[ubuntu/focal-proposed] edk2 0~20191122.bd85bf54-2ubuntu2 (Accepted)
dann frazier
dannf at ubuntu.com
Mon Apr 6 10:44:36 UTC 2020
edk2 (0~20191122.bd85bf54-2ubuntu2) focal; urgency=medium
* Bring back (and fix) the "ms" option and restore the behavior of the
"secboot" option, which had changed when libvirt moved from built-in
nvram configs to parsing external firmware descriptors. LP: #1864532.
- Reintroduce OVMF_CODE.ms.fd symlink, but now it points to
OVMF_CODE.secboot.fd instead of OVMF_CODE.fd, which enforces SMM.
- Update firmware descriptor JSON files:
+ Update the existing secboot descriptor to use an empty variable
store. This makes it Secure Boot-capable, but with Secure Boot
initially disabled. Note that previously it used a store w/ keys
pre-enrolled, without advertising that feature.
+ Add a new "ms" descriptor which has keys pre-enrolled, has Secure
Boot enabled, and advertises the "enrolled-keys" feature.
+ Provide more details in "description" fields.
- README.Debian: Improve the use-case description for each image.
Date: Fri, 03 Apr 2020 07:47:19 -0600
Changed-By: dann frazier <dannf at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/edk2/0~20191122.bd85bf54-2ubuntu2
-------------- next part --------------
Format: 1.8
Date: Fri, 03 Apr 2020 07:47:19 -0600
Source: edk2
Architecture: source
Version: 0~20191122.bd85bf54-2ubuntu2
Distribution: focal
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: dann frazier <dannf at ubuntu.com>
Launchpad-Bugs-Fixed: 1864532
Changes:
edk2 (0~20191122.bd85bf54-2ubuntu2) focal; urgency=medium
.
* Bring back (and fix) the "ms" option and restore the behavior of the
"secboot" option, which had changed when libvirt moved from built-in
nvram configs to parsing external firmware descriptors. LP: #1864532.
- Reintroduce OVMF_CODE.ms.fd symlink, but now it points to
OVMF_CODE.secboot.fd instead of OVMF_CODE.fd, which enforces SMM.
- Update firmware descriptor JSON files:
+ Update the existing secboot descriptor to use an empty variable
store. This makes it Secure Boot-capable, but with Secure Boot
initially disabled. Note that previously it used a store w/ keys
pre-enrolled, without advertising that feature.
+ Add a new "ms" descriptor which has keys pre-enrolled, has Secure
Boot enabled, and advertises the "enrolled-keys" feature.
+ Provide more details in "description" fields.
- README.Debian: Improve the use-case description for each image.
Checksums-Sha1:
7838e00e4ca3596b4af0a902971eb927c614b9ef 2955 edk2_0~20191122.bd85bf54-2ubuntu2.dsc
47ca5dd12d8d382b97a8cda0e0ba9b72499538f4 40516 edk2_0~20191122.bd85bf54-2ubuntu2.debian.tar.xz
9a4864d4781a881aca94e83910776d3a755cfccc 11497 edk2_0~20191122.bd85bf54-2ubuntu2_source.buildinfo
Checksums-Sha256:
a2ae8559a907d106ac4189a1c5be5e9a53cd528e8ebbc2009577a6cd7a16d905 2955 edk2_0~20191122.bd85bf54-2ubuntu2.dsc
d1f3eeecb1bfe6aca48e133a99a8b39ebc4555603f9238c9f9c469486e13494c 40516 edk2_0~20191122.bd85bf54-2ubuntu2.debian.tar.xz
e2a3f1ef2212c8fe5be438ee57bbb394e2b7682ec0dcc3a9300bbd32b57be2f7 11497 edk2_0~20191122.bd85bf54-2ubuntu2_source.buildinfo
Files:
10956b9b459b6caac90fddb5ed77b5eb 2955 misc optional edk2_0~20191122.bd85bf54-2ubuntu2.dsc
e433b50b380dfa2a01995976f9c89121 40516 misc optional edk2_0~20191122.bd85bf54-2ubuntu2.debian.tar.xz
db541b940c15f1c721744c19c306e399 11497 misc optional edk2_0~20191122.bd85bf54-2ubuntu2_source.buildinfo
Original-Maintainer: Debian QEMU Team <pkg-qemu-devel at lists.alioth.debian.org>
More information about the Focal-changes
mailing list