On Thu, May 23, 2024 at 10:27:09PM +0200, Christoph Biedl wrote: >Package: sbsigntool >Version: 0.9.4-3.1+b1 >Severity: normal >X-Debbugs-Cc: debian.a...@manchmal.in-ulm.de > >Greetings, > >it was a bit surprising to learn sbsign will happily sign EFI images >even if the certificate, provided via the --cert parameter, has expired. >While this possibly will not affect functionality, it might still cause >surprising and hard-to-debug issues later.
Wow, yes. Thanks for the heads-up and patch. I'll try to get this upstream too. -- Steve McIntyre, Cambridge, UK. st...@einval.com “Rarely is anyone thanked for the work they did to prevent the disaster that didn’t happen.” -- Mikko Hypponen (https://twitter.com/mikko/)
