Am Mittwoch, 28. Oktober 2015, 02:02:51 schrieb Marcel Holtmann: Hi Marcel, > This adds support for a new socket options called ALG_SET_KEY_ID that > allows providing the symmetric key via a key serial from the keys > subsystem. > > NOTE: Currently we do not have a dedicated symmetric key type and using > the user key type is not optional. Also lookup_user_key() is currently > private to the keys subsystem and might need to be exposed to usage by > the crypto subystem first. This is just a RFC and not for merging !!! First, thanks for sharing. Albeit I have not had a deep look into that code, but I think your patch is incomplete: you have to tie the kernel crypto API to the key retention system in the Kconfig. I guess that is one of the concerns that Herbert may have? See my other email regarding this. -- Ciao Stephan -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html