diff options
| author | Michael Kerrisk <mtk.manpages@gmail.com> | 2016-11-02 23:15:22 +0100 |
|---|---|---|
| committer | Michael Kerrisk <mtk.manpages@gmail.com> | 2016-12-27 09:36:19 +0100 |
| commit | 6294ad5cb8dda444814cb463c3150df555af751f (patch) | |
| tree | 650da60d0d289ae006a4b9d89f00cdfdd83725dd /man7 | |
| parent | 2929ba68833a5bcd58c1464003d3d4dd614d49dd (diff) | |
| download | man-pages-6294ad5cb8dda444814cb463c3150df555af751f.tar.gz | |
user-session-keyring.7: Add some details on lifetime of user session keyring
Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
Diffstat (limited to 'man7')
| -rw-r--r-- | man7/user-session-keyring.7 | 20 |
1 files changed, 15 insertions, 5 deletions
diff --git a/man7/user-session-keyring.7 b/man7/user-session-keyring.7 index 40f31b449c..916b8e093d 100644 --- a/man7/user-session-keyring.7 +++ b/man7/user-session-keyring.7 @@ -14,11 +14,21 @@ user-session-keyring \- per-user default session keyring .SH DESCRIPTION The user session keyring is a keyring used to anchor keys on behalf of a user. -Each UID the kernel deals with has its own user session keyring. -This keyring is associated with -the record that the kernel maintains for the UID and, once created, -is retained as long as that record persists. -It is shared amongst all processes of that UID. +Each UID the kernel deals with has its own user session keyring that +is shared by all processes with that UID. + +The user session keyring is associated with the record that +the kernel maintains for the UID. +It comes into existence upon the first attempt to access either the +user session keyring, the +.BR user-keyring (7), +or the +.BR session-keyring (7). +.\" Davis Howells: the user and user-session keyrings are managed as a pair. +The keyring remains pinned in existence so long as there are processes +running with that real UID or files opened by those processes remain open. +(The keyring can also be pinned indefinitely by linking it +into another keyring.) The user session keyring is created on demand when a thread requests it or when a thread asks for its |