Source: shim Section: admin Priority: optional Maintainer: Steve Langasek Standards-Version: 3.9.8 Build-Depends: debhelper (>= 9), gnu-efi (>= 3.0u), sbsigntool, openssl, libelf-dev Vcs-Browser: https://salsa.debian.org/vorlon/shim Vcs-Git: https://salsa.debian.org/vorlon/shim.git Package: shim Architecture: amd64 arm64 i386 Depends: ${shlibs:Depends}, ${misc:Depends} Description: boot loader to chain-load signed boot loaders under Secure Boot This package provides a minimalist boot loader which allows verifying signatures of other UEFI binaries against either the Secure Boot DB/DBX or against a built-in signature database. Its purpose is to allow a small, infrequently-changing binary to be signed by the UEFI CA, while allowing an OS distributor to revision their main bootloader independently of the CA.