KEYS: Make the system 'trusted' keyring viewable by userspace
authorMimi Zohar <zohar@linux.vnet.ibm.com>
Tue, 20 Aug 2013 18:36:26 +0000 (14:36 -0400)
committerDavid Howells <dhowells@redhat.com>
Wed, 25 Sep 2013 16:17:01 +0000 (17:17 +0100)
commitaf34cb0c3d16b46d88b661692b885d1d998a8ecb
treeb6bf8abd1c4c052952a8230c9edb00a66ecf8aec
parentcd0421dcd0230d3e402ae9c6d012610132c3f078
KEYS: Make the system 'trusted' keyring viewable by userspace

Give the root user the ability to read the system keyring and put read
permission on the trusted keys added during boot.  The latter is actually more
theoretical than real for the moment as asymmetric keys do not currently
provide a read operation.

Signed-off-by: Mimi Zohar <zohar@us.ibm.com>
Signed-off-by: David Howells <dhowells@redhat.com>
kernel/system_keyring.c