mirror of https://github.com/mkerrisk/man-pages
keyrings.7, persistent-keyring.7, process-keyring.7, session-keyring.7, thread-keyring.7, user-keyring.7, user-session-keyring.7: srcfix
Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
parent
fe2d2f79c4
commit
6f04243f93
|
@ -10,10 +10,8 @@
|
||||||
.\" %%%LICENSE_END
|
.\" %%%LICENSE_END
|
||||||
.\"
|
.\"
|
||||||
.TH KEYRINGS 7 2016-11-01 Linux "Linux Programmer's Manual"
|
.TH KEYRINGS 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH NAME
|
.SH NAME
|
||||||
keyrings \- in-kernel key management and retention facility
|
keyrings \- in-kernel key management and retention facility
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH DESCRIPTION
|
.SH DESCRIPTION
|
||||||
The
|
The
|
||||||
.B keyrings
|
.B keyrings
|
||||||
|
@ -51,7 +49,6 @@ This document contains the following sections:
|
||||||
- Users.
|
- Users.
|
||||||
.br
|
.br
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||||
.P
|
|
||||||
.SS Keys
|
.SS Keys
|
||||||
The facility provides the concept of a '\fBkey\fR', where all of the above
|
The facility provides the concept of a '\fBkey\fR', where all of the above
|
||||||
examples are encapsulated within objects of this type.
|
examples are encapsulated within objects of this type.
|
||||||
|
@ -112,7 +109,6 @@ See the
|
||||||
manual page for more information.
|
manual page for more information.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||||
.SS Key types
|
.SS Key types
|
||||||
.P
|
|
||||||
The facility provides several basic types of key:
|
The facility provides several basic types of key:
|
||||||
.IP "\fBkeyring\fR"
|
.IP "\fBkeyring\fR"
|
||||||
Keys of this type are special.
|
Keys of this type are special.
|
||||||
|
@ -137,7 +133,6 @@ This is similar to \fBuser\fR but the contents may not be read by userspace.
|
||||||
There are more specialised key types available also, but they're not discussed
|
There are more specialised key types available also, but they're not discussed
|
||||||
here as they're not intended for normal userspace use.
|
here as they're not intended for normal userspace use.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||||
.P
|
|
||||||
.SS Keyrings
|
.SS Keyrings
|
||||||
As previously mentioned, keyrings are a special type of key that contain links
|
As previously mentioned, keyrings are a special type of key that contain links
|
||||||
to other keys (which may include other keyrings).
|
to other keys (which may include other keyrings).
|
||||||
|
@ -174,7 +169,6 @@ and
|
||||||
manual pages for more information.
|
manual pages for more information.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||||
.SS Anchoring keys
|
.SS Anchoring keys
|
||||||
.P
|
|
||||||
To prevent a key from being prematurely garbage collected,
|
To prevent a key from being prematurely garbage collected,
|
||||||
it must anchored to keep its reference count elevated
|
it must anchored to keep its reference count elevated
|
||||||
when it is not in active use by the kernel.
|
when it is not in active use by the kernel.
|
||||||
|
@ -240,7 +234,6 @@ and
|
||||||
manual pages for more information.
|
manual pages for more information.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||||
.SS Possession
|
.SS Possession
|
||||||
.P
|
|
||||||
The concept of '\fBpossession\fR' is important to understanding the keyrings
|
The concept of '\fBpossession\fR' is important to understanding the keyrings
|
||||||
security model.
|
security model.
|
||||||
Whether a thread possesses a key is determined by the following rules:
|
Whether a thread possesses a key is determined by the following rules:
|
||||||
|
@ -274,7 +267,6 @@ adds a link to the user keyring,
|
||||||
thus making the user keyring and anything it contains possessed by default.
|
thus making the user keyring and anything it contains possessed by default.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||||
.SS Access rights
|
.SS Access rights
|
||||||
.P
|
|
||||||
Each key has the following security-related attributes:
|
Each key has the following security-related attributes:
|
||||||
.P
|
.P
|
||||||
.RS
|
.RS
|
||||||
|
@ -348,7 +340,6 @@ and
|
||||||
manual pages for more information.
|
manual pages for more information.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||||
.SS Searching for keys
|
.SS Searching for keys
|
||||||
.P
|
|
||||||
One of the key features of this facility is the ability to find a key that it
|
One of the key features of this facility is the ability to find a key that it
|
||||||
is retaining.
|
is retaining.
|
||||||
The
|
The
|
||||||
|
@ -392,7 +383,6 @@ and
|
||||||
for more information.
|
for more information.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||||
.SS On-demand key creation
|
.SS On-demand key creation
|
||||||
.P
|
|
||||||
If a key cannot be found,
|
If a key cannot be found,
|
||||||
.BR request_key (2)
|
.BR request_key (2)
|
||||||
will, if given a
|
will, if given a
|
||||||
|
@ -423,7 +413,6 @@ and
|
||||||
manual pages for more information.
|
manual pages for more information.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
||||||
.SS Users
|
.SS Users
|
||||||
.P
|
|
||||||
The facility has a number of users and usages, but is not limited to those
|
The facility has a number of users and usages, but is not limited to those
|
||||||
that already exist.
|
that already exist.
|
||||||
.P
|
.P
|
||||||
|
|
|
@ -10,7 +10,6 @@
|
||||||
.\" %%%LICENSE_END
|
.\" %%%LICENSE_END
|
||||||
.\"
|
.\"
|
||||||
.TH "PERSISTENT-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
.TH "PERSISTENT-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH NAME
|
.SH NAME
|
||||||
persistent-keyring \- per-user persistent keyring
|
persistent-keyring \- per-user persistent keyring
|
||||||
.SH DESCRIPTION
|
.SH DESCRIPTION
|
||||||
|
@ -57,7 +56,6 @@ to their own UID or, if they have
|
||||||
.BR CAP_SETUID ,
|
.BR CAP_SETUID ,
|
||||||
the persistent keyring
|
the persistent keyring
|
||||||
corresponding to some other UID in the same user namespace.
|
corresponding to some other UID in the same user namespace.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH SEE ALSO
|
.SH SEE ALSO
|
||||||
.ad l
|
.ad l
|
||||||
.nh
|
.nh
|
||||||
|
|
|
@ -10,7 +10,6 @@
|
||||||
.\" %%%LICENSE_END
|
.\" %%%LICENSE_END
|
||||||
.\"
|
.\"
|
||||||
.TH "PROCESS-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
.TH "PROCESS-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH NAME
|
.SH NAME
|
||||||
process-keyring \- per-process shared keyring
|
process-keyring \- per-process shared keyring
|
||||||
.SH DESCRIPTION
|
.SH DESCRIPTION
|
||||||
|
@ -41,7 +40,6 @@ process keyring will be created if the keyring is to be modified, otherwise
|
||||||
error
|
error
|
||||||
.B ENOKEY
|
.B ENOKEY
|
||||||
will be issued.
|
will be issued.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH SEE ALSO
|
.SH SEE ALSO
|
||||||
.ad l
|
.ad l
|
||||||
.nh
|
.nh
|
||||||
|
|
|
@ -10,7 +10,6 @@
|
||||||
.\" %%%LICENSE_END
|
.\" %%%LICENSE_END
|
||||||
.\"
|
.\"
|
||||||
.TH "SESSION-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
.TH "SESSION-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH NAME
|
.SH NAME
|
||||||
session-keyring \- session shared process keyring
|
session-keyring \- session shared process keyring
|
||||||
.SH DESCRIPTION
|
.SH DESCRIPTION
|
||||||
|
@ -73,7 +72,6 @@ and:
|
||||||
.RS
|
.RS
|
||||||
\fBkeyctl\fP new_session
|
\fBkeyctl\fP new_session
|
||||||
.RE
|
.RE
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH SEE ALSO
|
.SH SEE ALSO
|
||||||
.ad l
|
.ad l
|
||||||
.nh
|
.nh
|
||||||
|
|
|
@ -10,7 +10,6 @@
|
||||||
.\" %%%LICENSE_END
|
.\" %%%LICENSE_END
|
||||||
.\"
|
.\"
|
||||||
.TH "THREAD-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
.TH "THREAD-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH NAME
|
.SH NAME
|
||||||
thread-keyring \- per-thread keyring
|
thread-keyring \- per-thread keyring
|
||||||
.SH DESCRIPTION
|
.SH DESCRIPTION
|
||||||
|
@ -37,7 +36,6 @@ If a thread doesn't have a thread keyring when it is accessed, then the thread
|
||||||
keyring will be created if the keyring is to be modified, otherwise error
|
keyring will be created if the keyring is to be modified, otherwise error
|
||||||
.B ENOKEY
|
.B ENOKEY
|
||||||
will be issued.
|
will be issued.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH SEE ALSO
|
.SH SEE ALSO
|
||||||
.ad l
|
.ad l
|
||||||
.nh
|
.nh
|
||||||
|
|
|
@ -10,7 +10,6 @@
|
||||||
.\" %%%LICENSE_END
|
.\" %%%LICENSE_END
|
||||||
.\"
|
.\"
|
||||||
.TH "USER-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
.TH "USER-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH NAME
|
.SH NAME
|
||||||
user-keyring \- per-user keyring
|
user-keyring \- per-user keyring
|
||||||
.SH DESCRIPTION
|
.SH DESCRIPTION
|
||||||
|
@ -58,7 +57,6 @@ the
|
||||||
should be used instead.
|
should be used instead.
|
||||||
.P
|
.P
|
||||||
If a user keyring does not exist when it is accessed, it will be created.
|
If a user keyring does not exist when it is accessed, it will be created.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH SEE ALSO
|
.SH SEE ALSO
|
||||||
.ad l
|
.ad l
|
||||||
.nh
|
.nh
|
||||||
|
|
|
@ -10,7 +10,6 @@
|
||||||
.\" %%%LICENSE_END
|
.\" %%%LICENSE_END
|
||||||
.\"
|
.\"
|
||||||
.TH "USER-SESSION-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
.TH "USER-SESSION-KEYRING" 7 2016-11-01 Linux "Linux Programmer's Manual"
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH NAME
|
.SH NAME
|
||||||
user-session-keyring \- per-user default session keyring
|
user-session-keyring \- per-user default session keyring
|
||||||
.SH DESCRIPTION
|
.SH DESCRIPTION
|
||||||
|
@ -64,7 +63,6 @@ example by
|
||||||
.BR pam_keyinit (8),
|
.BR pam_keyinit (8),
|
||||||
rather than relying on the user session keyring -
|
rather than relying on the user session keyring -
|
||||||
particularly if a process is running as root.
|
particularly if a process is running as root.
|
||||||
.\"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""
|
|
||||||
.SH SEE ALSO
|
.SH SEE ALSO
|
||||||
.ad l
|
.ad l
|
||||||
.nh
|
.nh
|
||||||
|
|
Loading…
Reference in New Issue