MAN page from CentOS 8 keyutils-libs-1.5.10-6.el8.i686.rpm
Section: Kernel key management (7)
Updated: 21 Feb 2014Index
keyutils - in-kernel key management utilities
package is a library and a set of utilities for accessing the kernelkeyrings
facility.A header file is supplied to provide the definitions and declarations requiredto access the library:
- #include <keyutils.h>
To link with the library, the following:
should be specified to the linker.Three system calls are provided:
- Supply a new key to the kernel.
- Find an existing key for use, or, optionally, create one if one does not exist.
- Control a key in various ways. The library provides a variety of wrappersaround this system call and those should be used rather than calling itdirectly.See theadd_key(2),request_key(2),andkeyctl(2)manual pages for more information.The keyctl() wrappers are listed on thekeyctl(3)manual page.
A program is provided to interact with the kernel facility by a number ofsubcommands, e.g.:
- keyctl add user foo bar @s
(1)manual page for information on that.The kernel has the ability to upcall to userspace to fabricate new keys. Thiscan be triggered by request_key
(), but userspace is better off usingadd_key
() instead if it possibly can.The upcalling mechanism is usually routed via therequest-key
(8)program. What this does with any particular key is configurable in:
(8)manual pages for more information.
- SEE ALSO
This document was created byman2html,using the manual pages.