mirror of https://github.com/mkerrisk/man-pages
keyctl.2: Tweaks after discussions with David Howells
Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
parent
ab3d151e07
commit
7b4861d924
|
@ -241,11 +241,11 @@ Revoke the key with the ID provided in
|
||||||
.I arg2
|
.I arg2
|
||||||
(cast to
|
(cast to
|
||||||
.IR key_serial_t ).
|
.IR key_serial_t ).
|
||||||
The key will no longer be findable,
|
The key is scheduled for garbage collection;
|
||||||
and it will be unavailable for further operations.
|
it will no longer be findable,
|
||||||
|
and will be unavailable for further operations.
|
||||||
Further attempts to use the key will fail with the error
|
Further attempts to use the key will fail with the error
|
||||||
.BR EKEYREVOKED .
|
.BR EKEYREVOKED .
|
||||||
.\" FIXME Does a revoked key get garbage collected?
|
|
||||||
|
|
||||||
The caller must have
|
The caller must have
|
||||||
.IR write
|
.IR write
|
||||||
|
@ -1282,7 +1282,6 @@ via the function
|
||||||
.BR KEYCTL_INVALIDATE " (since Linux 3.5)"
|
.BR KEYCTL_INVALIDATE " (since Linux 3.5)"
|
||||||
.\" commit fd75815f727f157a05f4c96b5294a4617c0557da
|
.\" commit fd75815f727f157a05f4c96b5294a4617c0557da
|
||||||
Mark a key as invalid.
|
Mark a key as invalid.
|
||||||
.\" FIXME What is the difference between revoking a key and invalidating a key?
|
|
||||||
|
|
||||||
The ID of the key to be invalidated is specified in
|
The ID of the key to be invalidated is specified in
|
||||||
.I arg2
|
.I arg2
|
||||||
|
@ -1295,8 +1294,8 @@ the caller must have
|
||||||
permission on the key.
|
permission on the key.
|
||||||
.\" CAP_SYS_ADMIN is permitted to invalidate certain special keys
|
.\" CAP_SYS_ADMIN is permitted to invalidate certain special keys
|
||||||
|
|
||||||
This operation immediately marks the key as invalid
|
This operation marks the key as invalid
|
||||||
and schedules garbage collection.
|
and schedules immediate garbage collection.
|
||||||
The garbage collector removes the invalidated key from all keyrings and
|
The garbage collector removes the invalidated key from all keyrings and
|
||||||
deletes the key when its reference count reaches zero.
|
deletes the key when its reference count reaches zero.
|
||||||
After this operation,
|
After this operation,
|
||||||
|
|
Loading…
Reference in New Issue