1213534 – Backport SPI and TPM patches

Bug 1213534 - Backport SPI and TPM patches

Summary: Backport SPI and TPM patches

Status:	VERIFIED FIXED

Alias:	None

Product:	PUBLIC SUSE Linux Enterprise Server 15 SP5
Classification:	openSUSE
Component:	Kernel (show other bugs)
Version:	unspecified
Hardware:	aarch64 SLES 15

Priority:	P5 - None Severity: Normal
Target Milestone:	---
Assignee:	Ivan Ivanov
QA Contact:

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2023-07-20 21:38 UTC by Matt Ochs
Modified:	2024-06-25 17:50 UTC (History)
CC List:	7 users (show)

See Also:	1225535
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Matt Ochs 2023-07-20 21:38:56 UTC

These upstreamed patches are required for SPI and TPM components to function properly on the NVIDIA Grace platform:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8777dd9dff4020bba66654ec92e4b0ab6367ad30

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f7482d8285b638be87a594a30edaaf1341135c1a

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=047ee71ae4f412d8819e39e4b08c588fa299cfc2

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2449d436681d40bc63ec2c766fd51b632270d8a7

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=67a142dc9eb96a5cc018e5db62390665eb5f038c

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=967ca91a996f82219f2883e9e53d8e20df49025a

https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/?id=bed72785706c5aa12146105de0fc7385d9193613

These need to be back ported to SLES 15 SP5.

Comment 1 Takashi Iwai 2023-07-21 06:51:18 UTC

The patch for tpm_tis_spi_main.c seems not in the mainline (yet)?  The page indicates an unreachable object.

Comment 2 Matt Ochs 2023-07-24 15:49:30 UTC

Looks like that patch got mixed up in a PR mishaps:

https://lore.kernel.org/all/20230714181325.3351-1-jarkko@kernel.org/
https://lore.kernel.org/all/20230718164348.35519-1-jarkko@kernel.org/


Here is the patch:
https://git.kernel.org/pub/scm/linux/kernel/git/jarkko/linux-tpmdd.git/commit/?id=1f70476c307b569d93b28755dac799a8dfa421c9

Comment 3 Matt Ochs 2023-09-06 22:02:59 UTC

(In reply to Matt Ochs from comment #2)
> Looks like that patch got mixed up in a PR mishaps:
> 
> https://lore.kernel.org/all/20230714181325.3351-1-jarkko@kernel.org/
> https://lore.kernel.org/all/20230718164348.35519-1-jarkko@kernel.org/
> 
> 
> Here is the patch:
> https://git.kernel.org/pub/scm/linux/kernel/git/jarkko/linux-tpmdd.git/
> commit/?id=1f70476c307b569d93b28755dac799a8dfa421c9

This last patch is now upstream:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a86a42ac2bd652fdc7836a9d880c306a2485c142

Comment 4 Ivan Ivanov 2023-09-26 08:11:45 UTC

Merged in d3cf729c70c02b5ddfa8e43d0bd3ee7972507471

Comment 10 Maintenance Automation 2023-10-12 12:46:28 UTC

SUSE-SU-2023:4058-1: An update that solves 18 vulnerabilities, contains three features and has 71 security fixes can now be installed.

Category: security (important)
Bug References: 1065729, 1152472, 1187236, 1201284, 1202845, 1206453, 1208995, 1210169, 1210643, 1210658, 1212639, 1212703, 1213123, 1213534, 1213808, 1214022, 1214037, 1214040, 1214233, 1214351, 1214479, 1214543, 1214635, 1214813, 1214873, 1214928, 1214940, 1214941, 1214942, 1214943, 1214944, 1214945, 1214946, 1214947, 1214948, 1214949, 1214950, 1214951, 1214952, 1214953, 1214954, 1214955, 1214957, 1214958, 1214959, 1214961, 1214962, 1214963, 1214964, 1214965, 1214966, 1214967, 1214986, 1214988, 1214990, 1214991, 1214992, 1214993, 1214995, 1214997, 1214998, 1215115, 1215117, 1215123, 1215124, 1215148, 1215150, 1215221, 1215275, 1215322, 1215467, 1215523, 1215581, 1215752, 1215858, 1215860, 1215861, 1215875, 1215877, 1215894, 1215895, 1215896, 1215899, 1215911, 1215915, 1215916, 1215941, 1215956, 1215957
CVE References: CVE-2023-1192, CVE-2023-1206, CVE-2023-1859, CVE-2023-2177, CVE-2023-37453, CVE-2023-39192, CVE-2023-39193, CVE-2023-39194, CVE-2023-40283, CVE-2023-4155, CVE-2023-42753, CVE-2023-42754, CVE-2023-4389, CVE-2023-4622, CVE-2023-4623, CVE-2023-4881, CVE-2023-4921, CVE-2023-5345
Jira References: PED-1549, PED-2023, PED-2025
Sources used:
openSUSE Leap 15.5 (src): kernel-source-azure-5.14.21-150500.33.20.1, kernel-syms-azure-5.14.21-150500.33.20.1
Public Cloud Module 15-SP5 (src): kernel-source-azure-5.14.21-150500.33.20.1, kernel-syms-azure-5.14.21-150500.33.20.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 11 Takashi Iwai 2023-10-13 08:54:25 UTC

The backport of commit a86a42ac2 seems missing on SLE15-SP6?

Comment 12 Matt Ochs 2023-11-01 16:23:50 UTC

(In reply to Takashi Iwai from comment #11)
> The backport of commit a86a42ac2 seems missing on SLE15-SP6?

I have that same question. Will a86a42ac2 be backported to SLES 15 SP6?

Comment 13 Ivan Ivanov 2023-11-02 08:12:11 UTC

Sure, I will back port missing pieces to SP6 too. Thank you for noticing!

Comment 15 Matt Ochs 2023-11-09 15:18:19 UTC

(In reply to Ivan Ivanov from comment #13)
> Sure, I will back port missing pieces to SP6 too. Thank you for noticing!

Thanks, confirmed fix is now present in SP6.

Comment 16 Matt Ochs 2023-11-09 15:19:11 UTC

Verified TPM working on Grace platform with 5.14.21-150500.55.36-64kb.