Re: [PATCH 9/9] KEYS: Fix encrypted key type update method
From: David Howells
Date: Thu Nov 14 2013 - 13:16:22 EST
Mimi Zohar <zohar@xxxxxxxxxxxxxxxxxx> wrote:
> Is there a keyutils git repo with a version of keyctl that supports the
> control option?
http://git.kernel.org/cgit/linux/kernel/git/dhowells/keyutils.git/log/?h=development
> - type size_t is unsigned, no need to verify that it is negative.
It doesn't hurt either...
> - missing Documentation/security/keys-trusted-encrypted.txt updates
Fixed (see diff below), but I suspect trusted_update() also needs scrutiny.
> - the encrypted_preparse() comment still says 'encrypted_instantiate'
Fixed.
David
---
diff --git a/Documentation/security/keys-trusted-encrypted.txt b/Documentation/security/keys-trusted-encrypted.txt
index e105ae97a4f5..78794adf445d 100644
--- a/Documentation/security/keys-trusted-encrypted.txt
+++ b/Documentation/security/keys-trusted-encrypted.txt
@@ -61,7 +61,7 @@ Usage:
keyctl add encrypted name "new [format] key-type:master-key-name keylen"
ring
keyctl add encrypted name "load hex_blob" ring
- keyctl update keyid "update key-type:master-key-name"
+ keyctl control keyid encrypted change-master-key "key-type:master-key-name"
format:= 'default | ecryptfs'
key-type:= 'trusted' | 'user'
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/