proxmox-mirrors/efi-boot-shim
1
0
Fork 0
mirror of https://git.proxmox.com/git/efi-boot-shim synced 2025-08-05 09:42:26 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
56 Commits 1 Branch 3 Tags 11 MiB
481c1e1e76
Commit Graph

56 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Gary Ching-Pang Lin
481c1e1e76 Add a separate efi application to manage MOKs 2012-09-11 16:38:29 +08:00
Gary Ching-Pang Lin
1395a9916b Always try StartImage first 2012-09-11 16:37:02 +08:00
Gary Ching-Pang Lin
5f00e44f9a Only launch MokManager when necessary 2012-09-11 16:34:25 +08:00
Gary Ching-Pang Lin
19e957f489 Retrieve attributes of variables 
We have to make sure the machine owner key is stored in a BS
variable.
 2012-09-11 16:31:05 +08:00
Gary Ching-Pang Lin
1fe0d49c9b Merge branch 'master' into mok-prototype3 
Conflicts:
	shim.c
 2012-09-07 18:22:34 +08:00
Gary Ching-Pang Lin
0d7c3dbde5 Load MokManager for MOK management 2012-09-07 18:11:45 +08:00
Gary Ching-Pang Lin
e235c85af1 Make the image loading process more generic 2012-09-07 17:43:21 +08:00
Peter Jones
bcd0a4e8df Fix data alignment on vendor_cert so we don't wind up with padding. 2012-09-06 16:43:30 -04:00
Peter Jones
07c21a109d Add some convenience make targets. 
Adds targets for "test-archive" and "archive"
 2012-09-06 12:38:30 -04:00
Peter Jones
3c2f1d6c3d Break out of our db checking loop at the appropriate time. 
The break in check_db_cert is at the wrong level due to a typo in
indentation, and as a result only the last cert in the list can
correctly match.  Rectify that.

Signed-off-by: Peter Jones <pjones@redhat.com>
 2012-09-06 12:13:44 -04:00
Matthew Garrett
3682a89543 Use the file size, not the image size field, for verification. 2012-09-06 12:13:44 -04:00
Peter Jones
178b5681b8 Allow specification of vendor_cert through a build command line option. 
This allows you to specify the vendor_cert as a file on the command line
during build.
 2012-09-06 12:13:44 -04:00
Peter Jones
2295594a47 dos2unix PeImage.h 2012-09-06 12:01:43 -04:00
Matthew Garrett
3df9e294b7 Add basic documentation 2012-07-28 00:42:43 -04:00
Matthew Garrett
590b34492d Handle slightly stranger device paths 2012-07-13 00:30:22 -04:00
Matthew Garrett
d3ee0bed5e Make path generation more sensible 2012-07-11 10:58:15 -04:00
Matthew Garrett
8c173876d1 Make sure ImageBase is set appropriately in the loaded_image protocol 2012-07-11 10:57:46 -04:00
Matthew Garrett
ea863d8471 Add copyright file 2012-07-09 11:03:12 -04:00
Matthew Garrett
2d60227779 Update TODO 2012-07-09 10:39:14 -04:00
Matthew Garrett
7f5ccba57e Remove temp file checked in by accident 2012-07-09 10:38:30 -04:00
Matthew Garrett
d64a85f068 Improve makefile 2012-07-09 10:38:19 -04:00
Matthew Garrett
cd99713ac3 Make it easier to update Cryptlib 2012-07-09 10:17:19 -04:00
Matthew Garrett
f7d6ecac5f Cryptlib update 2012-07-09 10:17:13 -04:00
Matthew Garrett
85bbd2c4cc Re-add whitelisting - needed for protocol validation 2012-07-05 16:39:25 -04:00
Matthew Garrett
21543b6c8e We're not MSABI, so don't advertise this as such 2012-07-05 12:52:42 -04:00
Matthew Garrett
cc1116ced6 Check whether secure boot is enabled before performing verify call 2012-07-05 12:51:12 -04:00
Matthew Garrett
96b0c2f981 Fix up blacklist checking 
This was not quite as bugfree as would be hoped for.
 2012-07-02 14:43:18 -04:00
Matthew Garrett
f9435d9664 Remove whitelisting - the firmware will handle it via LoadImage/StartImage 2012-07-02 13:49:32 -04:00
Matthew Garrett
d259b14060 Update OpenSSL 2012-07-02 12:33:42 -04:00
Matthew Garrett
20094cb55d Build a debug image 2012-07-02 12:29:03 -04:00
Matthew Garrett
6d3e62ef2f Fix type of buffersize 2012-07-02 11:54:21 -04:00
Matthew Garrett
cfdefb0ebe Remove redundant header 2012-07-02 09:40:18 -04:00
Matthew Garrett
c08d0ceb05 Fix get_variable 2012-06-25 17:46:11 -04:00
Matthew Garrett
1a109376ab Add black/white listing 2012-06-25 10:59:08 -04:00
Matthew Garrett
390191c607 Fix build somewhat 2012-06-19 15:25:59 -04:00
Matthew Garrett
301f41f053 Fix cert size 2012-06-19 15:25:02 -04:00
Matthew Garrett
849eff34f4 Fix error path 2012-06-19 15:23:31 -04:00
Matthew Garrett
a817d08425 Remove old files 2012-06-19 13:01:54 -04:00
Matthew Garrett
9579a36336 Add crypto libraries 2012-06-18 17:49:57 -04:00
Matthew Garrett
661392464e Add missing include 2012-06-18 17:48:25 -04:00
Matthew Garrett
35e42730f7 Merge branch 'master' of github.com:mjg59/shim 2012-06-18 17:33:46 -04:00
mjg59
0359090de7 Merge pull request #1 from vathpela/master 
Yo dog this ain't right.
 2012-06-18 14:32:19 -07:00
Matthew Garrett
49ebaa4b91 Uninstall protocol on exit 2012-06-18 17:31:42 -04:00
Matthew Garrett
019b0c5c13 Check binary against blacklist 2012-06-18 17:31:42 -04:00
Matthew Garrett
03685963c5 Attempt to start image using LoadImage/StartImage first 2012-06-18 17:31:42 -04:00
Matthew Garrett
b6db0dd4db Check that platform is in user mode before doing any validation 2012-06-18 17:31:42 -04:00
Peter Jones
303724021c Fix typos. 2012-06-18 11:36:57 -04:00
Matthew Garrett
0db1af8aeb Minor cleanups 2012-06-07 14:00:48 -04:00
Matthew Garrett
7db60bd8c2 Rename variables 2012-06-05 10:56:45 -04:00
Matthew Garrett
f4b2473401 Install a protocol for sharing code with grub 2012-06-05 10:52:30 -04:00