Merge lp:~apw/launchpad/signing-kmod-extended-key-usage into lp:launchpad
Proposed by
Andy Whitcroft
Status: | Merged |
---|---|
Merged at revision: | 18744 |
Proposed branch: | lp:~apw/launchpad/signing-kmod-extended-key-usage |
Merge into: | lp:launchpad |
Diff against target: |
124 lines (+64/-18) 2 files modified
lib/lp/archivepublisher/signing.py (+36/-18) lib/lp/archivepublisher/tests/test_signing.py (+28/-0) |
To merge this branch: | bzr merge lp:~apw/launchpad/signing-kmod-extended-key-usage |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Colin Watson (community) | Approve | ||
Review via email: mp+352305@code.launchpad.net |
Commit message
Add kmod extendedKeyUsage information to restrict the keys to signing of modules only. This prevents those keys being used as EFI kernel signing keys.
To post a comment you must log in.
All sensible. Applied and pushed.