search

lcp / mokutil

The utility to manipulate machine owner keys
GNU General Public License v3.0
60 stars 37 forks source link

Short certificate listing by default #78

Closed lnussel closed 4 months ago

lnussel commented 5 months ago

Also add -a option to list all databases

# mokutil -l -a
[MokListRT]
4659838c82 openSUSE Secure Boot CA
[MokListXRT]
0000000000 (sha256)
[PK]
bca4e38ed1 SUSE Linux Enterprise Secure Boot CA
[KEK]
bca4e38ed1 SUSE Linux Enterprise Secure Boot CA
31590bfd89 Microsoft Corporation KEK CA 2011
[db]
580a6f4cc4 Microsoft Windows Production PCA 2011
46def63b5c Microsoft Corporation UEFI CA 2011
[dbx]
e3b0c44298 (sha256)
lnussel commented 5 months ago

fixes #62

lcp commented 4 months ago

Thanks for the patch. I'll review the patch soon.

lnussel commented 4 months ago

updated

lcp commented 4 months ago

Thanks!

iokomin commented 4 months ago

@lcp @lnussel apologize for this late comment

Changing default behavior may affect existing customer environments and automation scripts which already depend on the detailed output. All in all feature looks great, the only concern from my side is this default behavior change, as it may be considered as a sort of "breaking change" to take into account.

lcp commented 4 months ago

@lcp @lnussel apologize for this late comment

Changing default behavior may affect existing customer environments and automation scripts which already depend on the detailed output. All in all feature looks great, the only concern from my side is this default behavior change, as it may be considered as a sort of "breaking change" to take into account.

You are right. This change could break the old scripts. I was in a hurry to merge new patches and fix the versioning issue and didn't think it thoroughly. I'm considering to flip the default listing method to verbose for 0.7.2.

lnussel commented 3 months ago

well, don't submit to SLE. For TW just do it. The world is changing and this is not exactly the most critical user facing tooling