alfred/bash-stuff
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Make sure certs and keys are patched when resuming a kernel build.

Browse Source
This commit is contained in:
Captain ALM 2025-02-23 23:02:18 +00:00
parent 8403b80055
commit 8fed036e0a
Signed by: alfred
GPG Key ID: 4E4ADD02609997B1
1 changed files with 8 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
bash_aliases
View File

@ -104,14 +104,6 @@ function kernel-build() {
chmod a+x debian/scripts/*;
chmod a+x debian/scripts/misc/*;
fakeroot debian/rules clean;
mkdir -p debian/build/build-generic/certs;
sudo cp /cert/mok/signing_key.pem ../ -f;
sudo chmod u=rw,g=rw,o=rw ../signing_key.pem;
sudo cp /var/lib/shim-signed/mok/MOK.der ../signing_key.x509 -f;
sudo chmod u=rw,g=rw,o=rw ../signing_key.x509;
cp ../signing_key.x509 debian/build/build-generic/certs/signing_key.der -f;
(((until [ -f debian/build/build-generic/certs/signing_key.pem ]; do sleep 0.1; done) && while lsof debian/build/build-generic/certs/signing_key.pem; do sleep 0.1; done) && mv -f ../signing_key.pem debian/build/build-generic/certs/signing_key.pem) &
(((until [ -f debian/build/build-generic/certs/signing_key.x509 ]; do sleep 0.1; done) && while lsof debian/build/build-generic/certs/signing_key.x509; do sleep 0.1; done) && mv -f ../signing_key.x509 debian/build/build-generic/certs/signing_key.x509) &
else
echo "[-] Failed to obtain sources!";
doNotContinueKernelBuild=1;
@ -120,6 +112,14 @@ function kernel-build() {
fi;
fi;
if [ $doNotContinueKernelBuild -eq 0 ]; then
mkdir -p debian/build/build-generic/certs;
sudo cp /cert/mok/signing_key.pem ../ -f;
sudo chmod u=rw,g=rw,o=rw ../signing_key.pem;
sudo cp /var/lib/shim-signed/mok/MOK.der ../signing_key.x509 -f;
sudo chmod u=rw,g=rw,o=rw ../signing_key.x509;
cp ../signing_key.x509 debian/build/build-generic/certs/signing_key.der -f;
(((until [ -f debian/build/build-generic/certs/signing_key.pem ]; do sleep 0.1; done) && while lsof debian/build/build-generic/certs/signing_key.pem; do sleep 0.1; done) && mv -f ../signing_key.pem debian/build/build-generic/certs/signing_key.pem) &
(((until [ -f debian/build/build-generic/certs/signing_key.x509 ]; do sleep 0.1; done) && while lsof debian/build/build-generic/certs/signing_key.x509; do sleep 0.1; done) && mv -f ../signing_key.x509 debian/build/build-generic/certs/signing_key.x509) &
echo "[*] Building kernel...";
fakeroot debian/rules binary;
if [ $? -eq 0 ]; then