commit | 9f7025479ac07749096efadcd6e4b12d9514e28e | [log] [tgz] |
---|---|---|
author | Paul Nardini <nardini@google.com> | Tue Sep 14 19:34:46 2021 |
committer | Paul Nardini <nardini@google.com> | Tue Sep 14 19:34:46 2021 |
tree | 40bbe9fa5f7f6f33c42b30c43ab5c7483321b5b3 | |
parent | 9923ab6d78bfe22d575067984d39d8f1cbff81ab [diff] |
Creating patch files using git format-patch The patch files that we use to pull in upstream shim changes are not well formatted, and their origin cannot be easily determined without additional context. This new set of patch files has been generated using git format-patch, ensuring that upstream origin is clearly identifiable for each. The Dockerfile is updated to utilize the new patch file names. The patches that get applied have not changed, so binaries produced by a build with them applied should have hashes that match the v9 tag. BUG=b:195737944 TEST=make build-no-cache & make copy Verify that the sha256 hash for shimia32.efi is d7cf7ab01e990fdb2e646434f27807dbc4f0450ccfde622e7a11d3c125a6e0c6 Verify that the sha256 hash for shimx64.efi is 88cd3870afbfc847019b815190d7b1b36d6eb49f3ba8dd8ddee34e09e00d2d60 Change-Id: I9d2c408db7c144e8227fe153cfdc0474084070b4
Build shim in a Docker container.
Build shim in a Docker container:
make build
Build with the cache turned off to get the full build log:
make build-no-cache
Copy the shim builds from the container to the host:
make copy
View details of the public certificate:
make cert-info
View SBAT section of the shim binaries:
make dump-sbat