security/keys: export key_lookup()

maurizio-lombardi · maurizio-lombardi · commit 1ed9e11298a1 · 2024-05-07T14:22:02.000+02:00
JIRA: https://issues.redhat.com/browse/RHEL-25547 For in-kernel consumers one cannot readily assign a user (eg when running from a workqueue), so the normal key search permissions cannot be applied. This patch exports the 'key_lookup()' function for a simple lookup of keys without checking for permissions. Signed-off-by: Hannes Reinecke <hare@suse.de> Reviewed-by: Sagi Grimberg <sagi@grimberg.me> Acked-by: David Howells <dhowells@redhat.com> Signed-off-by: Keith Busch <kbusch@kernel.org> (cherry picked from commit 037c343) Signed-off-by: Maurizio Lombardi <mlombard@redhat.com>
diff --git a/include/linux/key.h b/include/linux/key.h
@@ -510,6 +510,7 @@ extern void key_init(void);
 #define key_init()			do { } while(0)
 #define key_free_user_ns(ns)		do { } while(0)
 #define key_remove_domain(d)		do { } while(0)
+#define key_lookup(k)			NULL
 
 #endif /* CONFIG_KEYS */
 #endif /* __KERNEL__ */
diff --git a/security/keys/key.c b/security/keys/key.c
@@ -690,6 +690,7 @@ struct key *key_lookup(key_serial_t id)
 	spin_unlock(&key_serial_lock);
 	return key;
 }
+EXPORT_SYMBOL(key_lookup);
 
 /*
  * Find and lock the specified key type against removal.

Original file line number	Diff line number	Diff line change
`@@ -690,6 +690,7 @@ struct key *key_lookup(key_serial_t id)`
`690`	`690`	`spin_unlock(&key_serial_lock);`
`691`	`691`	`return key;`
`692`	`692`	`}`
	`693`	`+EXPORT_SYMBOL(key_lookup);`
`693`	`694`
`694`	`695`	`/*`
`695`	`696`	`* Find and lock the specified key type against removal.`