From 10280f2e0d2592284096097eec74bae404bd51b9 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Miloslav=20Trma=C4=8D?= Date: Sat, 14 May 2016 05:53:20 +0200 Subject: [PATCH] Update a comment for prInsecureAcceptAnything --- signature/policy_types.go | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/signature/policy_types.go b/signature/policy_types.go index 9365a37d..c38b1e76 100644 --- a/signature/policy_types.go +++ b/signature/policy_types.go @@ -41,8 +41,11 @@ const ( prTypeSignedBaseLayer prTypeIdentifier = "signedBaseLayer" ) -// prInsecureAcceptAnything is a PolicyRequirement with type = prTypeInsecureAcceptAnything: every image is accepted. +// prInsecureAcceptAnything is a PolicyRequirement with type = prTypeInsecureAcceptAnything: +// every image is allowed to run. // Note that because PolicyRequirements are implicitly ANDed, this is necessary only if it is the only rule (to make the list non-empty and the policy explicit). +// NOTE: This allows the image to run; it DOES NOT consider the signature verified (per IsSignatureAuthorAccepted). +// FIXME? Better name? type prInsecureAcceptAnything struct { prCommon }