diff options
| author | David Howells <dhowells@redhat.com> | 2009-09-02 04:14:00 -0400 |
|---|---|---|
| committer | James Morris <jmorris@namei.org> | 2009-09-02 07:29:11 -0400 |
| commit | 5d135440faf7db8d566de0c6fab36b16cf9cfc3b (patch) | |
| tree | d9c022e73ed51dfe5729fde9a97150cb64b68196 /security/keys/key.c | |
| parent | f041ae2f99d49adc914153a34a2d0e14e4389d90 (diff) | |
KEYS: Add garbage collection for dead, revoked and expired keys. [try #6]
Add garbage collection for dead, revoked and expired keys. This involved
erasing all links to such keys from keyrings that point to them. At that
point, the key will be deleted in the normal manner.
Keyrings from which garbage collection occurs are shrunk and their quota
consumption reduced as appropriate.
Dead keys (for which the key type has been removed) will be garbage collected
immediately.
Revoked and expired keys will hang around for a number of seconds, as set in
/proc/sys/kernel/keys/gc_delay before being automatically removed. The default
is 5 minutes.
Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/keys/key.c')
| -rw-r--r-- | security/keys/key.c | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/security/keys/key.c b/security/keys/key.c index bd9d2670e9c4..08531ad0f252 100644 --- a/security/keys/key.c +++ b/security/keys/key.c | |||
| @@ -500,6 +500,7 @@ int key_negate_and_link(struct key *key, | |||
| 500 | set_bit(KEY_FLAG_INSTANTIATED, &key->flags); | 500 | set_bit(KEY_FLAG_INSTANTIATED, &key->flags); |
| 501 | now = current_kernel_time(); | 501 | now = current_kernel_time(); |
| 502 | key->expiry = now.tv_sec + timeout; | 502 | key->expiry = now.tv_sec + timeout; |
| 503 | key_schedule_gc(key->expiry); | ||
| 503 | 504 | ||
| 504 | if (test_and_clear_bit(KEY_FLAG_USER_CONSTRUCT, &key->flags)) | 505 | if (test_and_clear_bit(KEY_FLAG_USER_CONSTRUCT, &key->flags)) |
| 505 | awaken = 1; | 506 | awaken = 1; |
| @@ -888,6 +889,9 @@ EXPORT_SYMBOL(key_update); | |||
| 888 | */ | 889 | */ |
| 889 | void key_revoke(struct key *key) | 890 | void key_revoke(struct key *key) |
| 890 | { | 891 | { |
| 892 | struct timespec now; | ||
| 893 | time_t time; | ||
| 894 | |||
| 891 | key_check(key); | 895 | key_check(key); |
| 892 | 896 | ||
| 893 | /* make sure no one's trying to change or use the key when we mark it | 897 | /* make sure no one's trying to change or use the key when we mark it |
| @@ -900,6 +904,14 @@ void key_revoke(struct key *key) | |||
| 900 | key->type->revoke) | 904 | key->type->revoke) |
| 901 | key->type->revoke(key); | 905 | key->type->revoke(key); |
| 902 | 906 | ||
| 907 | /* set the death time to no more than the expiry time */ | ||
| 908 | now = current_kernel_time(); | ||
| 909 | time = now.tv_sec; | ||
| 910 | if (key->revoked_at == 0 || key->revoked_at > time) { | ||
| 911 | key->revoked_at = time; | ||
| 912 | key_schedule_gc(key->revoked_at); | ||
| 913 | } | ||
| 914 | |||
| 903 | up_write(&key->sem); | 915 | up_write(&key->sem); |
| 904 | 916 | ||
| 905 | } /* end key_revoke() */ | 917 | } /* end key_revoke() */ |
| @@ -984,6 +996,8 @@ void unregister_key_type(struct key_type *ktype) | |||
| 984 | spin_unlock(&key_serial_lock); | 996 | spin_unlock(&key_serial_lock); |
| 985 | up_write(&key_types_sem); | 997 | up_write(&key_types_sem); |
| 986 | 998 | ||
| 999 | key_schedule_gc(0); | ||
| 1000 | |||
| 987 | } /* end unregister_key_type() */ | 1001 | } /* end unregister_key_type() */ |
| 988 | 1002 | ||
| 989 | EXPORT_SYMBOL(unregister_key_type); | 1003 | EXPORT_SYMBOL(unregister_key_type); |