"logon" type has additional check that enforces colon-separated prefix in key descriptions. * man7/keyrings.7 (.SS Key types) <.TP .IR """logon""">: Document restriction imposed on logon key descriptions. Signed-off-by: Eugene Syromyatnikov <evgsyr@xxxxxxxxx> --- man7/keyrings.7 | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/man7/keyrings.7 b/man7/keyrings.7 index 6f2581c..9a4478e 100644 --- a/man7/keyrings.7 +++ b/man7/keyrings.7 @@ -142,6 +142,11 @@ operation), meaning that the key payload is never visible from user space. This is suitable for storing username-password pairs that should not be readable from user space. +.IP +Key description of a logon key must start with non-empty colon-delimited +prefix with the purpose to identify the service to which it belongs. +(contrary to keys of the "user" type, where this practice is recommended +but is not enforced). .TP .IR """big_key""" " (since Linux 3.13)" .\" commit ab3c3587f8cda9083209a61dbe3a4407d3cada10 -- 2.1.4 -- To unsubscribe from this list: send the line "unsubscribe linux-man" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
