keyctl_revoke — revoke a key
#include <keyutils.h> long keyctl_revoke(key_serial_t key);
keyctl_revoke() marks a key as being revoked.
After this operation has been performed on a key, attempts to access it will meet with error EKEYREVOKED.
The caller must have write permission on a key to be able revoke it.
On success keyctl_revoke() returns 0. On error, the value -1 will be returned and errno will have been set to an appropriate error.
The specified key does not exist.
The key has already been revoked.
The named key exists, but is not writable by the calling process.
keyctl(1), add_key(2), keyctl(2), request_key(2), keyctl(3), keyrings(7), keyutils(7)