]> www.pilppa.org Git - linux-2.6-omap-h63xx.git/blobdiff - Documentation/keys.txt
projects / linux-2.6-omap-h63xx.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
keys: add keyctl function to get a security label
[linux-2.6-omap-h63xx.git] / Documentation / keys.txt
diff --git a/Documentation/keys.txt b/Documentation/keys.txt
index b82d38de8b89667c0a3a3cc59f47cd26b3e23bc9..be424b02437ddf975bc7d97512e05950d6083915 100644 (file)
--- a/Documentation/keys.txt
+++ b/Documentation/keys.txt
@@ -711,6 +711,27 @@ The keyctl syscall functions are:
      The assumed authoritative key is inherited across fork and exec.
 
 
+ (*) Get the LSM security context attached to a key.
+
+       long keyctl(KEYCTL_GET_SECURITY, key_serial_t key, char *buffer,
+                   size_t buflen)
+
+     This function returns a string that represents the LSM security context
+     attached to a key in the buffer provided.
+
+     Unless there's an error, it always returns the amount of data it could
+     produce, even if that's too big for the buffer, but it won't copy more
+     than requested to userspace. If the buffer pointer is NULL then no copy
+     will take place.
+
+     A NUL character is included at the end of the string if the buffer is
+     sufficiently big.  This is included in the returned count.  If no LSM is
+     in force then an empty string will be returned.
+
+     A process must have view permission on the key for this function to be
+     successful.
+
+
 ===============
 KERNEL SERVICES
 ===============
Unnamed repository; edit this file 'description' to name the repository.