openslx-ng/ipxe.git/src/hci, branch openslx

Merge branch 'master' into openslx

2026-01-28T11:53:53+00:00

[build] Mark more reviewed files as permitted for UEFI Secure Boot

2026-01-14T22:51:04+00:00

Mark dynamic keyboard map support and the "pciscan", "usbscan", and "time" commands as permitted for UEFI Secure Boot, on the basis that these features have previously been present in binaries signed by Microsoft. Signed-off-by: Michael Brown

[build] Mark known reviewed files as permitted for UEFI Secure Boot

2026-01-14T16:10:29+00:00

Some past security reviews carried out for UEFI Secure Boot signing submissions have covered specific drivers or functional areas of iPXE. Mark all of the files comprising these areas as permitted for UEFI Secure Boot. Signed-off-by: Michael Brown

[build] Mark core files as permitted for UEFI Secure Boot

2026-01-14T13:25:34+00:00

Mark all files used in a standard build of bin-x86_64-efi/snponly.efi as permitted for UEFI Secure Boot. These files represent the core functionality of iPXE that is guaranteed to have been included in every binary that was previously subject to a security review and signed by Microsoft. It is therefore legitimate to assume that at least these files have already been reviewed to the required standard multiple times. Signed-off-by: Michael Brown

[console] Mark generated keymaps as permitted for Secure Boot

2026-01-13T15:41:21+00:00

Signed-off-by: Michael Brown

[cmdline] Show commands in alphabetical order

2025-08-06T15:34:45+00:00

Commands were originally ordered by functional group (e.g. keeping the image management commands together), with arrays used to impose a functionally meaningful order within the group. As the number of commands and functional groups has expanded over the years, this has become essentially useless as an organising principle. Switch to sorting commands alphabetically (using the linker table mechanism). Signed-off-by: Michael Brown

[digest] Treat inability to acquire an image as a fatal error

2025-08-06T14:21:14+00:00

The "md5sum" and "sha1sum" commands were originally intended solely as debugging utilities, and would return success (with a warning message) even if the specified images did not exist. To minimise surprise and to be consistent with other commands, treat the inability to acquire an image as a fatal error. Signed-off-by: Michael Brown

[digest] Add "--set" option to store digest value in a setting

2025-08-06T13:07:00+00:00

Allow the result of a digest calculation to be stored in a named setting. This allows for digest verification in scripts using e.g.: set expected:hexraw cb05def203386f2b33685d177d9f04e3e3d70dd4 sha1sum --set actual 1mb iseq ${expected} ${actual} || goto checksum_bad Note that digest verification alone cannot be used to set the trusted execution status of an image. The only way to mark an image as trusted is to use the "imgverify" command. Signed-off-by: Michael Brown

[digest] Add commands for all enabled digest algorithms

2025-08-06T12:17:25+00:00

Add "sha256sum", "sha512sum", and similar commands. Include these new commands only when DIGEST_CMD is enabled in config/general.h and the corresponding algorithm is enabled in config/crypto.h. Leave "mdsum" and "sha1sum" included whenever only DIGEST_CMD is enabled, to avoid potentially breaking backwards compatibility with builds that disabled MD5 or SHA-1 as a TLS or X.509 digest algorithm, but would still have expected those commands to be present. Signed-off-by: Michael Brown

[uaccess] Reduce scope of included uaccess.h header

2025-04-30T15:16:02+00:00

The uaccess.h header is no longer required for any code that touches external ("user") memory, since such memory accesses are now performed through pointer dereferences. Reduce the number of files including this header. Signed-off-by: Michael Brown