rpms / shim-signed

Clone
Source Code
GIT

Blame SOURCES/0004-Don-t-allow-sha1-on-the-mokutil-command-line.patch

c4 c5 c5-plus c6 c6-plus c7 c7-aarch64 c7-alt c7-beta
  1.   670361e8327643cec7230583ad256e6000a5ffac
  2.   SOURCES
  3.   0004-Don-t-allow-sha1-on-the-mokutil-command-line.patch
Blob History Raw
670361 
From ecc8fb0d92f0f453414a98172df22e23fb5893f5 Mon Sep 17 00:00:00 2001
670361 
From: Peter Jones <pjones@redhat.com>
670361 
Date: Tue, 16 Jun 2015 17:06:30 -0400
670361 
Subject: [PATCH 04/10] Don't allow sha1 on the mokutil command line.
670361
670361 
Related: rhbz#1115843
670361
670361 
Signed-off-by: Peter Jones <pjones@redhat.com>
670361 
---
670361 
 src/mokutil.c | 2 ++
670361 
 1 file changed, 2 insertions(+)
670361
670361 
diff --git a/src/mokutil.c b/src/mokutil.c
670361 
index a7e83f71f0b..1fb34f9d3aa 100644
670361 
--- a/src/mokutil.c
670361 
+++ b/src/mokutil.c
670361 
@@ -1351,10 +1351,12 @@ identify_hash_type (const char *hash_str, efi_guid_t *type)
670361 
 	}
670361
670361 
 	switch (len) {
670361 
+#if 0
670361 
 	case SHA_DIGEST_LENGTH*2:
670361 
 		*type = efi_guid_sha1;
670361 
 		hash_size = SHA_DIGEST_LENGTH;
670361 
 		break;
670361 
+#endif
670361 
 	case SHA224_DIGEST_LENGTH*2:
670361 
 		*type = efi_guid_sha224;
670361 
 		hash_size = SHA224_DIGEST_LENGTH;
670361 
--
670361 
2.17.1
670361

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation