secureboot_objects
Secure boot objects recommended by Microsoft.
OTHER License
Bot releases are visible (Hide)
What's Changed
Please review the localized readme file and the contents of each folder.
</blockquote>
<hr>
</details>
- keystore.toml was renamed to FirmwareDefaults.toml
- Created two new folders PreSignedObjects, and PostSignedObjects
- PreSignedObjects now represents Objects that may exist in your Secure Boot Configuration
- PostSignedObjects now represents Signed Objects from Microsoft that will map to the PreSignedObjects
- All Existing Objects were moved
This should not be a breaking change. However Breaking changes are likely to come in follow up commits.
Full Changelog: https://github.com/microsoft/secureboot_objects/compare/v1.1.2...v1.1.3
Published by github-actions[bot] 6 months ago
What's Changed
This change allows a user to change the signature_owner per entry such as if a user of this script wishes to add their own certificate.
For example a user may now add their own custom certificate and specify their own guid:
############################
# Default Kek File Entries #
############################
[DefaultKek]
help = "Contains the Microsoft KEKs to enable signature database updates and binary execution."
[[DefaultKek.files]]
path = "keystore/Kek/MicCorKEKCA2011_2011-06-24.der"
url = "https://go.microsoft.com/fwlink/?LinkId=321185"
sha1 = 0x31590bfd89c9d74ed087dfac66334b3931254b30
signature_owner = "77fa9abd-0359-4d32-bd60-28f4e78f784b"
[[DefaultKek.files]]
path = "keystore/Kek/microsoft corporation kek 2k ca 2023.der"
url = "https://go.microsoft.com/fwlink/?linkid=2239775"
sha1 = 0x459ab6fb5e284d272d5e3e6abc8ed663829d632b
signature_owner = "77fa9abd-0359-4d32-bd60-28f4e78f784b"
[[DefaultKek.files]]
path = "keystore/Kek/my_custom_kek_certificate.der"
sha1 = 0xadd9ea3b9077aab54e55ef51ddb65c9a35db81ac
signature_owner = "12345678-ABCD-EF01-2345-6789ABCDEF01"
</blockquote>
<hr>
</details>
🐛 Bug Fixes
Updates the link to use new location in Mu Plus instead of the old
location in Mu OEM Sample.
Full Changelog: https://github.com/microsoft/secureboot_objects/compare/v1.1.1...v1.1.2
Published by Javagedes 11 months ago
What's Changed
- Fix for Invalid MS Signature GUID by @Flickdm in https://github.com/microsoft/secureboot_objects/pull/30
- Updating the Microsoft License [Rebase & FF] by @Flickdm in https://github.com/microsoft/secureboot_objects/pull/22
- Adding Microsoft SECURITY.MD by @microsoft-github-policy-service in https://github.com/microsoft/secureboot_objects/pull/1
- Open-Source Readiness Changes [Rebase & FF] by @makubacki in https://github.com/microsoft/secureboot_objects/pull/29
Dependency Updates
- build(deps): bump edk2-pytool-library from 0.19.1 to 0.19.4 by @dependabot in https://github.com/microsoft/secureboot_objects/pull/21
- build(deps): bump ruff from 0.1.2 to 0.1.4 by @dependabot in https://github.com/microsoft/secureboot_objects/pull/19
- build(deps): bump pytest from 7.4.2 to 7.4.3 by @dependabot in https://github.com/microsoft/secureboot_objects/pull/17
- build(deps): bump ruff from 0.1.4 to 0.1.6 by @dependabot in https://github.com/microsoft/secureboot_objects/pull/25
- build(deps): bump edk2-pytool-library from 0.19.4 to 0.19.6 by @dependabot in https://github.com/microsoft/secureboot_objects/pull/28
- build(deps): bump edk2-pytool-extensions from 0.25.1 to 0.26.2 by @dependabot in https://github.com/microsoft/secureboot_objects/pull/26
New Contributors
- @microsoft-github-policy-service made their first contribution in https://github.com/microsoft/secureboot_objects/pull/1
Full Changelog: https://github.com/microsoft/secureboot_objects/compare/v1.1.0...v1.1.1
Published by Flickdm 12 months ago
What's Changed
- Initial contents by @Flickdm in https://github.com/microsoft/secureboot_objects/pull/6
- .github/workflows: Fix Setup Python step by @makubacki in https://github.com/microsoft/secureboot_objects/pull/11
- pip-requirements.txt: Update dependencies by @Javagedes in https://github.com/microsoft/secureboot_objects/pull/12
- test_prepare.py: Rename duplicate filename by @Javagedes in https://github.com/microsoft/secureboot_objects/pull/13
- Bump actions/checkout from 3 to 4 by @dependabot in https://github.com/microsoft/secureboot_objects/pull/10
- .github/workflows: Use custom GH token for release publishing by @makubacki in https://github.com/microsoft/secureboot_objects/pull/14
New Contributors
- @Flickdm made their first contribution in https://github.com/microsoft/secureboot_objects/pull/6
- @makubacki made their first contribution in https://github.com/microsoft/secureboot_objects/pull/11
- @Javagedes made their first contribution in https://github.com/microsoft/secureboot_objects/pull/12
- @dependabot made their first contribution in https://github.com/microsoft/secureboot_objects/pull/10
Full Changelog: https://github.com/microsoft/secureboot_objects/commits/v1.1.0