Re: [RFC PATCH 0/2] Create CAAM HW key in linux keyring and use in dmcrypt

From: David Howells
Date: Wed Mar 06 2019 - 12:30:09 EST

Franck LENORMAND <franck.lenormand@xxxxxxx> wrote:

> The capacity to generate or load keys already available in the Linux key
> retention service does not allows to exploit CAAM capabilities hence we
> need to create a new key_type. The new key type "caam_tk" allows to:
> - Create a black key from random
> - Create a black key from a red key
> - Load a black blob to retrieve the black key

Is it possible that this could be done through an existing key type, such as
the asymmetric, trusted or encrypted key typed?