certs · 2e12256b9a76584fa3a6da19210509d4775aee36 · Upstream / linux-stable

keys: Replace uid/gid/perm permissions checking with an ACL

David Howells authored 6 years ago

Replace the uid/gid/perm permissions checking on a key with an ACL to allow
the SETATTR and SEARCH permissions to be split.  This will also allow a
greater range of subjects to represented.

============
WHY DO THIS?
============

The problem is that SETATTR and SEARCH cover a slew of actions, not all of
which should be grouped together.

For SETATTR, this includes actions that are about controlling access to a
key:

 (1) Changing a key's ownership.

 (2) Changing a key's security information.

 (3) Setting a keyring's restriction.

And actions that are about managing a key's lifetime:

 (4) Setting an expiry time.

 (5) Revoking a key.

and (proposed) managing a key as part of a cache:

 (6) Invalidating a key.

Managing a key's lifetime doesn't really have anything to do with
controlling access to that key.

Expiry time is awkward since it's more about the lifetime of the content
and so, in some ways goes better with WRITE permission.  It can, ...

2e12256b

Name	Last commit	Last update
..
.gitignore	certs: add .gitignore to stop git nagging about x509_certificate_list	9 years ago
Kconfig	docs: Fix some broken references	7 years ago
Makefile	kbuild: remove redundant target cleaning on failure	6 years ago
blacklist.c	keys: Replace uid/gid/perm permissions checking with an ACL	6 years ago
blacklist.h	certs/blacklist: fix const confusion	7 years ago
blacklist_hashes.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	7 years ago
blacklist_nohashes.c	certs/blacklist_nohashes.c: fix const confusion in certs blacklist	7 years ago
system_certificates.S	export.h: remove VMLINUX_SYMBOL() and VMLINUX_SYMBOL_STR()	6 years ago
system_keyring.c	keys: Replace uid/gid/perm permissions checking with an ACL	6 years ago

GitLab

Menu

Download source code

Download this directory