Ahmad Fatoum fcd7c26901 KEYS: trusted: allow use of kernel RNG for key material ... The two existing trusted key sources don't make use of the kernel RNG, but instead let the hardware doing the sealing/unsealing also generate the random key material. However, both users and future backends may want to place less trust into the quality of the trust source's random number generator and instead reuse the kernel entropy pool, which can be seeded from multiple entropy sources. Make this possible by adding a new trusted.rng parameter, that will force use of the kernel RNG. In its absence, it's up to the trust source to decide, which random numbers to use, maintaining the existing behavior. Suggested-by: Jarkko Sakkinen <jarkko@kernel.org> Acked-by: Sumit Garg <sumit.garg@linaro.org> Acked-by: Pankaj Gupta <pankaj.gupta@nxp.com> Reviewed-by: David Gstir <david@sigma-star.at> Reviewed-by: Pankaj Gupta <pankaj.gupta@nxp.com> Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org> Tested-by: Pankaj Gupta <pankaj.gupta@nxp.com> Tested-by: Michael Walle <michael@walle.cc> # on ls1028a (non-E and E) Tested-by: John Ernberg <john.ernberg@actia.se> # iMX8QXP Signed-off-by: Ahmad Fatoum <a.fatoum@pengutronix.de> Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>		2022-05-23 18:47:50 +03:00
..
Kconfig	KEYS: trusted: allow use of TEE as backend without TCG_TPM support	2022-05-23 18:47:50 +03:00
Makefile	KEYS: trusted: allow use of TEE as backend without TCG_TPM support	2022-05-23 18:47:50 +03:00
tpm2key.asn1	security: keys: trusted: use ASN.1 TPM2 key format for the blobs	2021-04-14 16:30:30 +03:00
trusted_core.c	KEYS: trusted: allow use of kernel RNG for key material	2022-05-23 18:47:50 +03:00
trusted_tee.c	KEYS: trusted: tee: use tee_shm_register_kernel_buf()	2022-02-16 07:49:41 +01:00
trusted_tpm1.c	KEYS: trusted: Fix memory leak on object td	2021-05-12 22:36:36 +03:00
trusted_tpm2.c	trusted-keys: match tpm_get_ops on all return paths	2021-05-12 22:36:37 +03:00