From 10280f2e0d2592284096097eec74bae404bd51b9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Miloslav=20Trma=C4=8D?= <mitr@redhat.com>
Date: Sat, 14 May 2016 05:53:20 +0200
Subject: [PATCH] Update a comment for prInsecureAcceptAnything

---
 signature/policy_types.go | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/signature/policy_types.go b/signature/policy_types.go
index 9365a37d..c38b1e76 100644
--- a/signature/policy_types.go
+++ b/signature/policy_types.go
@@ -41,8 +41,11 @@ const (
 	prTypeSignedBaseLayer        prTypeIdentifier = "signedBaseLayer"
 )
 
-// prInsecureAcceptAnything is a PolicyRequirement with type = prTypeInsecureAcceptAnything: every image is accepted.
+// prInsecureAcceptAnything is a PolicyRequirement with type = prTypeInsecureAcceptAnything:
+// every image is allowed to run.
 // Note that because PolicyRequirements are implicitly ANDed, this is necessary only if it is the only rule (to make the list non-empty and the policy explicit).
+// NOTE: This allows the image to run; it DOES NOT consider the signature verified (per IsSignatureAuthorAccepted).
+// FIXME? Better name?
 type prInsecureAcceptAnything struct {
 	prCommon
 }