)]}'
{
  "commit": "7d6210e4b1fd5ed16a671a07aaa14a98a9f7c33c",
  "tree": "be0db81e7b8fd993f89d7f8beb5b07be91497f3b",
  "parents": [
    "fe88da5f66241d959b7aeca7502d401ad88df410"
  ],
  "author": {
    "name": "AKASHI Takahiro",
    "email": "takahiro.akashi@linaro.org",
    "time": "Thu Jun 04 16:50:22 2020 +0900"
  },
  "committer": {
    "name": "James Bottomley",
    "email": "James.Bottomley@HansenPartnership.com",
    "time": "Fri Jun 05 14:07:44 2020 -0700"
  },
  "message": "sbsign: allow for adding intermediate certificates\n\nSignedData can have multiple certificates, but the current\nimplementation of sbsign only allows a single one (as a signer).\nWith this patch, \"-addcert\" options will be available on command line to\nspecify a file in which any number of intermediate certificates in PEM\nformat can be concatenated.\n\n  $ sign --key \u003ckey\u003e --cert \u003ccert\u003e --addcert \u003cmorecerts\u003e [...] image_file\n\nBackground:\nI\u0027m working on implementing UEFI secure boot on U-Boot and want\nto test my code against PE images with intermediate certificates\nin certificate chain.\nAs far as I know, the only tool that supports it in signing is\nMicrosoft\u0027s signtool.exe. So I\u0027d like to have some corresponding\ntool on linux.\n\nSigned-off-by: AKASHI Takahiro \u003ctakahiro.akashi@linaro.org\u003e\nSigned-off-by: James Bottomley \u003cJames.Bottomley@HansenPartnership.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "ff1fdfd4e5a4ab27ddb0d9c3bf5da5d11b7db545",
      "old_mode": 33188,
      "old_path": "src/sbsign.c",
      "new_id": "92607a7938abf3412bfecd2db40057dcf456530a",
      "new_mode": 33188,
      "new_path": "src/sbsign.c"
    }
  ]
}
