summaryrefslogtreecommitdiff
path: root/shim.c
AgeCommit message (Expand)Author
2017-03-27shim: disambiguate our global image handle.Peter Jones
2017-02-28Use EfiLoaderCode memory for loading PE/COFF executablesArd Biesheuvel
2017-02-06Also just check for access denied anyway.Peter Jones
2017-02-06Ensure all of the SB verification returns the same error code.Peter Jones
2017-02-06shim: fix the mirroring MokSBState failIvan Hu
2017-02-06generate_hash(): make check_size() set an error, and verify SecDir size.Peter Jones
2016-09-21shim: verify Extended Key Usage flagsMathieu Trudel-Lapierre
2016-09-09Fix up a merge error in 467878f3e0.Peter Jones
2016-09-09verify_buffer: check that the value of cert->Hdr.dwLength is reasonablePeter Jones
2016-09-06Minor formatting fixPeter Jones
2016-09-06Use authenticode signature length from WIN_CERTIFICATE structure.Sachin Agrawal
2016-09-06Don't close file twice in should_use_fallback error pathBenjamin Antin
2016-09-06shim: remove unused variableGary Lin
2016-09-06Fix the size of MokDBStateLans Zhang
2016-09-06Add the optional HTTPBoot supportGary Ching-Pang Lin
2016-09-06read_header/handle_image: treat uninitialized file alignment as PAGE_SIZEPeter Jones
2016-09-06Make fallback and mokmanager know about multi-arch.Peter Jones
2016-06-09shim: make the PE loader less overzealous on rejectionsPeter Jones
2016-05-11Measure state and second stage into TPMMatthew Garrett
2016-05-11shim: dealing with only one string on loadoptionIvan Hu
2016-03-22shim: mirror MokSBState in runtime so the kernel can make use of it.Mathieu Trudel-Lapierre
2015-11-17shim: check for EFI\BOOT\BOOT${ARCH}.EFI as well as the leading \ versionPeter Jones
2015-11-17shim: fix resource leak on should_use_fallback() error pathPeter Jones
2015-11-17shim: if generate_path() gets a full path, just return it.Peter Jones
2015-11-17shim: fix a wrong-abi call to Stall() and ResetSystem()Peter Jones
2015-11-17shim: handle BDS's li->LoadOptions and Shell's li->LoadOptions .Peter Jones
2015-11-17Fix unsigned int overflow on our i386 debug hook test.Peter Jones
2015-06-30Improve our debuginfo path printPeter Jones
2015-06-29Only be verbose the first time secure_mode() is called.Peter Jones
2015-06-29Add a conditional point for a debugger to attach.Peter Jones
2015-06-29Don't print anything or delay when start_image() succeeds.Peter Jones
2015-06-16Make shim to check MokXAuth for MOKX resetGary Ching-Pang Lin
2015-06-16Verify the EFI images with MOK blacklistGary Ching-Pang Lin
2015-06-16Copy the MOK blacklist to a RT variableGary Ching-Pang Lin
2015-06-16Support MOK blacklistGary Ching-Pang Lin
2015-06-11Ensure that apps launched by shim get correct BS->Exit() behaviorPeter Jones
2015-06-11Don't leave in_protocol==1 when shim_verify() isn't enforcing.Peter Jones
2015-06-04Only run MokManager if asked or a security violation occurs.Peter Jones
2015-04-13Don't install our protocols if we're not in secure mode.Peter Jones
2015-04-13Align the sections we're loading, and check for validity /after/ discarding.Peter Jones
2014-10-02Don't verify images with the empty build keyGary Ching-Pang Lin
2014-10-02Don't append an empty cert list to MokListRT if vendor_cert_size is 0.Peter Jones
2014-09-30Actually find the relocations correctly and process them that way.Peter Jones
2014-09-21Fix our "in_protocol" printing.Peter Jones
2014-09-21Don't call AuthenticodeVerify if vendor_cert_size is 0.Peter Jones
2014-09-21Validate computed hash bases/hash sizes more thoroughly.Peter Jones
2014-09-21Make 64-on-32 maybe work on x86_64.Peter Jones
2014-09-19Actually refer to the base relocation table of our loaded image.Peter Jones
2014-08-27Make sure we don't try to load a binary from a different arch.Peter Jones
2014-08-27Handle empty .reloc section in PE/COFF loaderArd Biesheuvel
generated by cgit v1.2.3 (git 2.39.1) at 2025-09-01 04:38:47 +0000