man-pages/man7/process-keyring.7

.\"
.\" Copyright (C) 2014 Red Hat, Inc. All Rights Reserved.
.\" Written by David Howells (dhowells@redhat.com)
.\"
.\" %%%LICENSE_START(GPLv2+_SW_ONEPARA)
.\" This program is free software; you can redistribute it and/or
.\" modify it under the terms of the GNU General Public Licence
.\" as published by the Free Software Foundation; either version
.\" 2 of the Licence, or (at your option) any later version.
.\" %%%LICENSE_END
.\"
.TH "PROCESS-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
.SH NAME
process-keyring \- per-process shared keyring
.SH DESCRIPTION
The process keyring is a keyring used to anchor keys on behalf of a process.
It is created only when a process requests it.
.P
A special serial number value,
.BR KEY_SPEC_PROCESS_KEYRING ,
is defined that
can be used in lieu of the calling process's process keyring's actual serial
number.
.P
From the keyctl utility, '\fB@p\fP' can be used instead of a numeric key ID in
much the same way, but as keyctl is a program run after forking, this is of no
utility.
.P
A process's process keyring is inherited across
.BR clone (2)
with
.B CLONE_THREAD
and is cleared by
.BR execve (2).
The process keyring will be destroyed when the last
thread that refers to it exits.
.P
If a process doesn't have a process keyring when it is accessed, then the
process keyring will be created if the keyring is to be modified, otherwise
error
.B ENOKEY
will be issued.
.SH SEE ALSO
.ad l
.nh
.BR keyctl (1),
.BR keyctl (3),
.BR keyrings (7),
.BR persistent\-keyring (7),
.BR process\-keyring (7),
.BR session\-keyring (7),
.BR thread\-keyring (7),
.BR user\-keyring (7),
.BR user\-session\-keyring (7)
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`.\"`
			`.\" Copyright (C) 2014 Red Hat, Inc. All Rights Reserved.`
			`.\" Written by David Howells (dhowells@redhat.com)`
			`.\"`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: srcfix: add license marker tags Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-02 11:24:22 +00:00			`.\" %%%LICENSE_START(GPLv2+_SW_ONEPARA)`
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`.\" This program is free software; you can redistribute it and/or`
			`.\" modify it under the terms of the GNU General Public Licence`
			`.\" as published by the Free Software Foundation; either version`
			`.\" 2 of the Licence, or (at your option) any later version.`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: srcfix: add license marker tags Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-02 11:24:22 +00:00			`.\" %%%LICENSE_END`
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`.\"`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: Fix .TH lines for follow man-pages norms Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 17:16:43 +00:00			`.TH "PROCESS-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"`
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`.SH NAME`
persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: Make NAME lines consistent The names of the files use hyphens, not underscores. The word following '\-' should start with lower case (unless English conventions dictate otherwise). Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 17:26:22 +00:00			`process-keyring \- per-process shared keyring`
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`.SH DESCRIPTION`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: ffix + pages xref fixes Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 18:08:09 +00:00			`The process keyring is a keyring used to anchor keys on behalf of a process.`
keyrings.7, process-keyring.7, thread-keyring.7: wfix Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 20:58:07 +00:00			`It is created only when a process requests it.`
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`.P`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: ffix + pages xref fixes Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 18:08:09 +00:00			`A special serial number value,`
			`.BR KEY_SPEC_PROCESS_KEYRING ,`
			`is defined that`
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`can be used in lieu of the calling process's process keyring's actual serial`
			`number.`
			`.P`
			`From the keyctl utility, '\fB@p\fP' can be used instead of a numeric key ID in`
			`much the same way, but as keyctl is a program run after forking, this is of no`
			`utility.`
			`.P`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: ffix + pages xref fixes Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 18:08:09 +00:00			`A process's process keyring is inherited across`
			`.BR clone (2)`
			`with`
			`.B CLONE_THREAD`
			`and is cleared by`
			`.BR execve (2).`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: Rewrap source lines Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 17:45:14 +00:00			`The process keyring will be destroyed when the last`
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`thread that refers to it exits.`
			`.P`
			`If a process doesn't have a process keyring when it is accessed, then the`
			`process keyring will be created if the keyring is to be modified, otherwise`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: ffix + pages xref fixes Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 18:08:09 +00:00			`error`
			`.B ENOKEY`
			`will be issued.`
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`.SH SEE ALSO`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: Fix SEE ALSO entries * Prevent hyphenation * Order entries alphabetically Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 17:12:21 +00:00			`.ad l`
			`.nh`
process-keyring.7: New page adopted from keyutils Since this page documents kernel-user-space interfaces, it makes sense to have it as part of man-pages, rather than the keyutils package. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 15:44:43 +00:00			`.BR keyctl (1),`
			`.BR keyctl (3),`
			`.BR keyrings (7),`
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: Fix SEE ALSO entries * Prevent hyphenation * Order entries alphabetically Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com> 2016-11-01 17:12:21 +00:00			`.BR persistent\-keyring (7),`
			`.BR process\-keyring (7),`
			`.BR session\-keyring (7),`
			`.BR thread\-keyring (7),`
			`.BR user\-keyring (7),`
			`.BR user\-session\-keyring (7)`