~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

TOMOYO Linux Cross Reference
Linux/security/keys/encrypted-keys/masterkey_trusted.c

Version: ~ [ linux-6.11-rc3 ] ~ [ linux-6.10.4 ] ~ [ linux-6.9.12 ] ~ [ linux-6.8.12 ] ~ [ linux-6.7.12 ] ~ [ linux-6.6.45 ] ~ [ linux-6.5.13 ] ~ [ linux-6.4.16 ] ~ [ linux-6.3.13 ] ~ [ linux-6.2.16 ] ~ [ linux-6.1.104 ] ~ [ linux-6.0.19 ] ~ [ linux-5.19.17 ] ~ [ linux-5.18.19 ] ~ [ linux-5.17.15 ] ~ [ linux-5.16.20 ] ~ [ linux-5.15.164 ] ~ [ linux-5.14.21 ] ~ [ linux-5.13.19 ] ~ [ linux-5.12.19 ] ~ [ linux-5.11.22 ] ~ [ linux-5.10.223 ] ~ [ linux-5.9.16 ] ~ [ linux-5.8.18 ] ~ [ linux-5.7.19 ] ~ [ linux-5.6.19 ] ~ [ linux-5.5.19 ] ~ [ linux-5.4.281 ] ~ [ linux-5.3.18 ] ~ [ linux-5.2.21 ] ~ [ linux-5.1.21 ] ~ [ linux-5.0.21 ] ~ [ linux-4.20.17 ] ~ [ linux-4.19.319 ] ~ [ linux-4.18.20 ] ~ [ linux-4.17.19 ] ~ [ linux-4.16.18 ] ~ [ linux-4.15.18 ] ~ [ linux-4.14.336 ] ~ [ linux-4.13.16 ] ~ [ linux-4.12.14 ] ~ [ linux-4.11.12 ] ~ [ linux-4.10.17 ] ~ [ linux-4.9.337 ] ~ [ linux-4.4.302 ] ~ [ linux-3.10.108 ] ~ [ linux-2.6.32.71 ] ~ [ linux-2.6.0 ] ~ [ linux-2.4.37.11 ] ~ [ unix-v6-master ] ~ [ ccs-tools-1.8.9 ] ~ [ policy-sample ] ~
Architecture: ~ [ i386 ] ~ [ alpha ] ~ [ m68k ] ~ [ mips ] ~ [ ppc ] ~ [ sparc ] ~ [ sparc64 ] ~ 
  1 // SPDX-License-Identifier: GPL-2.0-only
  2 /*
  3  * Copyright (C) 2010 IBM Corporation
  4  * Copyright (C) 2010 Politecnico di Torino, Italy
  5  *                    TORSEC group -- https://security.polito.it
  6  *
  7  * Authors:
  8  * Mimi Zohar <zohar@us.ibm.com>
  9  * Roberto Sassu <roberto.sassu@polito.it>
 10  *
 11  * See Documentation/security/keys/trusted-encrypted.rst
 12  */
 13 
 14 #include <linux/uaccess.h>
 15 #include <linux/err.h>
 16 #include <keys/trusted-type.h>
 17 #include <keys/encrypted-type.h>
 18 #include "encrypted.h"
 19 
 20 /*
 21  * request_trusted_key - request the trusted key
 22  *
 23  * Trusted keys are sealed to PCRs and other metadata. Although userspace
 24  * manages both trusted/encrypted key-types, like the encrypted key type
 25  * data, trusted key type data is not visible decrypted from userspace.
 26  */
 27 struct key *request_trusted_key(const char *trusted_desc,
 28                                 const u8 **master_key, size_t *master_keylen)
 29 {
 30         struct trusted_key_payload *tpayload;
 31         struct key *tkey;
 32 
 33         tkey = request_key(&key_type_trusted, trusted_desc, NULL);
 34         if (IS_ERR(tkey))
 35                 goto error;
 36 
 37         down_read(&tkey->sem);
 38         tpayload = tkey->payload.data[0];
 39         *master_key = tpayload->key;
 40         *master_keylen = tpayload->key_len;
 41 error:
 42         return tkey;
 43 }
 44
~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~
kernel.org | git.kernel.org | LWN.net | Project Home | SVN repository | Mail admin

Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.

sflogo.php