From c9000313e2c094420042badfdf4004c8436ed53b Mon Sep 17 00:00:00 2001
From: Frank Brehm <frank@brehm-online.com>
Date: Tue, 3 Jan 2017 09:49:18 +0100
Subject: [PATCH] committing changes in /etc after emerge run

Package changes:
+sys-apps/keyutils-1.5.9-r1
---
 .etckeeper       |  3 +++
 request-key.conf | 41 +++++++++++++++++++++++++++++++++++++++++
 2 files changed, 44 insertions(+)
 create mode 100644 request-key.conf

diff --git a/.etckeeper b/.etckeeper
index 7b00e86..5312b85 100755
--- a/.etckeeper
+++ b/.etckeeper
@@ -16,6 +16,7 @@ mkdir -p './puppetlabs/code/environments'
 mkdir -p './puppetlabs/puppet/ssl/ca/requests'
 mkdir -p './puppetlabs/puppet/ssl/certificate_requests'
 mkdir -p './puppetlabs/puppet/ssl/private'
+mkdir -p './request-key.d'
 mkdir -p './security/limits.d'
 mkdir -p './security/namespace.d'
 mkdir -p './skel/.ssh'
@@ -805,6 +806,8 @@ maybe chmod 0644 'puppetlabs/puppetdb/conf.d/repl.ini'
 maybe chmod 0644 'puppetlabs/puppetdb/logback.xml'
 maybe chmod 0644 'puppetlabs/puppetdb/request-logging.xml'
 maybe chmod 0644 'rc.conf'
+maybe chmod 0644 'request-key.conf'
+maybe chmod 0755 'request-key.d'
 maybe chmod 0644 'resolv.conf'
 maybe chmod 0644 'resolv.conf.bak'
 maybe chmod 0644 'resolvconf.conf'
diff --git a/request-key.conf b/request-key.conf
new file mode 100644
index 0000000..ff16a95
--- /dev/null
+++ b/request-key.conf
@@ -0,0 +1,41 @@
+###############################################################################
+#
+# Copyright (C) 2005 Red Hat, Inc. All Rights Reserved.
+# Written by David Howells (dhowells@redhat.com)
+#
+# This program is free software; you can redistribute it and/or
+# modify it under the terms of the GNU General Public License
+# as published by the Free Software Foundation; either version
+# 2 of the License, or (at your option) any later version.
+#
+###############################################################################
+
+
+###############################################################################
+#
+# We can run programs or scripts
+# - Macro substitutions in arguments:
+#	%%...	%...
+#	%o	operation name
+#	%k	ID of key being operated upon
+#	%t	type of key being operated upon
+#	%d	description of key being operated upon
+#	%c	callout info
+#	%u	UID of requestor
+#	%g	GID of requestor
+#	%T	thread keyring of requestor (may be 0)
+#	%P	process keyring of requestor (may be 0)
+#	%S	session keyring of requestor (may be the user's default session)
+#
+################################################################################
+
+#OP	TYPE	DESCRIPTION	CALLOUT INFO	PROGRAM ARG1 ARG2 ARG3 ...
+#======	=======	===============	===============	===============================
+create  dns_resolver *		*               /sbin/key.dns_resolver %k
+create	user	debug:*		negate		/bin/keyctl negate %k 30 %S
+create  user    debug:*         rejected        /bin/keyctl reject %k 30 %c %S
+create  user    debug:*         expired         /bin/keyctl reject %k 30 %c %S
+create  user    debug:*         revoked         /bin/keyctl reject %k 30 %c %S
+create	user	debug:loop:*	*		|/bin/cat
+create	user	debug:*		*		/usr/share/keyutils/request-key-debug.sh %k %d %c %S
+negate	*	*		*		/bin/keyctl negate %k 30 %S
-- 
2.39.5