• Mat Martineau's avatar
    KEYS: Split role of the keyring pointer for keyring restrict functions · aaf66c88
    Mat Martineau authored
    The first argument to the restrict_link_func_t functions was a keyring
    pointer. These functions are called by the key subsystem with this
    argument set to the destination keyring, but restrict_link_by_signature
    expects a pointer to the relevant trusted keyring.
    Restrict functions may need something other than a single struct key
    pointer to allow or reject key linkage, so the data used to make that
    decision (such as the trust keyring) is moved to a new, fourth
    argument. The first argument is now always the destination keyring.
    Signed-off-by: default avatarMat Martineau <mathew.j.martineau@linux.intel.com>
system_keyring.c 6.93 KB