[Xen-devel] [PATCH 1/7] vtpm Mini-Os domain: vtpm_managerd

[Matthew Fioravante <matthew.fioravante@xxxxxxxxxx>]

 Signed-off-by: Matthew Fioravante <Matthew.Fioravante@xxxxxxxxxx>

The following is a major patch to the vtpm_manager. I apologize in 
advance for submitting such a large patch. Let me know if you'd like me 
to break it up.
This patch contains the following:
-A new routine to flush all handles from the tpm everytime vtpm_managerd 
is started. Previously if the manager would crash it would leave stale 
keys and auth handles in the tpm. After restarting the manager several 
times and letting it crash, the tpm would run out of memory and the 
manager would fail to start with a TPM_NO_SPACE error.
-Several memory errors fixed such as uninitialized reads and memory leaks.
-Fixed the signal handler to work with blocking IO and threads 
correctly. Previously the manager would not shutdown correctly when you 
tried to Ctrl+C close it on 64 bit.
-Removal of VTPM_MULTI_VM #defines. These were supposed to be a partial 
implementation for a way to run vtpms in multiple domains but it was 
never finished. It doesn't appear there has been any development on this 
for several years. Since vtpm-stubdom performs this functionality I 
removed these #defines and #ifdefs to make the code a little cleaner.
-New vTPM ordinals: VTPM_SAVE_KEY and VTPM_LOAD_KEY. The vtpm domains 
encrypt their persistent state themselves, they only request the manager 
to store the key.
-#define VTPM_STUBDOM will build the manager in stubdom mode. The 
manager can only work in either vtpm-stubdom or vtpmd mode. You cannot 
combine them. Clearing out the manager state will be required.
    # rm /var/vtpm/VTPM /var/vtpm/vtpm_dm*

1-manager.patch
Description: Text Data

smime.p7s
Description: S/MIME Cryptographic Signature

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel