crypto: insert key into keyring from go

This commit adds in the ability to insert Keys into the kernel keyring from go code. This is done via a patched version of x/sys/unix. We also expose the specific requirements for keys that will be placed in the keyring, namely PolicyKeyLen. The legacy services are also exposed. Change-Id: I177928c9aa676cae13b749042b9a3996e7490f68
author: Joe Richey <joerichey@google.com> 2017-03-02 11:47:07 -0800
committer: Joe Richey joerichey@google.com <joerichey@google.com> 2017-05-02 13:39:18 -0700
commit: 53d15f466a665e4e564af3afdcbcfe9ff1c91331 (patch)
tree: f154df351d4a1df8c277015db7acd20517292f01 /metadata/policy.go
parent: 20924ca06efba5a50356bdb5abb1f7b87f34f817 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/metadata/policy.go b/metadata/policy.go
index ae8b869..8c67f52 100644
--- a/metadata/policy.go
+++ b/metadata/policy.go
@@ -120,12 +120,13 @@ func GetPolicy(path string) (*PolicyData, error) {
 // policy. Returns an error if we cannot set the policy for any reason (not a
 // directory, invalid options or KeyDescriptor, etc).
 func SetPolicy(path string, data *PolicyData) error {
-	// Convert the padding value to a flag and the policyID to a byte array
+	// Convert the padding value to a flag
 	paddingFlag, ok := util.Lookup(data.Options.Padding, paddingArray, flagsArray)
 	if !ok {
 		return util.InvalidInputF("padding of %d", data.Options.Padding)
 	}
 
+	// Convert the policyDescriptor to a byte array
 	if len(data.KeyDescriptor) != DescriptorLen {
 		return util.InvalidLengthError("policy descriptor", DescriptorLen, len(data.KeyDescriptor))
 	}
author	Joe Richey <joerichey@google.com>	2017-03-02 11:47:07 -0800
committer	Joe Richey joerichey@google.com <joerichey@google.com>	2017-05-02 13:39:18 -0700
commit	53d15f466a665e4e564af3afdcbcfe9ff1c91331 (patch)
tree	f154df351d4a1df8c277015db7acd20517292f01 /metadata/policy.go
parent	20924ca06efba5a50356bdb5abb1f7b87f34f817 (diff)