Re: [RFC PATCH 11/12] certs: Add a secondary system keyring that can be added to dynamically [ver #2]

From: David Howells
Date: Tue Mar 08 2016 - 08:14:06 EST

Next message: tip-bot for Aravind Gopalakrishnan: "[tip:ras/core] x86/mce: Move MCx_CONFIG MSR definitions"
Previous message: Michal Hocko: "[PATCH 2/2] oom-clear-tif_memdie-after-oom_reaper-managed-to-unmap-the-address-space-fix"
Next in thread: Petko Manolov: "Re: [RFC PATCH 11/12] certs: Add a secondary system keyring that can be added to dynamically [ver #2]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Mimi Zohar <zohar@xxxxxxxxxxxxxxxxxx> wrote:

> but we're left with a lot of references to "system_trusted" (eg.
> restrict_link_to_system_trusted, depends on SYSTEM_TRUSTED_KEYRING

How about I pluralise it to SYSTEM_TRUSTED_KEYRINGS? The fact that one is
called builtin and the other secondary doesn't detract from the fact that
they're both system-wide rings of trusted keys.

Or would you prefer .system_trusted_keys and .secondary_trusted_keys? Even
though the second is also a "system" trusted keyring.

David

Next message: tip-bot for Aravind Gopalakrishnan: "[tip:ras/core] x86/mce: Move MCx_CONFIG MSR definitions"
Previous message: Michal Hocko: "[PATCH 2/2] oom-clear-tif_memdie-after-oom_reaper-managed-to-unmap-the-address-space-fix"
Next in thread: Petko Manolov: "Re: [RFC PATCH 11/12] certs: Add a secondary system keyring that can be added to dynamically [ver #2]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]