diff mbox

[v10,04/11] KEYS: Add a key restriction struct

Message ID 20161129004432.17926-5-mathew.j.martineau@linux.intel.com
State New
Headers show

Commit Message

Mat Martineau Nov. 29, 2016, 12:44 a.m. UTC
Key link restrictions require restriction-specific data as well as a
restriction-specific function pointer. As a first step toward replacing
the restrict_link pointer in struct key, define a more general
key_restriction structure that captures the function and data, as well
as a data freeing function.

Signed-off-by: Mat Martineau <mathew.j.martineau@linux.intel.com>
 include/linux/key.h | 6 ++++++
 1 file changed, 6 insertions(+)
diff mbox


diff --git a/include/linux/key.h b/include/linux/key.h
index c4016bc..b22fcef 100644
--- a/include/linux/key.h
+++ b/include/linux/key.h
@@ -131,6 +131,12 @@  typedef int (*key_restrict_link_func_t)(struct key *dest_keyring,
 					const union key_payload *payload,
 					void *data);
+struct key_restriction {
+	key_restrict_link_func_t check;
+	void (*free_data)(void *data);
+	void *data;
  * authentication token / access credential / keyring