Commit Graph

30 Commits

Author SHA1 Message Date
Peter Jones
6abd8c8ccb Fix a variable handling bug in 0.3/0.4
Signed-off-by: Peter Jones <pjones@redhat.com>
2013-06-11 15:02:12 -04:00
Peter Jones
00ae24516c Update to 0.4 2013-06-11 09:08:11 -04:00
Peter Jones
b03890160e Use the right hash command line. 2013-06-07 17:17:26 -04:00
Peter Jones
6e8ffa5826 Require gnu-efi-3.0q for now.
- Don't allow mmx or sse during compilation.
- Re-organize this so all real signing happens in shim-signed instead.
- Split out mokutil
2013-06-07 16:56:37 -04:00
Peter Jones
fca313b4db Don't allow mmx or sse during compilation. 2013-06-07 14:41:33 -04:00
Peter Jones
345b99e1f9 Don't allow mmx or sse during compilation. 2013-06-07 14:27:12 -04:00
Peter Jones
87983bd45d Update for shim-0.3 2013-05-30 08:40:17 -04:00
Peter Jones
b4e78d5f20 Prepare for 0.3
Signed-off-by: Peter Jones <pjones@redhat.com>
2013-05-14 14:48:41 -04:00
Peter Jones
0371db891a Fix mokutil's idea of signature sizes.
Also update the fedora key.
2012-12-12 10:07:34 -05:00
Peter Jones
c7806c9e16 Don't provide /boot/efi/EFI/fedora/shim.efi . shim-signed provides that.
Signed-off-by: Peter Jones <pjones@redhat.com>
2012-12-03 15:35:44 -05:00
Matthew Garrett
fceb7acdba Fix secure_mode() always returning true 2012-11-28 12:18:07 -05:00
Matthew Garrett
ced6e726d1 Fix buildrequires 2012-11-26 21:22:48 -05:00
Matthew Garrett
3f38048252 Update to 0.2 2012-11-26 20:01:27 -05:00
Peter Jones
48a92b9e95 Add a list of dbx hashes here and also list dbx.esl as a source.
Signed-off-by: Peter Jones <pjones@redhat.com>
2012-11-01 15:35:22 -04:00
Peter Jones
4415ae3c3c We've produced some grub builds that weren't great.
So here's the dbx to ban them.
2012-11-01 15:32:38 -04:00
Peter Jones
dbb3eca67c Produce an unsigned shim 2012-10-22 11:14:19 -04:00
Peter Jones
881a8373b7 Actually still provide the "shim" dep until shim-signed is ready.
Signed-off-by: Peter Jones <pjones@redhat.com>
2012-10-22 11:13:00 -04:00
Peter Jones
aee33f1b0d Continue making /boot/.../shim.efi for now until shim-signed is ready.
Signed-off-by: Peter Jones <pjones@redhat.com>
2012-10-22 11:08:34 -04:00
Peter Jones
75567dae21 Add the Fedora CA public key.
Signed-off-by: Peter Jones <pjones@redhat.com>
2012-10-18 18:32:33 -04:00
Peter Jones
c476086209 Update to produce shim-unsigned.
This makes the package produced be named "shim-unsigned", and moves the
output to be /usr/share/shim/shim.{efi,sig}.

Signed-off-by: Peter Jones <pjones@redhat.com>
2012-10-18 15:42:49 -04:00
Peter Jones
efdbd820ed Update how embedded cert and signing work. 2012-08-14 14:40:17 -04:00
Peter Jones
83155d74d2 Automatically embed the Red Hat Test Certificate and sign with it. 2012-08-14 14:39:12 -04:00
Peter Jones
2e3808918a Add vendor cert-from-file magic 2012-08-14 14:39:12 -04:00
Peter Jones
189790d285 Give this patch some git header magic. 2012-08-14 14:39:12 -04:00
Peter Jones
bf4f4e53a5 Don't manually specify which signing certificate to use. 2012-08-13 15:45:52 -04:00
Josh Boyer
d9982da917 Add patch to fix image size calculation 2012-08-13 12:48:29 -04:00
Peter Jones
f5b1b98434 Sign our shim.efi with the RH test certificate.
For now, just sign with the test cert.
2012-08-13 11:47:45 -04:00
Peter Jones
bc4b8b9c44 Fix file path to match whichever distro it's compiled in.
We use a different directory for RHEL and Fedora.
2012-08-13 11:45:54 -04:00
Matthew Garrett
59b1f511d4 initial release 2012-08-13 11:39:34 -04:00
Fedora Release Engineering
76c2626a16 Initial setup of the repo 2012-08-13 14:57:44 +00:00