# Contributor: Jakub Jirutka <jakub@jirutka.cz>
# Maintainer: Jakub Jirutka <jakub@jirutka.cz>
pkgname=secureboot-hook
pkgver=1.0
pkgrel=2
pkgdesc="A kernel hook for generating signed UEFI Unified Kernel Image"
url="https://gitlab.alpinelinux.org/alpine/aports"
arch="noarch !armhf !s390x !ppc64le"  # blocked by sbsigntool
license="MIT"
depends="
	efi-mkuki>=1.0.0
	kernel-hooks
	initramfs-generator
	sbsigntool
	"
install="
	$pkgname.pre-upgrade
	$pkgname.post-install
	$pkgname.pre-deinstall
	"
source="secureboot.hook
	secureboot.conf
	"
options="!check"  # no tests provided

package() {
	local name='secureboot'

	install -D -m755 "$srcdir"/$name.hook "$pkgdir"/usr/share/kernel-hooks.d/$name.hook
	install -D -m644 "$srcdir"/$name.conf "$pkgdir"/etc/kernel-hooks.d/$name.conf
	install -d -m700 "$pkgdir"/etc/uefi-keys
}

sha512sums="
4fed9d1e73b2974ebf229e3ebb8d5cc5fc955d9c0e4e14c2e7ffdf7d3b534a3473524083c7c51a4bf9f3013d1c7155ebd41600f5445388d3ac3b4a2a28e17e40  secureboot.hook
a2c5a718648f64eccfb5f90223aee251162f5198b5cd5fb12502bade6101547bd19f9eac9942184fe9eb538d9257cfd0c065f55385a5e629e4c099aa90206ef1  secureboot.conf
"
