I added a bunch of tests to the keyutils testsuite, currently on my -next branch: https://git.kernel.org/pub/scm/linux/kernel/git/dhowells/keyutils.git/log/?h=next See: Add a keyctl command for granting a permit on a key Handle kernel having key/keyring ACLs I've added manpages to describe the new bits, but I wonder whether I should add a manpage specifically to detail the permissions system. It'll probably be useful when more advanced subjects become available, such as for specific UIDs and for containers-as-a-whole. David
