I added a bunch of tests to the keyutils testsuite, currently on my -next
branch:
https://git.kernel.org/pub/scm/linux/kernel/git/dhowells/keyutils.git/log/?h=next
See:
Add a keyctl command for granting a permit on a key
Handle kernel having key/keyring ACLs
I've added manpages to describe the new bits, but I wonder whether I should
add a manpage specifically to detail the permissions system. It'll probably
be useful when more advanced subjects become available, such as for specific
UIDs and for containers-as-a-whole.
David
