Re: [PATCH 00/10] Encrypted Hibernation

From: Pavel Machek
Date: Fri May 06 2022 - 12:09:15 EST

Next message: Pavel Machek: "Re: [PATCH 08/10] PM: hibernate: Mix user key in encrypted hibernate"
Previous message: Will Deacon: "Re: [PATCH] iommu/arm-smmu-v3: check return value after calling platform_get_resource()"
In reply to: Evan Green: "[PATCH 09/10] PM: hibernate: Verify the digest encryption key"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi!

> We are exploring enabling hibernation in some new scenarios. However,
> our security team has a few requirements, listed below:
> 1. The hibernate image must be encrypted with protection derived from
> both the platform (eg TPM) and user authentication data (eg
> password).
> 2. Hibernation must not be a vector by which a malicious userspace can
> escalate to the kernel.

Can you (or your security team) explain why requirement 2. is needed?

On normal systems, trusted userspace handles kernel upgrades (for example),
so it can escalate to kernel priviledges.

Best regards,
Pavel
--
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html

Next message: Pavel Machek: "Re: [PATCH 08/10] PM: hibernate: Mix user key in encrypted hibernate"
Previous message: Will Deacon: "Re: [PATCH] iommu/arm-smmu-v3: check return value after calling platform_get_resource()"
In reply to: Evan Green: "[PATCH 09/10] PM: hibernate: Verify the digest encryption key"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]