diff options
| author | Steve McIntyre <steve@einval.com> | 2024-02-17 17:19:57 +0000 |
|---|---|---|
| committer | Steve McIntyre <steve@einval.com> | 2024-05-02 22:13:14 +0100 |
| commit | 3cf4042d82ef314f19e9f7bd4f86c4b59efd8233 (patch) | |
| tree | a60af0a6edd19f7069b283fdb5c9e4216044aa7e | |
| parent | d6a5a165a3d99805fafb6e66c8d8b767b2c32735 (diff) | |
| download | efi-boot-shim-3cf4042d82ef314f19e9f7bd4f86c4b59efd8233.tar.gz efi-boot-shim-3cf4042d82ef314f19e9f7bd4f86c4b59efd8233.zip | |
Tweak the UUID handling to be clearer
| -rwxr-xr-x | debian/generate_dbx_list | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/debian/generate_dbx_list b/debian/generate_dbx_list index 9f768943..5fbd9c41 100755 --- a/debian/generate_dbx_list +++ b/debian/generate_dbx_list @@ -16,9 +16,11 @@ ARCH=$1 IN=$2 OUT=$3 +DEBIAN_UUID="fa31923d-6047-40bf-81d0-e63edefcf194" + # This needs to be fixed to make builds reproducible, of course. If # you're deriving from Debian, please generate your own. -DEBIAN_UUID="fa31923d-6047-40bf-81d0-e63edefcf194" +UUID="$DEBIAN_UUID" rm -f $OUT if [ -x /usr/bin/efisiglist ] ; then @@ -36,7 +38,7 @@ else for HASH in $(grep -E "[[:xdigit:]]{32} $ARCH" < $IN | \ awk '{print $1}' | sort | uniq); do echo " Adding $HASH to dbx list" - efisecdb -g "$DEBIAN_UUID" -a -t sha256 -h $HASH $INTMP -o $OUT + efisecdb -g "$UUID" -a -t sha256 -h $HASH $INTMP -o $OUT # Subsequent passes need to read the previous output as input # each time, and won't overwrite the output. |