Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/fwupd/fwupd-efi

EFI Application used by uefi-capsule plugin in fwupd
https://github.com/fwupd/fwupd-efi

Last synced: 1 day ago
JSON representation

EFI Application used by uefi-capsule plugin in fwupd

Host: GitHub
URL: https://github.com/fwupd/fwupd-efi
Owner: fwupd
License: lgpl-2.1
Created: 2021-04-16T01:58:05.000Z (over 3 years ago)
Default Branch: main
Last Pushed: 2024-12-24T09:25:52.000Z (10 days ago)
Last Synced: 2024-12-25T23:05:34.851Z (9 days ago)
Language: Assembly
Homepage:
Size: 517 KB
Stars: 44
Watchers: 10
Forks: 20
Open Issues: 8
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: COPYING
- Code of conduct: CODE_OF_CONDUCT.md
- Security: SECURITY.md
- Authors: AUTHORS

Awesome Lists containing this project

README

# EFI executable for fwupd

[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/fwupd/fwupd-efi/badge)](https://securityscorecards.dev/viewer/?uri=github.com/fwupd/fwupd-efi)

This repository contains the source used for the fwupd project to generate a
UEFI binary for installing updates using the `UpdateCapsule` runtime service.

It was originally imported from the combined fwupd project, and is now maintained
separately to allow fwupd userspace releases and fwupd-efi UEFI executable releases
to follow a different cadence.

## Compatibility

### 1.1.x through 1.5.x

This UEFI executable is compatible will all fwupd releases from `1_1_X` and newer.
In these fwupd sustaining releases, the EFI source continues to be distributed,
but a new *fwupd* meson build option `-Defi_binary=false` is introduced which
will allow disabling the compilation of built-in fwupd EFI binary.

### 1.6.x and newer

The fwupd EFI source has been removed from the releases and is now distributed
by this repository.

Hand-building fwupd will perform a subproject checkout of *fwupd-efi* and build
the binary at the same time.

All packagers should generate separate source packages for *fwupd* and
*fwupd-efi*. In the *fwupd* package, the subproject behavior should be explicitly
disabled using `-Defi_binary=false`.

## Standalone compilation

`fwupd-efi` uses the `meson` system to build EFI executables. Install `gnu-efi`
and then follow these instructions to build and install locally:

```bash
meson build
ninja -C build
ninja -C build install
```

## UEFI SBAT Support

The packager should also specify the SBAT metadata required for the secure boot
revocation support. See the [specification](https://github.com/rhboot/shim/blob/main/SBAT.md)
for more information.

Typically, this will be set as part of the packager build script, e.g.

```meson
-Defi_sbat_distro_id="fedora" \
-Defi_sbat_distro_summary="The Fedora Project" \
-Defi_sbat_distro_pkgname="%{name}" \
-Defi_sbat_distro_version="%{version}" \
-Defi_sbat_distro_url="https://src.fedoraproject.org/rpms/%{name}" \
```