[PATCH] keys: sort out key quota system

Add the ability for key creation to overrun the user's quota in some circumstances - notably when a session keyring is created and assigned to a process that didn't previously have one. This means it's still possible to log in, should PAM require the creation of a new session keyring, and fix an overburdened key quota. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Andrew Morton <akpm@osdl.org> Signed-off-by: Linus Torvalds <torvalds@osdl.org>
author: David Howells <dhowells@redhat.com> 2006-06-26 00:24:50 -0700
committer: Linus Torvalds <torvalds@g5.osdl.org> 2006-06-26 09:58:18 -0700
commit: 7e047ef5fe2d52e83020e856b1bf2556a6a2ce98 (patch)
tree: 97656e2c56a27be9d1da451dde627b693b8643f2 /security/keys/request_key_auth.c
parent: f116629d03655adaf7832b93b03c99391d09d4a7 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/security/keys/request_key_auth.c b/security/keys/request_key_auth.c
index cb9817ced3fd..cbf58a91b00a 100644
--- a/security/keys/request_key_auth.c
+++ b/security/keys/request_key_auth.c
@@ -187,7 +187,7 @@ struct key *request_key_auth_new(struct key *target, const char *callout_info)
 	authkey = key_alloc(&key_type_request_key_auth, desc,
 			    current->fsuid, current->fsgid, current,
 			    KEY_POS_VIEW | KEY_POS_READ | KEY_POS_SEARCH |
-			    KEY_USR_VIEW, 1);
+			    KEY_USR_VIEW, KEY_ALLOC_NOT_IN_QUOTA);
 	if (IS_ERR(authkey)) {
 		ret = PTR_ERR(authkey);
 		goto error_alloc;
author	David Howells <dhowells@redhat.com>	2006-06-26 00:24:50 -0700
committer	Linus Torvalds <torvalds@g5.osdl.org>	2006-06-26 09:58:18 -0700
commit	7e047ef5fe2d52e83020e856b1bf2556a6a2ce98 (patch)
tree	97656e2c56a27be9d1da451dde627b693b8643f2 /security/keys/request_key_auth.c
parent	f116629d03655adaf7832b93b03c99391d09d4a7 (diff)