|
|
@ -1,7 +1,7 @@
|
|
|
|
Summary: Simple pesign test target
|
|
|
|
Summary: Simple pesign test target
|
|
|
|
Name: pesign-test-app
|
|
|
|
Name: pesign-test-app
|
|
|
|
Version: 5
|
|
|
|
Version: 5
|
|
|
|
Release: 24%{?dist}
|
|
|
|
Release: 25%{?dist}
|
|
|
|
License: GPLv2
|
|
|
|
License: GPLv2
|
|
|
|
URL: https://github.com/vathpela/pesign-test-app
|
|
|
|
URL: https://github.com/vathpela/pesign-test-app
|
|
|
|
BuildRequires: gcc
|
|
|
|
BuildRequires: gcc
|
|
|
@ -53,7 +53,6 @@ getfacl /run/pesign/socket || :
|
|
|
|
if true ; then
|
|
|
|
if true ; then
|
|
|
|
cp %{name}-unsigned.efi bzImage.signed
|
|
|
|
cp %{name}-unsigned.efi bzImage.signed
|
|
|
|
%pesign -s -i bzImage.signed -o bzImage.signed -a redhatsecurebootca5.cer -c redhatsecureboot501.cer -n redhatsecureboot501
|
|
|
|
%pesign -s -i bzImage.signed -o bzImage.signed -a redhatsecurebootca5.cer -c redhatsecureboot501.cer -n redhatsecureboot501
|
|
|
|
%define pe_signing_cert /CN=Fedora Secure Boot Signer
|
|
|
|
|
|
|
|
%pesign -s -i bzImage.signed -o bzImage.signed -a redhatsecurebootca1.cer -c redhatsecureboot301.cer -n redhatsecureboot301
|
|
|
|
%pesign -s -i bzImage.signed -o bzImage.signed -a redhatsecurebootca1.cer -c redhatsecureboot301.cer -n redhatsecureboot301
|
|
|
|
mv bzImage.signed %{name}-signed.efi
|
|
|
|
mv bzImage.signed %{name}-signed.efi
|
|
|
|
else
|
|
|
|
else
|
|
|
@ -90,6 +89,9 @@ done
|
|
|
|
%{_datadir}/%{name}-%{version}/%{name}-signed*.efi
|
|
|
|
%{_datadir}/%{name}-%{version}/%{name}-signed*.efi
|
|
|
|
|
|
|
|
|
|
|
|
%changelog
|
|
|
|
%changelog
|
|
|
|
|
|
|
|
* Thu Jul 16 2020 Peter Jones <pjones@redhat.com> - 5-25
|
|
|
|
|
|
|
|
- Test pesign-113-10.fc33
|
|
|
|
|
|
|
|
|
|
|
|
* Thu Jul 16 2020 Peter Jones <pjones@redhat.com> - 5-24
|
|
|
|
* Thu Jul 16 2020 Peter Jones <pjones@redhat.com> - 5-24
|
|
|
|
- Try naming the cert differently
|
|
|
|
- Try naming the cert differently
|
|
|
|
|
|
|
|
|
|
|
|