Plan of action for Secure Boot support

Bastian Blank waldi at debian.org
Wed Aug 14 09:49:25 UTC 2013


On Wed, Aug 14, 2013 at 12:30:55AM +0200, Ben Hutchings wrote:
> Editing of binary packages is icky, so that's not part of the plan.
> Instead, after dak signs an executable, the package maintainer downloads
> and copies those into a separate 'source' package, which has a trivial
> debian/rules.  (And of course will generate an appropriate 'Built-Using'
> header.)

This will most likely go via by-hand. So a script on the dak side is
needed anyway.

Why not do the dummy source package stuff in this script and let dak do
all the work semi-automatically? It needs a prepared binary tree in a
tar, a list of files to be signed and a DEBIAN dir.

Bastian

-- 
Landru! Guide us!
		-- A Beta 3-oid, "The Return of the Archons", stardate 3157.4



More information about the Pkg-grub-devel mailing list