Ensured the correct CA key and CA certificate is used during signing process... (!353) · Merge requests · Arch Linux / archiso

Anton Hvornum requested to merge torxed/archiso:strict-ca-key into master Dec 06, 2023

This ensures that the correct CA key and CA certificate is used during signing process. It's been working based on default assumptions from the OpenSSL configuration, but it's worth being explicit when doing these operations.

Also removed a duplicate -sha256 parameter to one of the OpenSSL calls.

This is by no means a critical fix for anything, the current code works. It just ensures that we don't make accidental mistakes during signing.

Edited Dec 06, 2023 by Anton Hvornum

Admin message

Ensured the correct CA key and CA certificate is used during signing process...

Merge request reports