grub2.spec: Conditionally set grub config stub to 0600 mode

When upgrading from <=2.06-126 to newer versions, the grub config stub may have different mode than 0600, so set the latter if this is the case. Signed-off-by: Leo Sandoval <lsandova@redhat.com>
2024-11-24 14:32:58 +00:00 · 2024-08-02 11:34:29 -06:00 · 2024-08-02 11:34:29 -06:00 · f9093b2645
commit f9093b2645
parent 7b5da77f73
1 changed files with 11 additions and 1 deletions
--- a/grub2.spec
+++ b/grub2.spec
@ -17,7 +17,7 @@
 Name:		grub2
 Epoch:		1
 Version:	2.06
-Release:	126%{?dist}
+Release:	127%{?dist}
 Summary:	Bootloader with support for Linux, Multiboot and more
 License:	GPL-3.0-or-later
 URL:		http://www.gnu.org/software/grub/
@ -359,6 +359,13 @@ fi
 if test ! -f ${GRUB_HOME}/grub.cfg; then
    # there's no config in GRUB home, create one
    grub2-mkconfig -o ${GRUB_HOME}/grub.cfg
 else
    GRUB_CFG_MODE=$(stat --format="%a" ${GRUB_HOME}/grub.cfg)
    if ! test "${GRUB_CFG_MODE}" = "600"; then
        # when upgrading from <=2.06-126 to newer versions, the grub config stub
        # may have different mode than 0600, so set the latter if this is the case
        chmod 0600 ${GRUB_HOME}/grub.cfg
    fi
 fi
 if (((grep -q "configfile" ${EFI_HOME}/grub.cfg && grep -q "root-dev-only" ${EFI_HOME}/grub.cfg) || grep -q "source" ${EFI_HOME}/grub.cfg) && ! grep -q "# It is automatically generated by grub2-mkconfig using templates" ${EFI_HOME}/grub.cfg); then
@ -553,6 +560,9 @@ mv ${EFI_HOME}/grub.cfg.stb ${EFI_HOME}/grub.cfg
 %endif
 %changelog
 * Fri Aug 2 2024 Leo Sandoval <lsandova@redhat.com> - 2.06-127
 - Set /boot/grub2/grub.cfg to 0600 mode if present
 * Mon Jul 22 2024 Leo Sandoval <lsandova@redhat.com> - 2.06.126
 - grub.cfg: Fix rpm grub.cfg verification issues