git://ftp.safe.ca / safe / jmp / linux-2.6 / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: be38e0f) | patch
keys: distinguish per-uid keys in different namespaces
authorSerge E. Hallyn <serue@us.ibm.com>
Fri, 27 Feb 2009 00:27:38 +0000 (18:27 -0600)
committerJames Morris <jmorris@namei.org>
Fri, 27 Feb 2009 01:35:06 +0000 (12:35 +1100)
commit1d1e97562e5e2ac60fb7b25437ba619f95f67fab
tree68a9c52ecbff0782dd9b9438685afc3b40b6f707tree | snapshot
parentbe38e0fd5f90a91d09e0a85ffb294b70a7be6259commit | diff
keys: distinguish per-uid keys in different namespaces

per-uid keys were looked by uid only.  Use the user namespace
to distinguish the same uid in different namespaces.

This does not address key_permission.  So a task can for instance
try to join a keyring owned by the same uid in another namespace.
That will be handled by a separate patch.

Signed-off-by: Serge E. Hallyn <serue@us.ibm.com>
Acked-by: David Howells <dhowells@redhat.com>
Signed-off-by: James Morris <jmorris@namei.org>
kernel/user.c diff | blob | history
security/keys/internal.h diff | blob | history
security/keys/key.c diff | blob | history
security/keys/keyctl.c diff | blob | history
security/keys/process_keys.c diff | blob | history
security/keys/request_key.c diff | blob | history
Full containers within linux kernel