Pavel Shilovsky <[email protected]> wrote: > It seems that dns_resolver sets expiry timeout to zero here > (http://lxr.free-electrons.com/source/security/keys/key.c#L310) and > doesn't change it - so, it always returns cached value.
That's not the DNS resolver you've provided a pointer to - that's where the key allocator initialises a new key. > David, can you comment on this problem, please? It's not much of a problem. Userspace needs to set the key timeout before instantiating the key: http://git.kernel.org/?p=linux/kernel/git/dhowells/keyutils.git;a=blob;f=key.dns_resolver.c;h=ab9b87875bcd94dae3083b2711207f87ceea7df1;hb=faabd7c8464502becd01972b1a76ab1dfa1906cc#l502 David -- To unsubscribe from this list: send the line "unsubscribe linux-cifs" in the body of a message to [email protected] More majordomo info at http://vger.kernel.org/majordomo-info.html
