1ec8f24b7SThomas Gleixner# SPDX-License-Identifier: GPL-2.0-only 2f0894940SDavid Howells# 3f0894940SDavid Howells# Key management configuration 4f0894940SDavid Howells# 5f0894940SDavid Howells 6f0894940SDavid Howellsconfig KEYS 7f0894940SDavid Howells bool "Enable access key retention support" 8b2a4df20SDavid Howells select ASSOCIATIVE_ARRAY 9f0894940SDavid Howells help 10f0894940SDavid Howells This option provides support for retaining authentication tokens and 11f0894940SDavid Howells access keys in the kernel. 12f0894940SDavid Howells 13f0894940SDavid Howells It also includes provision of methods by which such keys might be 14f0894940SDavid Howells associated with a process so that network filesystems, encryption 15f0894940SDavid Howells support and the like can find them. 16f0894940SDavid Howells 17f0894940SDavid Howells Furthermore, a special type of key is available that acts as keyring: 18f0894940SDavid Howells a searchable sequence of keys. Each process is equipped with access 19f0894940SDavid Howells to five standard keyrings: UID-specific, GID-specific, session, 20f0894940SDavid Howells process and thread. 21f0894940SDavid Howells 22f0894940SDavid Howells If you are unsure as to whether this is required, answer N. 23f0894940SDavid Howells 247743c48eSDavid Howellsconfig KEYS_REQUEST_CACHE 257743c48eSDavid Howells bool "Enable temporary caching of the last request_key() result" 267743c48eSDavid Howells depends on KEYS 277743c48eSDavid Howells help 287743c48eSDavid Howells This option causes the result of the last successful request_key() 297743c48eSDavid Howells call that didn't upcall to the kernel to be cached temporarily in the 307743c48eSDavid Howells task_struct. The cache is cleared by exit and just prior to the 317743c48eSDavid Howells resumption of userspace. 327743c48eSDavid Howells 337743c48eSDavid Howells This allows the key used for multiple step processes where each step 347743c48eSDavid Howells wants to request a key that is likely the same as the one requested 357743c48eSDavid Howells by the last step to save on the searching. 367743c48eSDavid Howells 377743c48eSDavid Howells An example of such a process is a pathwalk through a network 387743c48eSDavid Howells filesystem in which each method needs to request an authentication 397743c48eSDavid Howells key. Pathwalk will call multiple methods for each dentry traversed 407743c48eSDavid Howells (permission, d_revalidate, lookup, getxattr, getacl, ...). 417743c48eSDavid Howells 42f36f8c75SDavid Howellsconfig PERSISTENT_KEYRINGS 43f36f8c75SDavid Howells bool "Enable register of persistent per-UID keyrings" 44f36f8c75SDavid Howells depends on KEYS 45f36f8c75SDavid Howells help 46f36f8c75SDavid Howells This option provides a register of persistent per-UID keyrings, 47f36f8c75SDavid Howells primarily aimed at Kerberos key storage. The keyrings are persistent 48f36f8c75SDavid Howells in the sense that they stay around after all processes of that UID 49f36f8c75SDavid Howells have exited, not that they survive the machine being rebooted. 50f36f8c75SDavid Howells 51f36f8c75SDavid Howells A particular keyring may be accessed by either the user whose keyring 52f36f8c75SDavid Howells it is or by a process with administrative privileges. The active 53f36f8c75SDavid Howells LSMs gets to rule on which admin-level processes get to access the 54f36f8c75SDavid Howells cache. 55f36f8c75SDavid Howells 56f36f8c75SDavid Howells Keyrings are created and added into the register upon demand and get 57f36f8c75SDavid Howells removed if they expire (a default timeout is set upon creation). 58f36f8c75SDavid Howells 59ab3c3587SDavid Howellsconfig BIG_KEYS 602eaf6b5dSJosh Boyer bool "Large payload keys" 61ab3c3587SDavid Howells depends on KEYS 62ab3c3587SDavid Howells depends on TMPFS 633cd18d19SArnd Bergmann select CRYPTO 6413100a72SKirill Marinushkin select CRYPTO_AES 65428490e3SJason A. Donenfeld select CRYPTO_GCM 66ab3c3587SDavid Howells help 67ab3c3587SDavid Howells This option provides support for holding large keys within the kernel 68ab3c3587SDavid Howells (for example Kerberos ticket caches). The data may be stored out to 69ab3c3587SDavid Howells swapspace by tmpfs. 70ab3c3587SDavid Howells 71ab3c3587SDavid Howells If you are unsure as to whether this is required, answer N. 72ab3c3587SDavid Howells 73f0894940SDavid Howellsconfig TRUSTED_KEYS 74f0894940SDavid Howells tristate "TRUSTED KEYS" 75f0894940SDavid Howells depends on KEYS && TCG_TPM 76f0894940SDavid Howells select CRYPTO 77f0894940SDavid Howells select CRYPTO_HMAC 78f0894940SDavid Howells select CRYPTO_SHA1 795ca4c20cSJarkko Sakkinen select CRYPTO_HASH_INFO 80f0894940SDavid Howells help 81f0894940SDavid Howells This option provides support for creating, sealing, and unsealing 82f0894940SDavid Howells keys in the kernel. Trusted keys are random number symmetric keys, 83f0894940SDavid Howells generated and RSA-sealed by the TPM. The TPM only unseals the keys, 84f0894940SDavid Howells if the boot PCRs and other criteria match. Userspace will only ever 85f0894940SDavid Howells see encrypted blobs. 86f0894940SDavid Howells 87f0894940SDavid Howells If you are unsure as to whether this is required, answer N. 88f0894940SDavid Howells 89f0894940SDavid Howellsconfig ENCRYPTED_KEYS 90f0894940SDavid Howells tristate "ENCRYPTED KEYS" 91f0894940SDavid Howells depends on KEYS 92f0894940SDavid Howells select CRYPTO 93f0894940SDavid Howells select CRYPTO_HMAC 94f0894940SDavid Howells select CRYPTO_AES 95f0894940SDavid Howells select CRYPTO_CBC 96f0894940SDavid Howells select CRYPTO_SHA256 97f0894940SDavid Howells select CRYPTO_RNG 98f0894940SDavid Howells help 99f0894940SDavid Howells This option provides support for create/encrypting/decrypting keys 100f0894940SDavid Howells in the kernel. Encrypted keys are kernel generated random numbers, 101f0894940SDavid Howells which are encrypted/decrypted with a 'master' symmetric key. The 102f0894940SDavid Howells 'master' key can be either a trusted-key or user-key type. 103f0894940SDavid Howells Userspace only ever sees/stores encrypted blobs. 104f0894940SDavid Howells 105f0894940SDavid Howells If you are unsure as to whether this is required, answer N. 106ddbb4114SMat Martineau 107ddbb4114SMat Martineauconfig KEY_DH_OPERATIONS 108ddbb4114SMat Martineau bool "Diffie-Hellman operations on retained keys" 109ddbb4114SMat Martineau depends on KEYS 1104cd4ca7cSStephan Müller select CRYPTO 111f1c316a3SStephan Mueller select CRYPTO_HASH 1127cbe0932SMat Martineau select CRYPTO_DH 113ddbb4114SMat Martineau help 114ddbb4114SMat Martineau This option provides support for calculating Diffie-Hellman 115ddbb4114SMat Martineau public keys and shared secrets using values stored as keys 116ddbb4114SMat Martineau in the kernel. 117ddbb4114SMat Martineau 118ddbb4114SMat Martineau If you are unsure as to whether this is required, answer N. 119f7e47677SDavid Howells 120f7e47677SDavid Howellsconfig KEY_NOTIFICATIONS 121f7e47677SDavid Howells bool "Provide key/keyring change notifications" 122f7e47677SDavid Howells depends on KEYS && WATCH_QUEUE 123f7e47677SDavid Howells help 124f7e47677SDavid Howells This option provides support for getting change notifications on keys 125f7e47677SDavid Howells and keyrings on which the caller has View permission. This makes use 126f7e47677SDavid Howells of the /dev/watch_queue misc device to handle the notification 127f7e47677SDavid Howells buffer and provides KEYCTL_WATCH_KEY to enable/disable watches. 128