Re: Migration to trusted keys: sealing user-provided key?

From: David Howells
Date: Mon Feb 01 2021 - 06:37:41 EST

Next message: Xie He: "Re: [PATCH net] net: hdlc_x25: Use qdisc to queue outgoing LAPB frames"
Previous message: Peter Zijlstra: "Re: [RFC 01/20] mm/tlb: fix fullmm semantics"
Next in thread: Jan Lübbe: "Re: Migration to trusted keys: sealing user-provided key?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jan Lübbe <jlu@xxxxxxxxxxxxxx> wrote:

> ... But at this point, you can still do 'keyctl read' on that key, exposing
> the key material to user space.

I wonder if it would help to provide a keyctl function to mark a key as being
permanently unreadable - so that it overrides the READ permission bit.

Alternatively, you can disable READ and SETATTR permission - but that then
prevents you from removing other perms if you want to :-/

David

Next message: Xie He: "Re: [PATCH net] net: hdlc_x25: Use qdisc to queue outgoing LAPB frames"
Previous message: Peter Zijlstra: "Re: [RFC 01/20] mm/tlb: fix fullmm semantics"
Next in thread: Jan Lübbe: "Re: Migration to trusted keys: sealing user-provided key?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]