diff options
author | David Howells <dhowells@redhat.com> | 2019-06-26 22:02:32 +0200 |
---|---|---|
committer | David Howells <dhowells@redhat.com> | 2019-06-26 22:02:32 +0200 |
commit | dcf49dbc8077e278ddd1bc7298abc781496e8a08 (patch) | |
tree | e187765e6336fefc35d83f5b75b7cbe1d4ec194a /Documentation/security/keys | |
parent | keys: Cache the hash value to avoid lots of recalculation (diff) | |
download | linux-dcf49dbc8077e278ddd1bc7298abc781496e8a08.tar.xz linux-dcf49dbc8077e278ddd1bc7298abc781496e8a08.zip |
keys: Add a 'recurse' flag for keyring searches
Add a 'recurse' flag for keyring searches so that the flag can be omitted
and recursion disabled, thereby allowing just the nominated keyring to be
searched and none of the children.
Signed-off-by: David Howells <dhowells@redhat.com>
Diffstat (limited to 'Documentation/security/keys')
-rw-r--r-- | Documentation/security/keys/core.rst | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/Documentation/security/keys/core.rst b/Documentation/security/keys/core.rst index a0e245f9576f..ae930ae9d590 100644 --- a/Documentation/security/keys/core.rst +++ b/Documentation/security/keys/core.rst @@ -1162,11 +1162,13 @@ payload contents" for more information. key_ref_t keyring_search(key_ref_t keyring_ref, const struct key_type *type, - const char *description) + const char *description, + bool recurse) - This searches the keyring tree specified for a matching key. Error ENOKEY - is returned upon failure (use IS_ERR/PTR_ERR to determine). If successful, - the returned key will need to be released. + This searches the specified keyring only (recurse == false) or keyring tree + (recurse == true) specified for a matching key. Error ENOKEY is returned + upon failure (use IS_ERR/PTR_ERR to determine). If successful, the returned + key will need to be released. The possession attribute from the keyring reference is used to control access through the permissions mask and is propagated to the returned key |