diff options
| author | Jeff Layton <jlayton@samba.org> | 2012-01-17 14:43:24 -0500 |
|---|---|---|
| committer | Jeff Layton <jlayton@samba.org> | 2012-01-17 14:43:24 -0500 |
| commit | 4fee11f2e35b08e4184c2f4615074ad0b187b84a (patch) | |
| tree | 18f376c1482871b3272ba9569b5cb4ef0e291760 | |
| parent | 9758d87315a800e238b7011b7879dcfb9b1339d3 (diff) | |
| download | cifs-utils-4fee11f2e35b08e4184c2f4615074ad0b187b84a.tar.gz cifs-utils-4fee11f2e35b08e4184c2f4615074ad0b187b84a.tar.bz2 cifs-utils-4fee11f2e35b08e4184c2f4615074ad0b187b84a.zip | |
cifscreds: use the session keyring
This seems like a reasonable change, but I'm willing to listen to
arguments to the contrary...
cifscreds currently hangs the keys off of the uid keyring. It seems
more appropriate though that we require that each session have its
own set. This might be particularly important in a containerized
situation. If a user authenticates in one container, then we probably
don't want to allow a user in another to "borrow" those creds.
Signed-off-by: Jeff Layton <jlayton@samba.org>
| -rw-r--r-- | cifscreds.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/cifscreds.c b/cifscreds.c index cbd431e..6079b38 100644 --- a/cifscreds.c +++ b/cifscreds.c @@ -51,7 +51,7 @@ #define DOMAIN_DISALLOWED_CHARS "\\/:*?\"<>|" /* destination keyring */ -#define DEST_KEYRING KEY_SPEC_USER_KEYRING +#define DEST_KEYRING KEY_SPEC_SESSION_KEYRING struct cmdarg { char *host; |