnLLxFdOlGtyjA5iRsv bC3DdXl4WjIyeT2M4nTS4rFqdqAGmDlUg9vgvij17bdpgjgmSsZeT41fMmtR8lwoNC4Z 87mP458ibq1/O/FFu1l+hR2EFdaioH/TZQQND0c8ExN5V/xSM4od3une4px6QuI9xr0d L2vQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=p3ftLHb9; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id d15si7027293edq.404.2021.02.19.19.09.03; Fri, 19 Feb 2021 19:09:25 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=p3ftLHb9; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229959AbhBTDGd (ORCPT + 99 others); Fri, 19 Feb 2021 22:06:33 -0500 Received: from mail.kernel.org ([198.145.29.99]:44752 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229796AbhBTDGc (ORCPT ); Fri, 19 Feb 2021 22:06:32 -0500 Received: by mail.kernel.org (Postfix) with ESMTPSA id B18166024A; Sat, 20 Feb 2021 03:05:51 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1613790352; bh=zePbphJrLY4ddzfW42yCYDuewrITnlUUsWSc+yLxycs=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=p3ftLHb9B3+P3Ji78zM8wayXAlyi/kVD1a79M5s36h/sbLbkrQk/mOOLSoNzyw2n+ QS2tYsl/5DYchkwVQwDaoNxGRfm1gkgmaKVWzWeAm5zz6ZSmiLcfoEVFHMu4gKyEll t/v1rSPqf0aZubbizu+2I/woUZ+ECimePDY0ZLynyvdvFOSnCuoomJIRcuyHqruTS3 Gm/4fp5axtQCffm2fa6bAQfcF2oTnV5ZBbbt1H8TdilSbLAY2rcrKSxVmq665s8hYd d4hppr/KR1TNPtJ+Oq4vFSpch4JAcZXeYT9fN87tinM0WLD1nlmfDbfFcDrNVK7wcP BsftYdLx65Q9A== Date: Sat, 20 Feb 2021 05:05:36 +0200 From: Jarkko Sakkinen To: Matthew Garrett Cc: linux-kernel@vger.kernel.org, linux-integrity@vger.kernel.org, linux-pm@vger.kernel.org, keyrings@vger.kernel.org, zohar@linux.ibm.com, jejb@linux.ibm.com, corbet@lwn.net, rjw@rjwysocki.net, Matthew Garrett Subject: Re: [PATCH 3/9] security: keys: trusted: Parse out individual components of the key blob Message-ID: References: <20210220013255.1083202-1-matthewgarrett@google.com> <20210220013255.1083202-4-matthewgarrett@google.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20210220013255.1083202-4-matthewgarrett@google.com> Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Sat, Feb 20, 2021 at 01:32:49AM +0000, Matthew Garrett wrote: > Performing any sort of state validation of a sealed TPM blob requires > being able to access the individual members in the response. Parse the > blob sufficiently to be able to stash pointers to each member, along > with the length. > > Signed-off-by: Matthew Garrett I'll just say LGTM for now. Did not see anything obviously wrong in the code change (and does make sense to nitpick minor things just yet). Need to understand the whole use case just a little bit better. /Jarkko