diff options
| author | Linus Torvalds <torvalds@linux-foundation.org> | 2019-07-09 15:34:26 -0400 |
|---|---|---|
| committer | Linus Torvalds <torvalds@linux-foundation.org> | 2019-07-09 15:34:26 -0400 |
| commit | e9a83bd2322035ed9d7dcf35753d3f984d76c6a5 (patch) | |
| tree | 66dc466ff9aec0f9bb7f39cba50a47eab6585559 /Documentation/security | |
| parent | 7011b7e1b702cc76f9e969b41d9a95969f2aecaa (diff) | |
| parent | 454f96f2b738374da4b0a703b1e2e7aed82c4486 (diff) | |
Merge tag 'docs-5.3' of git://git.lwn.net/linux
Pull Documentation updates from Jonathan Corbet:
"It's been a relatively busy cycle for docs:
- A fair pile of RST conversions, many from Mauro. These create more
than the usual number of simple but annoying merge conflicts with
other trees, unfortunately. He has a lot more of these waiting on
the wings that, I think, will go to you directly later on.
- A new document on how to use merges and rebases in kernel repos,
and one on Spectre vulnerabilities.
- Various improvements to the build system, including automatic
markup of function() references because some people, for reasons I
will never understand, were of the opinion that
:c:func:``function()`` is unattractive and not fun to type.
- We now recommend using sphinx 1.7, but still support back to 1.4.
- Lots of smaller improvements, warning fixes, typo fixes, etc"
* tag 'docs-5.3' of git://git.lwn.net/linux: (129 commits)
docs: automarkup.py: ignore exceptions when seeking for xrefs
docs: Move binderfs to admin-guide
Disable Sphinx SmartyPants in HTML output
doc: RCU callback locks need only _bh, not necessarily _irq
docs: format kernel-parameters -- as code
Doc : doc-guide : Fix a typo
platform: x86: get rid of a non-existent document
Add the RCU docs to the core-api manual
Documentation: RCU: Add TOC tree hooks
Documentation: RCU: Rename txt files to rst
Documentation: RCU: Convert RCU UP systems to reST
Documentation: RCU: Convert RCU linked list to reST
Documentation: RCU: Convert RCU basic concepts to reST
docs: filesystems: Remove uneeded .rst extension on toctables
scripts/sphinx-pre-install: fix out-of-tree build
docs: zh_CN: submitting-drivers.rst: Remove a duplicated Documentation/
Documentation: PGP: update for newer HW devices
Documentation: Add section about CPU vulnerabilities for Spectre
Documentation: platform: Delete x86-laptop-drivers.txt
docs: Note that :c:func: should no longer be used
...
Diffstat (limited to 'Documentation/security')
| -rw-r--r-- | Documentation/security/keys/core.rst | 16 | ||||
| -rw-r--r-- | Documentation/security/keys/trusted-encrypted.rst | 4 |
2 files changed, 13 insertions, 7 deletions
diff --git a/Documentation/security/keys/core.rst b/Documentation/security/keys/core.rst index 1b3c907980ad..bc561ca95c86 100644 --- a/Documentation/security/keys/core.rst +++ b/Documentation/security/keys/core.rst | |||
| @@ -1687,10 +1687,12 @@ The structure has a number of fields, some of which are mandatory: | |||
| 1687 | attempted key link operation. If there is no match, -EINVAL is returned. | 1687 | attempted key link operation. If there is no match, -EINVAL is returned. |
| 1688 | 1688 | ||
| 1689 | 1689 | ||
| 1690 | * ``int (*asym_eds_op)(struct kernel_pkey_params *params, | 1690 | * ``asym_eds_op`` and ``asym_verify_signature``:: |
| 1691 | const void *in, void *out);`` | 1691 | |
| 1692 | ``int (*asym_verify_signature)(struct kernel_pkey_params *params, | 1692 | int (*asym_eds_op)(struct kernel_pkey_params *params, |
| 1693 | const void *in, const void *in2);`` | 1693 | const void *in, void *out); |
| 1694 | int (*asym_verify_signature)(struct kernel_pkey_params *params, | ||
| 1695 | const void *in, const void *in2); | ||
| 1694 | 1696 | ||
| 1695 | These methods are optional. If provided the first allows a key to be | 1697 | These methods are optional. If provided the first allows a key to be |
| 1696 | used to encrypt, decrypt or sign a blob of data, and the second allows a | 1698 | used to encrypt, decrypt or sign a blob of data, and the second allows a |
| @@ -1755,8 +1757,10 @@ The structure has a number of fields, some of which are mandatory: | |||
| 1755 | required crypto isn't available. | 1757 | required crypto isn't available. |
| 1756 | 1758 | ||
| 1757 | 1759 | ||
| 1758 | * ``int (*asym_query)(const struct kernel_pkey_params *params, | 1760 | * ``asym_query``:: |
| 1759 | struct kernel_pkey_query *info);`` | 1761 | |
| 1762 | int (*asym_query)(const struct kernel_pkey_params *params, | ||
| 1763 | struct kernel_pkey_query *info); | ||
| 1760 | 1764 | ||
| 1761 | This method is optional. If provided it allows information about the | 1765 | This method is optional. If provided it allows information about the |
| 1762 | public or asymmetric key held in the key to be determined. | 1766 | public or asymmetric key held in the key to be determined. |
diff --git a/Documentation/security/keys/trusted-encrypted.rst b/Documentation/security/keys/trusted-encrypted.rst index 7b35fcb58933..50ac8bcd6970 100644 --- a/Documentation/security/keys/trusted-encrypted.rst +++ b/Documentation/security/keys/trusted-encrypted.rst | |||
| @@ -107,12 +107,14 @@ Where:: | |||
| 107 | 107 | ||
| 108 | Examples of trusted and encrypted key usage: | 108 | Examples of trusted and encrypted key usage: |
| 109 | 109 | ||
| 110 | Create and save a trusted key named "kmk" of length 32 bytes:: | 110 | Create and save a trusted key named "kmk" of length 32 bytes. |
| 111 | 111 | ||
| 112 | Note: When using a TPM 2.0 with a persistent key with handle 0x81000001, | 112 | Note: When using a TPM 2.0 with a persistent key with handle 0x81000001, |
| 113 | append 'keyhandle=0x81000001' to statements between quotes, such as | 113 | append 'keyhandle=0x81000001' to statements between quotes, such as |
| 114 | "new 32 keyhandle=0x81000001". | 114 | "new 32 keyhandle=0x81000001". |
| 115 | 115 | ||
| 116 | :: | ||
| 117 | |||
| 116 | $ keyctl add trusted kmk "new 32" @u | 118 | $ keyctl add trusted kmk "new 32" @u |
| 117 | 440502848 | 119 | 440502848 |
| 118 | 120 | ||