proxmox-mirrors/efi-boot-shim
1
0
Fork 0
mirror of https://git.proxmox.com/git/efi-boot-shim synced 2025-08-11 07:03:51 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
408 Commits 1 Branch 3 Tags 11 MiB
acd2cc1e4f
Commit Graph

408 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Gary Ching-Pang Lin
44d7d0e668 MokManager: remove the duplicate get_keystroke() 2013-09-26 11:58:02 -04:00
Gary Ching-Pang Lin
9a86568e19 MokManager: draw the countdown screen 2013-09-26 11:58:02 -04:00
Gary Ching-Pang Lin
8371c49ce7 MokManager: Remove the unnecessary string duplication 2013-09-26 11:58:02 -04:00
Gary Ching-Pang Lin
d71240bfff Correct the certificate count of the signature list 2013-09-26 11:58:02 -04:00
Peter Jones
e053c22701 Since different distros name grub*.efi differently, make it compile-time. 
Basically, if you don't want grub.efi, you do:

make 'DEFAULT_LOADER=\\\\grubx64.efi'

Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-26 11:58:02 -04:00
Gary Ching-Pang Lin
bd145c6082 Define the PXE 2nd stage loader in the beginning of the file 
Make it easier to change the PXE 2nd stage loader.

Conflicts:
	netboot.c
 2013-09-26 11:58:02 -04:00
Gary Ching-Pang Lin
436afcc276 Remove double-separators from the bootpath 2013-09-26 11:58:01 -04:00
Gary Ching-Pang Lin
f9f81a22dd Fix the broken bootpath 
- The file path from DevicePathToStr may use slash as the file
  seperator. Change all slashes to backslashes to avoid the strange
  bootpath.
- Remove the redundant backslashes.
- ImagePath no longer requires the leading backslash.
- Fix a memory leak

Based on the patch from Michal Marek <mmarek@suse.com>
 2013-09-26 11:58:01 -04:00
Gary Ching-Pang Lin
908eacc225 MokManager: support Tradition DES hash 2013-09-26 11:58:01 -04:00
Gary Ching-Pang Lin
be5c35e1ac MokManager: support MD5-based crypt() hash 2013-09-26 11:58:01 -04:00
Gary Ching-Pang Lin
114dad494c MokManager: support blowfish-based crypt() hash 
Conflicts:
	Makefile
 2013-09-26 11:58:01 -04:00
Gary Ching-Pang Lin
5a89835189 MokManager: support SHA512-based crypt() hash 2013-09-26 11:58:01 -04:00
Gary Ching-Pang Lin
3a838b14f0 MokManager: support crypt() password hash 
The password format is introduced for the password hash generated by crypt(),
so that the user can import the password hash from /etc/shadow. The packager,
especially those who packages 3rd party drivers, can utilize this feature to
import a 3rd party certificate without interfering the package installation.

This commit implements the sha256-based crypt() hash function.

Conflicts:
	Makefile
	MokManager.c
 2013-09-26 11:58:01 -04:00
Peter Jones
5e9fee2158 Make EFI_PATH easily resettable from the build command line. 
Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-26 11:58:01 -04:00
Gary Ching-Pang Lin
cdd2dc9132 Clean lib/, too 2013-09-26 11:58:01 -04:00
Gary Ching-Pang Lin
b1a00240ab simple_file: Allocate buffers for file entries 
The dir filter appends L'/' to the directory entries without
allocating a new buffer, and this could crash the whole program.
 2013-09-26 11:58:01 -04:00
Matthew Garrett
17857eb8b5 Port MokManager to Linux Foundation loader UI code 
This is the first stage of porting the MokManager UI to the UI code used
by the Linux Foundation UEFI loader.
 2013-09-26 11:57:59 -04:00
Peter Jones
2aa2ddd8a8 Port MokManager to Linux Foundation loader UI code 
This is the first stage of porting the MokManager UI to the UI code used
by the Linux Foundation UEFI loader.

Conflicts:
	MokManager.c
 2013-09-26 11:57:51 -04:00
Peter Jones
227d13a2d9 We have to declare SHIM_LOCK_GUID here as well. 
Signed-off-by: Peter Jones <pjones@redhat.com>

Conflicts:
	MokManager.c
 2013-09-26 11:56:52 -04:00
Peter Jones
ebda1052c9 Ignore tarballs. 
Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-26 09:56:32 -04:00
Peter Jones
a869915a1d MokManager needs to disable the graphics console. 
Without this patch, on some machines we never see MokManager's UI.  This
protocol has never (I think?) been officially published, and yet I still
have new hardware that needs it.

If you're looking for a reference, look at:

EdkCompatibilityPkg/Foundation/Protocol/ConsoleControl/ConsoleControl.c

in the edk2 tree from Tiano.

Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-26 09:56:26 -04:00
Steve Langasek
5ccacd3a48 Fix a memory leak 2013-09-24 12:05:51 -04:00
Steve Langasek
69a54db486 Correct limits on the length of ipv6 addresses 
The maximum length of a string representation of an ipv6 address is 39
characters (8 groups of 4 hex chars, with 7 colons in between).  So don't
allocate more room than this - and more importantly, don't blindly accept
strings from the server that are longer than our buffer...
 2013-09-24 12:05:47 -04:00
Steve Langasek
af049ff457 More consistent types, fewer casts 2013-09-24 12:05:38 -04:00
Steve Langasek
6eaa1a9c9e Misc allocation cleanups 2013-09-24 12:05:34 -04:00
Steve Langasek
3816832bc5 Fix an off-by-one error 
We don't need to add one because our end pointer is already off the end of
the string we want to copy.
 2013-09-24 12:05:31 -04:00
Steve Langasek
e2979f2c5f Fix nul termination errors in filenames passed to tftp 
Fix various errors in the tftp string handling, to ensure we always have
properly nul-terminated strings.
 2013-09-24 12:05:28 -04:00
Steve Langasek
2d8cfca2ce Build with -Werror to catch future prototype mismatches. 2013-09-24 12:05:25 -04:00
Steve Langasek
fbc486b50d Pass the right arguments to EFI_PXE_BASE_CODE_TFTP_READ_FILE 
A wrong pointer was being passed to EFI_PXE_BASE_CODE_TFTP_READ_FILE,
preventing us from getting the file size back from the tftp call, ensuring
that we don't have enough information to properly secureboot-validate the
retrieved image.
 2013-09-24 12:05:21 -04:00
Peter Jones
bea90083d2 Add MokListRT option rom entry. 
Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-23 13:24:48 -04:00
Peter Jones
43df9d24f2 Update TODO with missing description. 
Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-23 11:05:08 -04:00
Peter Jones
71da4f9be4 Made TODO represent the present. 
Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-23 10:48:41 -04:00
Peter Jones
cb59de3847 Make SHIM_LOCK_GUID a first-class object with a symbol. 
Right now the CA is checking if shim builds expose a particular version
of the shim protocol.  To do this, they're looking for SHIM_LOCK_GUID's
value in the resulting binary.

Currently, with SHIM_LOCK_GUID as a macro that gets assigned to local
variables, that means they have to compensate for mov instructions mixed
in with the actual value.  This is completely absurd, so promote it to a
first-class object with a symbol to make it both easy to find and
continuous.

Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-23 10:40:49 -04:00
Steve Langasek
eb32f5bab0 releasing package shim version 0.4-0ubuntu4 2013-09-23 00:30:04 -07:00
Steve Langasek
84a3bbdf33 debian/patches/netboot-cleanup: roll-up of miscellaneous fixes to 
the netboot code.
 2013-09-23 00:29:29 -07:00
Steve Langasek
0c74470db4 debian/patches/tftp-proper-nul-termination: fix nul termination 
errors in filenames passed to tftp.
 2013-09-20 17:05:30 -05:00
Steve Langasek
c43e3c7c0e Fix remaining compiler warnings in netboot.c. 2013-09-20 18:03:50 +00:00
Steve Langasek
990ce02ddd typo 2013-09-20 18:01:37 +00:00
Steve Langasek
5a187fadda Build with -Werror to catch future prototype mismatches. 2013-09-20 12:55:24 -05:00
Steve Langasek
4d21772d2a Commit missing .pc bits 2013-09-20 17:53:06 +00:00
Steve Langasek
50ab550ada debian/patches/fix-tftp-prototype: pass the right arguments to 
EFI_PXE_BASE_CODE_TFTP_READ_FILE.
 2013-09-20 11:23:28 -05:00
Peter Jones
e75294e569 Don't print things on the screen by default when everything works. 
There's no point to this text, and it generally confuses people.

Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-16 09:27:08 -04:00
Peter Jones
b32a3ce14c Don't print that fallback isn't found in should_use_fallback() 
The call can simply fail if it isn't found - which will be the case on
removeable install media.

Signed-off-by: Peter Jones <pjones@redhat.com>
 2013-09-16 09:27:08 -04:00
Stéphane Graber
4c13d15aab releasing version 0.4-0ubuntu3 2013-08-08 17:12:20 +02:00
Stéphane Graber
0929c5e5f5 Fix for LP: #1087501 2013-08-08 17:12:06 +02:00
Steve Langasek
44ecc6a350 debian/patches/no-output-by-default.patch: Don't print any 
informational messages.  Closes LP: #1074302.
 2013-07-03 22:48:01 +00:00
Steve Langasek
0c50644a00 Install MokManager.efi.signed in the package. 2013-07-03 12:02:10 -07:00
Steve Langasek
6657ac38fc releasing version 0.4-0ubuntu2 2013-07-02 20:30:47 +00:00
Steve Langasek
15d7c608de Add missing build-dependency on openssl. 2013-07-02 20:30:43 +00:00
Steve Langasek
63eea134e0 releasing version 0.4-0ubuntu1 2013-07-02 12:53:29 -07:00