KEYCTL_DESCRIBE

Section: Linux Key Management Calls (3)
Updated: 4 May 2006
Index Return to Main Contents
 

NAME

keyctl_describe - Describe a key  

SYNOPSIS

#include <keyutils.h>

long keyctl_describe(key_serial_t key, char *buffer,
size_tbuflen);

long keyctl_describe_alloc(key_serial_t key, char **_buffer);
 

DESCRIPTION

keyctl_describe() describes the attributes of a key as a NUL-terminated string. The caller must have view permission on a key to be able to get a description of it. buffer and buflen specify the buffer into which the key description will be placed. If the buffer is too small, the full size of the description will be returned, and no copy will take place. keyctl_describe_alloc() is similar to keyctl_describe() except that it allocates a buffer big enough to hold the description and places the description in it. If successful, A pointer to the buffer is placed in *_buffer. The caller must free the buffer. The description will be a string of format:
``%s;%d;%d;%08x;%s'' where the arguments are: key type name, key UID, key GID, key permissions mask and key description. NOTE! The key description will not contain any semicolons, so that should be separated out by working backwards from the end of the string. This permits extra information to be inserted before it by later versions of the kernel simply by inserting more semicolon-terminated substrings.
 

RETURN VALUE

On success keyctl_describe() returns the amount of data placed into the buffer. If the buffer was too small, then the size of buffer required will be returned, but no data will be transferred. On error, the value -1 will be returned and errno will have been set to an appropriate error. On success keyctl_describe_alloc() returns the amount of data in the buffer, less the NUL terminator. On error, the value -1 will be returned and errno will have been set to an appropriate error.  

ERRORS

ENOKEY
The key specified is invalid.
EKEYEXPIRED
The key specified has expired.
EKEYREVOKED
The key specified had been revoked.
EACCES
The key exists, but is not viewable by the calling process.
 

LINKING

This is a library function that can be found in libkeyutils. When linking, -lkeyutils should be specified to the linker.  

SEE ALSO

keyctl(1),
add_key(2),
keyctl(2),
request_key(2),
keyctl_get_keyring_ID(3),
keyctl_join_session_keyring(3),
keyctl_update(3),
keyctl_revoke(3),
keyctl_chown(3),
keyctl_setperm(3),
keyctl_clear(3),
keyctl_link(3),
keyctl_unlink(3),
keyctl_search(3),
keyctl_read(3),
keyctl_instantiate(3),
keyctl_negate(3),
keyctl_set_reqkey_keyring(3),
keyctl_set_timeout(3),
keyctl_assume_authority(3),
keyctl_read_alloc(3),
request-key(8)