summaryrefslogtreecommitdiff
path: root/shim.c
AgeCommit message (Expand)Author
2018-03-12Don't have tons of local guid definitions for no reason at all.Peter Jones
2018-03-12Rename generate_path() because we have 2 of it.Peter Jones
2018-03-08Fix failure to boot on systems without a TPMHans de Goede
2018-03-06shim: Ignore UEFI LoadOptions that are just NUL characters.Peter Jones
2018-03-06Install shim_lock protocol even when SecureBoot is offTamas K Lengyel
2018-03-06Add REQUIRE_TPM flag to treat TPM related errors as criticalTamas K Lengyel
2018-03-06Measure into the TPM even if SecureBoot is off in shim_lock verifyTamas K Lengyel
2018-03-06Log measurements in PCR4 for applications being verified through shim_lockTamas K Lengyel
2018-02-01Uninstall shim protocols before re-installing themMathieu Trudel-Lapierre
2017-12-19"in_protocol" is used in more than shim.o; make it not static.Peter Jones
2017-09-13try to show errors more usefully.Peter Jones
2017-09-13Add some debugging data to the last malformed binary check...Peter Jones
2017-08-31Revert lots of Cryptlib updates.Peter Jones
2017-08-31Drain the OpenSSL error stack and report crypto verification errorsPeter Jones
2017-08-31Init openssl so we can use its debug facilities.Peter Jones
2017-08-31Make msleep() be a thingPeter Jones
2017-08-11Add ENABLE_SHIM_CERT to make MokManager/fallback signing optional.Peter Jones
2017-08-03Always measure all of MokSBState, MokList, and MokListXPeter Jones
2017-08-03Measure stage 2 according to specMatthew Garrett
2017-08-01Extend PCR 7Matthew Garrett
2017-06-15update verification_method if the loaded image is signed by shim/vendor certLans Zhang
2017-06-15skip the error message when creating MokListRT if vendor cert is emptyLans Zhang
2017-04-27Fix buffer overrun / damaged options passed to second_stage.John S. Gruber
2017-04-11shim: Remove the obsolete OBJ_cleanupGary Lin
2017-04-03generate_hash(): fix the regressionLans Zhang
2017-04-03Ignore BDS when it tells us we got our own path on the command line.Peter Jones
2017-03-27Fix some i386 type casting errorsPeter Jones
2017-03-27shim: disambiguate our global image handle.Peter Jones
2017-02-28Use EfiLoaderCode memory for loading PE/COFF executablesArd Biesheuvel
2017-02-06Also just check for access denied anyway.Peter Jones
2017-02-06Ensure all of the SB verification returns the same error code.Peter Jones
2017-02-06shim: fix the mirroring MokSBState failIvan Hu
2017-02-06generate_hash(): make check_size() set an error, and verify SecDir size.Peter Jones
2016-09-21shim: verify Extended Key Usage flagsMathieu Trudel-Lapierre
2016-09-09Fix up a merge error in 467878f3e0.Peter Jones
2016-09-09verify_buffer: check that the value of cert->Hdr.dwLength is reasonablePeter Jones
2016-09-06Minor formatting fixPeter Jones
2016-09-06Use authenticode signature length from WIN_CERTIFICATE structure.Sachin Agrawal
2016-09-06Don't close file twice in should_use_fallback error pathBenjamin Antin
2016-09-06shim: remove unused variableGary Lin
2016-09-06Fix the size of MokDBStateLans Zhang
2016-09-06Add the optional HTTPBoot supportGary Ching-Pang Lin
2016-09-06read_header/handle_image: treat uninitialized file alignment as PAGE_SIZEPeter Jones
2016-09-06Make fallback and mokmanager know about multi-arch.Peter Jones
2016-06-09shim: make the PE loader less overzealous on rejectionsPeter Jones
2016-05-11Measure state and second stage into TPMMatthew Garrett
2016-05-11shim: dealing with only one string on loadoptionIvan Hu
2016-03-22shim: mirror MokSBState in runtime so the kernel can make use of it.Mathieu Trudel-Lapierre
2015-11-17shim: check for EFI\BOOT\BOOT${ARCH}.EFI as well as the leading \ versionPeter Jones
2015-11-17shim: fix resource leak on should_use_fallback() error pathPeter Jones
generated by cgit v1.2.3 (git 2.39.1) at 2025-09-02 02:34:39 +0000