keys: Invalidate used request_key authentication keys

Invalidate used request_key authentication keys rather than revoking them so that they get cleaned up immediately rather than potentially hanging around. There doesn't seem any need to keep the revoked keys around. Signed-off-by: David Howells <dhowells@redhat.com>
author: David Howells <dhowells@redhat.com> 2019-06-19 18:10:15 +0300
committer: David Howells <dhowells@redhat.com> 2019-06-19 18:10:15 +0300
commit: a09003b5d7cea71ce4b59e409d5a7158c789e1b4 (patch)
tree: 73413808f4345d629c7e0460cd1b3ad06a7fdcdd /security/keys/request_key.c
parent: 504b69eb3c95180bc59f1ae9096ad4b10bbbf254 (diff)
download: linux-a09003b5d7cea71ce4b59e409d5a7158c789e1b4.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/security/keys/request_key.c b/security/keys/request_key.c
index a6543ed98b1f..244e538d113f 100644
--- a/security/keys/request_key.c
+++ b/security/keys/request_key.c
@@ -222,7 +222,7 @@ static int construct_key(struct key *key, const void *callout_info,
 	/* check that the actor called complete_request_key() prior to
 	 * returning an error */
 	WARN_ON(ret < 0 &&
-		!test_bit(KEY_FLAG_REVOKED, &authkey->flags));
+		!test_bit(KEY_FLAG_INVALIDATED, &authkey->flags));
 
 	key_put(authkey);
 	kleave(" = %d", ret);
author	David Howells <dhowells@redhat.com>	2019-06-19 18:10:15 +0300
committer	David Howells <dhowells@redhat.com>	2019-06-19 18:10:15 +0300
commit	a09003b5d7cea71ce4b59e409d5a7158c789e1b4 (patch)
tree	73413808f4345d629c7e0460cd1b3ad06a7fdcdd /security/keys/request_key.c
parent	504b69eb3c95180bc59f1ae9096ad4b10bbbf254 (diff)
download	linux-a09003b5d7cea71ce4b59e409d5a7158c789e1b4.tar.xz