Morten Linderud
Morten Linderud
This is a draft PR that includes the current progress on parsing UEFI structs as defined in [Version 2.8 Errata A](https://uefi.org/sites/default/files/resources/UEFI_Spec_2_8_A_Feb14.pdf). Attempting to parse the revocation list published by UEFI...
### Describe the Bug The two python dependencies hid and hidapi occupies the same namespace in Python with different APIs. This implies one can only install one version globally on...
This is probably a nice weekend hack for someone, but generating UEFI executables is a must have feature for initramfs generators these days. My WIP patch for `mkinitcpio` serves as...
After the deprecations of ioutil most of the new functions has been migrated to the os package. This patch includes all the new functions. Signed-off-by: Morten Linderud
Looking into supporting `mkosi` for https://system-transparency.org/ but we need support for reproducible builds. Currently `mkosi` support `--finalize-script` for image cleanups, but there are none distributed as part of `mkosi` project,...
Issues should demand people attach the following outputs: * `sudo sbctl status` * `sudo hexdump -C /sys/firmware/efi/efivars/PK-8be4df61-93ca-11d2-aa0d-00e098032b8c` And we should preferably implement `sudo sbctl debug` as a hidden command so...
Heftig is probably adding support for loading UEFI keys into the Linux keyring when secure boot is enabled. This allows us to use the db key for kernel module signing...
it would be cool to load the lists into `dbx`. https://uefi.org/revocationlistfile
There are a few lines which should probably be refactored into `config.go`. Mainly the files in [keys.go](https://github.com/Foxboron/sbctl/blob/master/keys.go#L22-L33). I think we should leave room to specify which protocol one want, files...
In #121 there is a machine with potential invalid firmware that we can't deal with. It would be great if `sbctl` could track that and issue warnings if people attempt...