Bug 1213534

Summary: Backport SPI and TPM patches
Product: [openSUSE] PUBLIC SUSE Linux Enterprise Server 15 SP5 Reporter: Matt Ochs <mochs>
Component: KernelAssignee: Ivan Ivanov <ivan.ivanov>
Status: VERIFIED FIXED QA Contact:
Severity: Normal    
Priority: P5 - None CC: afaerber, ddavis, ivan.ivanov, mbenes, mochs, stanimir.varbanov, tiwai
Version: unspecified   
Target Milestone: ---   
Hardware: aarch64   
OS: SLES 15   
See Also: https://bugzilla.suse.com/show_bug.cgi?id=1225535
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Comment 1 Takashi Iwai 2023-07-21 06:51:18 UTC 
The patch for tpm_tis_spi_main.c seems not in the mainline (yet)?  The page indicates an unreachable object.
Comment 3 Matt Ochs 2023-09-06 22:02:59 UTC 
(In reply to Matt Ochs from comment #2)
> Looks like that patch got mixed up in a PR mishaps:
> 
> https://lore.kernel.org/all/20230714181325.3351-1-jarkko@kernel.org/
> https://lore.kernel.org/all/20230718164348.35519-1-jarkko@kernel.org/
> 
> 
> Here is the patch:
> https://git.kernel.org/pub/scm/linux/kernel/git/jarkko/linux-tpmdd.git/
> commit/?id=1f70476c307b569d93b28755dac799a8dfa421c9

This last patch is now upstream:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a86a42ac2bd652fdc7836a9d880c306a2485c142
Comment 4 Ivan Ivanov 2023-09-26 08:11:45 UTC 
Merged in d3cf729c70c02b5ddfa8e43d0bd3ee7972507471
Comment 10 Maintenance Automation 2023-10-12 12:46:28 UTC 
SUSE-SU-2023:4058-1: An update that solves 18 vulnerabilities, contains three features and has 71 security fixes can now be installed.

Category: security (important)
Bug References: 1065729, 1152472, 1187236, 1201284, 1202845, 1206453, 1208995, 1210169, 1210643, 1210658, 1212639, 1212703, 1213123, 1213534, 1213808, 1214022, 1214037, 1214040, 1214233, 1214351, 1214479, 1214543, 1214635, 1214813, 1214873, 1214928, 1214940, 1214941, 1214942, 1214943, 1214944, 1214945, 1214946, 1214947, 1214948, 1214949, 1214950, 1214951, 1214952, 1214953, 1214954, 1214955, 1214957, 1214958, 1214959, 1214961, 1214962, 1214963, 1214964, 1214965, 1214966, 1214967, 1214986, 1214988, 1214990, 1214991, 1214992, 1214993, 1214995, 1214997, 1214998, 1215115, 1215117, 1215123, 1215124, 1215148, 1215150, 1215221, 1215275, 1215322, 1215467, 1215523, 1215581, 1215752, 1215858, 1215860, 1215861, 1215875, 1215877, 1215894, 1215895, 1215896, 1215899, 1215911, 1215915, 1215916, 1215941, 1215956, 1215957
CVE References: CVE-2023-1192, CVE-2023-1206, CVE-2023-1859, CVE-2023-2177, CVE-2023-37453, CVE-2023-39192, CVE-2023-39193, CVE-2023-39194, CVE-2023-40283, CVE-2023-4155, CVE-2023-42753, CVE-2023-42754, CVE-2023-4389, CVE-2023-4622, CVE-2023-4623, CVE-2023-4881, CVE-2023-4921, CVE-2023-5345
Jira References: PED-1549, PED-2023, PED-2025
Sources used:
openSUSE Leap 15.5 (src): kernel-source-azure-5.14.21-150500.33.20.1, kernel-syms-azure-5.14.21-150500.33.20.1
Public Cloud Module 15-SP5 (src): kernel-source-azure-5.14.21-150500.33.20.1, kernel-syms-azure-5.14.21-150500.33.20.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 11 Takashi Iwai 2023-10-13 08:54:25 UTC 
The backport of commit a86a42ac2 seems missing on SLE15-SP6?
Comment 12 Matt Ochs 2023-11-01 16:23:50 UTC 
(In reply to Takashi Iwai from comment #11)
> The backport of commit a86a42ac2 seems missing on SLE15-SP6?

I have that same question. Will a86a42ac2 be backported to SLES 15 SP6?
Comment 13 Ivan Ivanov 2023-11-02 08:12:11 UTC 
Sure, I will back port missing pieces to SP6 too. Thank you for noticing!
Comment 15 Matt Ochs 2023-11-09 15:18:19 UTC 
(In reply to Ivan Ivanov from comment #13)
> Sure, I will back port missing pieces to SP6 too. Thank you for noticing!

Thanks, confirmed fix is now present in SP6.
Comment 16 Matt Ochs 2023-11-09 15:19:11 UTC 
Verified TPM working on Grace platform with 5.14.21-150500.55.36-64kb.