KEYUTILS(7) - Linux man page online | Overview, conventions, and miscellany

In-kernel key management utilities.

21 Feb 2014
KEYRINGS(7) Kernel key management KEYRINGS(7)


keyutils - In-kernel key management utilities


The keyutils package is a library and a set of utilities for accessing the kernel keyrings facility. A header file is supplied to provide the definitions and declarations required to access the library: #include <keyutils.h> To link with the library, the following: -lkeyutils should be specified to the linker. Three system calls are provided: add_key() Supply a new key to the kernel. request_key() Find an existing key for use, or, optionally, create one if one does not exist. keyctl() Control a key in various ways. The library provides a variety of wrappers around this system call and those should be used rather than calling it directly. See the add_key(2), request_key(2), and keyctl(2) manual pages for more information. The keyctl() wrappers are listed on the keyctl(3) manual page.


A program is provided to interact with the kernel facility by a number of subcommands, e.g.: keyctl add user foo bar @s See the keyctl(1) manual page for information on that. The kernel has the ability to upcall to userspace to fabricate new keys. This can be triggered by request_key(), but userspace is better off using add_key() instead if it pos‐ sibly can. The upcalling mechanism is usually routed via the: request-key program. What this does with any particular key is configurable in: /etc/request-key.conf /etc/request-key.d/ See the request-key.conf(5) and the request-key(8) manual pages for more information.


keyrings(7), pam_keyinit(8), process-keyring(7), session-keyring(7), thread-keyring(7), user-keyring(7), user-session-keyring(7), persistent-keyring(7)
Linux 21 Feb 2014 KEYRINGS(7)
This manual Reference Other manuals
keyutils(7) referred by add_key(2) | keyctl(2) | keyctl(3) | keyctl_chown(3) | keyctl_clear(3) | keyctl_describe(3) | keyctl_get_keyring_ID(3) | keyctl_get_persistent(3) | keyctl_get_security(3) | keyctl_instantiate(3) | keyctl_invalidate(3) | keyctl_join_session_keyring(3) | keyctl_link(3) | keyctl_read(3) | keyctl_revoke(3) | keyctl_search(3) | keyctl_session_to_parent(3) | keyctl_set_reqkey_keyring(3) | keyctl_set_timeout(3) | keyctl_setperm(3)
refer to add_key(2) | keyctl(1) | keyctl(2) | keyctl(3) | keyrings(7) | pam_keyinit(8) | persistent-keyring(7) | process-keyring(7) | request-key(8) | request-key.conf(5) | request_key(2) | session-keyring(7) | thread-keyring(7) | user-keyring(7) | user-session-keyring(7)
Download raw manual
Index Kernel key management (+8) Linux (+1529) № 7 (+1560)
Go top