mirror of https://github.com/mkerrisk/man-pages
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: srcfix
Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
parent
fe2d2f79c4
commit
6f04243f93
|
@ -10,10 +10,8 @@
|
|||
.\" %%%LICENSE_END
|
||||
.\"
|
||||
.TH KEYRINGS 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH NAME
|
||||
keyrings \- in-kernel key management and retention facility
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH DESCRIPTION
|
||||
The
|
||||
.B keyrings
|
||||
|
@ -51,7 +49,6 @@ This document contains the following sections:
|
|||
- Users.
|
||||
.br
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.P
|
||||
.SS Keys
|
||||
The facility provides the concept of a '\fBkey\fR', where all of the above
|
||||
examples are encapsulated within objects of this type.
|
||||
|
@ -112,7 +109,6 @@ See the
|
|||
manual page for more information.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SS Key types
|
||||
.P
|
||||
The facility provides several basic types of key:
|
||||
.IP "\fBkeyring\fR"
|
||||
Keys of this type are special.
|
||||
|
@ -137,7 +133,6 @@ This is similar to \fBuser\fR but the contents may not be read by userspace.
|
|||
There are more specialised key types available also, but they're not discussed
|
||||
here as they're not intended for normal userspace use.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.P
|
||||
.SS Keyrings
|
||||
As previously mentioned, keyrings are a special type of key that contain links
|
||||
to other keys (which may include other keyrings).
|
||||
|
@ -174,7 +169,6 @@ and
|
|||
manual pages for more information.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SS Anchoring keys
|
||||
.P
|
||||
To prevent a key from being prematurely garbage collected,
|
||||
it must anchored to keep its reference count elevated
|
||||
when it is not in active use by the kernel.
|
||||
|
@ -240,7 +234,6 @@ and
|
|||
manual pages for more information.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SS Possession
|
||||
.P
|
||||
The concept of '\fBpossession\fR' is important to understanding the keyrings
|
||||
security model.
|
||||
Whether a thread possesses a key is determined by the following rules:
|
||||
|
@ -274,7 +267,6 @@ adds a link to the user keyring,
|
|||
thus making the user keyring and anything it contains possessed by default.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SS Access rights
|
||||
.P
|
||||
Each key has the following security-related attributes:
|
||||
.P
|
||||
.RS
|
||||
|
@ -348,7 +340,6 @@ and
|
|||
manual pages for more information.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SS Searching for keys
|
||||
.P
|
||||
One of the key features of this facility is the ability to find a key that it
|
||||
is retaining.
|
||||
The
|
||||
|
@ -392,7 +383,6 @@ and
|
|||
for more information.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SS On-demand key creation
|
||||
.P
|
||||
If a key cannot be found,
|
||||
.BR request_key (2)
|
||||
will, if given a
|
||||
|
@ -423,7 +413,6 @@ and
|
|||
manual pages for more information.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SS Users
|
||||
.P
|
||||
The facility has a number of users and usages, but is not limited to those
|
||||
that already exist.
|
||||
.P
|
||||
|
|
|
@ -10,7 +10,6 @@
|
|||
.\" %%%LICENSE_END
|
||||
.\"
|
||||
.TH "PERSISTENT-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH NAME
|
||||
persistent-keyring \- per-user persistent keyring
|
||||
.SH DESCRIPTION
|
||||
|
@ -57,7 +56,6 @@ to their own UID or, if they have
|
|||
.BR CAP_SETUID ,
|
||||
the persistent keyring
|
||||
corresponding to some other UID in the same user namespace.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH SEE ALSO
|
||||
.ad l
|
||||
.nh
|
||||
|
|
|
@ -10,7 +10,6 @@
|
|||
.\" %%%LICENSE_END
|
||||
.\"
|
||||
.TH "PROCESS-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH NAME
|
||||
process-keyring \- per-process shared keyring
|
||||
.SH DESCRIPTION
|
||||
|
@ -41,7 +40,6 @@ process keyring will be created if the keyring is to be modified, otherwise
|
|||
error
|
||||
.B ENOKEY
|
||||
will be issued.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH SEE ALSO
|
||||
.ad l
|
||||
.nh
|
||||
|
|
|
@ -10,7 +10,6 @@
|
|||
.\" %%%LICENSE_END
|
||||
.\"
|
||||
.TH "SESSION-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH NAME
|
||||
session-keyring \- session shared process keyring
|
||||
.SH DESCRIPTION
|
||||
|
@ -73,7 +72,6 @@ and:
|
|||
.RS
|
||||
\fBkeyctl\fP new_session
|
||||
.RE
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH SEE ALSO
|
||||
.ad l
|
||||
.nh
|
||||
|
|
|
@ -10,7 +10,6 @@
|
|||
.\" %%%LICENSE_END
|
||||
.\"
|
||||
.TH "THREAD-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH NAME
|
||||
thread-keyring \- per-thread keyring
|
||||
.SH DESCRIPTION
|
||||
|
@ -37,7 +36,6 @@ If a thread doesn't have a thread keyring when it is accessed, then the thread
|
|||
keyring will be created if the keyring is to be modified, otherwise error
|
||||
.B ENOKEY
|
||||
will be issued.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH SEE ALSO
|
||||
.ad l
|
||||
.nh
|
||||
|
|
|
@ -10,7 +10,6 @@
|
|||
.\" %%%LICENSE_END
|
||||
.\"
|
||||
.TH "USER-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH NAME
|
||||
user-keyring \- per-user keyring
|
||||
.SH DESCRIPTION
|
||||
|
@ -58,7 +57,6 @@ the
|
|||
should be used instead.
|
||||
.P
|
||||
If a user keyring does not exist when it is accessed, it will be created.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH SEE ALSO
|
||||
.ad l
|
||||
.nh
|
||||
|
|
|
@ -10,7 +10,6 @@
|
|||
.\" %%%LICENSE_END
|
||||
.\"
|
||||
.TH "USER-SESSION-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH NAME
|
||||
user-session-keyring \- per-user default session keyring
|
||||
.SH DESCRIPTION
|
||||
|
@ -64,7 +63,6 @@ example by
|
|||
.BR pam_keyinit (8),
|
||||
rather than relying on the user session keyring -
|
||||
particularly if a process is running as root.
|
||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||
.SH SEE ALSO
|
||||
.ad l
|
||||
.nh
|
||||
|
|
Loading…
Reference in New Issue