| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2017-11-06 | debian/patches/abort_abort_abort.patch: signtool.exe isn't happy with some ↵ | Mathieu Trudel-Lapierre | |
| of the structure of our binary, partly because abort() is thought to be an external symbol, which causes some relocalisations to appear. | |||
| 2017-09-29 | Drop buildid_write_return.patch; no longer needed. | Mathieu Trudel-Lapierre | |
| Signed-off-by: Mathieu Trudel-Lapierre <mathieu.trudel-lapierre@canonical.com> | |||
| 2017-09-13 | Drop PHONY fix patch; merged upstream. | Mathieu Trudel-Lapierre | |
| 2017-08-31 | debian/patches/buildid_write_return.patch: workaround our strict compile ↵ | Mathieu Trudel-Lapierre | |
| rules failing the build: make sure write calls check the return value. | |||
| 2017-08-29 | debian/patches/fix_makefile_phony.patch: fix a makefile bug causing shim to ↵ | Mathieu Trudel-Lapierre | |
| fail to build, because it gets confused about the .signed efi files. | |||
| 2017-08-29 | Set ENABLE_SBSIGN, to use sbsign instead of pesign for signing fallback and ↵ | Mathieu Trudel-Lapierre | |
| MokManager. Also drop debian/patches/sbsigntool-no-pesign: with this change from upstream it is no longer needed.. | |||
| 2017-08-07 | debian/patches/0001-shim-fix-the-mirroring-MokSBState-fail.patch: dropped, ↵ | Mathieu Trudel-Lapierre | |
| included upstream. | |||
| 2017-08-07 | Set DEFAULT_LOADER; this makes second-stage-path unnecessary. | Mathieu Trudel-Lapierre | |
| 2017-08-07 | Update changelog/changes for released 0.9+1474479173.6c180c6-1ubuntu10.9+1474479173.6c180c6-1ubuntu1 | Mathieu Trudel-Lapierre | |
| 2016-09-22 | * debian/patches/unused-variable: dropped; applied upstream. | Mathieu Trudel-Lapierre | |
| * debian/patches/binutils-version-matching: dropped, fixed upstream. | |||
| 2016-07-26 | * debian/patches/unused-variable: remove unused variable size. | Mathieu Trudel-Lapierre | |
| * debian/patches/binutils-version-matching: revert d9a4c912 to correctly match objcopy's version on Ubuntu. | |||
| 2016-07-26 | * Refreshed patches. | Mathieu Trudel-Lapierre | |
| - Remaining patches: + second-stage-path + sbsigntool-not-pesign | |||
| 2015-05-12 | More GCC 5 fixes: stdarg.h and other include tweaks, cherry-pick from | Mathieu Trudel-Lapierre | |
| d51739a4. | |||
| 2015-05-12 | Fix build with GCC 5, forcing -std=gnu89 to not rely on stdint.h | Mathieu Trudel-Lapierre | |
| required by efibind.h, and not found with -nostdinc. (LP: #1429978) | |||
| 2015-05-06 | debian/patches/CVE-2014-3675.patch, debian/patches/CVE-2014-3677.patch, | Mathieu Trudel-Lapierre | |
| debian/patches/0001-Update-openssl-to-0.9.8za.patch: dropped, included in the upstream release. | |||
| 2014-10-08 | * SECURITY UPDATE: heap overflow and out-of-bounds read access when | Steve Langasek | |
| parsing DHCPv6 information - debian/patches/CVE-2014-3675.patch: apply proper bounds checking when parsing data provided in DHCPv6 packets. - CVE-2014-3675 - CVE-2014-3676 * SECURITY UPDATE: memory corruption when processing user-provided key lists - debian/patches/CVE-2014-3677.patch: detect malformed machine owner key (MOK) lists and ignore them, avoiding possible memory corruption. - CVE-2014-3677 | |||
| 2014-10-07 | Restore debian/patches/prototypes, which still is needed on shim 0.7 | Steve Langasek | |
| but only detected on the buildds. | |||
| 2014-10-07 | debian/patches/0001-Update-openssl-to-0.9.8za.patch: cherry-pick | Steve Langasek | |
| openssl 0.9.8za in via upstream. | |||
| 2014-10-07 | Drop prototypes patch, apparently not needed upstream | Steve Langasek | |
| 2014-10-06 | Merge upstream version 0.7 | Steve Langasek | |
| 2013-09-23 | debian/patches/netboot-cleanup: roll-up of miscellaneous fixes to | Steve Langasek | |
| the netboot code. | |||
| 2013-09-20 | debian/patches/tftp-proper-nul-termination: fix nul termination | Steve Langasek | |
| errors in filenames passed to tftp. | |||
| 2013-09-20 | Fix remaining compiler warnings in netboot.c. | Steve Langasek | |
| 2013-09-20 | Build with -Werror to catch future prototype mismatches. | Steve Langasek | |
| 2013-09-20 | debian/patches/fix-tftp-prototype: pass the right arguments to | Steve Langasek | |
| EFI_PXE_BASE_CODE_TFTP_READ_FILE. | |||
| 2013-08-08 | Fix for LP: #1087501 | Stéphane Graber | |
| 2013-07-03 | debian/patches/no-output-by-default.patch: Don't print any | Steve Langasek | |
| informational messages. Closes LP: #1074302. | |||
| 2012-12-13 | debian/patches/sbsigntool-not-pesign: Sign MokManager with | Steve Langasek | |
| sbsigntool instead of pesign. | |||
| 2012-12-13 | Import new upstream snapshot | Steve Langasek | |
| 2012-10-10 | debian/patches/shim-before-loadimage: Use direct verification first | Steve Langasek | |
| before LoadImage. Addresses an issue where Lenovo's SecureBoot implementation pops an error message on any verification failure - avoid calling LoadImage at all unless we have to. | |||
| 2012-10-05 | debian/patches/second-stage-path: Chainload grubx64.efi, not | Steve Langasek | |
| grub.efi. | |||
| 2012-10-04 | debian/patches/prototypes: Include missing prototypes, and disable | Steve Langasek | |
| use of BIO_new_file. | |||
 |
index : efi-boot-shim.git | |
| (mirror of https://github.com/vyos/efi-boot-shim.git) |
| summaryrefslogtreecommitdiff |