Unverified Commit e7406215 authored by Sherif Nagy's avatar Sherif Nagy
Browse files

Updating Rocky testing certs and restructuring

parent ccc162c6
From 06be5d7060de4f96ed6712489ff9d55feb0fdf5b Mon Sep 17 00:00:00 2001
From: Sherif Nagy <sherif@rockylinux.org>
Date: Thu, 20 May 2021 18:32:58 +0100
Subject: [PATCH] Adding rocky certs
---
SOURCES/shim.rpmmacros | 4 ++--
SPECS/shim.spec | 2 ++
2 files changed, 4 insertions(+), 2 deletions(-)
diff --git a/SOURCES/shim.rpmmacros b/SOURCES/shim.rpmmacros
index f477f25..24990c0 100644
--- a/SOURCES/shim.rpmmacros
+++ b/SOURCES/shim.rpmmacros
@@ -1,7 +1,7 @@
%global debug_package %{nil}
%global __brp_mangle_shebangs_exclude_from_file %{expand:%{_builddir}/shim-%{efi_arch}-%{version}-%{release}.%{_target_cpu}-shebangs.txt}
%global vendor_token_str %{expand:%%{nil}%%{?vendor_token_name:-t "%{vendor_token_name}"}}
-%global vendor_cert_str %{expand:%%{!?vendor_cert_nickname:-c "Red Hat Test Certificate"}%%{?vendor_cert_nickname:-c "%%{vendor_cert_nickname}"}}
+%global vendor_cert_str %{expand:%%{!?vendor_cert_nickname:-c "Rocky Test Cert - Rocky Enterprise Software Foundation"}%%{?vendor_cert_nickname:-c "%%{vendor_cert_nickname}"}}
%global bootcsvaa64 %{expand:%{SOURCE10}}
%global bootcsvia32 %{expand:%{SOURCE11}}
@@ -90,7 +90,7 @@ version signed by the UEFI signing service. \
# -i <input>
%define distrosign(b:a:d:) \
cp -av %{-d*}/%{-b*}%{-a*}.efi %{-b*}%{-a*}-unsigned.efi \
- %{expand:%%sign -i %{-b*}%{-a*}-unsigned.efi -o %{-b*}%{-a*}-signed.efi -n redhatsecureboot501 -a %{SOURCE2} -c %{SOURCE1} }\
+ %{expand:%%sign -i %{-b*}%{-a*}-unsigned.efi -o %{-b*}%{-a*}-signed.efi -n rockybootsigningcert -a %{SOURCE90000} -c %{SOURCE90001} }\
%{nil}
# -a <efiarch>
diff --git a/SPECS/shim.spec b/SPECS/shim.spec
index e73f31f..f4e1adf 100644
--- a/SPECS/shim.spec
+++ b/SPECS/shim.spec
@@ -27,6 +27,8 @@ Source12: BOOTX64.CSV
Source22: shimx64.efi
#Source13: BOOTARM.CSV
#Source23: shimarm.efi
+Source90000: rocky-root-ca.der
+Source90001: rocky-signing.der
%include %{SOURCE0}
--
2.31.1
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment