[PATCH 00/22] KEYS: Support TPM-wrapped key and crypto ops

From: Denis Kenzior <hidden>
Date: 2018-09-18 17:00:55
Also in: keyrings, lkml

Possibly related (same subject, not in this thread)

2018-09-28 · Re: [PATCH 00/22] KEYS: Support TPM-wrapped key and crypto ops · Marcel Holtmann <marcel@holtmann.org>
2018-09-20 · Re: [PATCH 00/22] KEYS: Support TPM-wrapped key and crypto ops · Denis Kenzior <hidden>
2018-09-18 · Re: [PATCH 00/22] KEYS: Support TPM-wrapped key and crypto ops · Denis Kenzior <hidden>
2018-09-18 · Re: [PATCH 00/22] KEYS: Support TPM-wrapped key and crypto ops · Denis Kenzior <hidden>
2018-09-18 · Re: [PATCH 00/22] KEYS: Support TPM-wrapped key and crypto ops · David Howells <dhowells@redhat.com>

Hi David,

On 09/18/2018 11:55 AM, David Howells wrote:

Denis Kenzior [off-list ref] wrote:

quoted

In theory the PEM file already contains the type of the certificate, at least
at a high level.  E.g. private, public, tpm.  So if we accept PEM files
directly that could be potentially a faster way of determining the parser to
use and would still work with keyctl update/instantiate, right?

Yes.  It shouldn't be much code, either.  You still have to check for X.509
DER since the kernel currently supports that.

For reasons of backward compatibility, correct?  The kernel also has 
mscode.asn1 which we would need to support as well.  Since we can't 
break compatibility then perhaps this doesn't buy us a whole lot in the end.

Regards,
-Denis

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help