11 releases
| 0.2.8 | Dec 18, 2024 |
|---|---|
| 0.2.7 | Nov 13, 2023 |
| 0.2.4 | Jun 29, 2023 |
| 0.2.2 | May 21, 2023 |
| 0.1.1 | May 4, 2023 |
#606 in Cryptography
119 downloads per month
1MB
860 lines
Contains (DOS exe, 1MB) tests/shimx64.efi.dualsigned, (DOS exe, 1MB) tests/shimx64.efi, (DOS exe, 1MB) tests/shimx64.efi.signed
EFI_SIGNER
A pure rust library to sign/verify the EFI image.
HOWs
see examples
how to sign a EFI image
-
generate certificates
bash -ex scripts/make_codesign_cert.sh -
sign a EFI image
./main sign --key key.pem --cert certificate.p7b shimx64.efi shimx64.efi.signed -
sign a EFI image with detached signature
./main sign --key key.pem --cert certificate.p7b -d shimx64.efi efi.signedthe
efi.signedfile will onlyl contain the signature itself which can be used by set_authenticode
how to parse the EFI image
./main --verbose parse shimx64.efi
Dependencies
~20–40MB
~587K SLoC