From 737d8596fdfab04d673d9be7685f1e0c4673467d Mon Sep 17 00:00:00 2001
From: Michael Kerrisk <mtk.manpages@gmail.com>
Date: Wed, 2 Nov 2016 12:12:57 +0100
Subject: [PATCH] keyctl.2: Add EPERM error for KEYCTL_GET_PERSISTENT

Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
---
 man2/keyctl.2 | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/man2/keyctl.2 b/man2/keyctl.2
index 3161251e3..7f9cc1852 100644
--- a/man2/keyctl.2
+++ b/man2/keyctl.2
@@ -1602,6 +1602,16 @@ and the key type does not support updating.
 .B EPERM
 .I operation
 was
+.BR KEYCTL_GET_PERSISTENT ,
+.I arg2
+specified a UID other than the calling thread's real or effective UID,
+and the caller did not have the
+.B CAP_SETUID
+capability.
+.TP
+.B EPERM
+.I operation
+was
 .BR KEYCTL_SESSION_TO_PARENT
 and either:
 all of the UIDs (GIDs) of the parent process do not match