3 files changed, 127 insertions, 86 deletions
diff --git a/include/keys/rxrpc-type.h b/include/keys/rxrpc-type.h
index e2ee73aef0ee..4ea429b18750 100644
--- a/include/keys/rxrpc-type.h
+++ b/include/keys/rxrpc-type.h
@@ -19,4 +19,6 @@
 */
 extern struct key_type key_type_rxrpc;
+extern struct key *rxrpc_get_null_key(const char *);
 #endif /* _KEYS_USER_TYPE_H */
diff --git a/include/linux/key-type.h b/include/linux/key-type.h
new file mode 100644
index 000000000000..65833d4d5998
--- /dev/null
+++ b/include/linux/key-type.h
@@ -0,0 +1,112 @@
+/* Definitions for key type implementations
+ *
+ * Copyright (C) 2007 Red Hat, Inc. All Rights Reserved.
+ * Written by David Howells (dhowells@redhat.com)
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU General Public Licence
+ * as published by the Free Software Foundation; either version
+ * 2 of the Licence, or (at your option) any later version.
+ */
+#ifndef _LINUX_KEY_TYPE_H
+#define _LINUX_KEY_TYPE_H
+#include <linux/key.h>
+#ifdef CONFIG_KEYS
+/*
+ * key under-construction record
+ * - passed to the request_key actor if supplied
+ */
+struct key_construction {
+        struct key      *key;   /* key being constructed */
+        struct key      *authkey;/* authorisation for key being constructed */
+};
+typedef int (*request_key_actor_t)(struct key_construction *key,
+                                   const char *op, void *aux);
+/*
+ * kernel managed key type definition
+ */
+struct key_type {
+        /* name of the type */
+        const char *name;
+        /* default payload length for quota precalculation (optional)
+         * - this can be used instead of calling key_payload_reserve(), that
+         *   function only needs to be called if the real datalen is different
+         */
+        size_t def_datalen;
+        /* instantiate a key of this type
+         * - this method should call key_payload_reserve() to determine if the
+         *   user's quota will hold the payload
+         */
+        int (*instantiate)(struct key *key, const void *data, size_t datalen);
+        /* update a key of this type (optional)
+         * - this method should call key_payload_reserve() to recalculate the
+         *   quota consumption
+         * - the key must be locked against read when modifying
+         */
+        int (*update)(struct key *key, const void *data, size_t datalen);
+        /* match a key against a description */
+        int (*match)(const struct key *key, const void *desc);
+        /* clear some of the data from a key on revokation (optional)
+         * - the key's semaphore will be write-locked by the caller
+         */
+        void (*revoke)(struct key *key);
+        /* clear the data from a key (optional) */
+        void (*destroy)(struct key *key);
+        /* describe a key */
+        void (*describe)(const struct key *key, struct seq_file *p);
+        /* read a key's data (optional)
+         * - permission checks will be done by the caller
+         * - the key's semaphore will be readlocked by the caller
+         * - should return the amount of data that could be read, no matter how
+         *   much is copied into the buffer
+         * - shouldn't do the copy if the buffer is NULL
+         */
+        long (*read)(const struct key *key, char __user *buffer, size_t buflen);
+        /* handle request_key() for this type instead of invoking
+         * /sbin/request-key (optional)
+         * - key is the key to instantiate
+         * - authkey is the authority to assume when instantiating this key
+         * - op is the operation to be done, usually "create"
+         * - the call must not return until the instantiation process has run
+         *   its course
+         */
+        request_key_actor_t request_key;
+        /* internal fields */
+        struct list_head        link;           /* link in types list */
+};
+extern struct key_type key_type_keyring;
+extern int register_key_type(struct key_type *ktype);
+extern void unregister_key_type(struct key_type *ktype);
+extern int key_payload_reserve(struct key *key, size_t datalen);
+extern int key_instantiate_and_link(struct key *key,
+                                    const void *data,
+                                    size_t datalen,
+                                    struct key *keyring,
+                                    struct key *instkey);
+extern int key_negate_and_link(struct key *key,
+                               unsigned timeout,
+                               struct key *keyring,
+                               struct key *instkey);
+extern void complete_request_key(struct key_construction *cons, int error);
+#endif /* CONFIG_KEYS */
+#endif /* _LINUX_KEY_TYPE_H */
diff --git a/include/linux/key.h b/include/linux/key.h
index a9220e75782e..fcdbd5ed227b 100644
--- a/include/linux/key.h
+++ b/include/linux/key.h
@@ -1,6 +1,6 @@
-/* key.h: authentication token and access key management
+/* Authentication token and access key management
 *
- * Copyright (C) 2004 Red Hat, Inc. All Rights Reserved.
+ * Copyright (C) 2004, 2007 Red Hat, Inc. All Rights Reserved.
 * Written by David Howells (dhowells@redhat.com)
 *
 * This program is free software; you can redistribute it and/or
@@ -175,78 +175,6 @@ struct key {
        } payload;
 };
-/*****************************************************************************/
-/*
- * kernel managed key type definition
- */
-typedef int (*request_key_actor_t)(struct key *key, struct key *authkey,
-                                   const char *op, void *aux);
-struct key_type {
-        /* name of the type */
-        const char *name;
-        /* default payload length for quota precalculation (optional)
-         * - this can be used instead of calling key_payload_reserve(), that
-         *   function only needs to be called if the real datalen is different
-         */
-        size_t def_datalen;
-        /* instantiate a key of this type
-         * - this method should call key_payload_reserve() to determine if the
-         *   user's quota will hold the payload
-         */
-        int (*instantiate)(struct key *key, const void *data, size_t datalen);
-        /* update a key of this type (optional)
-         * - this method should call key_payload_reserve() to recalculate the
-         *   quota consumption
-         * - the key must be locked against read when modifying
-         */
-        int (*update)(struct key *key, const void *data, size_t datalen);
-        /* match a key against a description */
-        int (*match)(const struct key *key, const void *desc);
-        /* clear some of the data from a key on revokation (optional)
-         * - the key's semaphore will be write-locked by the caller
-         */
-        void (*revoke)(struct key *key);
-        /* clear the data from a key (optional) */
-        void (*destroy)(struct key *key);
-        /* describe a key */
-        void (*describe)(const struct key *key, struct seq_file *p);
-        /* read a key's data (optional)
-         * - permission checks will be done by the caller
-         * - the key's semaphore will be readlocked by the caller
-         * - should return the amount of data that could be read, no matter how
-         *   much is copied into the buffer
-         * - shouldn't do the copy if the buffer is NULL
-         */
-        long (*read)(const struct key *key, char __user *buffer, size_t buflen);
-        /* handle request_key() for this type instead of invoking
-         * /sbin/request-key (optional)
-         * - key is the key to instantiate
-         * - authkey is the authority to assume when instantiating this key
-         * - op is the operation to be done, usually "create"
-         * - the call must not return until the instantiation process has run
-         *   its course
-         */
-        request_key_actor_t request_key;
-        /* internal fields */
-        struct list_head        link;           /* link in types list */
-};
-extern struct key_type key_type_keyring;
-extern int register_key_type(struct key_type *ktype);
-extern void unregister_key_type(struct key_type *ktype);
 extern struct key *key_alloc(struct key_type *type,
                             const char *desc,
                             uid_t uid, gid_t gid,
@@ -259,16 +187,6 @@ extern struct key *key_alloc(struct key_type *type,
 #define KEY_ALLOC_QUOTA_OVERRUN 0x0001  /* add to quota, permit even if overrun */
 #define KEY_ALLOC_NOT_IN_QUOTA  0x0002  /* not in quota */
-extern int key_payload_reserve(struct key *key, size_t datalen);
-extern int key_instantiate_and_link(struct key *key,
-                                    const void *data,
-                                    size_t datalen,
-                                    struct key *keyring,
-                                    struct key *instkey);
-extern int key_negate_and_link(struct key *key,
-                               unsigned timeout,
-                               struct key *keyring,
-                               struct key *instkey);
 extern void key_revoke(struct key *key);
 extern void key_put(struct key *key);
@@ -293,6 +211,17 @@ extern struct key *request_key_with_auxdata(struct key_type *type,
                                            const char *callout_info,
                                            void *aux);
+extern struct key *request_key_async(struct key_type *type,
+                                     const char *description,
+                                     const char *callout_info);
+extern struct key *request_key_async_with_auxdata(struct key_type *type,
+                                                  const char *description,
+                                                  const char *callout_info,
+                                                  void *aux);
+extern int wait_for_key_construction(struct key *key, bool intr);
 extern int key_validate(struct key *key);
 extern key_ref_t key_create_or_update(key_ref_t keyring,
@@ -328,8 +257,6 @@ extern int keyring_add_key(struct key *keyring,
 extern struct key *key_lookup(key_serial_t id);
-extern void keyring_replace_payload(struct key *key, void *replacement);
 #define key_serial(key) ((key) ? (key)->serial : 0)
 /*

diff --git a/include/keys/rxrpc-type.h b/include/keys/rxrpc-type.h index e2ee73aef0ee..4ea429b18750 100644 --- a/include/keys/rxrpc-type.h +++ b/include/keys/rxrpc-type.h
@@ -19,4 +19,6 @@
19	*/	19	*/
20	extern struct key_type key_type_rxrpc;	20	extern struct key_type key_type_rxrpc;
21		21
		22	extern struct key rxrpc_get_null_key(const char );
		23
22	#endif /* _KEYS_USER_TYPE_H */	24	#endif /* _KEYS_USER_TYPE_H */


diff --git a/include/linux/key-type.h b/include/linux/key-type.h new file mode 100644 index 000000000000..65833d4d5998 --- /dev/null +++ b/include/linux/key-type.h
@@ -0,0 +1,112 @@
		1	/* Definitions for key type implementations
		2	*
		3	* Copyright (C) 2007 Red Hat, Inc. All Rights Reserved.
		4	* Written by David Howells (dhowells@redhat.com)
		5	*
		6	* This program is free software; you can redistribute it and/or
		7	* modify it under the terms of the GNU General Public Licence
		8	* as published by the Free Software Foundation; either version
		9	* 2 of the Licence, or (at your option) any later version.
		10	*/
		11
		12	#ifndef _LINUX_KEY_TYPE_H
		13	#define _LINUX_KEY_TYPE_H
		14
		15	#include <linux/key.h>
		16
		17	#ifdef CONFIG_KEYS
		18
		19	/*
		20	* key under-construction record
		21	* - passed to the request_key actor if supplied
		22	*/
		23	struct key_construction {
		24	struct key key; / key being constructed */
		25	struct key authkey;/ authorisation for key being constructed */
		26	};
		27
		28	typedef int (request_key_actor_t)(struct key_construction key,
		29	const char op, void aux);
		30
		31	/*
		32	* kernel managed key type definition
		33	*/
		34	struct key_type {
		35	/* name of the type */
		36	const char *name;
		37
		38	/* default payload length for quota precalculation (optional)
		39	* - this can be used instead of calling key_payload_reserve(), that
		40	* function only needs to be called if the real datalen is different
		41	*/
		42	size_t def_datalen;
		43
		44	/* instantiate a key of this type
		45	* - this method should call key_payload_reserve() to determine if the
		46	* user's quota will hold the payload
		47	*/
		48	int (instantiate)(struct key key, const void *data, size_t datalen);
		49
		50	/* update a key of this type (optional)
		51	* - this method should call key_payload_reserve() to recalculate the
		52	* quota consumption
		53	* - the key must be locked against read when modifying
		54	*/
		55	int (update)(struct key key, const void *data, size_t datalen);
		56
		57	/* match a key against a description */
		58	int (match)(const struct key key, const void *desc);
		59
		60	/* clear some of the data from a key on revokation (optional)
		61	* - the key's semaphore will be write-locked by the caller
		62	*/
		63	void (revoke)(struct key key);
		64
		65	/* clear the data from a key (optional) */
		66	void (destroy)(struct key key);
		67
		68	/* describe a key */
		69	void (describe)(const struct key key, struct seq_file *p);
		70
		71	/* read a key's data (optional)
		72	* - permission checks will be done by the caller
		73	* - the key's semaphore will be readlocked by the caller
		74	* - should return the amount of data that could be read, no matter how
		75	* much is copied into the buffer
		76	* - shouldn't do the copy if the buffer is NULL
		77	*/
		78	long (read)(const struct key key, char __user *buffer, size_t buflen);
		79
		80	/* handle request_key() for this type instead of invoking
		81	* /sbin/request-key (optional)
		82	* - key is the key to instantiate
		83	* - authkey is the authority to assume when instantiating this key
		84	* - op is the operation to be done, usually "create"
		85	* - the call must not return until the instantiation process has run
		86	* its course
		87	*/
		88	request_key_actor_t request_key;
		89
		90	/* internal fields */
		91	struct list_head link; /* link in types list */
		92	};
		93
		94	extern struct key_type key_type_keyring;
		95
		96	extern int register_key_type(struct key_type *ktype);
		97	extern void unregister_key_type(struct key_type *ktype);
		98
		99	extern int key_payload_reserve(struct key *key, size_t datalen);
		100	extern int key_instantiate_and_link(struct key *key,
		101	const void *data,
		102	size_t datalen,
		103	struct key *keyring,
		104	struct key *instkey);
		105	extern int key_negate_and_link(struct key *key,
		106	unsigned timeout,
		107	struct key *keyring,
		108	struct key *instkey);
		109	extern void complete_request_key(struct key_construction *cons, int error);
		110
		111	#endif /* CONFIG_KEYS */
		112	#endif /* _LINUX_KEY_TYPE_H */


diff --git a/include/linux/key.h b/include/linux/key.h index a9220e75782e..fcdbd5ed227b 100644 --- a/include/linux/key.h +++ b/include/linux/key.h
@@ -1,6 +1,6 @@
1	/* key.h: authentication token and access key management	1	/* Authentication token and access key management
2	*	2	*
3	* Copyright (C) 2004 Red Hat, Inc. All Rights Reserved.	3	* Copyright (C) 2004, 2007 Red Hat, Inc. All Rights Reserved.
4	* Written by David Howells (dhowells@redhat.com)	4	* Written by David Howells (dhowells@redhat.com)
5	*	5	*
6	* This program is free software; you can redistribute it and/or	6	* This program is free software; you can redistribute it and/or
@@ -175,78 +175,6 @@ struct key {
175	} payload;	175	} payload;
176	};	176	};
177		177
178	/*****************************************************************************/
179	/*
180	* kernel managed key type definition
181	*/
182	typedef int (request_key_actor_t)(struct key key, struct key *authkey,
183	const char op, void aux);
184
185	struct key_type {
186	/* name of the type */
187	const char *name;
188
189	/* default payload length for quota precalculation (optional)
190	* - this can be used instead of calling key_payload_reserve(), that
191	* function only needs to be called if the real datalen is different
192	*/
193	size_t def_datalen;
194
195	/* instantiate a key of this type
196	* - this method should call key_payload_reserve() to determine if the
197	* user's quota will hold the payload
198	*/
199	int (instantiate)(struct key key, const void *data, size_t datalen);
200
201	/* update a key of this type (optional)
202	* - this method should call key_payload_reserve() to recalculate the
203	* quota consumption
204	* - the key must be locked against read when modifying
205	*/
206	int (update)(struct key key, const void *data, size_t datalen);
207
208	/* match a key against a description */
209	int (match)(const struct key key, const void *desc);
210
211	/* clear some of the data from a key on revokation (optional)
212	* - the key's semaphore will be write-locked by the caller
213	*/
214	void (revoke)(struct key key);
215
216	/* clear the data from a key (optional) */
217	void (destroy)(struct key key);
218
219	/* describe a key */
220	void (describe)(const struct key key, struct seq_file *p);
221
222	/* read a key's data (optional)
223	* - permission checks will be done by the caller
224	* - the key's semaphore will be readlocked by the caller
225	* - should return the amount of data that could be read, no matter how
226	* much is copied into the buffer
227	* - shouldn't do the copy if the buffer is NULL
228	*/
229	long (read)(const struct key key, char __user *buffer, size_t buflen);
230
231	/* handle request_key() for this type instead of invoking
232	* /sbin/request-key (optional)
233	* - key is the key to instantiate
234	* - authkey is the authority to assume when instantiating this key
235	* - op is the operation to be done, usually "create"
236	* - the call must not return until the instantiation process has run
237	* its course
238	*/
239	request_key_actor_t request_key;
240
241	/* internal fields */
242	struct list_head link; /* link in types list */
243	};
244
245	extern struct key_type key_type_keyring;
246
247	extern int register_key_type(struct key_type *ktype);
248	extern void unregister_key_type(struct key_type *ktype);
249
250	extern struct key key_alloc(struct key_type type,	178	extern struct key key_alloc(struct key_type type,
251	const char *desc,	179	const char *desc,
252	uid_t uid, gid_t gid,	180	uid_t uid, gid_t gid,
@@ -259,16 +187,6 @@ extern struct key key_alloc(struct key_type type,
259	#define KEY_ALLOC_QUOTA_OVERRUN 0x0001 /* add to quota, permit even if overrun */	187	#define KEY_ALLOC_QUOTA_OVERRUN 0x0001 /* add to quota, permit even if overrun */
260	#define KEY_ALLOC_NOT_IN_QUOTA 0x0002 /* not in quota */	188	#define KEY_ALLOC_NOT_IN_QUOTA 0x0002 /* not in quota */
261		189
262	extern int key_payload_reserve(struct key *key, size_t datalen);
263	extern int key_instantiate_and_link(struct key *key,
264	const void *data,
265	size_t datalen,
266	struct key *keyring,
267	struct key *instkey);
268	extern int key_negate_and_link(struct key *key,
269	unsigned timeout,
270	struct key *keyring,
271	struct key *instkey);
272	extern void key_revoke(struct key *key);	190	extern void key_revoke(struct key *key);
273	extern void key_put(struct key *key);	191	extern void key_put(struct key *key);
274		192
@@ -293,6 +211,17 @@ extern struct key request_key_with_auxdata(struct key_type type,
293	const char *callout_info,	211	const char *callout_info,
294	void *aux);	212	void *aux);
295		213
		214	extern struct key request_key_async(struct key_type type,
		215	const char *description,
		216	const char *callout_info);
		217
		218	extern struct key request_key_async_with_auxdata(struct key_type type,
		219	const char *description,
		220	const char *callout_info,
		221	void *aux);
		222
		223	extern int wait_for_key_construction(struct key *key, bool intr);
		224
296	extern int key_validate(struct key *key);	225	extern int key_validate(struct key *key);
297		226
298	extern key_ref_t key_create_or_update(key_ref_t keyring,	227	extern key_ref_t key_create_or_update(key_ref_t keyring,
@@ -328,8 +257,6 @@ extern int keyring_add_key(struct key *keyring,
328		257
329	extern struct key *key_lookup(key_serial_t id);	258	extern struct key *key_lookup(key_serial_t id);
330		259
331	extern void keyring_replace_payload(struct key key, void replacement);
332
333	#define key_serial(key) ((key) ? (key)->serial : 0)	260	#define key_serial(key) ((key) ? (key)->serial : 0)
334		261
335	/*	262	/*