Replace magic for trusting the secondary keyring with #define Replace the use of a magic number that indicates that verify_*_signature() should use the secondary keyring with a symbol. Signed-off-by: Yannik Sembritzki <yannik@sembritzki.me> Signed-off-by: David Howells <dhowells@redhat.com> Cc: keyrings@vger.kernel.org Cc: linux-security-module@vger.kernel.org Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

commit: 817aef260037f33ee0f44c17fe341323d3aebd6d [log] [tgz]
author: Yannik Sembritzki <yannik@sembritzki.me> Thu Aug 16 14:05:10 2018 +0100
committer: Linus Torvalds <torvalds@linux-foundation.org> Thu Aug 16 09:57:20 2018 -0700
tree: 8f193bce3aa82797c09874cb7ea8274f9dc2e79c
parent: 4e31843f681c34f7185e7d169fe627c9d891ce2c [diff] [blame]
diff --git a/include/linux/verification.h b/include/linux/verification.h
index a10549a..cfa4730 100644
--- a/include/linux/verification.h
+++ b/include/linux/verification.h

@@ -13,6 +13,12 @@
 #define _LINUX_VERIFICATION_H
 
 /*
+ * Indicate that both builtin trusted keys and secondary trusted keys
+ * should be used.
+ */
+#define VERIFY_USE_SECONDARY_KEYRING ((struct key *)1UL)
+
+/*
  * The use to which an asymmetric key is being put.
  */
 enum key_being_used_for {
commit	817aef260037f33ee0f44c17fe341323d3aebd6d	[log] [tgz]
author	Yannik Sembritzki <yannik@sembritzki.me>	Thu Aug 16 14:05:10 2018 +0100
committer	Linus Torvalds <torvalds@linux-foundation.org>	Thu Aug 16 09:57:20 2018 -0700
tree	8f193bce3aa82797c09874cb7ea8274f9dc2e79c
parent	4e31843f681c34f7185e7d169fe627c9d891ce2c [diff] [blame]