Tree - rpms/shim - CentOS Git server

Blob History Raw

		e97c83	`From 09283f08f001305db5a3299b53acba85bf6c9876 Mon Sep 17 00:00:00 2001`
		e97c83	`From: Gary Ching-Pang Lin <glin@suse.com>`
		e97c83	`Date: Mon, 4 Nov 2013 17:51:55 +0800`
		e97c83	`Subject: [PATCH 34/74] Exclude ca.crt while signing EFI images`
		e97c83
		e97c83	`If ca.crt was added into the certificate database, ca.crt would be the first`
		e97c83	`certificate in the signature. Because shim couldn't verify ca.crt with the`
		e97c83	`embedded shim.cer, it failed to load MokManager.efi.signed and`
		e97c83	`fallback.efi.signed.`
		e97c83
		e97c83	`Signed-off-by: Gary Ching-Pang Lin <glin@suse.com>`
		e97c83	`---`
		e97c83	`Makefile \| 1 -`
		e97c83	`1 file changed, 1 deletion(-)`
		e97c83
		e97c83	`diff --git a/Makefile b/Makefile`
		e97c83	`index 46e5ef9..df190a2 100644`
		e97c83	`--- a/Makefile`
		e97c83	`+++ b/Makefile`
		e97c83	`@@ -73,7 +73,6 @@ version.c : version.c.in`
		e97c83
		e97c83	`certdb/secmod.db: shim.crt`
		e97c83	`-mkdir certdb`
		e97c83	`- certutil -A -n 'my CA' -d certdb/ -t CT,CT,CT -i ca.crt`
		e97c83	`pk12util -d certdb/ -i shim.p12 -W "" -K ""`
		e97c83	`certutil -d certdb/ -A -i shim.crt -n shim -t u`
		e97c83
		e97c83	`--`
		e97c83	`1.9.3`
		e97c83