|
|
@ -52,9 +52,9 @@ getfacl /run/pesign/socket || :
|
|
|
|
#%%define pe_signing_cert Fedora Secure Boot Signer
|
|
|
|
#%%define pe_signing_cert Fedora Secure Boot Signer
|
|
|
|
if true ; then
|
|
|
|
if true ; then
|
|
|
|
cp %{name}-unsigned.efi bzImage.signed
|
|
|
|
cp %{name}-unsigned.efi bzImage.signed
|
|
|
|
%pesign -s -i bzImage.signed -o bzImage.signed -a redhatsecurebootca1.cer -c redhatsecureboot301.cer -n redhatsecureboot301
|
|
|
|
|
|
|
|
%define pe_signing_cert /CN=Fedora Secure Boot Signer
|
|
|
|
|
|
|
|
%pesign -s -i bzImage.signed -o bzImage.signed -a redhatsecurebootca5.cer -c redhatsecureboot501.cer -n redhatsecureboot501
|
|
|
|
%pesign -s -i bzImage.signed -o bzImage.signed -a redhatsecurebootca5.cer -c redhatsecureboot501.cer -n redhatsecureboot501
|
|
|
|
|
|
|
|
%define pe_signing_cert /CN=Fedora Secure Boot Signer
|
|
|
|
|
|
|
|
%pesign -s -i bzImage.signed -o bzImage.signed -a redhatsecurebootca1.cer -c redhatsecureboot301.cer -n redhatsecureboot301
|
|
|
|
mv bzImage.signed %{name}-signed.efi
|
|
|
|
mv bzImage.signed %{name}-signed.efi
|
|
|
|
else
|
|
|
|
else
|
|
|
|
cp %{name}-unsigned.efi %{name}-unsigned.0.efi
|
|
|
|
cp %{name}-unsigned.efi %{name}-unsigned.0.efi
|
|
|
|