Re: [PATCH v4 2/6] configfs-tsm: Introduce a shared ABI for attestation reports

From: Thomas Fossati
Date: Wed Sep 27 2023 - 04:04:52 EST

Next message: Wei Liu: "Re: [PATCH v3 15/15] Drivers: hv: Add modules to expose /dev/mshv to VMMs running on Hyper-V"
Previous message: Huang, Ying: "Re: [PATCH 03/12] mempolicy: fix migrate_pages(2) syscall return nr_failed"
In reply to: Dan Williams: "Re: [PATCH v4 2/6] configfs-tsm: Introduce a shared ABI for attestation reports"
Next in thread: Dan Williams: "Re: [PATCH v4 2/6] configfs-tsm: Introduce a shared ABI for attestation reports"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Dan,

> On 9/25/2023 9:17 PM, Dan Williams wrote:
> > +++ b/include/linux/tsm.h
> > @@ -0,0 +1,63 @@
> > +/* SPDX-License-Identifier: GPL-2.0 */
> > +#ifndef __TSM_H
> > +#define __TSM_H
> > +
> > +#include <linux/sizes.h>
> > +#include <linux/types.h>
> > +#include <linux/device.h>
> > +
> > +#define TSM_INBLOB_MAX 64

I guess @inblob is supposed to (possibly) accommodate nonces from a
challenger, correct?
If so, 64 bytes may not be enough for attesters that produce
EAT-formatted reports -- see [1], and [2].

[1] https://www.ietf.org/archive/id/draft-ietf-rats-eat-21.html#section-4.1-5
[2] https://github.com/ietf-rats-wg/eat/pull/421/files

cheers, thanks

Next message: Wei Liu: "Re: [PATCH v3 15/15] Drivers: hv: Add modules to expose /dev/mshv to VMMs running on Hyper-V"
Previous message: Huang, Ying: "Re: [PATCH 03/12] mempolicy: fix migrate_pages(2) syscall return nr_failed"
In reply to: Dan Williams: "Re: [PATCH v4 2/6] configfs-tsm: Introduce a shared ABI for attestation reports"
Next in thread: Dan Williams: "Re: [PATCH v4 2/6] configfs-tsm: Introduce a shared ABI for attestation reports"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]