blob: 153487117c77bd1e85ba027e32ad6602ac16baf8 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
|
#!/bin/bash -e
# -*- mode: shell-script; indent-tabs-mode: nil; sh-basic-offset: 4; -*-
# ex: ts=8 sw=4 sts=4 et filetype=sh
if [[ ! "$UAK_EFI_KEYS_PATH" ]]; then
UAK_EFI_KEYS_PATH=/etc/efi-keys
fi
if [[ "$COMMAND" == "install" ]]; then
sign=1
if [[ ! -f "$UAK_EFI_KEYS_PATH/db.crt" ]]; then
warning "Missing db.crt in $UAK_EFI_KEYS_PATH. Skip signing"
sign=0
fi
if [[ ! -f "$UAK_EFI_KEYS_PATH/db.key" ]]; then
warning "Missing db.key in $UAK_EFI_KEYS_PATH. Skip signing"
sign=0
fi
if (( sign )) && [[ -f "$EFISTUB_IMAGE" ]]; then
/usr/bin/sbsign --key "$UAK_EFI_KEYS_PATH/db.key" --cert "$UAK_EFI_KEYS_PATH/db.crt" --output "${EFISTUB_IMAGE}" "$EFISTUB_IMAGE" 2> /dev/null
fi
fi
|