https://bugzilla.suse.com/show_bug.cgi?id=1193282 https://bugzilla.suse.com/show_bug.cgi?id=1193282#c5 --- Comment #5 from Michael Chang <mchang@suse.com> --- (In reply to Ludwig Nussel from comment #2)

btw, the data in SBAT I suppose needs to comply to certain standards. Would it be possible to package that data in a form consumable by other packages?

https://github.com/rhboot/shim/blob/main/SBAT.md#generation-based-revocation...

I just noticed that systemd will need the data in the future.

Is it systemd-boot ? It seems to request for Microsoft signing recently.

I guess we should avoid duplicating it. Could be as simple as rpm macros or some shell sourceable config.

Yes defining rpm marcos for common sbat vaules would be helpful, eg vendor_name and vendor_url. -- You are receiving this mail because: You are on the CC list for the bug.