diff options
author | Brian Norris <briannorris@chromium.org> | 2023-11-16 14:18:16 -0800 |
---|---|---|
committer | Chen-Yu Tsai <wens@kernel.org> | 2023-12-05 10:52:46 +0800 |
commit | 9e0aee64cd2347b45d6d29a65105c2926c0b8dbc (patch) | |
tree | 7e7b06fecaffe57e3fbe3c183d682ad444c6cc2d | |
parent | 37dcea0e6e5effb4228fe385e906edba3cbee389 (diff) | |
download | wireless-regdb-9e0aee64cd2347b45d6d29a65105c2926c0b8dbc.tar.gz |
wireless-regdb: Makefile: Reproducible signatures
Per openssl-mime(1):
-noattr
Normally when a message is signed a set of attributes are
included which include the signing time and supported
symmetric algorithms. With this option they are not included.
The signing time hurts reproducibility, even if the same database, key,
and certificate are used.
So, drop the extra attributes from the smime command.
Signed-off-by: Brian Norris <briannorris@chromium.org>
Signed-off-by: Chen-Yu Tsai <wens@kernel.org>
-rw-r--r-- | Makefile | 1 |
1 files changed, 1 insertions, 0 deletions
@@ -69,6 +69,7 @@ regulatory.db.p7s: regulatory.db $(REGDB_PRIVKEY) $(REGDB_PUBCERT) -signer $(REGDB_PUBCERT) \ -inkey $(REGDB_PRIVKEY) \ -in $< -nosmimecap -binary \ + -noattr \ -outform DER -out $@ sha1sum.txt: db.txt |