As suggested by Jarkko and explained by Paul, let's document the panic() calls from the blacklist keyring initialization. This series applies on top of commit 50c486fe3108 ("certs: Allow root user to append signed hashes to the blacklist keyring"). This can smoothly be rebased on top of Jarkko's next branch. This second version fixes some minor spelling issues. [1] https://git.kernel.org/pub/scm/linux/kernel/git/jarkko/linux-tpmdd.git/commit/?id=50c486fe310890c134b5cb36cf9a4135475a6074 Previous version: https://lore.kernel.org/r/20220321174548.510516-1-mic@xxxxxxxxxxx Regards, Mickaël Salaün (1): certs: Explain the rationale to call panic() certs/blacklist.c | 9 +++++++++ 1 file changed, 9 insertions(+) base-commit: 50c486fe310890c134b5cb36cf9a4135475a6074 -- 2.35.1