<feed xmlns='http://www.w3.org/2005/Atom'>
<title>efi-boot-shim.git/fuzz-pe-relocate.c, branch rolling</title>
<subtitle> (mirror of https://github.com/vyos/efi-boot-shim.git)
</subtitle>
<id>https://git.amelek.net/vyos/efi-boot-shim.git/atom?h=rolling</id>
<link rel='self' href='https://git.amelek.net/vyos/efi-boot-shim.git/atom?h=rolling'/>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/efi-boot-shim.git/'/>
<updated>2025-02-26T00:40:54+00:00</updated>
<entry>
<title>pe: read_header(): allow skipping SecDir content validation</title>
<updated>2025-02-26T00:40:54+00:00</updated>
<author>
<name>Peter Jones</name>
<email>pjones@redhat.com</email>
</author>
<published>2025-02-25T16:44:11+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/efi-boot-shim.git/commit/?id=3bce11831343ba6e67740f23ab3a6c6f09bc0bca'/>
<id>urn:sha1:3bce11831343ba6e67740f23ab3a6c6f09bc0bca</id>
<content type='text'>
When we're parsing the PE header of shim itself from the Loaded Image
object, the signatures aren't present, but the Certificate Table entry
in the Data Directory has not been cleared, so it'll fail verification.

We know when we're doing that, so this patch makes that test optional.

Signed-off-by: Peter Jones &lt;pjones@redhat.com&gt;
</content>
</entry>
<entry>
<title>pe-relocate: Add a fuzzer for read_header()</title>
<updated>2023-12-05T18:17:19+00:00</updated>
<author>
<name>Peter Jones</name>
<email>pjones@redhat.com</email>
</author>
<published>2023-07-26T19:20:31+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/efi-boot-shim.git/commit/?id=8372147528d6563966c4e201ece81674a824dc58'/>
<id>urn:sha1:8372147528d6563966c4e201ece81674a824dc58</id>
<content type='text'>
This adds a fuzz harness for read_header().

Signed-off-by: Peter Jones &lt;pjones@redhat.com&gt;
</content>
</entry>
</feed>
