On 8/3/23 01:43, Jarkko Sakkinen wrote:
On Thu Aug 3, 2023 at 12:04 AM EEST, Tushar Sugandhi wrote:
Btw, the function tpm2_pcr_read is not exposed directly to the other
subsystems (like IMA). It is exposed via tpm_pcr_read.
Do you want to expose tpm2_pcr_read directly,
or do you want me to update the function signature of tpm_pcr_read as well?
As long as you mention that 'update_cnt' causes divegence in the
in-kernel API, and therefore tpm[12]_pcr_read() cannnot be under the
same orchestrator.
Yup. I will mention that in the description/comment.
If you take this path, please implement a precursory patch, which
replace the existing call sites with some sequence of tpm[12]_pcr_read()
and tpm_is_tpm2() calls.
Sure. I will add a precursory patch which will replace the existing
call sites.
Thanks for confirming the approach.
~Tushar
BR, Jarkko