Lines Matching full:key
2 /* Key garbage collector
14 * Delay between key revocation/expiry in seconds
34 #define KEY_GC_KEY_EXPIRED 0 /* A key expired and needs unlinking */
40 * Any key whose type gets unregistered will be re-typed to this if it can't be
79 * Some key's cleanup time was met after it expired, so we need to get the
125 struct key *key = in key_gc_unused_keys() local
126 list_entry(keys->next, struct key, graveyard_link); in key_gc_unused_keys()
127 short state = key->state; in key_gc_unused_keys()
129 list_del(&key->graveyard_link); in key_gc_unused_keys()
131 kdebug("- %u", key->serial); in key_gc_unused_keys()
132 key_check(key); in key_gc_unused_keys()
134 /* Throw away the key data if the key is instantiated */ in key_gc_unused_keys()
135 if (state == KEY_IS_POSITIVE && key->type->destroy) in key_gc_unused_keys()
136 key->type->destroy(key); in key_gc_unused_keys()
138 security_key_free(key); in key_gc_unused_keys()
140 /* deal with the user's key tracking and quota */ in key_gc_unused_keys()
141 if (test_bit(KEY_FLAG_IN_QUOTA, &key->flags)) { in key_gc_unused_keys()
142 spin_lock(&key->user->lock); in key_gc_unused_keys()
143 key->user->qnkeys--; in key_gc_unused_keys()
144 key->user->qnbytes -= key->quotalen; in key_gc_unused_keys()
145 spin_unlock(&key->user->lock); in key_gc_unused_keys()
148 atomic_dec(&key->user->nkeys); in key_gc_unused_keys()
150 atomic_dec(&key->user->nikeys); in key_gc_unused_keys()
152 key_user_put(key->user); in key_gc_unused_keys()
153 key_put_tag(key->domain_tag); in key_gc_unused_keys()
154 kfree(key->description); in key_gc_unused_keys()
156 memzero_explicit(key, sizeof(*key)); in key_gc_unused_keys()
157 kmem_cache_free(key_jar, key); in key_gc_unused_keys()
176 #define KEY_GC_REAPING_DEAD_2 0x20 /* - We need to reap dead key links */ in key_garbage_collector()
178 #define KEY_GC_FOUND_DEAD_KEY 0x80 /* - We found at least one dead key */ in key_garbage_collector()
181 struct key *key; in key_garbage_collector() local
204 /* As only this function is permitted to remove things from the key in key_garbage_collector()
213 key = rb_entry(cursor, struct key, serial_node); in key_garbage_collector()
216 if (refcount_read(&key->usage) == 0) in key_garbage_collector()
220 if (key->type == key_gc_dead_keytype) { in key_garbage_collector()
222 set_bit(KEY_FLAG_DEAD, &key->flags); in key_garbage_collector()
223 key->perm = 0; in key_garbage_collector()
225 } else if (key->type == &key_type_keyring && in key_garbage_collector()
226 key->restrict_link) { in key_garbage_collector()
232 if (key->expiry > limit && key->expiry < new_timer) { in key_garbage_collector()
234 key_serial(key), key->expiry - limit); in key_garbage_collector()
235 new_timer = key->expiry; in key_garbage_collector()
240 if (key->type == key_gc_dead_keytype) in key_garbage_collector()
245 if (key->type == &key_type_keyring) in key_garbage_collector()
250 if (key->type == key_gc_dead_keytype) in key_garbage_collector()
321 /* We found an unreferenced key - once we've removed it from the tree, in key_garbage_collector()
325 kdebug("unrefd key %d", key->serial); in key_garbage_collector()
326 rb_erase(&key->serial_node, &key_serial_tree); in key_garbage_collector()
329 list_add_tail(&key->graveyard_link, &graveyard); in key_garbage_collector()
334 * it is associated with the dead key type. in key_garbage_collector()
338 keyring_restriction_gc(key, key_gc_dead_keytype); in key_garbage_collector()
348 keyring_gc(key, limit); in key_garbage_collector()
351 /* We found a dead key that is still referenced. Reset its type and in key_garbage_collector()
356 kdebug("destroy key %d", key->serial); in key_garbage_collector()
357 down_write(&key->sem); in key_garbage_collector()
358 key->type = &key_type_dead; in key_garbage_collector()
360 key_gc_dead_keytype->destroy(key); in key_garbage_collector()
361 memset(&key->payload, KEY_DESTROY, sizeof(key->payload)); in key_garbage_collector()
362 up_write(&key->sem); in key_garbage_collector()