Currently both Secure Boot DB and Machine Owner Keys (MOK) go through
the same keyring handler (get_handler_for_db). With the addition of the
new machine keyring, the end-user may choose to trust MOK keys.

Introduce a new keyring handler specific for MOK keys.  If MOK keys are
trusted by the end-user, use the new keyring handler instead.
Signed-off-by: NEric Snowberg <eric.snowberg@oracle.com>
Reviewed-by: NMimi Zohar <zohar@linux.ibm.com>
Reviewed-by: NJarkko Sakkinen <jarkko@kernel.org>
Tested-by: NMimi Zohar <zohar@linux.ibm.com>
Signed-off-by: NJarkko Sakkinen <jarkko@kernel.org>