2 files changed, 19 insertions, 0 deletions
diff --git a/Documentation/security/00-INDEX b/Documentation/security/00-INDEX
index eeed1de546d4..414235c1fcfc 100644
--- a/Documentation/security/00-INDEX
+++ b/Documentation/security/00-INDEX
@@ -12,6 +12,8 @@ apparmor.txt
        - documentation on the AppArmor security extension.
 credentials.txt
        - documentation about credentials in Linux.
+keys-ecryptfs.txt
+        - description of the encryption keys for the ecryptfs filesystem.
 keys-request-key.txt
        - description of the kernel key request service.
 keys-trusted-encrypted.txt
diff --git a/Documentation/security/keys.txt b/Documentation/security/keys.txt
index 7d9ca92022d8..7b4145d00452 100644
--- a/Documentation/security/keys.txt
+++ b/Documentation/security/keys.txt
@@ -994,6 +994,23 @@ payload contents" for more information.
    reference pointer if successful.
+(*) A keyring can be created by:
+        struct key *keyring_alloc(const char *description, uid_t uid, gid_t gid,
+                                  const struct cred *cred,
+                                  key_perm_t perm,
+                                  unsigned long flags,
+                                  struct key *dest);
+    This creates a keyring with the given attributes and returns it.  If dest
+    is not NULL, the new keyring will be linked into the keyring to which it
+    points.  No permission checks are made upon the destination keyring.
+    Error EDQUOT can be returned if the keyring would overload the quota (pass
+    KEY_ALLOC_NOT_IN_QUOTA in flags if the keyring shouldn't be accounted
+    towards the user's quota).  Error ENOMEM can also be returned.
 (*) To check the validity of a key, this function can be called:
        int validate_key(struct key *key);

diff --git a/Documentation/security/00-INDEX b/Documentation/security/00-INDEX index eeed1de546d4..414235c1fcfc 100644 --- a/Documentation/security/00-INDEX +++ b/Documentation/security/00-INDEX
@@ -12,6 +12,8 @@ apparmor.txt
12	- documentation on the AppArmor security extension.	12	- documentation on the AppArmor security extension.
13	credentials.txt	13	credentials.txt
14	- documentation about credentials in Linux.	14	- documentation about credentials in Linux.
		15	keys-ecryptfs.txt
		16	- description of the encryption keys for the ecryptfs filesystem.
15	keys-request-key.txt	17	keys-request-key.txt
16	- description of the kernel key request service.	18	- description of the kernel key request service.
17	keys-trusted-encrypted.txt	19	keys-trusted-encrypted.txt


diff --git a/Documentation/security/keys.txt b/Documentation/security/keys.txt index 7d9ca92022d8..7b4145d00452 100644 --- a/Documentation/security/keys.txt +++ b/Documentation/security/keys.txt
@@ -994,6 +994,23 @@ payload contents" for more information.
994	reference pointer if successful.	994	reference pointer if successful.
995		995
996		996
		997	(*) A keyring can be created by:
		998
		999	struct key keyring_alloc(const char description, uid_t uid, gid_t gid,
		1000	const struct cred *cred,
		1001	key_perm_t perm,
		1002	unsigned long flags,
		1003	struct key *dest);
		1004
		1005	This creates a keyring with the given attributes and returns it. If dest
		1006	is not NULL, the new keyring will be linked into the keyring to which it
		1007	points. No permission checks are made upon the destination keyring.
		1008
		1009	Error EDQUOT can be returned if the keyring would overload the quota (pass
		1010	KEY_ALLOC_NOT_IN_QUOTA in flags if the keyring shouldn't be accounted
		1011	towards the user's quota). Error ENOMEM can also be returned.
		1012
		1013
997	(*) To check the validity of a key, this function can be called:	1014	(*) To check the validity of a key, this function can be called:
998		1015
999	int validate_key(struct key *key);	1016	int validate_key(struct key *key);