Re: UEFI Secure Boot sprint report

To: debian-project@lists.debian.org
Subject: Re: UEFI Secure Boot sprint report
From: Tollef Fog Heen <tfheen@err.no>
Date: Mon, 30 Apr 2018 17:20:35 +0200
Message-id: <[🔎] 87wowo201o.fsf@err.no>
Mail-followup-to: debian-project@lists.debian.org
In-reply-to: <[🔎] 23271.2284.97487.986361@chiark.greenend.org.uk> (Ian Jackson's message of "Mon, 30 Apr 2018 13:15:40 +0100")
References: <[🔎] 8736zdx0hj.fsf@err.no> <[🔎] 23271.2284.97487.986361@chiark.greenend.org.uk>

]] Ian Jackson 

> > Once this was agreed and various corner cases ironed out, we started
> > implementing the signing service, and the necessary changes in the
> > Linux kernel package, dak, fwupdate, shim and grub. The source for the
> > signing service can be found at
> > https://salsa.debian.org/ftp-team/code-signing.
> 
> One small point: Do you think tht the source for the signing service
> is part of the source for the signed output ?  If so it probably needs
> to be in the Debian archive, not just on salsa.  Sorry if this is
> inconvenient.

Not any more than sbuild, buildd and wanna-build is part of the source
for buildd-signed packages in the archive, so my initial answer is no.
That said, it would be trivial to package, so somebody could easily
upload it to the archive.

-- 
Tollef Fog Heen
UNIX is user friendly, it's just picky about who its friends are

Reply to:

References:
- UEFI Secure Boot sprint report
  - From: Tollef Fog Heen <tfheen@debian.org>
- Re: UEFI Secure Boot sprint report
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>

Prev by Date: Re: UEFI Secure Boot sprint report
Next by Date: Re: Request for official help
Previous by thread: Re: UEFI Secure Boot sprint report
Index(es):
- Date
- Thread