diff options
| author | David Howells <dhowells@redhat.com> | 2011-03-07 10:05:59 -0500 |
|---|---|---|
| committer | James Morris <jmorris@namei.org> | 2011-03-07 19:17:15 -0500 |
| commit | b9fffa3877a3ebbe0a5ad5a247358e2f7df15b24 (patch) | |
| tree | 0f58a92c2616b3663f88935290d32a4c90d57025 /Documentation/keys.txt | |
| parent | 633e804e89464d3875e59de1959a53f9041d3094 (diff) | |
KEYS: Add a key type op to permit the key description to be vetted
Add a key type operation to permit the key type to vet the description of a new
key that key_alloc() is about to allocate. The operation may reject the
description if it wishes with an error of its choosing. If it does this, the
key will not be allocated.
Signed-off-by: David Howells <dhowells@redhat.com>
Reviewed-by: Mimi Zohar <zohar@us.ibm.com>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'Documentation/keys.txt')
| -rw-r--r-- | Documentation/keys.txt | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/Documentation/keys.txt b/Documentation/keys.txt index e4dbbdb1bd96..cf68d1fed95d 100644 --- a/Documentation/keys.txt +++ b/Documentation/keys.txt | |||
| @@ -1062,6 +1062,13 @@ The structure has a number of fields, some of which are mandatory: | |||
| 1062 | viable. | 1062 | viable. |
| 1063 | 1063 | ||
| 1064 | 1064 | ||
| 1065 | (*) int (*vet_description)(const char *description); | ||
| 1066 | |||
| 1067 | This optional method is called to vet a key description. If the key type | ||
| 1068 | doesn't approve of the key description, it may return an error, otherwise | ||
| 1069 | it should return 0. | ||
| 1070 | |||
| 1071 | |||
| 1065 | (*) int (*instantiate)(struct key *key, const void *data, size_t datalen); | 1072 | (*) int (*instantiate)(struct key *key, const void *data, size_t datalen); |
| 1066 | 1073 | ||
| 1067 | This method is called to attach a payload to a key during construction. | 1074 | This method is called to attach a payload to a key during construction. |