KEYS: Add a key type op to permit the key description to be vetted Add a key type operation to permit the key type to vet the description of a new key that key_alloc() is about to allocate. The operation may reject the description if it wishes with an error of its choosing. If it does this, the key will not be allocated. Signed-off-by: David Howells <dhowells@redhat.com> Reviewed-by: Mimi Zohar <zohar@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org>

commit: b9fffa3877a3ebbe0a5ad5a247358e2f7df15b24 [log] [tgz]
author: David Howells <dhowells@redhat.com> Mon Mar 07 15:05:59 2011 +0000
committer: James Morris <jmorris@namei.org> Tue Mar 08 11:17:15 2011 +1100
tree: 0f58a92c2616b3663f88935290d32a4c90d57025
parent: 633e804e89464d3875e59de1959a53f9041d3094 [diff] [blame]
diff --git a/include/linux/key-type.h b/include/linux/key-type.h
index 65833d4..fc8525e8 100644
--- a/include/linux/key-type.h
+++ b/include/linux/key-type.h

@@ -41,6 +41,9 @@
 	 */
 	size_t def_datalen;
 
+	/* vet a description */
+	int (*vet_description)(const char *description);
+
 	/* instantiate a key of this type
 	 * - this method should call key_payload_reserve() to determine if the
 	 *   user's quota will hold the payload
commit	b9fffa3877a3ebbe0a5ad5a247358e2f7df15b24	[log] [tgz]
author	David Howells <dhowells@redhat.com>	Mon Mar 07 15:05:59 2011 +0000
committer	James Morris <jmorris@namei.org>	Tue Mar 08 11:17:15 2011 +1100
tree	0f58a92c2616b3663f88935290d32a4c90d57025
parent	633e804e89464d3875e59de1959a53f9041d3094 [diff] [blame]