keyctl_revoke — revoke a key


#include <keyutils.h>

long keyctl_revoke(key_serial_t key);


keyctl_revoke() marks a key as being revoked.

After this operation has been performed on a key, attempts to access it will meet with error EKEYREVOKED.

The caller must have write permission on a key to be able revoke it.

Return Value

On success keyctl_revoke() returns 0. On error, the value -1 will be returned and errno will have been set to an appropriate error.



The specified key does not exist.


The key has already been revoked.


The named key exists, but is not writable by the calling process.


This is a library function that can be found in libkeyutils. When linking, -lkeyutils should be specified to the linker.

See Also

keyctl(1), add_key(2), keyctl(2), request_key(2), keyctl(3), keyrings(7), keyutils(7)

Referenced By

keyctl(2), keyctl(3).

4 May 2006 Linux Key Management Calls