Merge branch 'next-queue' into next

author: James Morris <jmorris@namei.org> 2012-02-09 17:02:34 +1100
committer: James Morris <jmorris@namei.org> 2012-02-09 17:02:34 +1100
commit: 9e3ff38647a316e4f92d59b14c8f0eb13b33bb2c (patch)
tree: 2750d9fc94b8fb78d9982ea4a62d586e7f0a7862 /Documentation/security/keys.txt
parent: 2eb6038c51034bf7f9335b15ce9238a028fdd2d6 (diff)
parent: 4c2c392763a682354fac65b6a569adec4e4b5387 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/Documentation/security/keys.txt b/Documentation/security/keys.txt
index 4d75931d2d79..713ec232c562 100644
--- a/Documentation/security/keys.txt
+++ b/Documentation/security/keys.txt
@@ -554,6 +554,10 @@ The keyctl syscall functions are:
      process must have write permission on the keyring, and it must be a
      keyring (or else error ENOTDIR will result).
 
+     This function can also be used to clear special kernel keyrings if they
+     are appropriately marked if the user has CAP_SYS_ADMIN capability.  The
+     DNS resolver cache keyring is an example of this.
+
 
  (*) Link a key into a keyring:
author	James Morris <jmorris@namei.org>	2012-02-09 17:02:34 +1100
committer	James Morris <jmorris@namei.org>	2012-02-09 17:02:34 +1100
commit	9e3ff38647a316e4f92d59b14c8f0eb13b33bb2c (patch)
tree	2750d9fc94b8fb78d9982ea4a62d586e7f0a7862 /Documentation/security/keys.txt
parent	2eb6038c51034bf7f9335b15ce9238a028fdd2d6 (diff)
parent	4c2c392763a682354fac65b6a569adec4e4b5387 (diff)