uefi-keys/:

- Generate new keys.
Note: they were originally generated while the repository was public, so they could not be trusted.
- Move the keys in uefi-keys/keys/
- Move mkkeys.sh to make_keys.sh and update it accordingly.
- Update dracut.module/dracut.conf.in accordingly.

dracut.module/dracut.conf.in

@@ -10,5 +10,5 @@ reproducible=yes
 #loginstall=./loginstall/
 uefi=yes
 uefi_stub=/usr/lib/systemd/boot/efi/linuxx64.efi.stub
-uefi_secureboot_cert=%PROJECT_DIR%/uefi-keys/DB.crt
-uefi_secureboot_key=%PROJECT_DIR%/uefi-keys/DB.key
+uefi_secureboot_cert=%PROJECT_DIR%/uefi-keys/keys/db.crt
+uefi_secureboot_key=%PROJECT_DIR%/uefi-keys/keys/db.key

uefi-keys/DB.crt

------BEGIN CERTIFICATE-----
-MIIDHTCCAgWgAwIBAgIUCXcXOU0UPEBomolNyuOYcJfJoRkwDQYJKoZIhvcNAQEL
-BQAwHjEcMBoGA1UEAwwTU3RvcmVkIG9uIGdpdGxhYiBEQjAeFw0yMjA0MDQwOTEz
-NDlaFw0zMjA0MDEwOTEzNDlaMB4xHDAaBgNVBAMME1N0b3JlZCBvbiBnaXRsYWIg
-REIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHiUc+MyP+TQDM4s8c
-SP1p/luYT1pgfS0H8SBQxy0bhjjCu3YTv38FdXR1pxLVLuwJfK0TYzrsL0DAUjNV
-FO45AaC0zbH7eMy4UA6prSEcaqcPgqcyD3Nfg4B/DpwCkdEQVwwT75aR4raG2+QD
-/JRe+n/4tY9PhzxsAexOazISEfMigvjWUg3lDWZyo21orObV6YWMYeX5xN+SregU
-TwE5W7LANhFTzInnaQJ9lmA7q2d+D3FQ/HM6vNmb1a/TlMlnzbGaWOEbWOaIGpku
-ZpTHM+piwm5K5oA7X0rO8Mf5c1X/zuGwLCDj44kFaQlTSV5UMdU5CclvMDK96qcS
-ypMrAgMBAAGjUzBRMB0GA1UdDgQWBBTIHsJW7yF4GMQNU4vxilfX56PMSDAfBgNV
-HSMEGDAWgBTIHsJW7yF4GMQNU4vxilfX56PMSDAPBgNVHRMBAf8EBTADAQH/MA0G
-CSqGSIb3DQEBCwUAA4IBAQAOPzJCyld6PMbuosnwVS0tbv+up157rgGtUB7e4r1O
-b8DKxVSMXA5q7ydj0SP6VWExr192n9omxGYolyBHq1OpxT09khjXor1ebyzBWUoD
-HDrJfHn+VZECTwKlpyR7US1cab1SACstaQomwa2AfAQ6JgBr25Lo8hCcBKKkr/gt
-sLWcQEemPjnRrcD/Wn40lpaqMvJUtasmBRIIPc43LQz4ksSvBnEdq/fHZtfgQtgT
-BDLk9voHxr7sO4X/UqzrReaCnDdbu2HZpgQa/Qv+2b2h2ytyUd2rR5GdqSOYU2Y7
-Y045LGgafuyJDvKH2yaAMtaqQhISFReuUaJ41KxTAk4z
------END CERTIFICATE-----

uefi-keys/DB.key

------BEGIN PRIVATE KEY-----
-MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQDHiUc+MyP+TQDM
-4s8cSP1p/luYT1pgfS0H8SBQxy0bhjjCu3YTv38FdXR1pxLVLuwJfK0TYzrsL0DA
-UjNVFO45AaC0zbH7eMy4UA6prSEcaqcPgqcyD3Nfg4B/DpwCkdEQVwwT75aR4raG
-2+QD/JRe+n/4tY9PhzxsAexOazISEfMigvjWUg3lDWZyo21orObV6YWMYeX5xN+S
-regUTwE5W7LANhFTzInnaQJ9lmA7q2d+D3FQ/HM6vNmb1a/TlMlnzbGaWOEbWOaI
-GpkuZpTHM+piwm5K5oA7X0rO8Mf5c1X/zuGwLCDj44kFaQlTSV5UMdU5CclvMDK9
-6qcSypMrAgMBAAECggEAPOYXClLNb3XNArtOftGAFnN9PRUq/jv2HHBpbn37tGTY
-ugZA2XIesGnSq33cb5gsjhCxOjOU7jTVzFzKMfN7aYanp8cHxTpvMOmuL/cZHfUn
-G8LCiLLSgZo/A4hP8TDT3+rRUtxS1h+dmbdO9jCGkB5gJGY1YQ5jUIudtald1Ml+
-uA/ORlJdO5kbC26ivHBvQQpvkzZlb9C0BnGTktY88cqaIR8LWCI1AE4kpBPSGIzV
-eE5EflHAbma0nxWKEpOtrsBVJUJO5sshNVsE3tVeeWH3u+xjKqHbK1Md5/XTu5to
-mJC3xrQtnVt5qxD3qx3AFbUu0qqA3ipPfZVmkUOpIQKBgQD+4BqubC6vYYj+yMou
-2DJ5o0BZdZMKZ2R2DsjZZp8Xnn6KBhC5WQqGpc+ffk9GGG1r7WpAvCTJR2esMO0X
-L/vcQwhPwVV6vLF7RlQZ5CRQoI2VUMc5podnszIkBADHG9yV0JvTNnpHEc7qCaXH
-LA40V7Cq6q7og1fm+3Gsr+BxiQKBgQDIaqpadmqweit4oLBWaE0FR2ygW29lg4Cx
-TSWdJgXsNyrs1SloX1YAqhLB9fre5oNZ+rlz5SoAUHeeVKMB8gf297GYwmrwgUlz
-ZAWXju8IPkvOMt9Xd5alEobhYmAZN0sVA75nlmPZ9F3+6mzVATNkgk/OfW/zhaUU
-cefw6CV2EwKBgQDyH475N8g5z5xG/hQj4DpDF3TgBzOCZKopBO6EqFpmI6juEcj9
-arr3IrlUOLeyTS5VoxqXGKSRmYXBLFFu/6RxoDRbH7zGdk7cXvkyB2sANSWLPUul
-Vq+3MaJmWG8stykcISqGwW/z59T6u+OCjDWKP+uS0pMKSwvMX/2jIQlEkQKBgGJc
-35EYj1JgE5fXndQ6ypptrKWjWrAC85WRXIWdVMjTZrDoCbOdHtOipSQm+uKNVihC
-QuTbs1qGI79EoOBijoAqnzJvMRcrDQaiL5Br6WstT/06wJzoJ7qKtkJGCw41Mhd1
-R+0FRaqCIePr4FBGj5ej0VFyBRELJbM8GG8HMOObAoGBAJxlO+XJ9vjkoABACfH9
-E2H8JeMdSqRb3XfO3a0U/DmWcqMghvMc0vLFacH/kOVji4wILtS/AuqLZC50ZaUH
-1+JBRcBUX93tlvKq02DUEmmhZGhFqYk/8w3f0coq/c1h+Wacyqd3ngJs6b3BEBNw
-Lqx/1jQbXMC8YJ0GNp8FkGT0
------END PRIVATE KEY-----

uefi-keys/KEK.crt

------BEGIN CERTIFICATE-----
-MIIDHzCCAgegAwIBAgIUfWXW12ByFkz/so3aswilrWI7vo0wDQYJKoZIhvcNAQEL
-BQAwHzEdMBsGA1UEAwwUU3RvcmVkIG9uIGdpdGxhYiBLRUswHhcNMjIwNDA0MDkx
-MzQ5WhcNMzIwNDAxMDkxMzQ5WjAfMR0wGwYDVQQDDBRTdG9yZWQgb24gZ2l0bGFi
-IEtFSzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJrlyqU+2K0QFlSK
-FhU4ptUchrKLZ6LnHQoREE7mRyH4VR7pBeBmOHW9I2b9DKJJEA6KswWqOhKPWInk
-XaZSvvBssy3Y1Kv30oeiBMQed3r9SfLmTJRblnNvJ+YIz1ZwwdMenrg5kMA2PaFY
-gy22yNzY0oT2SgB592ge+ftnueBD79nbEyXfR5jynZSup6glt+C49uKYukdw35Qa
-cbYnq0vvsJKmR0hxrDbAdjh/9tCqa1v4EqihHJ4r9sQ9LhGxSN4CjlfzOgufZ9Zg
-2nWt8Ig3jeBynPz9GxdHD0rH4DzQ9JZSmR9gJoF1hcUASAB3SqJLXQskF7hf/eXL
-AjCSig0CAwEAAaNTMFEwHQYDVR0OBBYEFGZEDP/JE0zKLEnrgmhfLcCnt2YcMB8G
-A1UdIwQYMBaAFGZEDP/JE0zKLEnrgmhfLcCnt2YcMA8GA1UdEwEB/wQFMAMBAf8w
-DQYJKoZIhvcNAQELBQADggEBAAUbf/Fl1rcgz2DCrlEuO8tnbhvLzc4peJxu8DIv
-m9zLgTlhceQI2lMLEYk4sJzzmzQ5ZQmRRnGUmR0SmKAPziPhRa6efRivDGVVyTqi
-Tlu6rO1ZN1mQz/uctZeTkV4TGhiVu2GrE5qE611kZLECBzQffLOJcraYhTwDi0jm
-nSvkRCRTV2SGxsD45eYcCnRYpl5pTHhLa2QbS6nTf5OFSfItSntxCSZ773zg0gWk
-nUNyAjuZOcg5223XL+njUKVWyR3Z9P3aR1D1psTrHd5e6eun/DLrAZQhZ0jQphtJ
-6YAOrwDhGhMKTFTPhegR3H99Ie8R2dIcTa752GVd54IQ44g=
------END CERTIFICATE-----

uefi-keys/KEK.key

------BEGIN PRIVATE KEY-----
-MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQCa5cqlPtitEBZU
-ihYVOKbVHIayi2ei5x0KERBO5kch+FUe6QXgZjh1vSNm/QyiSRAOirMFqjoSj1iJ
-5F2mUr7wbLMt2NSr99KHogTEHnd6/Uny5kyUW5ZzbyfmCM9WcMHTHp64OZDANj2h
-WIMttsjc2NKE9koAefdoHvn7Z7ngQ+/Z2xMl30eY8p2UrqeoJbfguPbimLpHcN+U
-GnG2J6tL77CSpkdIcaw2wHY4f/bQqmtb+BKooRyeK/bEPS4RsUjeAo5X8zoLn2fW
-YNp1rfCIN43gcpz8/RsXRw9Kx+A80PSWUpkfYCaBdYXFAEgAd0qiS10LJBe4X/3l
-ywIwkooNAgMBAAECggEASPH0Z7Nb+Mw9p9xLn/zI3E2NxWFPEfFCxK3afz2EvCOl
-emQEh3O8HP5QQLzkiTxdGmwI+J78sCbfbDimPaB0GOcnzmxxYvbXJ1aOZglu/PVx
-MLlx0N/8zynGoVb+xVdef9zIpDs/xrUEewoi5JFSsGZPZZxSpzzI3TjRQqrLZyf7
-plWigHbbm5PLZGO1wB8HutzeXTUxZafUK3ekkOAQUr6ZSAaC33Yxh+06jS/ndnM1
-PA/3Pjeg9u0JkuUZfiE2EDWaCR51JAOK8p3MI7/2w3FkWeDMzvvq8qkrwSBpHx+v
-oe6aao2H++l6ln0vfvUK6Y0RS5/D//N9rjugfMb8wQKBgQDJ3936kve0+JLlzK/a
-K2lhL+isZEmaSeAcWYhVSJ9yeLadBFYFZRZUOiFOb89182/WredHBdvi0Bd48IMn
-6Rb6KJsy4P6RiYWlMNTybmVZf4Bxt6NZ9c/4IJtiU6fu1jPMu3u22WYcnMz1fNbq
-yVASilH4ff8uduxxMsAuLu7nHQKBgQDEbY6A+otNOq1hsnP9Rkhc8h8OSAg3dz9G
-1rQvfB4IAyJIQ4FQLh3YwMkbLCoOoFcK5wHYiFgwrzthngVi/cEzJmnvVkU5A9MM
-U83cFnqHOq5veCfaIGDBVHMiqBuejpiWWhyU376k3BxtrTOTNoByTzNbiZwxP3cA
-1gkBcQiLsQKBgDXU4JilADDd6C4nOu1ujhdAc0clJwthj8V/in9TclFQJ0IPmfCu
-WBn1tlP4NNY7KCOTFA04Xr5IxzmUySSnX10t3tTecoPUrDK0ptRO4+/NtC6ezYx7
-pA2ChGzf6fQiYoXBqOfFaRlQJsd/lr/dFuEayWj+EEIPrFUzN1QZZ9NxAoGBAJTj
-pjzFrIlhjMKdDaZRe9BYBopAt1mzndcIL5Q+tFTGa1nzMTWhfyYpG0bpdweXKeMt
-rwx+bLqaWJxptxON3L/0wh+UeOv6piKV81h8AWw3YrlDjpGcMTrZ1FvUqPrKg4aT
-z05ZOpyj6ziHLKzNhxceSYN9D1OVE5MiqbjaAOxBAoGAUJjZcO96OdSbJ2h4QcPY
-HhjTYXdb6/WGqulwfKSTiByjM/uNTt5Ry9EyK9eD9QAG8eJZuLTXKexkjJYJCl3G
-R/URFiafojVgqV8LTUfAHSZ+An/3Syhac6Sr5Aa01sy/58zIMYO1HWtRERTCO9O8
-mWzh80Jm4maLcJwdPFReKO4=
------END PRIVATE KEY-----

uefi-keys/PK.crt

------BEGIN CERTIFICATE-----
-MIIDHTCCAgWgAwIBAgIULMOpRSFPuIZf3kENV26CKG/n4IYwDQYJKoZIhvcNAQEL
-BQAwHjEcMBoGA1UEAwwTU3RvcmVkIG9uIGdpdGxhYiBQSzAeFw0yMjA0MDQwOTEz
-NDlaFw0zMjA0MDEwOTEzNDlaMB4xHDAaBgNVBAMME1N0b3JlZCBvbiBnaXRsYWIg
-UEswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3IX8Gfz8R93RT3hQJ
-G5SDahwoZuCSO0TsSY8akTZCe4AoRm8DlaSwb60QHiO5Be7A6zFYzbWxYVGPDqHH
-li9ICP75GtnbgjMEbGQvzAOWH7FNpUSNMiiIFdzFSdrFZBgoS4IGRgR2/D0kl+Dg
-Z+j4bU0tw6S6MlJprMxx613OxndrXZqgy/OgA/SnutpdiRjU+AziWGcnMYKCRuQS
-e3mfqTS8lMFvS2DFHmZwddPTimIVCEzVzhMUJe5bm/SuYS3z9VWnPMeDRIyIQCmN
-of9+YIzW1m8tb7P5mpS+3NPzJ65pG5FeEgOxr+U1shcMuV0swdN+h057Z1F+4jFc
-3XzPAgMBAAGjUzBRMB0GA1UdDgQWBBSwOm6VV8AbJdyhBfga4KUduU+kcTAfBgNV
-HSMEGDAWgBSwOm6VV8AbJdyhBfga4KUduU+kcTAPBgNVHRMBAf8EBTADAQH/MA0G
-CSqGSIb3DQEBCwUAA4IBAQBRI2flodyHjTi8JBT1911XBrZqvt+pO6IYePvjRBmy
-bmPtK73GntULkNe7OGYFswAy5tQrQjPfsSGh454dAl+xJHVtScHFD6W4atz/65DZ
-mtjhn4POnzVBlPMEL7CY0UGl/ocn/uLolbxFJ9AIHpYg5NPA6HeMt8x9+fUbHmNS
-lzXqNJOi4f9O35tRAmORABHHHXIocdLxpFNH5SmZ++rbbueLVl4llGUS++taniKn
-URIPcYmCHnP8RLyvm73djct86h0qeBFbRrVHTgu6+mGdzqMizqsXRgK9tWcj5Sh5
-GvzkzwPo7TVsMPWZYd/jB4UM1GJyCv/0Eqgs+P5DkvIa
------END CERTIFICATE-----

uefi-keys/PK.key

------BEGIN PRIVATE KEY-----
-MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQC3IX8Gfz8R93RT
-3hQJG5SDahwoZuCSO0TsSY8akTZCe4AoRm8DlaSwb60QHiO5Be7A6zFYzbWxYVGP
-DqHHli9ICP75GtnbgjMEbGQvzAOWH7FNpUSNMiiIFdzFSdrFZBgoS4IGRgR2/D0k
-l+DgZ+j4bU0tw6S6MlJprMxx613OxndrXZqgy/OgA/SnutpdiRjU+AziWGcnMYKC
-RuQSe3mfqTS8lMFvS2DFHmZwddPTimIVCEzVzhMUJe5bm/SuYS3z9VWnPMeDRIyI
-QCmNof9+YIzW1m8tb7P5mpS+3NPzJ65pG5FeEgOxr+U1shcMuV0swdN+h057Z1F+
-4jFc3XzPAgMBAAECggEAcI98Hig0QfzRWYNU2UxEeonMCOFDA16+vGVyOigrK63x
-VdAFCDUAZxodS5za5CzLVXS6fhTiqsZgdQfPVHfxU9uDrOVeJtfeN8fPxLknMy0D
-s+/zNL4xv4OAkRsWBuHBH3NZ1jVPJTtg8Y8Qv53eymOUXp60L2Yi1aVKfHLo0+CK
-uHx3oeJESLDeZYPPXWE8jCcQ8FZRJezw6RiiwBtA1kUQXNhyy3ZGuiiJ8GkiIDyn
-Fww4ypmghGw64KOclKRMcdpFGvOkNmGMH1TVHPC3eL8EAq1XoaPXIa7JGxFSY8tV
-FU9XK10kP4nTrxhKdoLgQaFBPGsmsnwxtrqF20tywQKBgQDh8hmpHhDqtanQEjU0
-R24KhVWcpQqxk0CHYcmUBU2zmjn7Zf26E3hZGhT/asT86Yow+2W/nl6UV+UT7GYu
-ZUF0S1Tr7lTL0rIM9Aac5aLnafJzsoZ9hsx1q5/v5ehkEPqbhiWI1+ieqs5RH77Y
-2nizapTRsxkLWgJg9TIpQCZVkQKBgQDPfXcJ1gxAz0WLj6yJd7r6f9w2gz2oyinN
-xqfEMb8foezpu89z1Gnp74znTVuc6GgxR60nMp2Z7C3x1CcjG6c8jKI/+T3PHT9l
-BXslGyqZX5IgmtP9gOQjQopN8o0EGuD/GujWPL6XeFiqxJdS/4RUD9OifoSGFBFx
-myMyY1n8XwKBgQCnQdKhEHKxbJ0yO+hKtP3Op/lCJiKOZVUFYuwXuP1WELsPUObM
-UhFq1BXrJZyBJFh5/f/KI3AcHByl7P+PJMGZVxKcPCdlYqkPUa17g7pd2F30K5nH
-XnwIN24D5otrV+5MJreuXzYCDqr//qIGYWOsXR+hRBUsBAtyvs/NHYHDIQKBgFk0
-h8kizYHPmwa1bmhroWexMOv+4LOAtxhRIC+pc5IV+9VBeZ9C44ZAB0Qqbgi3opQN
-TNRdXoSeleIyY+EkMnJFxDvc3EX/PRIhmSAK3fWysRBzgFCs6Wh/YxbAAQCSzcjf
-uNrios5cX0KL4sM8N5gsdcCWxEMgvZ8qI6e2LynhAoGAaQVhkFNmAsiyHrG9Ly31
-7XjRImRqt6OEexop2wsZ1Moq6/I+e9QxPi2bhlwnqboKqBEip+AmxGTtCCKjVxS7
-yCmUjS17Cp2Qd5nWIBEo1YJlibr8APYyJR56wboTHGW8ifmScj2VDeOPAzTWQoIo
-W2x4Ywep8ZoZOsmsidzZx2I=
------END PRIVATE KEY-----

uefi-keys/keys/KEK.crt

+-----BEGIN CERTIFICATE-----
+MIIDHTCCAgWgAwIBAgIUAgrUDFiPo2hxBIyH9zQdsRoy82AwDQYJKoZIhvcNAQEL
+BQAwHjEcMBoGA1UEAwwTUmFwaWQuU3BhY2UtMDAxIEtFSzAeFw0yMjA0MDUxMzUx
+NTZaFw0zMjA0MDIxMzUxNTZaMB4xHDAaBgNVBAMME1JhcGlkLlNwYWNlLTAwMSBL
+RUswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHCM2QZ47W+TDU0RD/
+FyVwxt/PXYW3nvHVh4s2UrcTv8T9w1eOiKVorGt24fQ0XI/S3vXmABCU+SOH60Co
+9AJwIClTLmUC/DiWGiafamEtp+SGkO+5vZl8rk3W50ucuodBEP+AtAH6UwMx59de
+ELAA7Rxuq76LDm4YG7amB121eLC1eUCIcXwUwyHnZF0UbdMFYo7cnw7XQc13tALo
+O6vpMT0tpkHyS2YEFRv7bTava4NsYAYAX6AGuie5KtXaoT7HmmJprtDWWymJLLjM
+UZpO/hhjRBkZjYdIQVUSvFaV8ofXefYcDxmAVE7gV6VlSTbY84U8z6QGOdpmasSQ
+0GxzAgMBAAGjUzBRMB0GA1UdDgQWBBQvB54/i/TRLjOZZi2YqiEtihK7NDAfBgNV
+HSMEGDAWgBQvB54/i/TRLjOZZi2YqiEtihK7NDAPBgNVHRMBAf8EBTADAQH/MA0G
+CSqGSIb3DQEBCwUAA4IBAQAdLRr0V/BOsWBX3yEmqkdPNmPCZ7VNFFqHB8PKVvq0
+ZYUEOhOFdZy8LRl7LzrPaqHYicUS8Xb3icIxYCpVlihMe3RH7yG4jXpVajIfLu6B
+BsBOcxUgW/eF1qOOVIjdxIXD/35LrLB0lj5Wh8t8XHcjb8vRlcXgpKpUDEbM8k1H
+gMKjEJrxRc3MEbMZfkzq06dSCiVSketMl6xcE/2hLIqfS3QWpQOsneEPG6Y4Yp+g
+65LbAE6cNOQ5P5NYHss0n6yTG48Zomj07WCSewQwbiulurYgZALfSSYjG90rJLST
+SiB4BFaE80eZTCs1GzIiBHr2LIoHkeTpust38zcf9LXe
+-----END CERTIFICATE-----

uefi-keys/keys/KEK.key

+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

uefi-keys/keys/PK.crt

+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

uefi-keys/keys/PK.key

+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

uefi-keys/keys/db.crt

+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

uefi-keys/keys/db.key

+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

uefi-keys/keys/myGUID.txt

+8e75ae9a-b4e7-11ec-b245-00224ddacaa7

uefi-keys/mkkeys.sh → uefi-keys/make_keys.sh

 #!/bin/bash
 # Copyright (c) 2015 by Roderick W. Smith
 # Licensed under the terms of the GPL v3
+# Modified by Nexedi 2021-2022
 
 echo -n "Enter a Common Name to embed in the keys: "
 read NAME
 
+mkdir -p keys
+cd keys
+
 openssl req -new -x509 -newkey rsa:2048 -subj "/CN=$NAME PK/" -keyout PK.key \
         -out PK.crt -days 3650 -nodes -sha256
 openssl req -new -x509 -newkey rsa:2048 -subj "/CN=$NAME KEK/" -keyout KEK.key \
         -out KEK.crt -days 3650 -nodes -sha256
-openssl req -new -x509 -newkey rsa:2048 -subj "/CN=$NAME DB/" -keyout DB.key \
-        -out DB.crt -days 3650 -nodes -sha256
+openssl req -new -x509 -newkey rsa:2048 -subj "/CN=$NAME db/" -keyout db.key \
+        -out db.crt -days 3650 -nodes -sha256
 openssl x509 -in PK.crt -out PK.cer -outform DER
 openssl x509 -in KEK.crt -out KEK.cer -outform DER
-openssl x509 -in DB.crt -out DB.cer -outform DER
+openssl x509 -in db.crt -out db.cer -outform DER
 
 GUID=`python3 -c 'import uuid; print(str(uuid.uuid1()))'`
 echo $GUID > myGUID.txt
 
 cert-to-efi-sig-list -g $GUID PK.crt PK.esl
 cert-to-efi-sig-list -g $GUID KEK.crt KEK.esl
-cert-to-efi-sig-list -g $GUID DB.crt DB.esl
+cert-to-efi-sig-list -g $GUID db.crt db.esl
 rm -f noPK.esl
 touch noPK.esl
 
@@ -31,7 +35,7 @@ sign-efi-sig-list -t "$(date --date='1 second' +'%Y-%m-%d %H:%M:%S')" \
 sign-efi-sig-list -t "$(date --date='1 second' +'%Y-%m-%d %H:%M:%S')" \
                   -k PK.key -c PK.crt KEK KEK.esl KEK.auth
 sign-efi-sig-list -t "$(date --date='1 second' +'%Y-%m-%d %H:%M:%S')" \
-                  -k KEK.key -c KEK.crt db DB.esl DB.auth
+                  -k KEK.key -c KEK.crt db db.esl db.auth
 
 chmod 0600 *.key
 

uefi-keys/myGUID.txt

-89da4706-b3f7-11ec-92f8-00224ddacaa7