The virtio-crypto spec does not dictate a maximum length limit for asymmetric cipher (akcipher) keys. We added a hard limit which mirrors the linux kernels's internal limit for akcipher keys (see keyctl framework and the add_key syscall). Maybe we should update the virtio-spec and add a max_akcipher_key_len field for virtio crypto devices.
helei (1): hw/virtio-crypto: enforce max akcipher key length hw/virtio/virtio-crypto.c | 13 +++++++++++++ 1 file changed, 13 insertions(+) -- 2.43.0
