[PATCH v2 1/2] security/keys/secure_key: Adds the secure key support based on CAAM.
Mimi Zohar
zohar at linux.ibm.com
Fri Aug 3 15:23:35 UTC 2018
On Fri, 2018-08-03 at 15:55 +0100, David Howells wrote:
> Mimi Zohar <zohar at linux.ibm.com> wrote:
>
> > "trusted" keys are currently being used to decrypt other keys (eg.
> > encrypted, ecryptfs, ...).
>
> Can it decrypt both symmetric and asymmetric keys?
Yes, the "trusted" key is returned to the caller and is used to
decrypt a datablob.
For an example, refer to encrypted_key_decrypt(). The call
to request_master_key() returns either the "trusted" or "user" type
key, which is used to decrypt the "enccrypted" key type.
Mimi
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list