On Mon, Feb 10, 2025 at 07:53:57PM +0100, Lukas Wunner wrote:
> It takes advantage of the kernel's Key Retention Service for EAP-TLS,
> which generally uses mutual authentication. E.g. clients authenticate
> against a wireless hotspot. Hence it does invoke KEYCTL_PKEY_SIGN and
> KEYCTL_PKEY_ENCRYPT (with private keys, obviously).
Sorry, I meant KEYCTL_PKEY_DECRYPT.
^^
