[dm-crypt] unlocking dm-crypt from grub - kernel in crypted volume

Yves-Alexis Perez corsac at debian.org
Wed Aug 24 09:58:34 CEST 2011


On mer., 2011-08-24 at 09:51 +0200, Milan Broz wrote:
> But I would like to add here concept of "passphrase handle"
> IOW userspace will just hand over handle (id)
> to some other subsystem where the key is stored
> (Could be kernel keyring, some token, whatever). 

And the kernel recently gained support for TRUSTED_KEYS for storing
stuff sealed in a TPM.

Regards,
-- 
Yves-Alexis



More information about the dm-crypt mailing list