Skip to content

pesign-0.110
Compare
Choose a tag to compare
@vathpela vathpela released this 24 Oct 20:18
0.110
This tag was signed with the committer’s verified signature. The key has expired.
vathpela Peter Jones
GPG key ID: EED266B70F4FEF10
Expired
Learn about vigilant mode.
1f1269b
  • RPM signing macros for RHEL and related distros
  • new pesigcheck tool (formerly the mostly unimplemented peverify)
  • new efisiglist tool to manipulate EFI_SIGNATURE_LIST structures in files
  • More examples in the man page
  • No longer emit the deprecated L"<<<Obsolete>>>" SpcLink data in signatures
  • Don't set SO_PASSCRED in pesign-daemon - on newer kernels it interferes with SCM_RIGHTS
  • Use uuid_generate_random by default in efikeygen when generating serial numbers for certificates
  • Add the ability to ask the daemon if a named key is locked or unlocked.
  • new authvar tool for managing authenticated variables
  • Clarify behaviour regarding signature padding rules
  • Work around a Linux VFS bug where file data gets filled wrong with our pattern of mremap/ftruncate/fault/close on 1024-byte block filesystems (i.e. /boot)
Assets 3
Loading