Skip to content
Snippets Groups Projects
Normal view Permalink
0009-SBAT.md-fix-will-should.patch 1.15 KiB
Newer Older
Rocky Automation's avatar
import shim-unsigned-x64-15.4-4.el8_1
Rocky Automation committed
1 2 3 
From 0f40cb0d08798ed7557887958b382a42253c715d Mon Sep 17 00:00:00 2001
From: Serge Hallyn <serge@hallyn.com>
Date: Wed, 14 Jul 2021 08:01:48 -0500
Rocky Automation's avatar
import shim-unsigned-x64-15.4-4.el8_1  
Rocky Automation committed
4 
Subject: [PATCH 09/26] SBAT.md: fix "will should"
Rocky Automation's avatar
import shim-unsigned-x64-15.4-4.el8_1
Rocky Automation committed
5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 

Use the stronger "will" rather than "will should".  I'm not sure based on
what's there, but suspect "must" would be appropriate instead?

Signed-off-by: Serge Hallyn <serge@hallyn.com>
---
 SBAT.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/SBAT.md b/SBAT.md
index c1edf15..5152a90 100644
--- a/SBAT.md
+++ b/SBAT.md
@@ -310,7 +310,7 @@ compromise.
 The initial SBAT implementation will add SBAT metadata to Shim and GRUB and
 enforce SBAT on all components labeled with it. Until a component (e.g. the
 Linux kernel) gains SBAT metadata it can not be revoked via SBAT, but only by
-revoking the keys signing that component. These keys will should live in
+revoking the keys signing that component. These keys will live in
 separate, product-specific signed PE files that contain **only** the
 certificate and SBAT metadata for the key files. These key files can then be
 revoked via SBAT in order to invalidate and replace a specific key. While
-- 
2.32.0