shim-signed 1.27~16.04.1 source package in Ubuntu


shim-signed (1.27~16.04.1) xenial; urgency=medium

  * Backport shim 0.9+1474479173.6c180c6-1ubuntu1 to 16.04. (LP: #1637290)

shim-signed (1.27) zesty; urgency=medium

  [ Steve Langasek ]
  * Update to the signed 0.9+1474479173.6c180c6-1ubuntu1 binary from
  * update-secureboot-policy:
    - detect when we have no debconf prompting and error out instead of ending
      up in an infinite loop.  LP: #1673817.
    - refactor to make the code easier to follow.
    - remove a confusing boolean that would always re-prompt on a request to
      --enable, but not on a request to --disable.

  [ Mathieu Trudel-Lapierre ]
  * update-secureboot-policy:
    - some more fixes to properly handle non-interactive mode. (LP: #1673817)

shim-signed (1.23) zesty; urgency=medium

  * debian/control: bump the Depends on grub2-common since that's needed to
    install with the new updated EFI binaries filenames.

shim-signed (1.22) yakkety; urgency=medium

  * Update to the signed 0.9+1474479173.6c180c6-0ubuntu1 binary from Microsoft.
    (LP: #1581299)
  * Update paths now that the shim binary has been renamed to include the
    target architecture.
  * debian/shim-signed.postinst: clean up old MokManager.efi from EFI/ubuntu;
    since it's being replaced by mm$arch.efi.

 -- Mathieu Trudel-Lapierre <email address hidden>  Thu, 23 Mar 2017 16:58:44 -0400

Upload details

Uploaded by:
Mathieu Trudel-Lapierre on 2017-03-24
Sponsored by:
Steve Langasek
Uploaded to:
Original maintainer:
Steve Langasek
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section


Xenial: [FULLYBUILT] amd64


File Size SHA-256 Checksum
shim-signed_1.27~16.04.1.tar.xz 303.6 KiB 4734ca291fceef68b03a982920f89b1037da3fd461bc585d3c03e5873ba5b0da
shim-signed_1.27~16.04.1.dsc 1.4 KiB 3a502d3e9c135ad29db0a86cbfb5d00b7298050ddb4988444caff7d4fa3110db

View changes file

Binary packages built by this source

shim-signed: Secure Boot chain-loading bootloader (Microsoft-signed binary)

 This package provides a minimalist boot loader which allows verifying
 signatures of other UEFI binaries against either the Secure Boot DB/DBX or
 against a built-in signature database. Its purpose is to allow a small,
 infrequently-changing binary to be signed by the UEFI CA, while allowing
 an OS distributor to revision their main bootloader independently of the CA.
 This package contains the version of the bootloader binary signed by the
 Microsoft UEFI CA.