KEYS: Use keyring_alloc() to create special keyrings
Use keyring_alloc() to create special keyrings now that it has a permissions parameter rather than using key_alloc() + key_instantiate_and_link(). Also document and export keyring_alloc() so that modules can use it too. Signed-off-by: David Howells <dhowells@redhat.com>
This commit is contained in:
David Howells
parent
96b5c8fea6
commit
f8aa23a55f
5 changed files with 31 additions and 24 deletions
|
|
@ -990,6 +990,23 @@ payload contents" for more information.
|
|||
reference pointer if successful.
|
||||
|
||||
|
||||
(*) A keyring can be created by:
|
||||
|
||||
struct key *keyring_alloc(const char *description, uid_t uid, gid_t gid,
|
||||
const struct cred *cred,
|
||||
key_perm_t perm,
|
||||
unsigned long flags,
|
||||
struct key *dest);
|
||||
|
||||
This creates a keyring with the given attributes and returns it. If dest
|
||||
is not NULL, the new keyring will be linked into the keyring to which it
|
||||
points. No permission checks are made upon the destination keyring.
|
||||
|
||||
Error EDQUOT can be returned if the keyring would overload the quota (pass
|
||||
KEY_ALLOC_NOT_IN_QUOTA in flags if the keyring shouldn't be accounted
|
||||
towards the user's quota). Error ENOMEM can also be returned.
|
||||
|
||||
|
||||
(*) To check the validity of a key, this function can be called:
|
||||
|
||||
int validate_key(struct key *key);
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue