KeyTool: Fix .auth vs .esl/.cer file confusion In user mode, authenticated variables are the ones that require .auth files. The Mok variables still take any file type. Signed-off-by: James Bottomley <James.Bottomley@HansenPartnership.com>

commit: 236e200ffa29c0416b663936f7164b6bd9a02c8c [log] [tgz]
author: Gheorghe Almasi <gheorghe@us.ibm.com> Thu Nov 05 11:42:06 2020 -0800
committer: James Bottomley <James.Bottomley@HansenPartnership.com> Thu Nov 05 17:08:08 2020 -0800
tree: 2d15331e4e6a985a871ac3185e4b07c767d90612
parent: 54c33a5925bdcb066d7d2d31176c618b4d17cde0 [diff]
diff --git a/KeyTool.c b/KeyTool.c
index 049ee4e..62be460 100644
--- a/KeyTool.c
+++ b/KeyTool.c

@@ -405,8 +405,13 @@
 {
 	CHAR16 *title[3];
 	/* PK update must be signed: so require .auth file */
-	CHAR16 *ext = (key != KEY_PK && variable_is_setupmode())
-		? L".esl|.auth|.cer" : L".auth";
+	CHAR16 *ext;
+
+	if (key != KEY_PK && (variable_is_setupmode()
+			      || keyinfo[key].authenticated == 0))
+		ext = L".esl|.auth|.cer";
+	else
+		ext = L".auth";
 
 	title[0] = L"Select File containing additional key for";
 	title[1] = keyinfo[key].text;
commit	236e200ffa29c0416b663936f7164b6bd9a02c8c	[log] [tgz]
author	Gheorghe Almasi <gheorghe@us.ibm.com>	Thu Nov 05 11:42:06 2020 -0800
committer	James Bottomley <James.Bottomley@HansenPartnership.com>	Thu Nov 05 17:08:08 2020 -0800
tree	2d15331e4e6a985a871ac3185e4b07c767d90612
parent	54c33a5925bdcb066d7d2d31176c618b4d17cde0 [diff]