git.apps.os.sepia.ceph.com Git - fscrypt.git/commit

]> git.apps.os.sepia.ceph.com Git - fscrypt.git/commit

author	Eric Biggers <ebiggers@google.com>
	Mon, 16 Dec 2019 03:31:39 +0000 (19:31 -0800)
committer	Eric Biggers <ebiggers@google.com>
	Sun, 5 Jan 2020 18:02:13 +0000 (10:02 -0800)
commit	d0ac36dcea341ff000aca983dd80e7bef9fc30ec
tree	673eef073fd0646bbc16bc088a315d0dfe68dfb7	tree \| snapshot
parent	0829eb74863bd279ae012779e52040ecc7f7178e	commit \| diff

pam_fscrypt: update to handle filesystem keyring

FS_IOC_ADD_ENCRYPTION_KEY and FS_IOC_REMOVE_ENCRYPTION_KEY require root
for v1 policy keys, so update the PAM module to re-acquire root
privileges while provisioning/deprovisioning policies that need this.

Also, only set up the user keyring if it will actually be used.

actions/policy.go		diff \| blob \| history
pam/pam.go		diff \| blob \| history
pam_fscrypt/pam_fscrypt.go		diff \| blob \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom