From 60e23c8baeb0e28ec163676b4fd4a24c40d89fe9 Mon Sep 17 00:00:00 2001 From: John Ericson Date: Fri, 23 Sep 2022 13:57:57 -0400 Subject: [PATCH] Apply suggestions from code review Co-authored-by: Valentin Gagarin Co-authored-by: Rune K. Svendsen --- src/libstore/globals.hh | 2 +- src/nix/verify.cc | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/src/libstore/globals.hh b/src/libstore/globals.hh index e2bb0ffc9..75927d395 100644 --- a/src/libstore/globals.hh +++ b/src/libstore/globals.hh @@ -560,7 +560,7 @@ public: R"( If set to `true` (the default), any non-content-addressed path added or copied to the Nix store (e.g. when substituting from a binary - cache) must have a signature by a key we trust. A trusted key is one + cache) must have a signature by a trusted key. A trusted key is one listed in `trusted-public-keys`, or a public key counterpart to a private key stored in a file listed in `secret-key-files`. diff --git a/src/nix/verify.cc b/src/nix/verify.cc index 1ddedd320..efa2434dc 100644 --- a/src/nix/verify.cc +++ b/src/nix/verify.cc @@ -41,7 +41,7 @@ struct CmdVerify : StorePathsCommand addFlag({ .longName = "sigs-needed", .shortName = 'n', - .description = "Require that each path has is signed by *n* different keys.", + .description = "Require that each path is signed by at least *n* different keys.", .labels = {"n"}, .handler = {&sigsNeeded} });