@winload_exe quick nitpicks:
- PCA2011 is a SHA256 chain and wasn't used for win7 binaries until many years afterwards when the older SHA1-based Microsoft Windows Verification PCA expired
- the new PCA2023 still isn't being used yet, only the EFI-specific one has been used so far.
- the flightsigning root was not regenerated at rs2; rather, mincrypt was modified to allow the additional flightsigning scenarios (mincrypt being the crypto library statically linked to the boot environment and (SK)CI.DLL).
- more builds than win8 up to ~83xx were prs-signed; all checked builds starting from win8rc were too, as were win8.1 partner branches and the galileo minwin builds.
Edited 105d ago