Since we cannot at this point cache names of the keys given limitations of the ASN.1 file format, I'll start a fresh patch set. Let's fixup what we can right now.
This patch set addresses two major issues in the feature: 1. Dynamic resolution without gain. All kernel sites have at most single handle to authorize. Even if this changes some day this is how it is as of today and we definitely do not want to dictate the future but instead downscale code to the metrics that we have as of today. 2. Eliminate at least one unnnecessary tpm2_read_public() call. Jarkko Sakkinen (7): KEYS: trusted: Remove dead branch from tpm2_unseal_cmd tpm2-sessions: Define TPM2_NAME_MAX_SIZE KEYS: trusted: Re-orchestrate tpm2_read_public() calls tpm2-sessions: Remove AUTH_MAX_NAMES tpm-buf: Remove tpm_buf_append_handle tpm: Orchestrate TPM commands in tpm_get_random() tpm: Send only one TPM command per hwrng request drivers/char/tpm/tpm-buf.c | 25 ---- drivers/char/tpm/tpm-chip.c | 2 +- drivers/char/tpm/tpm-interface.c | 174 ++++++++++++++++++++-- drivers/char/tpm/tpm-sysfs.c | 2 +- drivers/char/tpm/tpm.h | 2 - drivers/char/tpm/tpm1-cmd.c | 62 -------- drivers/char/tpm/tpm2-cmd.c | 102 +------------ drivers/char/tpm/tpm2-sessions.c | 130 +++++----------- include/linux/tpm.h | 51 +++++-- security/keys/trusted-keys/trusted_tpm1.c | 8 +- security/keys/trusted-keys/trusted_tpm2.c | 134 ++++++++++------- 11 files changed, 322 insertions(+), 370 deletions(-) -- 2.52.0
