On Mon, Dec 22, 2025 at 4:53 PM Mateus Rodrigues Costa <[email protected]> wrote:
> 2) We are close to January, what's keeping us from receiving shims > signed with the new 2023 certs? It seems Neal said that Microsoft > would start signing with the new certs in October of last year. Am I > missing something? I don't think the shims (grub, systemd-boot, ??) have needed to be reissued (and re-signed) for quite some time, so I it just did not happen (yet). I believe for Fedora the latest codes (16.1?) are in the process of being validated (and, for what is probably obvious reasons, the number of people who are authorized to work the process is almost certainly going to be extremely limited). I do expect such work to ramp up in the new year (not just by Red Hat, but other Linux vendors who also need their shim's signed). Some may have already been, depending on when they requested their latest signings (any new shims after October were dual signed). For progress, you can watch the issues at: https://github.com/rhboot/shim-review -- _______________________________________________ devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
