KEYS: Add a key restriction struct

Mat Martineau Nov. 29, 2016, 12:44 a.m.
Key link restrictions require restriction-specific data as well as a
restriction-specific function pointer. As a first step toward replacing
the restrict_link pointer in struct key, define a more general
key_restriction structure that captures the function and data, as well
as a data freeing function.

diff --git a/include/linux/key.h b/include/linux/key.h
index c4016bc..b22fcef 100644
--- a/include/linux/key.h
+++ b/include/linux/key.h
@@ -131,6 +131,12 @@  typedef int (*key_restrict_link_func_t)(struct key *dest_keyring,
 					const union key_payload *payload,
 					void *data);
+struct key_restriction {
+	key_restrict_link_func_t check;
+	void (*free_data)(void *data);
+	void *data;
  * authentication token / access credential / keyring