keyctl_get_security() retrieves the security context of a key as a
NUL-terminated string. This will be rendered in a form appropriate
to the LSM in force - for instance, with SELinux, it may look like
The caller must have view permission on a key to be able to get its
buffer and buflen specify the buffer into which the string will be
placed. If the buffer is too small, the full size of the string will
be returned, and no copy will take place.
keyctl_get_security_alloc() is similar to keyctl_get_security()
except that it allocates a buffer big enough to hold the string and
copies the string into it. If successful, A pointer to the buffer is
placed in *_buffer. The caller must free the buffer.
On success keyctl_get_security() returns the amount of data placed
into the buffer. If the buffer was too small, then the size of
buffer required will be returned, but no data will be transferred.
On error, the value -1 will be returned and errno will have been set
to an appropriate error.
On success keyctl_get_security_alloc() returns the amount of data in
the buffer, less the NUL terminator. On error, the value -1 will be
returned and errno will have been set to an appropriate error.
This page is part of the keyutils (key management utilities) project.
Information about the project can be found at [unknown -- if you
know, please contact email@example.com] If you have a bug report for
this manual page, send it to firstname.lastname@example.org. This page was
obtained from the project's upstream Git repository
on 2017-03-13. If you discover any rendering problems in this HTML
version of the page, or you believe there is a better or more up-to-
date source for the page, or you have corrections or improvements to
the information in this COLOPHON (which is not part of the original
manual page), send a mail to email@example.com
Linux 26 Feb 2010 KEYCTL_GET_SECURITY(3)